Opened 2 years ago

Closed 23 months ago

Last modified 23 months ago

#23322 closed defect (duplicate)

HTTPS Everywhere Import Settings is Missing From Preferences on higher security levels

Reported by: cypherpunks Owned by: tbb-team
Priority: Medium Milestone:
Component: Applications/Tor Browser Version:
Severity: Normal Keywords:
Cc: ma1, legind Actual Points:
Parent ID: Points:
Reviewer: Sponsor:

Description

Tor Browser 7.0.4 (based on Mozilla Firefox 52.3.0) (64-bit)
HTTPS Everywhere 2017.8.19
macOS 10.12.6

There is a visible file upload element with a "Browse" button on the HTTPS Everywhere page in about:addons

See screenshot

Child Tickets

Attachments (1)

addons_browse.png (286.6 KB) - added by cypherpunks 2 years ago.

Download all attachments as: .zip

Change History (13)

Changed 2 years ago by cypherpunks

Attachment: addons_browse.png added

comment:1 Changed 2 years ago by cypherpunks

Component: HTTPS EverywhereApplications/Tor Browser
Owner: set to tbb-team
Summary: HTTPS Everywhere Preferences has visible File UploadHTTPS Everywhere Import Settings is Missing From Preferences

In Firefox there is an "Import Settings" heading and Import button that are missing in TBB.

comment:2 Changed 2 years ago by cypherpunks

Keywords: noscript added
Owner: changed from tbb-team to ma1
Status: newassigned
Summary: HTTPS Everywhere Import Settings is Missing From PreferencesHTTPS Everywhere Import Settings is Missing From Preferences on higher security levels

moz-extension: fix leftover.

comment:3 Changed 2 years ago by gk

Cc: ma1 added
Status: assignedneeds_information

You mean whitelisting moz-extension: is not working properly and should be fixed to take things on about:addons into account as well?

comment:4 Changed 2 years ago by gk

Owner: changed from ma1 to tbb-team
Status: needs_informationassigned

comment:5 Changed 2 years ago by cypherpunks

Yes. (You always understand me correctly, but ask anyways ;)

comment:7 Changed 2 years ago by cypherpunks

[NoScript P] Window created, origin: moz-extension://823583b8-f3a0-4821-b05e-2333817a14cf, site: moz-extension://823583b8-f3a0-4821-b05e-2333817a14cf, URL: moz-extension://823583b8-f3a0-4821-b05e-2333817a14cf/options.html, location: moz-extension://823583b8-f3a0-4821-b05e-2333817a14cf/options.html
[NoScript P] Forbidding moz-extension://823583b8-f3a0-4821-b05e-2333817a14cf

comment:8 Changed 23 months ago by gk

Cc: legind added
Keywords: noscript removed

#25014 is a duplicate.

comment:9 Changed 23 months ago by gk

Keywords: noscript added

comment:10 Changed 23 months ago by gk

Keywords: noscript removed

Actually, this does not seem to be a NoScript issue as I don't get this bug reproduced in a clean, new ESR 52. I wonder what we do differently then...

comment:11 Changed 23 months ago by gk

Resolution: duplicate
Status: assignedclosed

Adding [System+Principal] to the NoScript whitelist we ship solves this bug, too. Resolving it as a duplicate of the more general case dealt with in #25000.

comment:12 Changed 23 months ago by cypherpunks

Wow 5 months old bug.

Note: See TracTickets for help on using tickets.