1495327 - Specially forged Text Pasted into the Address Bar Causes Firefox to Freeze

Status: VERIFIED FIXED

(Firefox :: Address Bar, defect, P1)

Description

[apxadz4f68q9]

Attachment: ff_crash.txt

What did you do? (steps to reproduce)
Open Firefox.
Copy the text inside the attached file.
Paste the text to the address bar.

What happened? (actual results)
Firefox freezes and does not respond.

What should have happened? (expected results)
Firefox should not freeze. It should act normally as if any other text was pasted into the address bar.

Tested on my daily used Firefox installation, updated to 62.0.2 (64-bit).
Also tested on a newly installed Firefox Nightly with a new clean profile, updated to version 64.0a1 (2018-09-30) (64-bit).

The attached text is a Base64 Url encoded data of a json I used to verify some unrelated app with.
More specifically, it is more than one base64 text, it has a few of them with a 'period' in between them, with the equal sign at the end of each dropped. The first two are json, the 3rd is some binary data.
I've changed it a bit from the original and made sure it still causes the freeze on Nightly.

I am not certain what is unique about this data, I did try some dumb text (same letter, random letters, etc.) of the same length and it did not make Firefox freeze.

Currently, I do not have the means to test on other platforms.
I would hope that someone could try to reproduce this bug as easily as I could on other setups.

Comment 1

[Marco Bonardo [:mak]]

I can reproduce this, and looks like the problem is a regex in unifiedcomplete.js: /(.*\..*){3,}/.test(str)
I admit it's not a great regex, we can surely find a better solution here.

Comment 2

[Marco Bonardo [:mak]]

Attachment: Bug 1495327 - Specially forged Text Pasted into the Address Bar Causes Firefox to Freeze.

Comment 3

[Pulsebot]

Pushed by mak77@bonardo.net:
https://hg.mozilla.org/integration/autoland/rev/8da12a6048fb
Specially forged Text Pasted into the Address Bar Causes Firefox to Freeze. r=adw

Comment 4

[Narcis Beleuzu [:NarcisB]]

https://hg.mozilla.org/mozilla-central/rev/8da12a6048fb

Comment 5

[Marco Bonardo [:mak]]

Comment on attachment 9015942 [details]
Bug 1495327 - Specially forged Text Pasted into the Address Bar Causes Firefox to Freeze.

[Beta/Release Uplift Approval Request]

Feature/Bug causing the regression: Not a recent bug

User impact if declined: The address bar may be slow when typing/pasting long strings

Is this code covered by automated tests?: No

Has the fix been verified in Nightly?: No

Needs manual test from QE?: Yes

If yes, steps to reproduce: The bug contains a test string to use

List of other uplifts needed: none

Risk to taking this patch: Low

Why is the change risky/not risky? (and alternatives if risky): Trivial regex change

String changes made/needed: none

Comment 6

[Pascal Chevrel:pascalc]

Comment on attachment 9015942 [details]
Bug 1495327 - Specially forged Text Pasted into the Address Bar Causes Firefox to Freeze.

Although this seems a trivial patch, the previous regex landed in Firefox 52, the fix just landed in nightly and we already shipped our last Desktop beta, it doesn't seem like a good candidate for RC, thanks.

Comment 7

[Mohammad Maruf Rahman]

I have reproduced this bug with Nightly 64.0a1 (2018-09-30) on Windows 7, 64 Bit!
This bug's fix is verified with latest Nightly!

Build ID 	20181015100128
User Agent 	Mozilla/5.0 (Windows NT 6.1; Win64; x64; rv:64.0) Gecko/20100101 Firefox/64.0

Comment 8

[Hani Yacoub, Desktop QA]

Verified as fixed on Firefox Nightly 65.0a1 (2018-10-31) and on Firefox 64.0b5 on Windows 10 x 64, Windows 7 x32, Mac OS X 10.14 and on Ubuntu 16.04 x64.