1080601 - "Add security exception" dialog connects to wrong IP while retrieving certificate

Status: UNCONFIRMED

(Core :: Security, defect)

Description

[kruk]

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:32.0) Gecko/20100101 Firefox/32.0
Build ID: 20140918134209

Steps to reproduce:

I have a HTTPS production environment which is normally under an address example.com with IP 1.2.3.4 and uses a trusted certificate. Since this is a production environment, I'm also using a test environment for upgrade tests and so on. This site is configured with the same hostname, but located on different IP - 5.6.7.8, and using self-signed certificate. Since the DNS name doesn't point to the "test" IP, I add entry to /etc/hosts saying that 5.6.7.8 is indeed example.com and try to open https://example.com/


Actual results:

Firefox at first warned me about "Untrusted connection" (which is fine, because 5.6.7.8 has a self-signed certificate). The "Add exception" button opens a dialog which doesn't let me add the exception because it connects to the original 1.2.3.4 site and shows that there is nothing wrong with the certificate.


Expected results:

The "Add exception" should connect to 5.6.7.8 and present me with the option to accept a certificate from there.