Longer Title Name - Download Crash
Categories
(Toolkit :: Downloads API, defect)
Tracking
()
People
(Reporter: ameenbasha111, Unassigned, NeedInfo)
References
Details
(Keywords: reporter-external, Whiteboard: [reporter-external] [client-bounty-form] [verif?])
Attachments
(3 files)
Firefox download Failed
Hi Team. While testing Mozilla Firefox Download Feature on Windows platform Found a wierd phase in which the same is not happing in any other browsers (Chrome, edge) etc
While Saving a Webpage the title will be used as a default suggested name for save, While saving them if the File name is long than the windows suggested 256 the download is crashed and Failed. (This could be further used in some Browser Crash or Memory Corruption)
But the same thing is not possible in Chrome and Edge(These case was handled). so this is not specific to Chromium
I have attached the sample Html used for the POC
Once download failed the windows explorer was also become not responding for some time
Steps to reproduce
- Open the POC Html File
- Save the page by pressing Ctrl + S
- Save with suggested Name.
Now Download will fail and Windows Explorer will become slower
FYI: Tested in Latest version of firefox, Windows 11
|
Reporter | |
Comment 1•3 years ago
|
||
|
|
Reporter | |
Comment 2•3 years ago
|
||
|
||
Updated•3 years ago
|
|
||
Comment 3•2 years ago
|
||
(In reply to Ameen from comment #0)
While Saving a Webpage the title will be used as a default suggested name for save, While saving them if the File name is long than the windows suggested 256 the download is crashed and Failed.
What does "crashed and failed" mean here? Does the browser process actually crash? Your screenshot suggests not; it is just the download that fails, right?
|
|
||
Updated•2 years ago
|
|
|
||
Comment 4•2 years ago
|
||
(In reply to Ameen from comment #0)
Created attachment 9310224 [details]
attack.html
Steps to reproduce
- Open the POC Html File
- Save the page by pressing Ctrl + S
- Save with suggested Name.
FWIW, if I try these steps with the attached file the suggested file is "attack.html", not a very long string, and as a result there is no issue. Tested on 109 beta. It would be useful if you could clarify exactly what version you're using, and/or if perhaps bugzilla is breaking this testcase, in which case perhaps you can link to a web-based page that reproduces the issue?
|
|
Reporter | |
Comment 5•2 years ago
|
||
I have installed the latest version on 2 weeks back in windows
FYI: if the POC is not working for you, you can replace the title tag with some large text
|
|
||
Comment 6•2 years ago
|
||
(In reply to Ameen from comment #5)
I have installed the latest version on 2 weeks back in windows
FYI: if the POC is not working for you, you can replace the title tag with some large text
You haven't really answered either of my questions. I'll restate them a bit for clarity:
(In reply to :Gijs (he/him) from comment #3)
What does "crashed and failed" mean here? Does the browser process actually crash? Your screenshot suggests not; it is just the download that fails, right?
(In reply to :Gijs (he/him) from comment #4)
FWIW, if I try these steps with the attached file the suggested file is "attack.html", not a very long string, and as a result there is no issue. Tested on 109 beta. It would be useful if you could clarify exactly what version you're using, and/or if perhaps bugzilla is breaking this testcase by providing a
Content-Dispositionfilename header, in which case perhaps you can link to a web-based page that reproduces the issue?
|
|
||
Comment 7•2 years ago
|
||
It's been 1 month since the needinfo request, so tentatively closing this out. We can reopen if clearer steps to reproduce the issue are made available.
|
||
Updated•2 years ago
|
|
|
||
Updated•2 years ago
|
|
||
Updated•1 year ago
|
Description
•