Closed Bug 1571357 Opened 6 years ago Closed 5 years ago

cookie case

Categories

(Core :: Networking: Cookies, defect)

Product:
Core
Component:
Networking: Cookies
Version:
68 Branch
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED INVALID

People

(Reporter: bugzilla.mozilla.org2, Unassigned)

Details

User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_14_5) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/12.1.1 Safari/605.1.15

Steps to reproduce:

Firefox has a saved cookie with an all-upper case name.
At some point in time, Firefox permanently seem to convert this stored cookie to lower case and sends that to the web server instead.
The webserver sends back a set-cookie deleted, now in lower case, but Firefox do not delete the cookie.

Actual results:

  1. Firefox converts an existing cookie from upper case to lower case and sends it to webserver.
    Webserver requests deletion of cookie using set-cookie deleted and the lower case name.
    Firefox do not delete it.

  2. Some of the characters in the value of the cookie is now URL-encoded by Firefox, like the character '<' (%3Ce). It was previously not url-encoded

Expected results:

Firefox should have deleted the cookie.
The value of the cookie should remain the same.

Component: Untriaged → Networking: Cookies
Product: Firefox → Core

Michal, can you take a look?

Flags: needinfo?(michal.novotny)

This seems a server-side bug because cookies are correctly stored and sent without string conversions.
We have tests for this too: https://wpt.fyi/results/cookies/http-state/chromium-tests.html?label=master&label=experimental&aligned

I close this bug as invalid, but if you can provide additional info, I'm happy to work on it.

Status: UNCONFIRMED → RESOLVED
Closed: 5 years ago
Flags: needinfo?(michal.novotny)
Resolution: --- → INVALID
You need to log in before you can comment on or make changes to this bug.