unscrubbed URL in .xsession-errors (and therefore, in whisperback report) (#10695) · Issues · tails / tails

unscrubbed URL in .xsession-errors (and therefore, in whisperback report)

Originally created by @goupille on #10695 (Redmine)

In at least one whipserback report there was part of the user’s browsing history. the URL appears in .xsession-errors, and are always followed by that warning :


WARNING: content window passed to PrivateBrowsingUtils.isWindowPrivate. Use isContentWindowPrivate instead (but only for frame scripts).
pbu_isWindowPrivate@re[//gre/modules/PrivateBrowsingUtils.jsm:25:14](//gre/modules/PrivateBrowsingUtils.jsm:25:14)
nsBrowserAccess.prototype.openURI@chrome://browser/content/browser.js:15189:21
noscriptOverlay<.browserAccess.openURI@chrome://noscript/content/noscriptOverlay.js:2822:13

there are a few tickets about that warning on mozilla’s repository :

https://bugzilla.mozilla.org/show_bug.cgi?id=1079805
https://bugzilla.mozilla.org/show_bug.cgi?id=1124129
https://bugzilla.mozilla.org/show_bug.cgi?id=1192601

I wasn’t able to reproduce the issue, the user was using the Windows Camouflage at the time and the URL were visited throught the Tor Browser.

Feature Branch: whisperback:bugfix/10695-clean-urls

Related issues

Related to #6571
Related to #6769

_Originally created by @goupille on [#10695 (Redmine)](https://public-redmine-archive.tails.boum.org/code/issues/10695)_

In at least one whipserback report there was part of the user’s browsing
history. the URL appears in .xsession-errors, and are always followed by
that warning :

```

WARNING: content window passed to PrivateBrowsingUtils.isWindowPrivate. Use isContentWindowPrivate instead (but only for frame scripts).
pbu_isWindowPrivate@re[//gre/modules/PrivateBrowsingUtils.jsm:25:14](//gre/modules/PrivateBrowsingUtils.jsm:25:14)
nsBrowserAccess.prototype.openURI@chrome://browser/content/browser.js:15189:21
noscriptOverlay<.browserAccess.openURI@chrome://noscript/content/noscriptOverlay.js:2822:13
```

there are a few tickets about that warning on mozilla’s repository :

<https://bugzilla.mozilla.org/show_bug.cgi?id=1079805>  
<https://bugzilla.mozilla.org/show_bug.cgi?id=1124129>  
<https://bugzilla.mozilla.org/show_bug.cgi?id=1192601>

I wasn’t able to reproduce the issue, the user was using the Windows
Camouflage at the time and the URL were visited throught the Tor
Browser.

Feature Branch: whisperback:bugfix/10695-clean-urls

### Related issues

- **Related to** tails/tails#6571
  - **Related to** tails/tails#6769

Edited May 15, 2020 by goupille

To upload designs, you'll need to enable LFS. More information