Closed Bug 1817530 Opened 2 years ago Closed 1 year ago

Frozen `rv:` segment in the User Agent string breaks websites that use a certain anti-spam script

Categories

(Web Compatibility :: Interventions, defect)

Product:
Web Compatibility
Component:
Interventions
Version:
Firefox 110
Type:
defect

Tracking

(Webcompat Priority:P2, firefox-esr102 unaffected, firefox110 wontfix, firefox111 wontfix, firefox112 wontfix, firefox113 wontfix)

Status:
RESOLVED FIXED
Project Flags:
Webcompat Priority P2
Tracking Flags:
Tracking Status
firefox-esr102 --- unaffected
firefox110 --- wontfix
firefox111 --- wontfix
firefox112 --- wontfix
firefox113 --- wontfix

People

(Reporter: morrand276, Unassigned)

References

(Regression)

Details

(Keywords: regression)

User Agent: Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/110.0

Steps to reproduce:

Open Firefox 110 (desktop). Access a web forum using a certain anti-spam script; in this example, https://www.quatloos.com/Q-Forum/.

Actual results:

The script blocks access, reports "Malformed UA", and reports back the user agent string "Mozilla/5.0 (Macintosh; Intel Mac OS X 10.15; rv:109.0) Gecko/20100101 Firefox/110.0". Note the mismatch between the "rv" and the Firefox version.

Expected results:

Per the Mozilla documentation (https://developer.mozilla.org/en-US/docs/Web/HTTP/Headers/User-Agent/Firefox), the UA should be reported with "rv:110.0" to match the Firefox version. Forcing a user-agent string (using the general.useragent.override config key) with "rv:110.0" satisfies the anti-spam script and grants access; clear the key, and it blocks access again. User feedback on the affected forum indicates this started after updating to 110, and is also resolved by downgrading.

The Bugbug bot thinks this bug should belong to the 'Core::Networking: HTTP' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.

Component: Untriaged → Networking: HTTP
Product: Firefox → Core

This is intentional behavior from bug 1805967.

Status: UNCONFIRMED → RESOLVED
Closed: 2 years ago
Duplicate of bug: 1806690
Resolution: --- → DUPLICATE
Status: RESOLVED → REOPENED
Webcompat Priority: --- → ?
No longer duplicate of bug: 1806690
Ever confirmed: true
Resolution: DUPLICATE → ---
Summary: Firefox 110 misreports user-agent → Frozen `rv:` segment in the User Agent string breaks websites that use a certain anti-spam script

ni? myself for investigation here. While it is indeed intentional, our intention is not to break things. Maybe we have to override-override the UA in some cases.

Flags: needinfo?(dschubert)

Also should we contact Zaphod?

Yeah, I'll try to reach out.

Webcompat Priority: ? → P2

Set release status flags based on info from the regressing bug 1805967

status-firefox-esr102: --- → unaffected

Moving to webcompat::interventions same as regressing bug 1805967.

Component: Networking: HTTP → Interventions
Product: Core → Web Compatibility

https://www.quatloos.com/Q-Forum/ no longer blocks Firefox 110.

Set release status flags based on info from the regressing bug 1805967

status-firefox113: --- → affected

Is this still a problem? The frozen rv:109 hack was removed (bug 1806690).

(In reply to Masatoshi Kimura [:emk] from comment #10)

Is this still a problem? The frozen rv:109 hack was removed (bug 1806690).

I'm guessing only on ESR.

Yeah, we un-froze in bug 1806690. We don't specifically target ESR in interventions at the moment, and I didn't see any significant complaints about this that warrant interventions specific to this. I'll close this as fixed.

Status: REOPENED → RESOLVED
Closed: 2 years ago1 year ago
Flags: needinfo?(dschubert)
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.