User.js: ToDo: diffs FF61-FF62

yay! another small one

Edit: don't want to pollute this issue, but this is interesting - https://portableapps.com/node/58213. Seems like browser.cache.disk.capacity=0 is not respected - maybe it requires > 0 (we're ok since we have browser.cache.disk.enable=false which is respected)

since it was snuck into 61.0.2 - we should look at toolkit.winRegisterApplicationRestart and if we need to do anything about it

Edit: apparently it is false for now, so we could leave it until or if we pick up on when it's flipped. I'm just not sure if this requires session recovery to be active to even be a threat (of persistent data)

Edit edit: https://www.ghacks.net/2018/08/09/firefox-61-0-2-release-information/#comment-4386694

I’m currently using 62b15 on “Windows 7” and “toolkit.winRegisterApplicationRestart” is set to true. It’s also set to true in Nightly.

So I guess we better deal with it in this diffs then

• pref("privacy.trackingprotection.storagerestriction.enabled", false); - in FF63 they 1st renamed it to privacy.3rdpartystorage.enabled but now removed the pref again and merged it with network.cookie.cookieBehavior. Best to ignore for FF62 IMO, because otherwise we have it in the user.js for 1 version and then have to move it to 9999.
  We can list it at the top of this issue "for visibility" for those who want to try it. (but I'm not sure if it needs TP enabled or if it's even fully ready yet in FF62)
• pref("extensions.webextensions.ExtensionStorageIDB.enabled", false); - there have already been a couple of issues identified with this (+ fixed in latest FF63) and it's best to wait until they enable it by default IMO. I suggest we move it to "ignore"

huh .. tying tracking protection to the cookie pref? I mean I get it, kinda (I use cookies to control localStorage & IDB), but I don't follow why they would tie it directly to that setting. Am trying to read that diff.

So users who block all cookies can't use TP (or any of the other TP lists they are going to add)? That's not very nice of them. I get that it currently only applies to cookies, but future lists included non-cookie stuff IIRC

users who block all cookies can't use TP

You can use TP and block all cookies just fine AFAIK. ATM there are 2 kinds of TP, active and passive. Active TP will completely block requests (which could theoretically also try to set a cookie) while passive TP will just prevent the cookie from being set. At least that's how I think it works.

Seems like a nice option for people who don't want to allow everything (0=allow all cookies and site data) but for whom 1st-party-only breaks too many of their favorite sites.
Maybe one day mozilla will make it the new default value instead of 0.

Time will tell, it's all as clear as mud ATM to me. I'm still not sure how they can reconcile TP's state with a defined cookie default. eg (edited, must have been tired)

• network.cookie.cookieBehavior=2 - you block all cookies
• network.cookie.cookieBehavior=0,2,3 - you allow all or some cookies

So if you block all cookies, but allow a site exception, how can TP know whether it's allowed to kick in or not. The reverse don't matter (eg blocking cookies as a site exception). Because that's the only difference I see in the cookie pref - allow-all-some vs block

I think I'm confusing this with privacy.trackingprotection.*.enabled which still remains as the on/off switch, and the new setup is just about domains in TP lists and how to handle those domains's cookies + localStorage etc

network.cookie.cookieBehavior=0 - you block all cookies

0 = you ALLOW all cookies

FF63 will have a new option available cookieBehavior=4 = allow all except from tracking resources

earthlng wrote:

• [ ] do something with 1700s (containers)

I'd rather NOT do something with containers just yet. Users can enable it if they want but we shouldn't enable it by default for everyone because there are probably reasons why mozilla are still keeping it disabled.

Well, I ain't got to it yet. My first thing to check was what the defaults are in FF62, and ESR60. I had a feeling that they were enabled - in which case I was going to propose maybe removing the section (and shoving 1704 to personal). Anyway... lemme go check the defaults

Update: OK, so on FF61 (and I'll just assume ESR60 is the same), the only one that is on by default is 1703 which doesn't really matter.

Good, one less thing to deal with

the only one that is on by default is 1703 which doesn't really matter.

@earthlng what is the default for privacy.usercontext.about_newtab_segregation.enabled in ESR60.x ? If it's true then we could remove this pref?

default is false in 60.1.0ESR. It was changed to true in FF61 and ESR is based on FF60 so it makes sense that it's still false in ESR because they very rarely change prefs in ESR.

They'll set fallback-limit pref to TLS 1.3 by default for Firefox 62 and IMO we can just remove that pref from the user.js because it's not necessary to enforce the default. plus: "We're on the road to remove that code"

^^ added to changed in OP (cuz it wasn't there yet, just so you're aware)

moved from new to ignore -> new:

• all the activity-stream shit since it's still possible to delete the system addon. FF63+ will have it built-in and we'll deal with it then
• pref("browser.security.newcerterrorpage.enabled", false); - wait until they enable it by default
• pref("browser.tabs.multiselect", false); - not privacy/security related
• pref("devtools.inspector.fonthighlighter.enabled", false);
• pref("devtools.inspector.three-pane-first-run", true);
• pref("dom.webcomponents.shadowdom.report_usage", false);
  probably nightly-only. We'll see it in the diffs if they ever change it to true in beta or release
• pref("extensions.webextensions.ExtensionStorageIDB.enabled", false); - see my comment
• pref("privacy.trackingprotection.storagerestriction.enabled", false); - see my comment

moved from changed to ignore -> changed:

• pref("apz.android.chrome_fling_physics.enabled", true); // prev: false - Android. IDGAF
• pref("dom.ipc.plugins.sandbox-level.flash", 3); // prev: 2
  Flash. IDGAF. higher sandbox-level is always welcome but we don't need to enforce it or anything
• pref("dom.registerContentHandler.enabled", false); // prev: true
  navigator.registerContentHandler() has been removed :+1:
• pref("dom.registerProtocolHandler.insecure.enabled", false); // prev: true
  navigator.registerProtocolHandler() can no longer be used on insecure sites :+1:
• pref("network.http.throttle.version", 1); // prev: 2
• pref("security.pki.name_matching_mode", 3); // prev: 1
  more restrictive hostname matching in TLS certificates :+1:

some of the remaining changed prefs might be beta-only, let's wait until 62-release is out

dom.registerContentHandler.enabled & dom.registerProtocolHandler.insecure.enabled .. both previously true - shouldn't we add these for ESR60 users? or were they also flipped there?

Edit: also FYI: intent to remove dom.indexedDB.enabled - 1488583

pref("browser.history_swipe_animation.disabled", false); // not privacy related
pref("browser.tabs.remote.tabCacheSize", 0);
 // ^ temp(?) change due to e10s related issues
pref("devtools.debugger.pause-on-caught-exceptions", true);
pref("devtools.webconsole.jsterm.codeMirror", false);
 // ^ don't need to change these
pref("dom.mutation-events.cssom.disabled", true);
pref("dom.serviceWorkers.parent_intercept", false);
pref("gfx.webrender.program-binary-disk", true);
pref("image.animated.resume-from-last-displayed", true);
pref("io.activity.intervalMilliseconds", 0);
pref("layout.accessiblecaret.script_change_update_mode", 0);
 // ^ https://hg.mozilla.org/mozilla-central/rev/92022a209721
pref("layout.css.property-append-only", false);
pref("layout.css.scrollbar-colors.enabled", false);
pref("layout.css.webkit-appearance.enabled", false);
pref("layout.css.xul-display-values.content.enabled", false);
pref("network.cookie.maxNumber", 3000);
pref("network.cookie.maxPerHost", 180);
pref("network.sts.poll_busy_wait_period", 50);
pref("network.sts.poll_busy_wait_period_timeout", 7);
pref("network.sts.pollable_event_timeout", 6);
pref("services.sync.engine.bookmarks.validation.enabled", true);
pref("services.sync.engine.passwords.validation.enabled", true);
 // ^^ IDGAF about sync

edit:

• also 1464094 print.font-variations-as-paths -> ignore
• can't find the two pdfjs.*ModeOnLoad on DXR

62.0 changes since 62b20

new

pref("browser.newtabpage.activity-stream.improvesearch.topSiteSearchShortcuts", false); // true in 62b20
pref("services.sync.engine.bookmarks.validation.enabled", true);
pref("services.sync.engine.passwords.validation.enabled", true);

removed

pref("geo.provider.ms-windows-location", false);

changed

pref("app.update.channel", "beta"); // prev: "release"
pref("app.update.url.details", "https://www.mozilla.org/%LOCALE%/firefox/beta/notes"); // prev: "https://www.mozilla.org/%LOCALE%/firefox/notes"
pref("app.update.url.manual", "https://www.mozilla.org/firefox/beta"); // prev: "https://www.mozilla.org/firefox/"
pref("browser.newtabpage.activity-stream.telemetry.ut.events", true); // prev: false
pref("dom.keyboardevent.dispatch_during_composition", true); // prev: false
pref("geo.wifi.uri", "https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%"); // prev: "https://www.googleapis.com/geolocation/v1/geolocate?key=%GOOGLE_API_KEY%"
pref("layout.css.moz-document.url-prefix-hack.enabled", false); // prev: true
pref("network.tcp.tcp_fastopen_enable", true); // prev: false
pref("toolkit.telemetry.enabled", true); // prev: false

--- updated 1st post

https://bugzilla.mozilla.org/show_bug.cgi?id=603903#c69

... This feature is currently limited to Windows, though it may be extended to macOS later (in bug 1326181).

Firefox will automatically restore your tabs after Windows OS reboot. To disable this feature, set the "toolkit.winRegisterApplicationRestart" pref to false.

browser.sessionstore.resuming_after_os_restart is used internally and toggled back and forth automatically -> moved to ignore

also Content loads and runs before user has logged in but it might be a Windows 10 problem only

pdfjs: https://github.com/mozilla/pdf.js/pull/9208

dom.registerContentHandler.enabled & dom.registerProtocolHandler.insecure.enabled .. both previously true - shouldn't we add these for ESR60 users? or were they also flipped there?

no they were not flipped in ESR60.
dom.registerContentHandler.enabled isn't listed under "Privacy & Security" in Firefox 62 Site Compatibility so IDK if we need that.
But ESR60 users might also want user_pref("layout.css.moz-document.content.enabled", false); "since it could be used by attackers for CSS injection to steal private data in the URL of third-party sites."

can't find the two pdfjs.*ModeOnLoad on DXR

https://dxr.mozilla.org/mozilla-beta/search?q=scrollModeOnLoad
https://dxr.mozilla.org/mozilla-beta/search?q=spreadModeOnLoad

looks like DXR is lacking behind a bit and beta hasn't been merged to release etc.

pref("layout.css.moz-document.content.enabled", true); - from our diffs, added in FF59 1035091, flipped to false in 61

• added to list, feel free to do a commit

I'd say we don't add stuff just for ESR60 users. They know they won't get non-critical updates.
There was a good reason to stick with ESR52 for the legacy extension support but IDK why anyone would choose ESR60 over release, beta or nightly. And this user.js was always made for Release anyway.
The rest under new and changed can be ignored as well IMO.
Add toolkit.winRegisterApplicationRestart if you want and then we can close this

I agree with the prefs from the looks of them, I just hadn't gotten around to reading about them on bugzilla.

Not sure on the ESR thing - it wouldn't be hard to maintain it (a few extra prefs here and there, or leaving something in when the default becomes what we want). I need to think about it (I'm 50/50). IF we drop ESR I would want to mention it somewhere - eg under the release version

edit: how would we word that?

* date: 08 August 2018
* channel: stable [we will not longer enforce or kept prefs just for ESR]
* version 62-alpha: Total Eclipse of the Pants
*   "Once upon a time there was light in my life, but now there's only pants in the dark"

well both the register*Handler APIs are behind prompts anyway, fe see https://mdn.mozillademos.org/files/9683/protocolregister.png and the problem with disabling the moz-document css rule in ESR60 is that the exception which prevents most or all of the breakage landed in 61 and wasn't backported.

OK, I thought about it - I'm OK with dropping catering for or considering ESR in future. We will still keep the ESR deprecated switch though. ESR users can just go grab v60 (or 62) IMO - and unmaintained at that (although to be honest I don't think there's much left to be found and added - just new prefs going forward).

Maybe we could take the current user.js, clean it up a little for ESR60 with an UNMAINTAINED warning at the top, and stick in root?

So we don't need to do anything with the reg*handlers or the css thing either - good

I can't be arsed with the restart with windows when forcibly terminated thing. I want to properly disable any local data for crash to be able to read back, and I have the other issue for that

No we don't need to do anything, no warning no cleanup no nothing. ESR users can continue to use the latest master and just activate the ESR60 deprecated part with the one-char switch.
There's probably not a lot of stuff that we'll change in terms of existing prefs anyway, mostly we'll add new prefs that won't exist in ESR or remove old prefs which they can re-enable in 9999

^^

although to be honest I don't think there's much left to be found and added - just new prefs going forward

fair enough, although I might add that release line in if people get confused

Do you want to do a release. I already changed the version and date, so go ahead - it's all yours :) unless there was something else

https://github.com/ghacksuserjs/ghacks-user.js/issues/463#issuecomment-418741061

lets add toolkit.winRegisterApplicationRestart somewhere and set it to false and active. It could be pretty annoying when content loads and runs before user has logged in

sure

Holy F .. WTH did they do to the startup in 62. The chrome paints before its had a chance to resize - so you see blinding white rectangle (at 1600x900 from remembered close state), which then sizes larger off my screen (probably around about my screen size, its just that I have the browser fairly centered on my 2560x1440), and then it finally settles back to 1600x900 as per my prefs, and then fills in my speed dial - and takes about 1 second all up. Highly F annoying.

Wonder if it's that blank paint pref thing? Anyone else getting this?

^^ that's because of pref("browser.startup.blankWindow", true); // prev: false. It has that problem when RFP is enabled

browser.startup.blankWindow=false fixes it (added in FF60 btw https://bugzilla.mozilla.org/show_bug.cgi?id=1336227 )

Maybe we should add that in under RFP section?>

/* 4504: disable showing about:blank as soon as possible during startup (FF60+)
 * When default true (FF62+) this no longer masks the RFP resizing activity on startup
 * Also blindingly white .. my eyes, my eyes!! ***/
user_pref("browser.startup.blankWindow", false);

^^ I can drop the last comment line if i have to

toolkit.winRegisterApplicationRestart - should we file this under 0001 or under 1000 cache / session stuff

/* 0002: disable automatically restoring your tabs after Windows OS reboot [WINDOWS] (FF62+) ***/
user_pref("toolkit.winRegisterApplicationRestart", false);

should we add the bugzilla? I mean it won't launch FF is FF was closed when windows rebooted, so the description is a bit misleading. Wanna fix it up? I kinda want to do this now, so we can do a release and I get to bed (and you can do a changelog) - otherwise it's gonna be another 12+ hrs. I'll make a coffee and await your writing skills :)

Edit: also its about restarting FF as well, not just crashed tabs - but maybe it still fits better under cache / session section - IDK

blankWindow: https://bugzilla.mozilla.org/show_bug.cgi?id=1448423

toolkit.winRegisterApplicationRestart: definitely not 0001. /*** 0100: STARTUP ***/ or maybe under MISC, IDK.

"disable automatically restoring your Firefox session after OS restarts (FF61.0.2+)"
"As of FF62 it's Windows-only but support for MacOS is also planned"

headsup - the RFP window resizing took a hit, I guess something in the toolbar changed. It shifted 1 pixel in height (and still can't get it right) - see https://bugzilla.mozilla.org/show_bug.cgi?id=1418537

added that blankWindow to RFP sticky

Ummm, I'd rather keep the [WINDOWS] tag because it is only windows. If it gets added to mac, then we add a [MAC] tag as well. Definitely not misc. Agree its not really 0002 (although it is a startup issue). Gimme a minute

reading thru that ticket - it definitely launches firefox and restores session (regardless of session prefs) on all windows starts (if FF was open). That's how I read it

https://bugzilla.mozilla.org/show_bug.cgi?id=603903#c9 - used to be just updates or installs, but since Win10 Fall update its every start

but .. sometimes it doesn't - see comment .. screw it .. IDK, people can just read the ticket

/* xxxx: disable automatic Firefox start and session restore after reboot [WINDOWS] (FF62+)
 * [1] https://bugzilla.mozilla.org/show_bug.cgi?id=603903 ***/
user_pref("toolkit.winRegisterApplicationRestart", false);

whats with the 61.0.2+ - did it land in a dot release?

blankWindow: once bug 1448423 gets fixed we can remove the pref again - add the link for easy reference?

winRegisterApplicationRestart:

whats with the 61.0.2+ - did it land in a dot release?

https://www.mozilla.org/en-US/firefox/61.0.2/releasenotes/

Adds support for automatically restoring your Firefox session after Windows restarts. Currently, this feature is not enabled by default for most users, but will be gradually enabled over the coming weeks.

(61.0.2+) or (FF62+) - whatever you prefer is fine

I'm confused : https://github.com/ghacksuserjs/ghacks-user.js/commit/8b5547a9737bbefe93544ba401fdbd2c1a3b3576 <- do we want to add the 1448423 link here?

winRegister look good for 1024

I'll add these and if you want any changes just let me know. If everything is fine, then feel free to close this and even do a release