Summary: favicon formatting in neterror conflicts with browser.chrome.favicons invoking certerror xul on invalid certs
Creator:disrupted Date:2011-06-06 11:14:23
Project:K-Meleon Owner:.Nobody
Status:Unconfirmed Severity:Normal
Version:1.6 Target Version:Unknow

User-agent: K-Meleon/1.6.0

when the pref browser.chrome.favicons is set to true, and a secure site with an invalid/bad cert is visited it triggers a second browser window certerror.xul overlapping the main window( bug 1261).
see:
http://kmext.sourceforge.net/tests/chromconss2.png
along with the bad visual effect and impracticality of a second warning window required an extra unnecessary step to access the page it may cause confusion to user, i perssume it wasn't the intended behaviour on cert warnings since browser.chrome.favicons default is set to false.

to reproduce:
1- set browser.chrome.favicons to true
2- visit https://www.mrtech.com/forums/index.php?action=printpage;topic=126.0

the pref browser.chrome.favicons enables display of favicons on the tabbutton and in urlbar in cases when linkrel not defined properly or the favicon is not stored at site root and referred in external css or sometimes when not a true icon(png or gif). normally many websites are affected. naturally it affects display of favicon in bookmarks for affected sites as kmeleon cant save then in the favicon cache(something users frequently complain about when sites have generic bookmarks icon in the bookmarks menu or bar)
check http://google.com for an example

the cause of the bug is the formatting of neterror.xhtml linking to a chrome path favicon instead of embedded in the png inside the code(delphi style)

<link rel="icon" type="image/png" id="favicon" href="chrome://global/skin/icons/warning-16.png"/>

fixed by:
<link rel="icon" type="image/png" id="favicon" href="data:image/png;base64,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" />

link to fixed neterror.xhtml
http://kmext.sourceforge.net/tests/netError.xhtml
(save target as)

additional RFE(not related) in file above:
distinctive ssl error page by incorporating big headers, warning messages with carmen red to avoid confusion with regular site load errors, requires the css:
http://kmext.sourceforge.net/tests/netError.css

preview:
http://kmext.sourceforge.net/tests/chromconss0.png

Comments
disrupted  2011-06-25 19:54:53
see
http://kmeleon.sourceforge.net/forum/read.php?1,116631

SourceForge Logo