Open Bug 1499069 Opened 7 years ago Updated 4 years ago

Browser does not see original filename while saving attachment - always attachment.cgi

Categories

(Bugzilla :: Bugzilla-General, defect)

Product:
Bugzilla
Component:
Bugzilla-General
Version:
5.0.3
Type:
defect
Priority:
Not set
Severity:
normal

Tracking

()

Status:
UNCONFIRMED

People

(Reporter: sachse, Unassigned)

Details

Attachments

(1 file)

a test attachment named testfile.txt
12 bytes, text/plain
Details
User Agent: Mozilla/5.0 (Windows NT 6.1; WOW64; rv:62.0) Gecko/20100101 Firefox/62.0 Steps to reproduce: 1. Click on a attached .ZIP Actual results: Save as dialog is opening with filename attachment.cgi instead of screenshots.zip Reason: A lot of "ARRAY(xxxxxxxx)" before "Content-disposition". HTTP/1.1 200 OK Date: Mon, 15 Oct 2018 11:17:48 GMT Server: Apache/2.4.23 (Win32) OpenSSL/1.0.2h SVN/1.8.17 PHP/5.6.28 ARRAY(0x457b354)ARRAY(0x457b114)ARRAY(0x457b90c)ARRAY(0x4579b54)ARRAY(0x4579854)ARRAY(0x45794ac)ARRAY(0x457acdc)ARRAY(0x457a904)ARRAY(0x4579d94)ARRAY(0x459fc0c)ARRAY(0x459f774)ARRAY(0x459f2ac)ARRAY(0x457bbdc)ARRAY(0x457c1c4)ARRAY(0x457ce6c)ARRAY(0x457cadc)ARRAY(0x457c35c)ARRAY(0x4576764)ARRAY(0x45768cc)ARRAY(0x4575f6c)ARRAY(0x4576254)ARRAY(0x45778a4)ARRAY(0x4577cac)ARRAY(0x4576ca4)ARRAY(0x45771fc)ARRAY(0x45a3d64)ARRAY(0x45a3b84)ARRAY(0x45a3854)ARRAY(0x45a668c)ARRAY(0x45a68cc)ARRAY(0x45a4d84)ARRAY(0x45a4814)ARRAY(0x45a40f4)ARRAY(0x45a515c)ARRAY(0x45a28ac)ARRAY(0x45a2414)ARRAY(0x45a1184)ARRAY(0x45a2a14)ARRAY(0x45a2fb4)ARRAY(0x45a0254)ARRAY(0x45a0e0c)ARRAY(0x45a077c)ARRAY(0x45a32e4)ARRAY(0x45a7fac)ARRAY(0x45a97c4)ARRAY(0x45a9494)ARRAY(0x45a7d6c)ARRAY(0x45ab7bc)ARRAY(0x45abe4c)ARRAY(0x45aa2ec)ARRAY(0x45aa07c)ARRAY(0x45ab294)ARRAY(0x45aa784)ARRAY(0x45aa9c4)ARRAY(0x45a6d94)ARRAY(0x45a6a1c)ARRAY(0x45a761c)ARRAY(0x45a79ac)ARRAY(0x45a73c4)ARRAY(0x45a7064)ARRAY(0x45b22b4)ARRAY(0x45b292c)ARRAY(0x45b3034)ARRAY(0x45b2c74)ARRAY(0x45b26ec)ARRAY(0x45ade5c)ARRAY(0x45ada54)ARRAY(0x45ae03c)ARRAY(0x45ad70c)ARRAY(0x45b181c)ARRAY(0x45b1f9c)ARRAY(0x45b19fc)ARRAY(0x45afecc)ARRAY(0x45afbfc)ARRAY(0x45af404)ARRAY(0x45b0904)ARRAY(0x45c5fac)ARRAY(0x45c6864)ARRAY(0x45c6474)ARRAY(0x45c6ffc)ARRAY(0x45c73d4)ARRAY(0x45c333c)ARRAY(0x45c3e94)ARRAY(0x45c4b54)ARRAY(0x45c4764)ARRAY(0x45c58a4)ARRAY(0x45c4f8c)ARRAY(0x45c5814)ARRAY(0x45c24fc)ARRAY(0x45c2afc)ARRAY(0x45c282c)ARRAY(0x45c3114)ARRAY(0x45c1614)ARRAY(0x45c1a64)ARRAY(0x45c20ac)ARRAY(0x45c174c)ARRAY(0x45c153c)ARRAY(0x45c0dec)ARRAY(0x45c006c)ARRAY(0x45c07d4)ARRAY(0x45c0444)ARRAY(0x45c0b7c)ARRAY(0x45bf6dc)ARRAY(0x45bf34c)ARRAY(0x45bf94c)ARRAY(0x45bfd84)ARRAY(0x45b463c)ARRAY(0x45b4e7c)ARRAY(0x45b47a4)ARRAY(0x45bcdcc)ARRAY(0x45b4a8c)ARRAY(0x4497fbc)ARRAY(0x45bd48c)ARRAY(0x45bdec4)ARRAY(0x4f9e27c)ARRAY(0x4f9bbac)ARRAY(0x4f9f5fc)ARRAY(0x4fa1ccc)ARRAY(0x4fa2c8c)ARRAY(0x4fa049c)ARRAY(0x4fa7dbc)ARRAY(0x4fa8d04)ARRAY(0x4fa4c6c)ARRAY(0x45dca4c)ARRAY(0x45d9434)ARRAY(0x45d6dac)ARRAY(0x45ddbec)ARRAY(0x4f924a4)ARRAY(0x4f94544)ARRAY(0x4f98e34)ARRAY(0x4f969d4)ARRAY(0x45cf864)ARRAY(0x45d047c)ARRAY(0x45d2aec)ARRAY(0x45d4e8c)ARRAY(0x45ccad4)ARRAY(0x45cd134)ARRAY(0x45cd824)ARRAY(0x45ce9c4)ARRAY(0x45bfb5c)ARRAY(0x45cc0e4)ARRAY(0x45cc87c)ARRAY(0x45cc534)ARRAY(0x45ca8fc)ARRAY(0x45ca524)ARRAY(0x45cb784)ARRAY(0x45caa04)ARRAY(0x45cafa4)ARRAY(0x45cbc94)ARRAY(0x45c86c4)ARRAY(0x45c8034)ARRAY(0x45c8454)ARRAY(0x45c8f64)ARRAY(0x45c8904)ARRAY(0x45c924c)ARRAY(0x45c972c)ARRAY(0x45c9dec)ARRAY(0x45c9b4c)ARRAY(0x45c783c)Content-disposition: inline; filename="=?UTF-8?Q?screenshots=2Ezip?=" X-content-type-options: nosniff X-frame-options: SAMEORIGIN X-xss-protection: 1; mode=block Content-length: 197632 Keep-Alive: timeout=5, max=100 Connection: Keep-Alive Content-Type: application/x-zip-compressed; name="=?UTF-8?Q?screenshots=2Ezip?="; charset= Expected results: Save as dialog should be open with filename screenshots.zip

Additional Information:

A complete copy (files an database) to another server works fine.
Reason for this bug is an update of the perl interpreter.
It seams some array constructs are interpreted in a new way now.

The attachment description is a link to the raw attachment. While bugzilla tracks that the uploaded file was named testfile.txt it does not send this information to the web browser in an appropriate header and the web browser offers attachment.cgi as the filename when you right-click that link and choose "Save link as..." as well as when you open that link first and then choose to save the file.

Other web sites manage to convey filename to web browsers just fine so this is clearly a deficiency of bugzilla.

wget -S https://bug1499069.bmoattachments.org/attachment.cgi?id=9236446
Resolving bug1499069.bmoattachments.org (bug1499069.bmoattachments.org)... 52.38.29.31, 34.214.9.29, 54.149.158.81
Connecting to bug1499069.bmoattachments.org (bug1499069.bmoattachments.org)|52.38.29.31|:443... connected.
HTTP request sent, awaiting response...
HTTP/1.1 200 OK
Content-Disposition: inline; filename*=UTF-8''testfile.txt
Content-Security-Policy-Report-Only: default-src 'self'; worker-src 'none'; connect-src 'self' https://product-details.mozilla.org https://www.google-analytics.com https://treeherder.mozilla.org/api/failurecount/ https://crash-stats.mozilla.org/api/SuperSearch/; font-src 'self' https://fonts.gstatic.com; img-src 'self' data: blob: https://secure.gravatar.com; object-src 'none'; script-src 'self' 'nonce-cPJzwcRmLr0nx4bskEsPYHr7lfzQAImGg0mcVv2PVHfTEpVZ' 'unsafe-inline' https://www.google-analytics.com; style-src 'self' 'unsafe-inline'; frame-src https://crash-stop-addon.herokuapp.com; frame-ancestors 'self'; form-action 'self' https://www.google.com/search https://github.com/login/oauth/authorize https://github.com/login https://phabricator.services.mozilla.com/
Content-Type: text/plain
Date: Mon, 16 Aug 2021 12:30:32 GMT
Referrer-policy: same-origin
Server: openresty/1.17.8.2
Set-Cookie: Bugzilla_login_request_cookie=0j0k1JxzWv; path=/; secure; HttpOnly; SameSite=Lax
Set-Cookie: github_secret=REnYdYkEIXe0kpNQaGF5DpkVoaIaAHLsHblY1IRScqa4wVkHkL7SxQTttHkE7zRVS7DnXuGyKokRgGdhUQFweZU4LRYEU6UHRyDXnZekHtKqJeNsPDJc0mTMHL4tlww0o6tbnunoVIt7nHyoQu8HucJGJeeVjW1P1qX8IbgE5g8EZVZV6wiG2DXx0mz9Z4WmksDhCE1kQBpDWcIVjonBsHZk4oLg26AIhRPz5djeMz9drP9x72MUh3HwjbcNsMqG; path=/; secure; HttpOnly; SameSite=Lax
Strict-Transport-Security: max-age=31536000; includeSubDomains
X-content-type-options: nosniff
X-xss-protection: 1; mode=block
Content-Length: 12
Connection: keep-alive
Length: 12 [text/plain]

You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: