15150 - URL location bar needs to be escaped before being used.

Status: VERIFIED FIXED

(Core :: Networking, defect, P3)

Description

[john]

Using the browser on any platform, I type into the location field:

go.com.au?mozilla

and it correctly passes the query string "mozilla" to my server go.com.au,
and my server routes the user to Mozilla's home.

But if I type in

go.com.au?mozilla bug reports

it fails. The browser thinks that because there is a space character in the
location field, that each space-terminated string is an argument for
Netscape's associated search engine.

This is the wrong interpretation and the browser is actually mishandling
data. Spaces are allowed in URLs (per standard Internet RFC), being
represented in the canonical form %20 when it reaches the server. The
browser must give precedence to determining that there is a domain name. The
query symbol "?" signifies that what follows is the query string to pass to
the specified domain, not the associated search engine.

So the browser should see "go.com.au" as the domain name, "?" as a query
string following, and "mozilla bug reports" as the query string.

Mozilla is a great browser but Microsoft's Internet Explorer gets it right -
why can't Mozilla !?

Could you please correspond with me on john@go.com.au about a bug fix ? We
do not want to have to say to people that they need a Microsoft browser to
use our service. Ugh!!

Yours sincerely,
John Southgate

Go Publishing
john@go.com.au
go.com.au

Comment 1

[shuang (gone)]

Re-assign it to german to look into the problem: I don't think it is a UI design
problem , though.

Comment 2

[shuang (gone)]

Also chage to normal severity since it is not a crashing bug.

Comment 3

[Gagan]

Ah!.... yes we do need to nsEscape::Escape the location bar before handing over
to Necko. Updated summary as well.

Comment 4

[Andreas Otte]

I played around with urlencoding and got something working locally. No need to
call for IE. This should also fix some of the other urlencoding bugs.

Comment 5

[leger]

Bulk move of all Necko (to be deleted component) bugs to new Networking

component.

Comment 6

[Jerry Baker]

This is not escaping URL's as of 2000010308. If you enter http://www.foo.com/foo
directory/, Mozilla strips off everything paste the space. While the RFC's do
not *require* a browser to escape spaces, I think Mozilla should. I cannot begin
to count how many newbies post in the Netscape support groups about how their
pages and or pictures do not load in Netscape and work in IE. These are usually
due to spaces in the URL not being escaped by Netscape and IE escaping them. The
RFC's say it is the user agent's choice so why not have Mozilla do this?

Comment 7

[Warren Harris]

I want to give this to Jud because spaces in the location bar relate to how we
do internet keyword lookup.

Comment 8

[Gagan]

*** Bug 20670 has been marked as a duplicate of this bug. ***

Comment 9

[Judson Valeski]

I just found a problem w/ keyword processing (confusion w/ space and question
mark locations) and fixed it. This is now a URL impelementation bug (which
Andreas seems to have fixed).

Comment 10

[Judson Valeski]

*** Bug 23486 has been marked as a duplicate of this bug. ***

Comment 11

[Andreas Otte]

assigning this bug to me per Judsons request

Comment 12

[Warren Harris]

Fixed by Andreas' changes that I just checked in.

Comment 13

[Andreas Otte]

reopened because of backout

Comment 14

[Andreas Otte]

This will not make it into M13

Comment 15

[leger]

Clearing FIXED resolution due to reopen.

Comment 16

[leger]

Putting on PDT+ radar for beta1.  

Comment 17

[Andreas Otte]

This one is fixed now.

Comment 18

[Tom Everingham]

verified:
NT 2000020708
Linux 2000020708

Comment 19

[Pulsebot]

Pushed by ctuns@mozilla.com:
https://hg.mozilla.org/integration/autoland/rev/f968d1305e5b
[fenix] For https://github.com/mozilla-mobile/fenix/issues/15150: Do not show open banner if open in app is ON in settings.