Bug 11927

Summary:

[S60] Formdataautofill: If the form field contains single or double quotes the SQL query to insert, delete data does not work

Product:

WebKit

Reporter:

Sornalatha Rathnasamy <sornalatha.rathnasamy>

Component:

New Bugs

Assignee:

Nobody <webkit-unassigned>

Status:

CLOSED FIXED

Severity:

Major

Priority:

Version:

420+

Hardware:

S60 Emulator

OS:

S60 3rd edition

URL:

http://www.google.com

Attachments:

Description	Flags
use RDbTable APIs to insert, delete data instead of formatted SQL queries.	yongjun.zhang: review+
Fix the syntax error in sql query	yongjun.zhang: review+
Fix the syntax error in sql query	yongjun.zhang: review+

Sornalatha Rathnasamy

Reported 2006-12-22 07:00:08 PST

While executing the following autoform fill tests, With password field: http://testsuite.nokia-boston.com/content/S60NG_AutoFill_Login/default.html Without password field: http://testsuite.nokia-boston.com/content/S60NG_AutoFill_input/default.html if the text, text area or password fiels in the form contain single or double quotes the SQL query used to insert or delete data is not well-formed and the operation fails.

Attachments
use RDbTable APIs to insert, delete data instead of formatted SQL queries. (13.68 KB, patch) 2006-12-22 07:08 PST, Sornalatha Rathnasamy	yongjun.zhang: review+	Details Formatted Diff Diff
Fix the syntax error in sql query (21.59 KB, patch) 2006-12-28 09:42 PST, Sornalatha Rathnasamy	yongjun.zhang: review+	Details Formatted Diff Diff
Fix the syntax error in sql query (7.34 KB, patch) 2006-12-28 09:42 PST, Sornalatha Rathnasamy	yongjun.zhang: review+	Details Formatted Diff Diff
View All Add attachment proposed patch, testcase, etc.

Sornalatha Rathnasamy

Comment 1 2006-12-22 07:08:31 PST

Created attachment 11966 [details] use RDbTable APIs to insert, delete data instead of formatted SQL queries.

Yongjun Zhang

Comment 2 2006-12-22 08:56:34 PST

Comment on attachment 11966 [details] use RDbTable APIs to insert, delete data instead of formatted SQL queries. r=me

Bradley Morrison

Comment 3 2006-12-27 13:27:01 PST

Why is this bug still in new? Reverted: r18438 reverted the patch attached to this bug that was landed in s60/trunk (r18389).

Sornalatha Rathnasamy

Comment 4 2006-12-28 09:23:40 PST

(In reply to comment #0) test case: 1. Load google.com 2. type a text in the input box and click search button. 3. Load the same page again. 4. When you start entering the same search string again, it should show the complete value for auto-fill.

Sornalatha Rathnasamy

Comment 5 2006-12-28 09:42:06 PST

Created attachment 12082 [details] Fix the syntax error in sql query

Sornalatha Rathnasamy

Comment 6 2006-12-28 09:42:53 PST

Created attachment 12083 [details] Fix the syntax error in sql query

Yongjun Zhang

Comment 7 2007-01-03 10:34:29 PST

Comment on attachment 12082 [details] Fix the syntax error in sql query r=me

Yongjun Zhang

Comment 8 2007-01-03 10:54:23 PST

Comment on attachment 12083 [details] Fix the syntax error in sql query r=me

Yongjun Zhang

Comment 9 2007-01-03 10:54:43 PST

Completed: At revision: 18548

Krishna

Comment 10 2007-01-12 13:28:22 PST

TSW ID: SRAY-6WQKA6

Krishna

Comment 11 2007-03-04 17:01:38 PST

Closed.

Joel Parks

Comment 12 2011-03-21 11:52:58 PDT

re-purposing InTSW keyword for use by QtWebkit team

Note You need to log in before you can comment on or make changes to this bug.