Closed
Bug 464754
Opened 16 years ago
Closed 16 years ago
nsIContentPolicy.shouldLoad() called without context for scripts
Categories
(Core :: DOM: HTML Parser, defect)
Core
DOM: HTML Parser
Tracking
()
RESOLVED
FIXED
mozilla1.9.1b2
People
(Reporter: ecfbugzilla, Assigned: mrbkap)
References
()
Details
(Keywords: fixed1.9.1, regression)
Attachments
(1 file)
(deleted),
patch
|
bzbarsky
:
review+
mrbkap
:
superreview+
beltzner
:
approval1.9.1b2+
|
Details | Diff | Splinter Review |
This regressed between 2008-11-11-03 and 2008-11-12-03 - now the content policies are sometimes triggered with null as context parameter for scripts. This effectively prevents Adblock Plus from blocking these scripts, other content policies don't deal well with null values in this parameter either.
To reproduce install Adblock Plus 0.7.5.5 from https://addons.mozilla.org/en-US/firefox/addon/1865, go to http://www.ip-secrets.info/trace.php and press Ctrl+Shift+V to open the list of blockable items. You should see a script from bin-layer.de in the list, the page loads it. However, in the current nightly the script won't appear in the list unless the page is loaded from cache. Pressing Ctrl+Shift+R makes sure you don't load the page from cache - nsIContentPolicy.shouldLoad() is still called then but context parameter is null.
Caller is http://mxr.mozilla.org/mozilla-central/source/content/base/src/nsScriptLoader.cpp#210 and it didn't change recently, the bug must be in the code calling it.
Filing under JS Engine - looking at the list of relevant changes, one of JS Engine changes must have regressed it.
Flags: blocking1.9.1?
Assignee | ||
Comment 1•16 years ago
|
||
This is fallout from speculative parsing. The problem is that when we initiate the load, we don't have a context element to pass to the content policy. I'm mostly unfamiliar with content policies, unfortunately. Is it sufficient to pass the window instead for this case? Otherwise, I'm not exactly sure what to do -- we could create a dummy script element or something, but that seems fragile...
Assignee: general → nobody
Component: JavaScript Engine → HTML: Parser
QA Contact: general → parser
Reporter | ||
Comment 2•16 years ago
|
||
At the very least the document should be passed - that's what happens for background images for example. I am not really happy with that because it will make unblocking the script without reloading the page impossible (you simply don't know where to find the script node to make it redo the request) but I guess nothing can be done about that. At least that's only a script and not a visual element.
Assignee | ||
Comment 3•16 years ago
|
||
How expensive is it to call shouldLoad? We could call it twice, once just before we load the script (with the document as the context) and then again once we're about to execute it for real since we'll have the script element by then. But that might be an abuse of the API.
Comment 4•16 years ago
|
||
You could call ShouldProcess befre executing; that's what it's for.
It's "somewhat expensive", sadly...
Comment 5•16 years ago
|
||
Another option is to just call shouldLoad with the document when preloading. If the script is not blocked, that's it. If it is, we'll not preload it, and then hit the normal script-loading codepath and call shouldLoad at that point with the node as context.
Comment 6•16 years ago
|
||
Note that this would give slightly different behavior than CSS preload, which would do the check both for the preload and for the actual node even if the preload is allowed, but that's ok imo.
Assignee | ||
Comment 7•16 years ago
|
||
This appears to fix it. We will call the content policy checker twice for each preloaded script.
Assignee: nobody → mrbkap
Status: NEW → ASSIGNED
Attachment #348096 -
Flags: superreview?(jst)
Attachment #348096 -
Flags: review?(bzbarsky)
Comment 8•16 years ago
|
||
Comment on attachment 348096 [details] [diff] [review]
Proposed fix
>+++ b/content/base/src/nsScriptLoader.cpp
>+ nsISupports *context = aRequest->mElement.get()
>+ ? static_cast<nsISupports *>(aRequest->mElement.get())
>+ : static_cast<nsISupports *>(mDocument);
I guess we can't use NODE_FROM because aRequest doesn't have the nsIContent offhand, huh?
Looks ok, given that. You can consider this an r+sr unless you really want jst to also look.
Attachment #348096 -
Flags: review?(bzbarsky) → review+
Assignee | ||
Comment 9•16 years ago
|
||
Comment on attachment 348096 [details] [diff] [review]
Proposed fix
I'll take the sr.
Attachment #348096 -
Flags: superreview?(jst) → superreview+
Assignee | ||
Comment 10•16 years ago
|
||
(In reply to comment #8)
> I guess we can't use NODE_FROM because aRequest doesn't have the nsIContent
> offhand, huh?
Well, I could static_cast my nsIScriptElement to nsIDOMHTMLScriptElement if you think that's cleaner. I'm not terribly concerned either way.
Comment 11•16 years ago
|
||
Nah, the benefit of NODE_FROM would just have been shorter clearer code.
Assignee | ||
Updated•16 years ago
|
Attachment #348096 -
Flags: approval1.9.1b2?
Assignee | ||
Comment 12•16 years ago
|
||
Comment on attachment 348096 [details] [diff] [review]
Proposed fix
It would be good to get this into beta 2 so adblock isn't broken.
There are multiple implementations of nsIScriptElement, so no bad casting please.
Comment 14•16 years ago
|
||
(In reply to comment #12)
> (From update of attachment 348096 [details] [diff] [review])
> It would be good to get this into beta 2 so adblock isn't broken.
That, IMO, makes this a blocker.
Flags: blocking1.9.1? → blocking1.9.1+
Target Milestone: --- → mozilla1.9.1b2
Comment 15•16 years ago
|
||
Comment on attachment 348096 [details] [diff] [review]
Proposed fix
a191b2=beltzner for good measure, though this is now a b2 blocker
Attachment #348096 -
Flags: approval1.9.1b2? → approval1.9.1b2+
Updated•16 years ago
|
Whiteboard: [needs landing]
Comment 16•16 years ago
|
||
Status: ASSIGNED → RESOLVED
Closed: 16 years ago
Resolution: --- → FIXED
Whiteboard: [needs landing]
Reporter | ||
Comment 17•16 years ago
|
||
Verified - fixed.
Updated•16 years ago
|
Keywords: fixed1.9.1
Comment 18•16 years ago
|
||
Wladimir, can you add the build Id you tested this against?
Reporter | ||
Comment 19•16 years ago
|
||
That would be 3.1b2pre build 2008112003 on Windows XP.
You need to log in
before you can comment on or make changes to this bug.
Description
•