ESNI not working on Android 6 phones.
Categories
(Firefox for Android Graveyard :: General, defect, P5)
Tracking
(Not tracked)
People
(Reporter: Bugzilla, Unassigned, NeedInfo)
References
Details
User Agent: Mozilla/5.0 (Android 6.0; Mobile; rv:68.0) Gecko/68.0 Firefox/68.0
Steps to reproduce:
Enabled Encrypted SNI via about:config and still it doesn't work on Android 6.
Phone: Moto E3 Power
Actual results:
ESNI does not work on Android 6 phones like my Moto E3 power.
I have enabled it on about:config but it is still showing as using Plaintext SNI.
I have tested same settings on Android 8 and Android 9 phones and it works on them perfectly like it does on PC.
Expected results:
My SNI should be encrypted but it is still using Plaintext SNI
It even fails when tested on: https://www.cloudflare.com/ssl/encrypted-sni/
I have set network.trr to 2 and doh is set as cloudflare link even though they are not required.
Encrypted SNI is broken even on latest Nightly for Android 6.
|
||
Comment 3•5 years ago
|
||
Hello,
Have you tried setting network.security.esni.enabled to true in about:config? That seems to fix the issue for me.
(In reply to Laurentiu Apahidean from comment #3)
Hello,
Have you tried setting network.security.esni.enabled to true in about:config? That seems to fix the issue for me.
Of course I did that because this is how ESNI is enabled.
I'm using Android 6 are using this OS because newer ones work fine but android 6 doesn't.
My phone: moto E3 power.
|
|
||
Comment 5•5 years ago
|
||
I retested the issue on Release 68.0 using a Motorola G4 (Android 6.0.1).
After setting network.security.esni.enabled to true and network.trr.mode to 2 in about:config I run the test at https://www.cloudflare.com/ssl/encrypted-sni/ and the Secure DNS is passed, according to the information found on the site this means that the SNI is encrypted and does don use plaint text. Could you provide us with a screenshot of what your test results are?
Thank you
I'm also testing with cloudflare site. I have also tested with cloudflare's CDN trace and that too shows SNI as plaintext.
I have also tried with default DNS of my ISP and that of google and still no luck.
Look at these screenshots.
https://imgur.com/a/7KjIXKe
(In reply to Laurentiu Apahidean from comment #5)
I retested the issue on Release 68.0 using a Motorola G4 (Android 6.0.1).
After setting network.security.esni.enabled to true and network.trr.mode to 2 in about:config I run the test at https://www.cloudflare.com/ssl/encrypted-sni/ and the Secure DNS is passed, according to the information found on the site this means that the SNI is encrypted and does don use plaint text. Could you provide us with a screenshot of what your test results are?Thank you
Just commentng again so you can see my reply on top of this comment.
|
||
Comment 8•5 years ago
|
||
THis is not something we will specifically address in Firefox for Android. I'll try to find a proper owner of this.
|
|
||
Updated•5 years ago
|
|
||
Comment 9•5 years ago
|
||
Bugbug thinks this bug should belong to this component, but please revert this change in case of error.
|
||
Updated•5 years ago
|
|
||
Comment 10•4 years ago
|
||
|
Assignee | |
Updated•4 years ago
|
Description
•