Bug 48046

Summary: WebKit shouldn't load a plug-in based on file extension if a MIME type is specified.
Product: WebKit Reporter: Andy Estes <aestes>
Component: New BugsAssignee: Andy Estes <aestes>
Status: RESOLVED FIXED    
Severity: Normal CC: abarth, eric, webkit.review.bot
Priority: P2 Keywords: InRadar
Version: 528+ (Nightly build)   
Hardware: Other   
OS: OS X 10.5   
Attachments:
Description Flags
Patch
none
Patch eric.carlson: review+

Andy Estes
Reported 2010-10-21 00:34:02 PDT
WebKit shouldn't load a plug-in when a page author specifies a MIME type that no plug-in supports.
Attachments
Patch (3.86 KB, patch)
2010-10-21 00:57 PDT, Andy Estes 		no flags
DetailsFormatted DiffDiff
Patch (4.04 KB, patch)
2010-10-21 17:42 PDT, Andy Estes 		eric.carlson: review+
DetailsFormatted DiffDiff
Show Obsolete (1) View All Add attachment proposed patch, testcase, etc.
Andy Estes
Comment 1 2010-10-21 00:41:59 PDT
In the following example: <embed src="movie.m4v" type="application/x-shockwave-flash"> when Flash isn't installed but QuickTime is, WebKit will unexpectedly load the QuickTime plug-in. This is because WebKit recognizes that QuickTime supports files ending in '.m4v' and loads the file in QuickTime despite the markup specifying a MIME type QuickTime doesn't support. In this case, WebKit should display the missing plug-in indicator if an explicit MIME type is specified that no installed plug-in claims to support.
Andy Estes
Comment 2 2010-10-21 00:42:41 PDT
<rdar://problem/8573762>
Andy Estes
Comment 3 2010-10-21 00:57:51 PDT
Created attachment 71401 [details] Patch
Andy Estes
Comment 4 2010-10-21 01:03:16 PDT
Giving myself an r-. I need to see what other platforms need this fix in their FrameLoaderClient implementation before posting this for review.
Andy Estes
Comment 5 2010-10-21 01:34:27 PDT
(In reply to comment #4) > Giving myself an r-. I need to see what other platforms need this fix in their FrameLoaderClient implementation before posting this for review. Looks okay.
Brian Weinstein
Comment 6 2010-10-21 02:12:11 PDT
Comment on attachment 71401 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=71401&action=review > WebKit/mac/WebCoreSupport/WebFrameLoaderClient.mm:1632 > + if (!pluginPackage && [extension length] != 0 && [MIMEType length] == 0) { Should we be using [extension length] && ![MIMEType length] and get rid of the comparisons with 0?
Eric Carlson
Comment 7 2010-10-21 08:21:06 PDT
Comment on attachment 71401 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=71401&action=review r=me with the suggested changes >> WebKit/mac/WebCoreSupport/WebFrameLoaderClient.mm:1632 >> + if (!pluginPackage && [extension length] != 0 && [MIMEType length] == 0) { > > Should we be using [extension length] && ![MIMEType length] and get rid of the comparisons with 0? Indeed, please follow current WebKit style even though the old code is incorrect. > LayoutTests/plugins/invalid-mime-with-valid-extension-shows-missing-plugin.html:19 > I would guess that the data: url will be delivered to the plug-in much faster than the test file, so I think you have a potential race condition here even with the setTimeout(0). I think you may want to use the test file for both plug-in instances and use a non-zero timeout instead.
Andy Estes
Comment 8 2010-10-21 17:42:08 PDT
Created attachment 71514 [details] Patch
Andy Estes
Comment 9 2010-10-21 17:43:23 PDT
(In reply to comment #8) > Created an attachment (id=71514) [details] > Patch I rewrote the test. It changed enough that it probably warrants a new review.
Eric Carlson
Comment 10 2010-10-22 10:29:18 PDT
Comment on attachment 71514 [details] Patch Much simpler test, nice! One very minor nit that you might want to change: you don't need to call finishTest from logFailure, just get rid of the "else" after calling testCallback. r=me
Andy Estes
Comment 11 2010-10-22 13:58:02 PDT
Thanks Eric. Landed in http://trac.webkit.org/changeset/70332.
Andy Estes
Comment 12 2010-10-22 14:02:26 PDT
Oops, forgot to svn add the tests. Layout tests landed in http://trac.webkit.org/changeset/70334.
WebKit Review Bot
Comment 13 2010-10-22 16:30:06 PDT
http://trac.webkit.org/changeset/70332 might have broken GTK Linux 32-bit Release
WebKit Review Bot
Comment 14 2010-10-22 16:30:36 PDT
http://trac.webkit.org/changeset/70334 might have broken GTK Linux 32-bit Release
Andy Estes
Comment 15 2010-10-22 17:21:21 PDT
(In reply to comment #14) > http://trac.webkit.org/changeset/70334 might have broken GTK Linux 32-bit Release Fixing.
Andy Estes
Comment 16 2010-10-22 19:27:16 PDT
I didn't handle this for WebKit2 or Win/Gtk/Qt (oops!). Fixed in http://trac.webkit.org/changeset/70379.
WebKit Review Bot
Comment 17 2010-10-22 21:09:49 PDT
http://trac.webkit.org/changeset/70379 might have broken GTK Linux 32-bit Debug
Note You need to log in before you can comment on or make changes to this bug.