Closed Bug 736300 Opened 13 years ago Closed 13 years ago

Clicking x-cz-command URLs doesn't work anymore: WARNING: No principal to execute JS with: file …/nsJSProtocolHandler.cpp, line 190

Categories

(Other Applications :: ChatZilla, defect)

Product:
Other Applications
Component:
ChatZilla
Type:
defect
Priority:
Not set
Severity:
major

Tracking

(Not tracked)

Status:
RESOLVED FIXED

People

(Reporter: mnyromyr, Assigned: bugzilla-mozilla-20000923)

References

Details

(Whiteboard: [cz-0.9.88.2])

Attachments

(1 file)

Simplify inline button activation code to avoid javascript: protocol
1.04 KB, patch
samuel
: review+
Details | Diff | Splinter Review
Mozilla/5.0 (X11; Linux x86_64; rv:13.0) Gecko/20120313 Firefox/13.0a1 SeaMonkey/2.10a1, built with Chatzilla 0.9.88.1 included. Certain features of Chatzilla generate clickable links in the content window, pointing to URLs like href="x-cz-command:$COMMAND". These command links don't work anymore, only a warning gets dumped to the shell: WARNING: No principal to execute JS with: file /…/mozilla/dom/src/jsurl/nsJSProtocolHandler.cpp, line 190 Steps to reproduce: - Start Chatzilla - Open moznet - In the line "[INFO]Connecting to irc://moznet/ (irc://irc.mozilla.org/)… [Cancel]", the "[Cancel]" is a link to "x-cz-command:cancel". Background: Chatzilla dynamically creates a browser, adding an onclick attribute: <http://mxr.mozilla.org/comm-central/source/mozilla/extensions/irc/xul/content/static.js#3641>. This onclick code doesn't get called anymore. This is especially mean, because DCC interaction provides various commands this, all of which don't work anymore. Reading through IRC logs, I suspect a same/similar cause like for bug 728313 (bug 658220?), thus adding bz and Gavin and hoping for any insight. ;-)
I'm guessing it is also the cause of bug 735611.
This appears to be broken in the Firefox 11 release. :(
Is Chatzilla basically using javascript: links in chrome-principal documents?
We're setting location.href to a javascript: URL on a chrome: document loaded in a <browser> in a chrome: XUL window. Luckily, I don't really care about what has "broken" in the platform this time; I've found a much simpler solution for the code.
Assignee: rginda → silver
Status: NEW → ASSIGNED
Attachment #607774 - Flags: review?(samuel)
Severity: normal → major
OS: Linux → All
Hardware: x86_64 → All
Version: unspecified → Trunk
Blocks: 735611
Attachment #607774 - Flags: review?(samuel) → review+
> We're setting location.href to a javascript: URL on a chrome: document Is the browser a <browser type="content">?
(In reply to Boris Zbarsky (:bz) from comment #6) > > We're setting location.href to a javascript: URL on a chrome: document > > Is the browser a <browser type="content">? Yes.
Attachment #607774 - Attachment description: Simply inline button activation code to avoid javascript: protocol → Simplify inline button activation code to avoid javascript: protocol
> Yes. Then the behavior change is expected per bug 723808...
Oh, and loading system-principal things in type="content" docshells is generally a bug. One of these days we'll drop support for it altogether....
(In reply to Boris Zbarsky (:bz) from comment #9) > Oh, and loading system-principal things in type="content" docshells is > generally a bug. One of these days we'll drop support for it altogether.... Unfortunately, we have to do it because of OTHER bugs. See bug 370760 for the details.
The three issues there are, in order: 1) fixed 2) will stop being an issue before the change in comment 9 is made (support for chrome-type tabs for system stuff will be added) 3) never got filed; if you want it fixed file with a clear description of the problem.
That wasn't a comprehensive list.
Well, if you have other issues, file them. The current thing with allowing chrome stuff in content-type docshells is somewhat insecure, so we would really like to remove it one of these days.
http://hg.mozilla.org/chatzilla/rev/69466916bb21
Status: ASSIGNED → RESOLVED
Closed: 13 years ago
Resolution: --- → FIXED
Whiteboard: [cz-0.9.88.2]
You need to log in before you can comment on or make changes to this bug.

Attachment

General

Creator:
Created:
Updated:
Size: