Security Warning messages in console should have associated window ID

NEW
Unassigned

Status

()

defect
7 years ago
7 years ago

People

(Reporter: jdm, Unassigned)

Tracking

Firefox Tracking Flags

(Not tracked)

Details

Messages like "Security Error: Content at https://www.google.ro/ may not load data from http://www.youtube.com/" are just the result of LogStringMessage, so they have no associated window. This means they can't be checked for privacy concerns and end up leaking information in the console.
Product: Firefox → Core
Principals are shared across windows in many cases, so....

And I have no idea how you'd annotate CheckSameOriginURI, for that matter.
You need to log in before you can comment on or make changes to this bug.