Closed Bug 294815 Opened 19 years ago Closed 17 years ago

Possible to create a <browser> with no securityUI by accident

Categories

(Core :: XUL, defect)

Product:
Core
Component:
XUL
Platform:
x86
Linux
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
RESOLVED FIXED

People

(Reporter: bzbarsky, Assigned: neil)

References

Details

Attachments

(1 file, 1 obsolete file)

move init call into the getter
4.19 KB, patch
bzbarsky
: review+
brendan
: approval1.8b2+
Details | Diff | Splinter Review 
Say an extension overlays in a <script> that accesses the tabbrowser after it's
in the DOM, but before frames have been constructed.  That will cause XBL
binding attachment, but this.docShell will be null in browser.xml, since the
frame owns that.

mconnor and I think that we should try attaching securityUI any time the getter
is called, our member is null, and our attribute is set appropriately.
mconnor says patch coming up..
Flags: blocking-aviary1.1+
instead of initing in the constructor, move the init to the getter.  This can
still throw, but that's valuable.  When this gets called from chrome we should
have a docShell then and not fail.
Attached patch Update Suite's workaround (obsolete) — Splinter Review 
The Suite's workaround had one error since jag wrote it, and a second error
since bryner wrote bfcache; this should fix both. The code is in the style of
the session history fix but I couldn't be bothered to quote that in the diff.
Attachment #184049 - Flags: superreview?(bzbarsky)
Attachment #184049 - Flags: review?(jag)
Comment on attachment 184049 [details] [diff] [review]
Update Suite's workaround

I guess this is ok (so sr+), but I'd really prefer fixing this in the browser
binding a la the toolkit fix...
Attachment #184049 - Flags: superreview?(bzbarsky) → superreview+
Comment on attachment 184045 [details] [diff] [review]
move init call into the getter

r=pseudo-toolkit-peer
Attachment #184045 - Flags: review+
Comment on attachment 184045 [details] [diff] [review]
move init call into the getter

a=me for 1.8b2.

/be
Attachment #184045 - Flags: approval1.8b2+
toolkit patch checked in, just xpfe left.
(In reply to comment #4)
>I'd really prefer fixing this in the browser binding a la the toolkit fix...
But you still have to remember to call the securityUI getter.

The other approach would be to init session history and security in the browser
binding's loadURIWithFlags method instead of in the constructor.
Comment on attachment 184049 [details] [diff] [review]
Update Suite's workaround

Oops, an extra } crept in on the line before the catch. Sorry about that :-[
*** Bug 292604 has been marked as a duplicate of this bug. ***
It'd be nice if we could fix this in the browser binding, but I don't like the
solution of moving it from browser construction to property access. This means
that anyone using the browser will have to access securityUI explicitely (even
if it's just a dummy call) to make sure securityUI is properly initialized, and
they'll have to make sure that is done early enough to have the securityUI
object pick up all the notifications it's interested in.

Is there a way for us to find out when a frame or the docshell is constructed
and hook up both session history and security UI from there?
The constructor could access securityUI to make sure we try to make it once
(mconnor, does toolkit need to do that?  Seems like it does).

> Is there a way for us to find out when a frame or the docshell is constructed

At the moment, no.  I plan to move ownership of the docshell into the binding in
1.9, at which point this should all get simpler.
Ah, I'll be looking forward to 1.9 then :-)

To address another aspect of this, could we say "hey, there's a point before
which you simply can't and shouldn't try to access {tab}browser"?
We can say, sure.  How to enforce, though, with extensions?  :(
*** Bug 294358 has been marked as a duplicate of this bug. ***
It wasn't so much about enforcement as awareness. Users installing extensions
always run the risk of screwing up their Mozilla, there's nothing new there.
It'd be nice if we could somewhere tell extension writers about don'ts so they
can find work-arounds (like doing whatever they need to do with tabbrowser or
browser from an onload or onbindingattached handler).
Blocks: 295121
Looks like Neil was right... mconnor's fix caused bug 295121 for Firefox.
Flags: blocking-aviary1.1+
So, is the solution to attach an event handler to a load event (eg the
tabbrowser's load event)? I have this problem with deerpark - 1.8b2.
Re #14: I don't mind fixing my extension for now ;)
Assignee: mconnor → neil
seaMonkey is now using toolkit's browser.xml, is there anything we still need landed here or can we close this issue?
(In reply to comment #19)
>SeaMonkey is now using toolkit's browser.xml, is there anything we still need
>landed here or can we close this issue?
No, there's nothing left to do here, unless jag wants to try to convince mconnor not to do the init in the getter ;-)
Neil, can you obsolete your patch if(/as) it's not needed anymore ?
Attachment #184049 - Attachment is obsolete: true
Attachment #184049 - Flags: review?(jag)
I'm not entirely happy with doing this from the getter and doing a dummy get, but it'll have to do until ownership of the docshell has moved into the binding, per comment 12.

Marking this as fixed.
Status: NEW → RESOLVED
Closed: 17 years ago
Resolution: --- → FIXED
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: