Skip to content

fix(firefox): filter host header from overrides #36932

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom
Merged
yury-s merged 3 commits into from
Aug 5, 2025
Merged

fix(firefox): filter host header from overrides #36932

yury-s merged 3 commits into from
Aug 5, 2025

Conversation

@yury-s
Copy link
Member

@yury-s yury-s commented Aug 5, 2025

Fixes #36719

@yury-s yury-s requested a review from dgozman August 5, 2025 18:16
@github-actions

This comment has been minimized.

Sign in to view
@yury-s yury-s added the CQ1 label Aug 5, 2025
@github-actions
Copy link
Contributor

github-actions bot commented Aug 5, 2025

Test results for "tests others"

22277 passed, 510 skipped
✔️✔️✔️

Merge workflow run.

@github-actions
Copy link
Contributor

github-actions bot commented Aug 5, 2025

Test results for "tests 1"

4 flaky ⚠️ [chromium-library] › library/chromium/oopif.spec.ts:284:3 › should click @chromium-ubuntu-22.04-node22
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-ubuntu-22.04-node18
⚠️ [firefox-page] › page/page-event-request.spec.ts:182:3 › should return response body when Cross-Origin-Opener-Policy is set @firefox-ubuntu-22.04-node18
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-ubuntu-22.04-node18

46583 passed, 805 skipped
✔️✔️✔️

Merge workflow run.

@github-actions
Copy link
Contributor

github-actions bot commented Aug 5, 2025

Test results for "tests 2"

6 fatal errors, not part of any test
5 failed
❌ [chromium-library] › library/beforeunload.spec.ts:20:3 › should close browser with beforeunload page @chrome-macos-latest
❌ [firefox-library] › library/video.spec.ts:163:5 › screencast › should work with old options @firefox-headed-windows-latest
❌ [firefox-library] › library/video.spec.ts:187:5 › screencast › should capture static page @firefox-headed-windows-latest
❌ [firefox-library] › library/inspector/cli-codegen-2.spec.ts:456:7 › cli codegen › should save assets via SIGINT @firefox-macos-14-large
❌ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-macos-latest

122 flaky ⚠️ [chromium-library] › library/browsercontext-base-url.spec.ts:37:3 › should construct a new URL when a baseURL in browserType.launchPersistentContext is passed to page.goto @channel-chromium-macos-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:270:5 › reuse launch › should reset mouse position @channel-chromium-macos-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:270:5 › reuse connect › should reset mouse position @channel-chromium-macos-latest
⚠️ [chromium-library] › library/browsertype-connect.spec.ts:613:5 › launchServer › should save har @channel-chromium-macos-latest
⚠️ [chromium-library] › library/chromium/chromium.spec.ts:151:15 › should close service worker together with the context @channel-chromium-macos-latest
⚠️ [chromium-library] › library/chromium/chromium.spec.ts:634:5 › should throw when connecting twice to an already running persistent context (--remote-debugging-port) @channel-chromium-macos-latest
⚠️ [chromium-library] › library/client-certificates.spec.ts:750:3 › browser › support http2 if the browser only supports http1.1 @channel-chromium-macos-latest
⚠️ [chromium-library] › library/debug-controller.spec.ts:138:1 › should reset for reuse @channel-chromium-macos-latest
⚠️ [chromium-library] › library/emulation-focus.spec.ts:42:3 › should provide target for keyboard events @channel-chromium-macos-latest
⚠️ [chromium-page] › page/workers.spec.ts:150:3 › should report network activity @channel-chromium-macos-latest
⚠️ [chromium-page] › page/workers.spec.ts:271:3 › should support extra http headers @channel-chromium-macos-latest
⚠️ [chromium-library] › library/browsertype-connect.spec.ts:557:5 › launchServer › should error when saving download after deletion @chrome-beta-macos-latest
⚠️ [chromium-library] › library/debug-controller.spec.ts:138:1 › should reset for reuse @chrome-beta-macos-latest
⚠️ [chromium-library] › library/defaultbrowsercontext-2.spec.ts:22:3 › should support hasTouch option @chrome-beta-macos-latest
⚠️ [chromium-library] › library/emulation-focus.spec.ts:202:12 › should trigger hover state concurrently @chrome-beta-macos-latest
⚠️ [chromium-library] › library/fetch-proxy.spec.ts:21:3 › context request should pick up proxy credentials @chrome-beta-macos-latest
⚠️ [chromium-library] › library/logger.spec.ts:19:3 › should log @smoke @chrome-beta-macos-latest
⚠️ [chromium-page] › page/workers.spec.ts:271:3 › should support extra http headers @chrome-beta-macos-latest
⚠️ [chromium-library] › library/browsercontext-base-url.spec.ts:37:3 › should construct a new URL when a baseURL in browserType.launchPersistentContext is passed to page.goto @chrome-macos-latest
⚠️ [chromium-library] › library/debug-controller.spec.ts:156:1 › should highlight all @chrome-macos-latest
⚠️ [chromium-library] › library/defaultbrowsercontext-1.spec.ts:28:3 › context.cookies() should work @smoke @chrome-macos-latest
⚠️ [chromium-library] › library/inspector/cli-codegen-2.spec.ts:456:7 › cli codegen › should save assets via SIGINT @chrome-macos-latest
⚠️ [chromium-page] › page/workers.spec.ts:271:3 › should support extra http headers @chrome-macos-latest
⚠️ [chromium-library] › library/downloads-path.spec.ts:77:5 › downloads path › should report downloads in downloadsPath folder with a relative path @chromium-headed-macos-14-xlarge
⚠️ [chromium-library] › library/video.spec.ts:207:5 › screencast › should continue recording main page after popup closes @chromium-headed-macos-14-xlarge
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:270:5 › reuse launch › should reset mouse position @chromium-headed-ubuntu-24.04
⚠️ [chromium-page] › page/workers.spec.ts:271:3 › should support extra http headers @chromium-tip-of-tree-macos-13--headed
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:270:5 › reuse connect › should reset mouse position @chromium-tip-of-tree-ubuntu-22.04--headed
⚠️ [chromium-library] › library/trace-viewer.spec.ts:1351:1 › should highlight locator in iframe while typing @chromium-tip-of-tree-ubuntu-22.04--headed
⚠️ [chromium-library] › library/video.spec.ts:580:5 › screencast › should capture static page in persistent context @smoke @chromium-tip-of-tree-windows-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:355:5 › reuse launch › should work with routeWebSocket @chromium-tip-of-tree-windows-latest--headed
⚠️ [chromium-library] › library/inspector/cli-codegen-pick-locator.spec.ts:35:7 › should update locator highlight @chromium-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-beta-macos-latest
⚠️ [firefox-page] › page/page-event-request.spec.ts:182:3 › should return response body when Cross-Origin-Opener-Policy is set @firefox-beta-macos-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-beta-ubuntu-22.04
⚠️ [firefox-library] › library/inspector/cli-codegen-pick-locator.spec.ts:35:7 › should update locator highlight @firefox-beta-ubuntu-22.04
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-beta-ubuntu-22.04
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-beta-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-csharp.spec.ts:225:7 › should work with --save-har and --save-har-glob in nunit @firefox-beta-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-python.spec.ts:142:5 › should work with --save-har and --save-har-glob @firefox-beta-windows-latest
⚠️ [firefox-library] › library/capabilities.spec.ts:244:3 › requestFullscreen @firefox-headed-macos-14-xlarge
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-headed-macos-14-xlarge
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-headed-macos-14-xlarge
⚠️ [firefox-library] › library/browsercontext-basic.spec.ts:36:3 › should be able to click across browser contexts @firefox-headed-ubuntu-24.04
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-headed-ubuntu-24.04
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-headed-ubuntu-24.04
⚠️ [firefox-library] › library/beforeunload.spec.ts:20:3 › should close browser with beforeunload page @firefox-headed-windows-latest
⚠️ [firefox-library] › library/browsercontext-cookies-third-party.spec.ts:403:1 › same origin third party 'Partitioned;' cookie with different origin intermediate iframe @firefox-headed-windows-latest
⚠️ [firefox-library] › library/browsercontext-har.spec.ts:415:3 › should ignore boundary when matching multipart/form-data body @firefox-headed-windows-latest
⚠️ [firefox-library] › library/browsercontext-proxy.spec.ts:55:3 › should use proxy @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:53:7 › cli codegen › should double click @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:120:7 › cli codegen › should type after clicking twice @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:653:7 › cli codegen › should uncheck @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:984:7 › cli codegen › should record slider @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-3.spec.ts:338:7 › cli codegen › should generate frame locators with title attribute @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-3.spec.ts:672:7 › cli codegen › should consume contextmenu events, despite a custom context menu @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-3.spec.ts:871:7 › cli codegen › should display inline svg icons on text assertion dialog inside iframe @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-test.spec.ts:96:5 › should generate routeFromHAR with --save-har @firefox-headed-windows-latest
⚠️ [firefox-library] › library/trace-viewer.spec.ts:1148:1 › should display language-specific locators @firefox-headed-windows-latest
⚠️ [firefox-library] › library/tracing.spec.ts:480:5 › should include interrupted actions @firefox-headed-windows-latest
⚠️ [firefox-page] › page/page-add-locator-handler.spec.ts:212:5 › should work when owner frame detaches @firefox-headed-windows-latest
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-headed-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-macos-13-large
⚠️ [firefox-library] › library/page-clock.spec.ts:282:3 › stubTimers › replaces global performance.timeOrigin @firefox-macos-13-large
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-macos-13-xlarge
⚠️ [firefox-page] › page/page-event-request.spec.ts:182:3 › should return response body when Cross-Origin-Opener-Policy is set @firefox-macos-13-xlarge
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-macos-14-large
⚠️ [firefox-page] › page/page-event-request.spec.ts:182:3 › should return response body when Cross-Origin-Opener-Policy is set @firefox-macos-14-large
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-macos-14-xlarge
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-macos-14-xlarge
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-ubuntu-24.04
⚠️ [firefox-library] › library/debug-controller.spec.ts:79:1 › should pick element @firefox-windows-latest
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @firefox-windows-latest
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @firefox-windows-latest
⚠️ [chromium-library] › library/browsercontext-base-url.spec.ts:37:3 › should construct a new URL when a baseURL in browserType.launchPersistentContext is passed to page.goto @msedge-beta-macos-latest
⚠️ [chromium-library] › library/browsercontext-proxy.spec.ts:27:3 › should work when passing the proxy only on the context level @msedge-beta-macos-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:94:5 › reuse launch › should re-add binding after reset @msedge-beta-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-beta-macos-latest
⚠️ [chromium-library] › library/debug-controller.spec.ts:170:1 › should record @msedge-beta-macos-latest
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-beta-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-beta-ubuntu-22.04
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-beta-ubuntu-22.04
⚠️ [chromium-library] › library/beforeunload.spec.ts:20:3 › should close browser with beforeunload page @msedge-dev-macos-latest
⚠️ [chromium-library] › library/browsercontext-proxy.spec.ts:27:3 › should work when passing the proxy only on the context level @msedge-dev-macos-latest
⚠️ [chromium-library] › library/browsercontext-proxy.spec.ts:103:3 › should set cookie for top-level domain @msedge-dev-macos-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:94:5 › reuse launch › should re-add binding after reset @msedge-dev-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-dev-macos-latest
⚠️ [chromium-library] › library/inspector/cli-codegen-2.spec.ts:456:7 › cli codegen › should save assets via SIGINT @msedge-dev-macos-latest
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-dev-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-dev-ubuntu-22.04
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-dev-ubuntu-22.04
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-dev-windows-latest
⚠️ [chromium-library] › library/debug-controller.spec.ts:79:1 › should pick element @msedge-dev-windows-latest
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-dev-windows-latest
⚠️ [chromium-library] › library/browsercontext-base-url.spec.ts:37:3 › should construct a new URL when a baseURL in browserType.launchPersistentContext is passed to page.goto @msedge-macos-latest
⚠️ [chromium-library] › library/browsercontext-cookies-third-party.spec.ts:526:1 › should(not) block third party cookies - persistent context @msedge-macos-latest
⚠️ [chromium-library] › library/browsercontext-proxy.spec.ts:27:3 › should work when passing the proxy only on the context level @msedge-macos-latest
⚠️ [chromium-library] › library/browsercontext-reuse.spec.ts:94:5 › reuse launch › should re-add binding after reset @msedge-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-macos-latest
⚠️ [chromium-library] › library/channels.spec.ts:235:1 › should work with the domain module @msedge-macos-latest
⚠️ [chromium-library] › library/headful.spec.ts:114:3 › should close browser after context menu was triggered @msedge-macos-latest
⚠️ [chromium-library] › library/tracing.spec.ts:208:5 › should respect tracesDir and name @msedge-macos-latest
⚠️ [chromium-library] › library/tracing.spec.ts:783:5 › should not emit after w/o before @msedge-macos-latest
⚠️ [chromium-library] › library/video.spec.ts:207:5 › screencast › should continue recording main page after popup closes @msedge-macos-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-ubuntu-22.04
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-ubuntu-22.04
⚠️ [chromium-library] › library/browsercontext-proxy.spec.ts:103:3 › should set cookie for top-level domain @msedge-windows-latest
⚠️ [chromium-library] › library/browsercontext-storage-state.spec.ts:504:3 › should cleanup existing and set new storage state @msedge-windows-latest
⚠️ [chromium-library] › library/inspector/cli-codegen-pick-locator.spec.ts:35:7 › should update locator highlight @msedge-windows-latest
⚠️ [chromium-library] › library/permissions.spec.ts:244:5 › should be able to use the local-fonts API @msedge-windows-latest
⚠️ [chromium-library] › library/video.spec.ts:580:5 › screencast › should capture static page in persistent context @smoke @msedge-windows-latest
⚠️ [chromium-library] › library/popup.spec.ts:258:3 › should not throw when click closes popup @tracing-chromium
⚠️ [firefox-library] › library/inspector/cli-codegen-1.spec.ts:1079:7 › cli codegen › should not throw csp directive violation errors @tracing-firefox
⚠️ [firefox-page] › page/page-wait-for-function.spec.ts:104:3 › should work with strict CSP policy @tracing-firefox
⚠️ [webkit-library] › library/inspector/cli-codegen-1.spec.ts:199:7 › cli codegen › should make a positioned click on a canvas @webkit-headed-ubuntu-22.04
⚠️ [webkit-library] › library/browsercontext-reuse.spec.ts:270:5 › reuse connect › should reset mouse position @webkit-headed-windows-latest
⚠️ [webkit-library] › library/inspector/cli-codegen-2.spec.ts:523:7 › cli codegen › should auto-generate toBeVisible @webkit-headed-windows-latest
⚠️ [webkit-library] › library/inspector/cli-codegen-3.spec.ts:25:7 › cli codegen › should click locator.first @webkit-headed-windows-latest
⚠️ [webkit-page] › page/page-mouse.spec.ts:174:3 › should select the text with mouse @webkit-headed-windows-latest
⚠️ [webkit-page] › page/wheel.spec.ts:70:3 › should dispatch wheel events after context menu was opened @webkit-macos-14-xlarge
⚠️ [webkit-library] › library/trace-viewer.spec.ts:1313:1 › should pick locator in iframe @webkit-macos-15-large
⚠️ [webkit-library] › library/browsercontext-reuse.spec.ts:114:5 › reuse launch › should reset serviceworker @webkit-windows-latest

244661 passed, 9672 skipped
✔️✔️✔️

Merge workflow run.

@yury-s yury-s merged commit 0385672 into microsoft:main Aug 5, 2025
100 of 110 checks passed
@yury-s yury-s deleted the ff-host-header branch August 5, 2025 21:34
@hbenl hbenl mentioned this pull request Oct 7, 2025
Closed
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@dgozman dgozman dgozman approved these changes

Assignees

No one assigned

Labels

CQ1

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

[Bug]: Routing headers breaks cross-host redirects in Firefox

2 participants

@yury-s @dgozman