Closed Bug 252833 Opened 20 years ago Closed 20 years ago

HTTP Auth website makes wallet crash - Trunk [@ SINGSIGN_PromptUsernameAndPassword]

Categories

(SeaMonkey :: Passwords & Permissions, defect)

Product:
SeaMonkey
Component:
Passwords & Permissions
Platform:
x86
Windows 2000
Type:
defect
Priority:
Not set
Severity:
critical

Tracking

(Not tracked)

Status:
VERIFIED FIXED

People

(Reporter: mcsmurf, Assigned: mvl)

References

Details

(Keywords: crash, regression, topcrash)

Crash Data

Attachments

(1 file)

patch
1.70 KB, patch
dwitte
: review+
dmosedale
: superreview+
Details | Diff | Splinter Review 
reproducable with a current cvs trunk build on win2k

To reproduce:
1. Go to
http://www.heise.de/newsticker/foren/write.shtml?msg_id=6106267&forum_id=61371
(a website which requires 401 HTTP AUTH)
2. Watch crash!


Stacktrace:
SINGSIGN_PromptUsernameAndPassword(const unsigned short * 0x00000000, const
unsigned short * 0x026c0ed8, unsigned short * * 0x0012f974, unsigned short * *
0x0012f978, const char * 0x0012f6dc, nsIPrompt * 0x026c8928, int * 0x0012f964,
unsigned int 0x00000002) line 2726 + 4 bytes
nsSingleSignOnPrompt::PromptUsernameAndPassword(nsSingleSignOnPrompt * const
0x026b18b8, const unsigned short * 0x00000000, const unsigned short *
0x026c0ed8, const unsigned short * 0x0012f898, unsigned int 0x00000002, unsigned
short * * 0x0012f974, unsigned short * * 0x0012f978, int * 0x0012f964) line 591
+ 55 bytes
nsHttpChannel::PromptForIdentity(nsHttpChannel * const 0x00000000, const char *
0x0012fa80, const char * 0x026c0ed8, int 0x00000050, int 0x00000000, const char
* 0x00000029, const char * 0x0012fb40, unsigned int 0x0000000d,
nsHttpAuthIdentity & {...}) line 2468
nsHttpChannel::GetCredentialsForChallenge(nsHttpChannel * const 0x00000000,
const char * 0x0012fb98, const char * 0x0012fb40, int 0x00000000,
nsIHttpAuthenticator * 0x0250f850, nsCString & {...}) line 2266
nsHttpChannel::GetCredentials(nsHttpChannel * const 0x00000000, const char *
0x026899f8, int 0x00000000, nsCString & {...}) line 2124 + 26 bytes
nsHttpChannel::ProcessAuthentication(nsHttpChannel * const 0x00000000, unsigned
int 0x00000191) line 2072 + 13 bytes
nsHttpChannel::ProcessResponse(nsHttpChannel * const 0x00000000) line 752 + 8 bytes
nsHttpChannel::OnStartRequest(nsHttpChannel * const 0x0250a430, nsIRequest *
0x02343c80, nsISupports * 0x00000000) line 3547 + 8 bytes
nsInputStreamPump::OnStateStart(nsInputStreamPump * const 0x00000000) line 383
nsInputStreamPump::OnInputStreamReady(nsInputStreamPump * const 0x6965682e,
nsIAsyncInputStream * 0x642e6573) line 345
SHELL32! 7777772f()

Looks like change from Bug 247417, so CCing mvl
New steps to reproduce (old didnt work):
1. Go to
http://www.heise.de/newsticker/foren/go.shtml?read=1&msg_id=6106267&forum_id=61371
2. Click on "Beantworten"
3. Watch crash
I´ve got an account over there, use session cookies, but may be one is
permanent, so I didn´t succed producing the crash, doesn´t matter if I confirmed
my password filled in by Password Manager, denied, or told not to remember.
Created a new profile, restarted mozilla, selected new profile, copied new link
to Location Bar, hit Enter, and immediately crashed.
At another website, when getting a warning that a certificate couldn´t get
recognized, Mozilla immediately crashed, if I allowed use for this session.
It didn´t crash, when I denied. Tested available nightlies, bug wasn´t seen in
yesterdays nightly 20040722xx xx = 09 or 08, zips downloaded as xx = 10.
Todays nightly silkently crashes in wallet.dll, as DocWatson tells.
DrWatson is triggered, Talkback not, though installed and accepted.
So this must be a regression in last day, probably

Bug 247417 Master Password Dialog still displays for those non-store password
POP accounts
Severity: major → critical
Keywords: crash
I can't reproduce the crash with a build with the patch for bug 247417. It just
prompts, and then complains that i don't have a password.
Ok, but it's still your patch :). Backed it out locally and i don't crash anymore.
Attached patch patchSplinter Review 
This part should never have been in the patch in the first place. It was part
of another hack.
Assignee: dveditz → mvl
Status: NEW → ASSIGNED
Attachment #154184 - Flags: superreview?(dveditz)
Attachment #154184 - Flags: review?(dwitte)
Comment on attachment 154184 [details] [diff] [review]
patch

yes, it's wise to not expect too much sanity from wallet ;)
Attachment #154184 - Flags: review?(dwitte) → review+
Comment on attachment 154184 [details] [diff] [review]
patch

sr=dmose
Attachment #154184 - Flags: superreview?(dveditz) → superreview+
checked in.
Status: ASSIGNED → RESOLVED
Closed: 20 years ago
Resolution: --- → FIXED
+    PR_Free(*user);

mismatched allocator... should be nsMemory::Free
*** Bug 252979 has been marked as a duplicate of this bug. ***
*** Bug 253581 has been marked as a duplicate of this bug. ***
Verified FIXED for me with build 2004-07-29-09 on Windows XP.
Status: RESOLVED → VERIFIED
Adding topcrash keyword for future reference.  This was a regression from 7/23
and  Talkback data also verifies that this was fixed.
Keywords: topcrash
Summary: HTTP Auth website makes wallet crash → HTTP Auth website makes wallet crash - Trunk [@ SINGSIGN_PromptUsernameAndPassword]
David, this patch should go into aviary too, because the original patch was flawed.
Product: Browser → Seamonkey
Crash Signature: [@ SINGSIGN_PromptUsernameAndPassword]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: