Open Bug 1864867 Opened 2 years ago Updated 6 months ago

No "Open link in new [window/tab]" context menu entry for `about:.*` URIs.

Categories

(Core :: Networking, defect, P3)

Product:
Core
Component:
Networking
Version:
Firefox 119
Platform:
Desktop
Unspecified
Type:
defect

Tracking

()

People

(Reporter: zn7esutb, Unassigned, NeedInfo)

Details

(Whiteboard: [necko-triaged])

Attachments

(3 files, 1 obsolete file)

Presence of Context Menu Entries from Non-Hyperlinked Domain Selection
18.92 KB, image/png
Details
Lack of Context Menu Entries from Non-Hyperlinked `about` URI Selection
27.61 KB, image/png
Details
Presence of Context Menu Entries from Hyperlinked `about` URI Secondary-Click
30.02 KB, image/png
Details

Environment

User Agent: Mozilla/5.0 (X11; Linux x86_64; rv:109.0) Gecko/20100101 Firefox/119.0

Steps to reproduce

  1. Select /html/body/div[4]/div/div[2]/main/section/article/section/p[2]/strong at support.mozilla.org/en-US/kb/profile-manager-create-remove-switch-firefox-profiles (which should be code, not strong):

    about:profiles

  2. Invoke the context menu (≡⃣).

Actual results

It did not appear to be recognized as a URI, despite being valid and visitable from Firefox.

Expected results

It should be treated as any other URI would – the schema should be irrelevant. I think this is just a RegEx nonconformity issue.

Reproduced the issue with Firefox 119.0 (2023-10-16) on Ubuntu 22.04.
Marking issue as new for engineering input. Thank you.

Status: UNCONFIRMED → NEW
Ever confirmed: true
Hardware: Unspecified → Desktop

The Bugbug bot thinks this bug should belong to the 'Core::Widget: Gtk' component, and is moving the bug to that component. Please correct in case you think the bot is wrong.

Component: Untriaged → Widget: Gtk
Product: Firefox → Core

No sure what's the problem here - the URL can be opened with Firefox 121.0.1. Can you be more specific?
Thanks.

Flags: needinfo?(zn7esutb)
Attachment #9386493 - Attachment is obsolete: true

the URL can be opened with Firefox 121.0.1. Can you be more specific?

Yes. The problem arises solely with about: URIs that aren't encapsulated with <a href>s.

Examples

  1. text/plain

    1. https://example.com

      Selection and secondary-click produces the correct context menu entries.

    2. ftp://example.com

      Selection and secondary-click produces the correct context menu entries.

    3. example.com

      Selecting this produces the relevant options. It isn't automatically hyperlinkified (which is understandable), so secondary-click isn't relevant.

    4. about:blank

      Neither work for this. Additionally, it should be hyperlinkified, but isn't.

  2. <a href>

    1. https://example.com

      Selection and secondary-click produces the correct context menu entries.

    2. ftp://example.com

      Selection and secondary-click produces the correct context menu entries.

    3. example.com isn't a valid URI, so converting it to a hyperlink would cause the browser to consider it to be a path relative to the current domain.

    4. about:preferences

      Selecting this doesn't produce the correct options, but secondary-clicking it does. However, the options are non-functional:

      1. When I try about:blank, I am redirected to about:blank, albeit with nothing in the omnibox.
      2. When I try about:preferences, I am again redirected to about:blank, albeit with about:preferences prefilled in the omnibox.

Environment

firefox-135.0.1-1.fc41.x86_64

Meta

Ideally, for the sake of semantics, the content of the text/plain section should be encapsulated within a <pre><code> (~~~txt), but Bugzilla doesn't hyperlinkify its content like it does for CommonMark text. Is that deficiency being tracked anywhere (yet)?

Flags: needinfo?(zn7esutb)
Attachment #9469978 - Attachment description: Context Menu from Non-Hyperlinked Domain Selection → Context Menu Entries from Non-Hyperlinked Domain Selection
Attachment #9469978 - Attachment description: Context Menu Entries from Non-Hyperlinked Domain Selection → Presence of Context Menu Entries from Non-Hyperlinked Domain Selection

I guess we'd need to add about: as uri scheme but I'm not sure which component is that. Tentatively moving to networking.

Component: Widget: Gtk → Networking

We should not allow to open privileged about: pages from web content.

#c9

This is about the explicit context menu option on selection of text, irrespective of whether it's been rendered as a hyperlink. As aforementioned, regarding hyperlinks, I believe that single-click is already blocked.

Though, more broadly, what's the security gain from disabling either? Immediately, one might think that it prevents a website from autofilling dangerous parameters in about: URIs, but they can still just as easily plonk the URI content in a <p> and then ask the user to copy and paste into the omnibox. Heck, they can even automatically paste it into the clipboard, obfuscating it as much as an <a href> can.

Flags: needinfo?(VYV03354)
Severity: -- → S4
Priority: -- → P3
Whiteboard: [necko-triaged]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: