Closed Bug 1582848 Opened 5 years ago Closed 5 years ago

download pop-ups for as.php opened from yahoo.com pages for some users

Categories

(Core :: Privacy: Anti-Tracking, defect)

Product:
Core
Component:
Privacy: Anti-Tracking
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED
Milestone:
mozilla71
Tracking Flags:
Tracking Status
firefox69 + fixed
firefox70 + fixed
firefox71 + fixed

People

(Reporter: ehsan.akhgari, Unassigned)

References

(Blocks 1 open bug)

Details

(Whiteboard: [webcompat:sitepatch-applied])

Blocks: etp-breakage

I received a HAR file from a user who experiences the bug on Yahoo properties. This is a regression that seems to have started for some reason on Firefox 69.

I won't attach the full HAR file here because it may contain the PII for that user, but here is the important information here. When the download dialog is shown, we're trying to fetch a URL like this: https://ads-us.rd.linksynergy.com/as.php?<long-query-string>. This URL most of the time is fetched correctly but at times when the bug happens the server returns a response with the following headers:

HTTP/2.0 200 OK
p3p: CP='ALL DSP LAW CUR DEV PSAo PSDo IVAo IVDo CONo HISo OUR STP UNI NAV'
server: ads2004.gus.nextperf.local
x-robots-tag: noindex, nofollow
expires: Tue, 01 Jan 2001 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
content-length: 0
date: Fri, 20 Sep 2019 21:55:14 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

Note the 0 content-length and the missing content-type header. When the server returns a normal response, the response headers look like this:

HTTP/2.0 200 OK
p3p: CP='ALL DSP LAW CUR DEV PSAo PSDo IVAo IVDo CONo HISo OUR STP UNI NAV'
server: ads2004.gus.nextperf.local
x-robots-tag: noindex, nofollow
expires: Tue, 01 Jan 2001 00:00:00 GMT
cache-control: no-store, no-cache, must-revalidate, max-age=0, post-check=0, pre-check=0
pragma: no-cache
content-type: text/html;charset=UTF-8
content-encoding: gzip
vary: Accept-Encoding
date: Fri, 20 Sep 2019 21:55:15 GMT
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2

Ksenia, is it possible to add an intervention similar to the one in bug 1577870 for https://ads-us.rd.linksynergy.com/as.php?... to inject the content-type header into the response? Thanks!

Flags: needinfo?(kberezina)

(BTW if someone would like a copy of the HAR file I would be happy to email it to them off the bug!)

See Also: → 1583366

Yeah, I'll look into this in https://bugzilla.mozilla.org/show_bug.cgi?id=1583366

Flags: needinfo?(kberezina)

Thanks!

I guess the bug can be marked as fixed.

Status: NEW → RESOLVED
Closed: 5 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla71
Whiteboard: [webcompat:sitepatch-applied]
You need to log in before you can comment on or make changes to this bug.