Bug 165032 - [GTK] JavaScript alert() DOS protection
Summary: [GTK] JavaScript alert() DOS protection
Status: RESOLVED DUPLICATE of bug 164853
Alias: None
Product: WebKit
Classification: Unclassified
Component: WebKitGTK (show other bugs)
Version: WebKit Nightly Build
Hardware: Unspecified Unspecified
: P2 Normal
Assignee: Nobody
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2016-11-22 09:35 PST by Carlos Alberto Lopez Perez
Modified: 2016-11-22 10:44 PST (History)
2 users (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Carlos Alberto Lopez Perez 2016-11-22 09:35:08 PST 
From #webkitgtk+:

<ManDay> Shouldn't webkit/epiphany have a popup-spam protection of some sorts? I'm filling out an online form at ESA which was apparently written by some genious web-designer... once you enter more than 60 characters in the field "Education : Major Subjects" you are stuck in an infinite alert() loop
<ManDay> http://appform.esa.int/was-html/VNApplicationForm.htm?VN=ESA/YG-ESTEC(2016)063
<ManDay> (same happens for firefox, but there the javascript cannot be intercepted in the debugger, either, which is why i tried epiphany)



Indeed. It seems that if a page starts creating javascript alert() notifications without stopping the only solution is to *kill* the *whole* browser.
Is not even possible to close the bad tab :(


I found this old related bug  https://bugs.webkit.org/show_bug.cgi?id=17560

Not sure if is viable to implement this protection on webkitgtk+ itself. But that would be ideal.
Comment 1 Michael Catanzaro 2016-11-22 10:44:05 PST 

*** This bug has been marked as a duplicate of bug 164853 ***