Closed
Bug 179400
Opened 22 years ago
Closed 22 years ago
URI fragment present in HTTP Referer
Categories
(Core :: Networking: HTTP, defect, P2)
Core
Networking: HTTP
Tracking
()
VERIFIED
FIXED
mozilla1.3alpha
People
(Reporter: u44081, Assigned: darin.moz)
References
()
Details
(Keywords: topembed+, Whiteboard: [http/1.1])
Attachments
(2 files)
|
8.19 KB,
patch
|
Details | Diff | Splinter Review | |
|
7.15 KB,
patch
|
bbaetz
:
review+
bzbarsky
:
superreview+
|
Details | Diff | Splinter Review |
User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20021003
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.0.1) Gecko/20021003
URI fragments are present in HTTP Referer headers sent by Mozilla 1.0.1, though
RFC 2616, section 14.36 explicitly forbids it.
Reproducible: Always
Steps to Reproduce:
Surf to http://some.where/quux#frag, click a link, watch the headers sent by
Mozilla.
Actual Results:
You'll see the Referer header sent as:
Referer: http://some.where/quux#frag
Expected Results:
The Referer header should be sent without the fragment:
Referer: http://some.where/quux
|
Assignee | |
Comment 1•22 years ago
|
||
yup, we're not stripping the URL fragment :(
Severity: normal → major
Status: UNCONFIRMED → ASSIGNED
Ever confirmed: true
OS: Linux → All
Priority: -- → P2
Hardware: PC → All
Whiteboard: [http/1.1]
Target Milestone: --- → mozilla1.3alpha
|
|
Assignee | |
Comment 3•22 years ago
|
||
RFC 2616 section 14.36 uses this language: "The URI MUST NOT include a fragment."
patch in hand...
|
|
Assignee | |
Comment 4•22 years ago
|
||
fixes the bug and does some long overdue cleanup of SetReferrer.
|
|
Assignee | |
Comment 5•22 years ago
|
||
|
|
Assignee | |
Updated•22 years ago
|
Attachment #106768 -
Flags: review?(bbaetz)
|
||
Updated•22 years ago
|
Attachment #106768 -
Flags: review?(bbaetz) → review+
|
|
Assignee | |
Updated•22 years ago
|
Attachment #106768 -
Flags: superreview?(bzbarsky)
|
||
Comment 6•22 years ago
|
||
Comment on attachment 106768 [details] [diff] [review]
v1 patch (-u10w for your reviewing pleasure)
sr=bzbarsky, but do we perhaps want to save mReferrer _after_ we have set the
userpass and ref to empty?
Attachment #106768 -
Flags: superreview?(bzbarsky) → superreview+
|
|
Assignee | |
Comment 7•22 years ago
|
||
bz: yeah, thanks for the suggestion. i'll make that change.
|
|
Assignee | |
Comment 8•22 years ago
|
||
fixed-on-trunk
Status: ASSIGNED → RESOLVED
Closed: 22 years ago
Resolution: --- → FIXED
|
||
Comment 9•22 years ago
|
||
*** Bug 144094 has been marked as a duplicate of this bug. ***
|
||
Comment 10•22 years ago
|
||
verified - trunk builds 11/20/02 win NT4, mac osX, linux rh6
before fix -
Referer:
http://slip/projects/dogbert/test/web/protocols/http/wa_http_index.html#navigationcase2
after -
Referer: http://slip/projects/dogbert/test/web/protocols/http/wa_http_index.html
Status: RESOLVED → VERIFIED
|
|
||
Updated•22 years ago
|
QA Contact: httpqa → tever
You need to log in
before you can comment on or make changes to this bug.
Description
•