Closed
Bug 374569
Opened 17 years ago
Closed 13 years ago
(1.8 branch) Don't allow more than one menu popup at a time, at least from content
Categories
(Core :: XUL, defect)
Tracking
()
RESOLVED
INCOMPLETE
People
(Reporter: dveditz, Assigned: enndeakin)
References
()
Details
(Whiteboard: [sg:low spoof][wanted-1.9])
This is spun off from bug 326877 comment 72 remaining issue 1). We really only handle tracking for one popup, so if there are multiple calls to showPopup() some of them get left around. We clean up the one we're tracking, and the others remain to bleed through other tabs and windows. Instead, assuming it's too much work to track an arbitrary number, we should limit user content to a single working call to showPopup, either returning errors if a popup is already showing or having each showPopup() call close any pre-existing one. I don't care much which but I slightly favor the latter as less breakage should any existing content be using this.
|
Reporter | |
Updated•17 years ago
|
Flags: wanted1.8.1.x+
Flags: blocking1.9?
Flags: blocking1.8.1.4?
Flags: blocking1.8.0.12?
|
Assignee | |
Comment 1•17 years ago
|
||
What security issue is this supposed to fix? Just a situation where a user can be annoyed by multiple popups? Just as a note, there are several cases where multiple popups will be open in chrome. 1. A menu with submenus 2. Dragging a bookmark from one menu to another 3. Opening a bookmark folder menu and then opening a context menu on a bookmark in the folder. 4. A tooltip attached to any element inside a menu
(In reply to comment #1) > What security issue is this supposed to fix? Just a situation where a user can > be annoyed by multiple popups? If I can get a popup to hang around, I can make bug 326877 comment 76 convincing to the point where it could catch even fairly technical people. > Just as a note, there are several cases where multiple popups will be open in > chrome. Ideally this doesn't break submenus in content XUL.
|
|
Assignee | |
Comment 3•17 years ago
|
||
But that(In reply to comment #2) > If I can get a popup to hang around, I can make bug 326877 comment 76 > convincing to the point where it could catch even fairly technical people. But that would work even if only one popup was allowed.
(In reply to comment #3) > But that(In reply to comment #2) > > > If I can get a popup to hang around, I can make bug 326877 comment 76 > > convincing to the point where it could catch even fairly technical people. > > But that would work even if only one popup was allowed. > Yes, but with only one popup, we track it properly, so it tends to be killed by doing things like pressing keys.
|
|
Reporter | |
Updated•17 years ago
|
Flags: blocking1.8.1.4?
Flags: blocking1.8.1.4+
Flags: blocking1.8.0.12?
Flags: blocking1.8.0.12+
Whiteboard: [sg:low spoof]
Flags: blocking1.9? → blocking1.9-
Whiteboard: [sg:low spoof] → [sg:low spoof][wanted-1.9]
|
|
Reporter | |
Comment 5•17 years ago
|
||
CTho: can you modify your national bank testcase so that it uses multiple-popups and still works even with the fix for bug 326877? Maybe a demonstration of the problem is necessary.
(In reply to comment #5) > CTho: can you modify your national bank testcase so that it uses > multiple-popups and still works even with the fix for bug 326877? Maybe a > demonstration of the problem is necessary. > I put together a multipopup version but was unable to get it to lose track of my popups reliably (it almost never lost them). I hit bug 378532 4 or 5 times but couldn't come up with steps to reproduce it - it did seem to be related to the popups being forgotten though. I'll play with this some more later.
|
|
Reporter | |
Comment 7•17 years ago
|
||
No progress on this one, and looks like bug 326877 itself got reopened, so we'll have to wait until next time.
Flags: blocking1.8.1.5+
Flags: blocking1.8.1.4+
Flags: blocking1.8.0.13+
Flags: blocking1.8.0.12+
|
|
Assignee | |
Comment 8•17 years ago
|
||
After bug 279703, which will be checked in soon, we keep track of all popups properly and close them when clicking outside them. Sorry for not understanding, but I still don't have a clear description of what this bug is about, or what the security issue is. The testcases in bug 326877 are complicated and don't have any description of what security issue or bug I should be looking for. A simplified testcase would be much more useful.
(In reply to comment #8) > After bug 279703, which will be checked in soon, we keep track of all popups > properly and close them when clicking outside them. I think that will make this bug a non-issue then. > Sorry for not understanding, but I still don't have a clear description of what > this bug is about, or what the security issue is. The testcases in bug 326877 > are complicated and don't have any description of what security issue or bug I > should be looking for. A simplified testcase would be much more useful. I never managed to put together a testcase that worked anywhere close to reliably. The issue here is that sometimes when multiple popups are present, some of them don't get hidden. Sorry I can't come up with a usable testcase.
|
|
Reporter | |
Updated•17 years ago
|
Flags: blocking1.8.1.5+
Flags: blocking1.8.0.13+
Summary: Don't allow more than one menu popup at a time, at least from content → (1.8 branch) Don't allow more than one menu popup at a time, at least from content
Component: XP Toolkit/Widgets: Menus → XUL
QA Contact: xptoolkit.menus → xptoolkit.widgets
|
|
Reporter | |
Updated•13 years ago
|
Group: core-security
Status: NEW → RESOLVED
Closed: 13 years ago
Resolution: --- → INCOMPLETE
You need to log in
before you can comment on or make changes to this bug.
Description
•