259926 – Webkit sends corrupted referer header for service worker script request

Bug 259926 - Webkit sends corrupted referer header for service worker script request

Summary: Webkit sends corrupted referer header for service worker script request

Status:	NEW

Alias:	None

Product:	WebKit
Classification:	Unclassified
Component:	Service Workers (show other bugs)
Version:	Other
Hardware:	Unspecified All

Importance:	P2 Normal
Assignee:	Nobody

URL:
Keywords:	InRadar

Depends on:
Blocks:

Reported:	2023-08-08 03:47 PDT by palani
Modified:	2023-08-08 13:37 PDT (History)
CC List:	6 users (show)

See Also:

Attachments
screenshot of access logs (54.93 KB, image/png) 2023-08-08 03:47 PDT, palani	no flags	Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description palani 2023-08-08 03:47:37 PDT

Created attachment 467220 [details]
screenshot of access logs

After deploying service worker in the production for large volume of users, we noticed safari sending corrupted referrer header for service worker script requests.
The corrupted request header is just 6 characters 'https:'.
We use cloudflare and in the cloudflare logs we can see the referrer as 'https:' for some of the service worker script requests.

We are not able to reproduce the issue and but its happening in production for a small percent of users (0.5%).
Its happening for all safari versions (14, 15, 16).

This is happening only for the service worker script requests. (The url which we provide in the service worker registration).
All other subsequent requests (importScript()) and all other fetch() calls from service worker were unaffected by this issue.


The corrupted request header is always just 6 characters 'https:', Nothing else.

Comment 1 Radar WebKit Bug Importer 2023-08-08 13:37:51 PDT

<rdar://problem/113583213>