Closed Bug 1279168 Opened 8 years ago Closed 8 years ago

[e10s] SSL padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection, with add-on NoScript installed

Categories

(Firefox :: Security, defect)

Product:
Firefox
Component:
Security
Version:
47 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED DUPLICATE of bug 1246349
Tracking Flags:
Tracking Status
e10s ? ---
firefox47 --- disabled
firefox48 --- disabled
firefox49 --- disabled
firefox50 --- wontfix

People

(Reporter: jonasthiem, Unassigned)

References

Details

(Keywords: regression) 

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0
Build ID: 20160227030205

Steps to reproduce:

This is essentially a NoScript issue but it only happens with Firefox Nightly, so it must be some interaction with some recent changes in Firefox Nightly and I can't find a NoScript bugtracker, so I'm putting it here for now..

1. Install and enable Noscript
2.  Open http://xkcd.com in the first tab
3. Open https://google.com in a second tab
4. Switch back and forth between the two tabs and always check on correct state of the https padlock icon


Actual results:

padlock is eventually incorrectly shown on xkcd tab with google https connection info


Expected results:

padlock is only shown on the google.com tab
I can reproduce it with FF50, but only with e10s enabled. I'm trying to find a possible regression range with e10s.
It appears when reloading the HTTPS tab then switching immediately to the HTTP tab.

reg range:
https://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=c0ba5835ca489d15f8f170d5deb01f8dad92709a&tochange=c8f9b2cd16885eb5db980b907fdfbd6807f19f2a

regressed by Bug 1233497.
Blocks: 1233497
Status: UNCONFIRMED → NEW
Has Regression Range: --- → yes
Has STR: --- → yes
status-firefox47: --- → affected
status-firefox48: --- → affected
status-firefox49: --- → affected
status-firefox50: --- → affected
tracking-e10s: --- → ?
tracking-firefox48: --- → ?
tracking-firefox49: --- → ?
tracking-firefox50: --- → ?
Component: Untriaged → Security
Depends on: e10s
Ever confirmed: true
Flags: needinfo?(mconley)
Keywords: regression
OS: Unspecified → All
Hardware: Unspecified → All
Summary: [NoScript] Https padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection → [e10s] SSL padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection, with add-on NoScript installed
Oh yikes, that's pretty bad.

Hey mao, do you have some cycles to look at this?
Flags: needinfo?(mconley) → needinfo?(g.maone)
Based on the fact that this is e10s only, Fx47 shipped with e10s off by default. We should consider fixing this in 48+.
status-firefox47: affecteddisabled
Often, the firefox window's titlebar text doesn't switch to match the site's <title> string either when I change tabs, but instead the text sticks to the one of the old tab pre-switch. I guess this might be related?
Looks like this is already filed as Bug 1246349.
Status: NEW → RESOLVED
Closed: 8 years ago
Flags: needinfo?(g.maone)
Resolution: --- → DUPLICATE
Removing tracking nominations and moving to Bug 1246349
tracking-firefox48: ? → ---
tracking-firefox49: ? → ---
tracking-firefox50: ? → ---
You need to log in before you can comment on or make changes to this bug.