Closed Bug 282784 Opened 20 years ago Closed 19 years ago

[FIXr]Warning appears twice when submitting unencrypted form data

Categories

(Core Graveyard :: Security: UI, defect, P1)

Product:
Core Graveyard
Component:
Security: UI
Platform:
x86
All
Type:
defect

Tracking

(Not tracked)

Status:
VERIFIED FIXED
Milestone:
mozilla1.8beta2

People

(Reporter: djcater+bugzilla, Assigned: bzbarsky)

References

Details

Attachments

(1 file, 3 obsolete files)

Patch for secure browser UI
1.42 KB, patch
jst
: superreview+
asa
: approval1.8b2+
Details | Diff | Splinter Review 
User-Agent:       Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8b) Gecko/20050218 Firefox/1.0+
Build Identifier: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.8b) Gecko/20050218 Firefox/1.0+

On certain pages with forms, when submitting them, the warning about submitting
unencrypted form data is shown. When 'OK' is pressed, the dialogue disappears,
but then another exact copy reappears. After pressing 'OK' a second time, the
form is submitted. For this to occur, security.warn_submit_insecure must be set
to true, and security.warn_submit_insecure.show_once must be set to false.

Reproducible: Always

Steps to Reproduce:
1. Check your settings in about:config as specified above.
2. Load up the testcase.
3. Submit the form.
4. Select 'OK' in the subsequent warning.
Actual Results:  
The warning appears again. Selecting OK a second time submits the form and no
further warnings are displayed.

Expected Results:  
Only shown the warning once, then submitted the form after pressing 'OK' once.

This occurs with a default profile except for the 2 settings specified above.

Observed with latest trunk in Gentoo Linux and Windows XP.

Attaching testcase...
Attached file Testcase (obsolete) — 
Testcase. Follow the instructions in the first post to observe the bug.
Attached file Testcase (obsolete) — 
Testcase. Follow instructions in first post to observe bug.
Attachment #174746 - Attachment is obsolete: true
OK, the testcases won't demonstrate the bug because the attachments are on this
secure server. Download the first attachment, and run it locally.
Worksforme with a Seamonkey build from the exact same day.  Just tested with a
Firefox and SeaMonkey built from the same tree, and this is Firefox-only.

Leaving in here for now in case this is an issue in
nsSecurityWarningDialogs.cpp, since the show_once stuff is only done by Firefox,
but ccing some Firefox folks.

DJC, if you get a chance to narrow down when (and whether) this regressed, that
would be most helpful.
Flags: blocking-aviary1.1?
(In reply to comment #4)

I have tested today for this bug on all the Firefox builds I happen to have on
my system (Linux) at the moment. They happen to be 20050126, 20050218 and
20050223. This bug occurs for me in all 3. The EXACT steps I followed to
reproduce are:

Firstly, save Testcase 1 to your computer.
Start Firefox with the parameters: -safe-mode and -profilemanager.
Create a brand new profile.
Select that profile and start Firefox.
Open the testcase from your computer. I used File -> Open File...
Click the button in that page.
As it's the first time you've used this profile, it should warn you about
submitting unencryped form data (show_once.)
Check the checkbox, and click OK.
When I do this, the warning appears again.

It then appears twice each time I test this bug, or nearly any other form. I
should be able to test on 3 Windows builds tomorrow, although I know I have
definitely witnessed it there.
OK, this is an issue for Firefox 1.0 as well....

That makes it sound like it's just never really worked right.
So.. in Firefox the nsSecureBrowserUIImpl is present twice in the form observer
list.  This happens because nsSecureBrowserUIImpl::Init is called twice on the
same nsSecureBrowserUIImpl object.  This should probably be asserting, since it
leads to incorrect behavior.  kaie, thoughts on that?

The first call comes from the "browser" binding constructor.  Presumably
http://bonsai.mozilla.org/cvsblame.cgi?file=mozilla/toolkit/content/widgets/browser.xml&rev=1.53&mark=548#547
is where that happens.  That's been in place since rev 1.1 of the file.

The second call comes from an onload handler.  To be precise, it comes from
prepareForStartup() in browser.js:
http://bonsai.mozilla.org/cvsblame.cgi?file=mozilla/browser/base/content/browser.js&rev=1.386&mark=696#693

So looks like this has just never worked (both pieces of code have been in place
since fall 2002).

Over to Firefox.  Raising severity to critical, since this also adds the object
twice as a web progress listener, which may well confuse the lock icon code. 
There seems to be no "security" component, so I guess I'll dump this in general
and hope someone notices...
Assignee: dveditz → firefox
Severity: minor → critical
Status: UNCONFIRMED → NEW
Component: Security: General → General
Ever confirmed: true
Product: Core → Firefox
QA Contact: general
> kaie, thoughts on that?

I have never used FireFox, I only use the suite.
If I understand correctly, the show_once is a FireFox specific feature, and this
bug only occurs with FireFox.

I agree an assertion is a good idea.

However, we could make the code more clever.

mWindow is only assigned a value in the init code.

If mWindow already carries a value, we could skip executing the init code again
(and produce an assertion only).
Attached patch protective patch v1 (obsolete) — Splinter Review 
like this
Well, no reason to assert then.  Just throw NS_ERROR_ALREADY_INITIALIZED if
mWindow is already set.

Note that this patch breaks the firefox UI pretty badly (since browser.js ends
up with an exception and stuff doesn't get set up correctly).  So we'll have to
wait on the front-end to be fixed to check this in....
Attachment #175548 - Flags: superreview?(jst)
Attachment #175548 - Flags: review?(kaie)
Attachment #175547 - Attachment is obsolete: true
Comment on attachment 175548 [details] [diff] [review]
Patch for secure browser UI

r=kaie
Attachment #175548 - Flags: review?(kaie) → review+
Then we should probably have a separate firefox-frontend-change-request-bug and
make it block this one.

Comment on attachment 175548 [details] [diff] [review]
Patch for secure browser UI

sr=jst
Attachment #175548 - Flags: superreview?(jst) → superreview+
Apparently it *hasn't* ever worked right, found bug 180962 which has a patch to
comment out one of the inits.
Assignee: firefox → bzbarsky
Depends on: 180962
OK, I guess this is now the PSM bug on making it impossible to make this mistake
again...

Daniel, could we try to get bug 180962 in for 1.8/1.1?
Component: General → Client Library
Flags: review+
Product: Firefox → PSM
Version: Trunk → unspecified
Priority: -- → P1
Summary: Warning appears twice when submitting unencrypted form data → [FIXr]Warning appears twice when submitting unencrypted form data
Product: PSM → Core
lets try to get this and bug 180962 for 1.1
Flags: blocking-aviary1.1? → blocking-aviary1.1+
Attachment #174747 - Attachment is obsolete: true
Per Asa's n.p.m.seamonkey post, this should probably go into b2 (being a bit of
an api change and all).
Flags: blocking1.8b2?
Flags: blocking1.8b2? → blocking1.8b2+
Comment on attachment 175548 [details] [diff] [review]
Patch for secure browser UI

Requesting approval for 1.8b2, now that bug 180962  is fixed.
Attachment #175548 - Flags: approval1.8b2?
Comment on attachment 175548 [details] [diff] [review]
Patch for secure browser UI

a=asa
Attachment #175548 - Flags: approval1.8b2? → approval1.8b2+
Fixed.
Status: NEW → RESOLVED
Closed: 19 years ago
Resolution: --- → FIXED
Target Milestone: --- → mozilla1.8beta2
Version: Other Branch → Trunk
Status: RESOLVED → VERIFIED
Product: Core → Core Graveyard
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: