Skip to content
Snippets Groups Projects
Closed (moved) ensure OCSP requests respect URL bar domain isolation
  • View options

    • ensure OCSP requests respect URL bar domain isolation

    • View options
    • Closed (moved) created by Arthur Edelstein

    Following #5752 (moved), all web content for a page is requested on a circuit devoted to the page's URL bar domain. OCSP requests, however, are being incorrectly sent on a separate circuit. Favicons and DNS queries, etc, should also be checked for violations.

    Probably we need to fix ThirdPartyUtil::GetFirstPartyUri to return the parent page's domain for OCSP requests.

    See also #9783 (moved).

    Attributes

    Assignees

    Labels

    MikePerry201505R TorBrowserTeam201507R component applications/tor browser ff38-esr owner arthuredelstein priority high resolution fixed status closed tbb-5.0a-highrisk tbb-linkability type defect

    Milestone

    None

    Dates

    Start: None

    Due: None

    Time tracking

    No estimate or time spent

    Activity

    • All activity
    • Comments only
    • History only
    • Newest first
    • Oldest first