Maniphest T207088

Remex double-decodes HTML entities on PHP (not HHVM)
Closed, ResolvedPublic
Actions

Description

For example, given

`[[File:Foobar.jpg|alt=&amp;amp;]]`

PHP will render this in HTML as alt="&" while HHVM correctly renders alt="&amp;".

This is a bug in the tokenizer, where we take a shortcut in Tokenizer::handleCharRefs() and then turn around and decode the entities again "the long way", leading to a double-decode.

Related Objects

Mentioned In: T207483: Release remex 2.0.1
T206940: Quote marks in "alt" text break media attribute parsing

Event Timeline

cscott created this task.Oct 15 2018, 8:15 PM

Restricted Application added a subscriber: Aklapper. · View Herald TranscriptOct 15 2018, 8:15 PM

Change 467470 had a related patch set uploaded (by C. Scott Ananian; owner: C. Scott Ananian):
[mediawiki/libs/RemexHtml@master] Don't double-decode HTML entities on non-HHVM PHP

https://gerrit.wikimedia.org/r/467470

gerritbot added a project: Patch-For-Review.Oct 15 2018, 8:15 PM

cscott added a subscriber: tstarling.Oct 15 2018, 8:32 PM

cscott mentioned this in T206940: Quote marks in "alt" text break media attribute parsing.Oct 16 2018, 1:33 PM

Krinkle added projects: PHP 7.0 support, PHP 7.3 support.Oct 16 2018, 4:55 PM

Change 467470 merged by jenkins-bot:
[mediawiki/libs/RemexHtml@master] Don't double-decode HTML entities on non-HHVM PHP

https://gerrit.wikimedia.org/r/467470

The patch is merged, but we're going to need a new version of remex released to composer and mediawiki-core updated to require the new version before this bug is actually fixed in production uses of php 7 (ie, when running the php 7 jenkins tests).

cscott mentioned this in T207483: Release remex 2.0.1.Oct 19 2018, 3:48 PM

Legoktm added projects: MW-1.31-release, MW-1.32-notes.Oct 21 2018, 5:11 AM

Legoktm edited projects, added MW-1.32-release; removed MW-1.32-notes.

Change 468799 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/vendor@master] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468799

Change 468800 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/core@master] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468800

Change 468799 merged by jenkins-bot:
[mediawiki/vendor@master] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468799

Change 468800 merged by jenkins-bot:
[mediawiki/core@master] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468800

ReleaseTaggerBot added a project: MW-1.33-notes (1.33.0-wmf.1; 2018-10-23).Oct 21 2018, 6:00 PM

Change 468852 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/vendor@REL1_32] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468852

Change 468853 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/core@REL1_32] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468853

Change 468852 merged by jenkins-bot:
[mediawiki/vendor@REL1_32] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468852

Change 468853 merged by jenkins-bot:
[mediawiki/core@REL1_32] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468853

ReleaseTaggerBot added a project: MW-1.32-notes.Oct 21 2018, 7:00 PM

Change 468862 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/core@REL1_31] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468862

Change 468864 had a related patch set uploaded (by Legoktm; owner: Legoktm):
[mediawiki/vendor@REL1_31] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468864

I've backported to 1.32, and prepped 1.31 backports.

Change 468864 merged by jenkins-bot:
[mediawiki/vendor@REL1_31] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468864

Change 468862 merged by jenkins-bot:
[mediawiki/core@REL1_31] Upgrade wikimedia/remex-html to 2.0.1

https://gerrit.wikimedia.org/r/468862

ReleaseTaggerBot added a project: MW-1.31-release-notes.Oct 22 2018, 4:01 PM

Remex double-decodes HTML entities on PHP (not HHVM)Closed, ResolvedPublicActions

Description

Related Objects

Event Timeline

Remex double-decodes HTML entities on PHP (not HHVM)
Closed, ResolvedPublic
Actions