Closed
Bug 401256
Opened 18 years ago
Closed 1 year ago
Cookie generation nearly continuous if Prefs set to "Ask".
Categories
(Camino Graveyard :: General, defect)
Tracking
(Not tracked)
RESOLVED
INCOMPLETE
People
(Reporter: 210525p42015, Unassigned)
References
()
Details
(Keywords: helpwanted, regression)
Attachments
(3 files)
Screenshot-Camino
User-Agent: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en; rv:1.9a9pre) Gecko/2007102602 Camino/2.0a1pre (like Firefox/3.0a9pre)
Build Identifier: Mozilla/5.0 (Macintosh; U; Intel Mac OS X; en; rv:1.9a9pre) Gecko/2007102602 Camino/2.0a1pre (like Firefox/3.0a9pre)
Annoying web-page generates so many cookies and so fast that, despite checking the first one "Deny" and "remember this", many many more appear (a malicious web site) and I must use "Force Quit"
1. remember this decision does not cause next immediate cookie to be generated
2. cookie generation is so fast and many many cookie-decision pop-ups occur before user can react
FWIW, using Minefield, I see a single window, which waits for me to check "Deny" and remember decision ... yet STILL another similar window appears. I got to about thirty before killing Minefield also ... it was just that I could handle one at a time and not have dozens of cookie windows appear as they do in Camino
Reproducible: Always
Steps to Reproduce:
1.Set Cookie Prefs to ASK each time
2.go to obnoxious web URL above (be ready to Kill Camino though)
3.Deny and "remember decision" if you are fast enough
4. Observe more cookie request appearing
Actual Results:
see jpeg of screenshot
"Force Quit" Camino
Expected Results:
decision to not allow cookies from wi-fiplanet.com should have been accepted and subsequent cookies rejected
browser should detect a site trying to throw cookies so fast in a manner which seems to suggest the site is punishing the browser for denying cookies to begin with.
Issued forth a single Cookie handling decision point for user
rejected ALL subsequent cookies from site if user requested that option
* optionally for the pugilistic browser user upset with being hammered, suggest a coffee-spilling bot to be sent to offending web-site's programmer at the appropriate time.
Attachment #286303 -
Attachment is obsolete: true
Comment on attachment 286303 [details]
Screenshot-Camino
sorry about that ... re-added this jpeg
Attachment #286303 -
Attachment is obsolete: false
I see this, only on the trunk, but I don't have to force quit at all. I can just wait until wi-fiplanet.com is done generating its ca. 10 cookie requests (plus the two from its ad sites), and then click/Esc through the accumulated ones.
On branch, there's one cookie sheet per domain.
Stuart, have we changed anything about our sheet-handling on trunk recently that would make cookie requests stop queuing up and instead go modal on each other?
Status: UNCONFIRMED → NEW
Ever confirmed: true
|
||
Comment 6•18 years ago
|
||
We've had code to throw dialogs for UI requests from core when a sheet is already up for quite a while; I'd guess something in core changed around loading that just puts us in that case more often. We may need to look into whether there's some other way we could handle cookie requests that would give us more display control.
Keywords: regression
Target Milestone: --- → Camino2.0
|
|
||
Comment 7•17 years ago
|
||
Regressed between 2007-09-19 and 2007-09-20. Lots of activity, but I'm guessing maybe the event handling changes from bug 395397.
Assignee: nobody → stuart.morgan
Summary: Cookie generation nearly continuous if Prefs set to "Ask" . Must use Apple's "Force Quit" to kill Camino → Cookie generation nearly continuous if Prefs set to "Ask".
I don't know that this needs to block a1 for sure, but we probably need to dig deeper really soon if there are broken Gecko changes that will need to be undone, as this is absolutely nasty when you hit it.
Flags: camino2.0a1?
|
||
Comment 9•17 years ago
|
||
I wonder if bug 362729 is possibly related to this too. Are the proxy login dialogs coming from the same general code in Core?
(In reply to comment #9)
> I wonder if bug 362729 is possibly related to this too. Are the proxy login
> dialogs coming from the same general code in Core?
That bug dates to 1.0.2, so it's unlikely.
|
|
||
Comment 11•17 years ago
|
||
So after reading bug 395397 and looking at stacks, this is definitely caused by that change. It's actually the intended purpose of it--continuing to process gecko events during modal runloops. That gives us better behaviors for things like menus being down, so I think it's a win overall and we just need to work around the strangeness in this specific case. I'm playing with that now.
Blocks: 395397
|
|
||
Comment 12•17 years ago
|
||
I haven't been having any luck here trying to sub-run the loop, so pushing out past a1 unfortunately.
Flags: camino2.0b1?
Flags: camino2.0a1?
Flags: camino2.0a1-
I added a note about this to the Known Issues section of the draft relnotes, as think the "Ask" pref is something that might be more commonly employed among our wider alpha community.
Flags: camino2.0b2?
Flags: camino2.0b1?
Flags: camino2.0b1-
Is anything Steven is doing in bug 468393 going to affect this?
|
|
||
Comment 16•16 years ago
|
||
I'm not actively looking at this; I may come back to it later, but I don't want to discourage others from looking by having my name on it while I'm busy with breakpad.
Assignee: stuart.morgan+bugzilla → nobody
|
|
||
Comment 17•16 years ago
|
||
Clearly this isn't going to happen for b4; we can still hope for 2.0 final though.
Flags: camino2.0b4? → camino2.0b4-
|
|
||
Comment 18•16 years ago
|
||
My last round of investigation didn't get anywhere, so unfortunately this won't happen for 2.0.
Target Milestone: Camino2.0 → ---
Flags: camino2.0.1?
Flags: camino2.0.2?
Flags: camino2.0.1?
Flags: camino2.0.1-
Flags: camino2.0.3?
Flags: camino2.0.2?
Flags: camino2.0.2-
Flags: camino2.0.3? → camino2.0.3-
Flags: camino2.1?
If a patch shows up here, we'll take it, but given Stuart's investigations were never able to come up with a solution, that seems unlikely :-(
Flags: camino2.1? → camino2.1-
Keywords: helpwanted
|
||
Comment 21•13 years ago
|
||
this is a chronic issue
makes firefox vulnerable to mis-coded or malicious web pages.
just experienced this problem on www.RVLeakfinders.com
I kept clicking [deny] hundreds of times over about 5 minutes but could not close all the cookie set dialogs.
Finally, I had to force kill the FF process
seems an auto block is needed to prevent such cookie floods.
Maybe limit them to one cookie request at a time if the [ask me each time] option is selected?
|
|
||
Comment 22•13 years ago
|
||
You're in the wrong place; this is a Camino bug, and our cookie front-end is totally separate from Firefox's.
You need to log in
before you can comment on or make changes to this bug.
Description
•