Closed
Bug 1279168
Opened 8 years ago
Closed 8 years ago
[e10s] SSL padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection, with add-on NoScript installed
Categories
(Firefox :: Security, defect)
Tracking
()
RESOLVED
DUPLICATE
of bug 1246349
People
(Reporter: jonasthiem, Unassigned)
References
Details
(Keywords: regression)
User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:47.0) Gecko/20100101 Firefox/47.0 Build ID: 20160227030205 Steps to reproduce: This is essentially a NoScript issue but it only happens with Firefox Nightly, so it must be some interaction with some recent changes in Firefox Nightly and I can't find a NoScript bugtracker, so I'm putting it here for now.. 1. Install and enable Noscript 2. Open http://xkcd.com in the first tab 3. Open https://google.com in a second tab 4. Switch back and forth between the two tabs and always check on correct state of the https padlock icon Actual results: padlock is eventually incorrectly shown on xkcd tab with google https connection info Expected results: padlock is only shown on the google.com tab
I can reproduce it with FF50, but only with e10s enabled. I'm trying to find a possible regression range with e10s.
It appears when reloading the HTTPS tab then switching immediately to the HTTP tab. reg range: https://hg.mozilla.org/mozilla-central/pushloghtml?fromchange=c0ba5835ca489d15f8f170d5deb01f8dad92709a&tochange=c8f9b2cd16885eb5db980b907fdfbd6807f19f2a regressed by Bug 1233497.
Blocks: 1233497
Status: UNCONFIRMED → NEW
Has Regression Range: --- → yes
Has STR: --- → yes
status-firefox47:
--- → affected
status-firefox48:
--- → affected
status-firefox49:
--- → affected
status-firefox50:
--- → affected
tracking-e10s:
--- → ?
tracking-firefox48:
--- → ?
tracking-firefox49:
--- → ?
tracking-firefox50:
--- → ?
Component: Untriaged → Security
Depends on: e10s
Ever confirmed: true
Flags: needinfo?(mconley)
Keywords: regression
OS: Unspecified → All
Hardware: Unspecified → All
Summary: [NoScript] Https padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection → [e10s] SSL padlock carries over onto other tabs when tab switching, incorrectly suggests secure connection, with add-on NoScript installed
Comment 3•8 years ago
|
||
Oh yikes, that's pretty bad. Hey mao, do you have some cycles to look at this?
Flags: needinfo?(mconley) → needinfo?(g.maone)
Based on the fact that this is e10s only, Fx47 shipped with e10s off by default. We should consider fixing this in 48+.
Reporter | ||
Comment 5•8 years ago
|
||
Often, the firefox window's titlebar text doesn't switch to match the site's <title> string either when I change tabs, but instead the text sticks to the one of the old tab pre-switch. I guess this might be related?
Comment 6•8 years ago
|
||
Looks like this is already filed as Bug 1246349.
Status: NEW → RESOLVED
Closed: 8 years ago
Flags: needinfo?(g.maone)
Resolution: --- → DUPLICATE
Comment 7•8 years ago
|
||
Removing tracking nominations and moving to Bug 1246349
Updated•8 years ago
|
Too late to fix in 50.1.0 release
You need to log in
before you can comment on or make changes to this bug.
Description
•