767611 - Changed SSL certificate reports "No Information Available" if an HTTP redirect is cached

Status: RESOLVED DUPLICATE of bug 659736

(Firefox :: Untriaged, defect)

Description

[Andrew Daviel]

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:12.0) Gecko/20100101 Firefox/12.0
Build ID: 20120420145725

Steps to reproduce:

A website https://example.com has a redirect from
/ to http://example.org
It has a self-signed certificate

Firefox fetches https://example.com. The user confirms an exception, and is then taken to http://example.org.
Firefox caches an entry for https://example.com including the Location header and a security-info field

Then the certificate on example.com is changed (e.g. replaced with a newer one).

Then the user visits https://example.com/anotherpage
(or, possibly, https://example.com if the cache entry has expired)


Actual results:

The user is challenged to add a new security exception. The "add security exception" window shows Certificate Status - No Information Available, and "Unable to obtain identification status for the given site"
(apparently generated by gBroken in exceptionDialog.js)
The "View" and "Confirm Security Exception" buttons are greyed out.
It is impossible to proceed to view the site without clearing the browser cache.


Expected results:

The security exception dialog should have proceeded normally, allowing the user to confirm an exception

This is repeatable if the steps are followed in the correct order. I saw this in the wild on Firefox 10.0.4 on two different machines and also on SeaMonkey 2.3.3. I repeated it on Firefox 12 using a clean profile and empty cache.