Page MenuHomePhabricator
Create Task
Maniphest T269948

CentralNotice throws exception on malformed URIs
Closed, DuplicatePublic
Actions

Description

Visit https://da.m.wikipedia.org/wiki/Justin_Bieber?oldid=10541210&debug=true#/media/Fil:Nuvola_apps_download_manager2-70%.svg in incognito mode

A JavaScript error is thrown in the setInitialData method.

var urlParams = $.extend( state.urlParams, ( new mw.Uri() ).query ),
			impressionEventSampleRateFromUrl;

Creating an instance of mw.Uri can throw an exception so this should be wrapped in a try / catch block

eg.

try {
var urlParams = $.extend( state.urlParams, ( new mw.Uri() ).query ),
			impressionEventSampleRateFromUrl;
} catch (e) {
// what to do when can't parse the URI?
}

Stack trace:

09:46:48.940 TypeError: defaultUri is undefined
    jQuery 10
        Uri
        setInitialData
        setUp
        reallyChooseAndMaybeDisplay
        fire
        add
        always
        chooseAndMaybeDisplay
        js
        js
    runScript https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:1400
    execute https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:1541
    doPropagation https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:897
    requestPropagation https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:952
    setAndPropagate https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:973
    state https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=startup&only=scripts&raw=1&skin=minerva&target=mobile:2135
    <anonymous> https://da.m.wikipedia.org/w/load.php?debug=true&lang=da&modules=ext.centralNotice.choiceData&only=scripts&skin=minerva&version=16wuv:2
load.php:226:13

Related Objects
Search...

Event Timeline

Jdlrobson created this task.Dec 11 2020, 5:49 PM
Restricted Application added subscribers: Masumrezarock100, Aklapper. · View Herald TranscriptDec 11 2020, 5:49 PM
Jdlrobson updated the task description. (Show Details)Dec 11 2020, 5:50 PM
AndyRussG added a project: Fundraising-Backlog.Dec 11 2020, 5:51 PM
Reedy updated the task description. (Show Details)Dec 12 2020, 6:04 PM
DStrine added a subscriber: Seddon.Dec 14 2020, 4:46 PM
DStrine moved this task from Triage to Unscheduled on the Fundraising-Backlog board.Dec 14 2020, 4:57 PM
Krinkle subscribed.EditedDec 15 2020, 7:24 PM

Seems like an issue with MediaViewer, not CentralNotice. MediaViewer is creating invalid URIs here. I have confirmed that these malformed URIs are not coming from an end-user typing something or gadget etc. It is MediaViewer itself encoding them this way.

Steps to reproduce without CentralNotice:

  1. https://da.wikipedia.org/w/index.php?title=Justin_Bieber&oldid=10541210&debug=true
  2. Under "Diskografi" click on the blue padlock image. (Yes, this UI icon could be excluded from mediaviewer, but that's not the problem here.)
  3. The URL is now https://da.wikipedia.org/w/index.php?title=Justin_Bieber&oldid=10541210&debug=true&mobileaction=toggle_view_desktop#/media/Fil:Nuvola_apps_download_manager2-70%.svg

There are now two observable issues.

  • Issue 1: Running new mw.Uri() in the console at this time yields:
Uncaught URIError: malformed URI sequence
  • 2. Issue 2: If you reload this address or share the URL with someone else, they will not see the image in question. Instead, MediaViewer crashes on startup and prints the following error to the console:
TypeError: defaultUri is undefined

This suggests MediaViewer is correctly expecting an encoded URL on startup and trying to decode it, but that it isn't actually encoding it on the way into the address bar.

Since this involves nothing but canonical article URLs and standard UI navigation (no hacks etc.) this should not result in an invalid URI. Seems similar to T268060, but looks like it's not exactly the same, so will not be fixed after this train rolls out.

Krinkle moved this task from Untriaged to Dec 2020 on the Wikimedia-production-error board.Dec 15 2020, 7:25 PM
Krinkle edited projects, added MediaViewer, Structured Data Engineering; removed Fundraising-Backlog, MediaWiki-extensions-CentralNotice.
Restricted Application added a project: Structured-Data-Backlog. · View Herald TranscriptDec 15 2020, 7:25 PM
Krinkle renamed this task from CentralNotice throws exception on malformed URIS to CentralNotice throws exception on malformed URIs.Dec 15 2020, 7:27 PM
AndyRussG added subscribers: Reedy, AndyRussG.Dec 15 2020, 7:34 PM
In T269948#6693151, @Krinkle wrote:

Seems like an issue with MediaViewer, not CentralNotice. MediaViewer is creating invalid URIs here. I have confirmed that these malformed URIs are not coming from an end-user typing something or gadget etc. It is MediaViewer itself encoding them this way.

Thanks so much for digging in, @Krinkle, @Jdlrobson and @Reedy! Would it be possible to get a quick perspective on how much this affects users? I didn't understand there was any significant user impact, apologies. Regardless where the root of the problem lies, the change proposed for CN seems straightforward and the right thing to do, in any case. If it's worth useful, we can definitely take a few minutes to push out a CN change on a backport deploy.

Thanks again!

Krinkle added a comment.Dec 15 2020, 8:24 PM

The impact is that when someone is given a link to a full-screen MediaViewer lighbox for an image that contains a % in its file name, then they will see neither the lightbox nor a centralnotice banner. I expect this to be extremely rare. Unfortunately, we don't know how common ths issue is exactly, because for 95% of browsers we pretty discard all client-side errors without logging them (T266517).

I agree a defense in-depth approach from the CentralNotice side would also make sense, assuming that the code in question can be made optional/graceful. I imagine there are cases where it's required to be able to read/parse or serialise/format a URL string. But if this is not one of those cases then using a try-catch would make sense here, with the catch doing whatever would normally happen if there were no query parameters present.

DStrine added projects: MediaWiki-extensions-CentralNotice, Fundraising-Backlog.Dec 15 2020, 8:29 PM
AndyRussG added a comment.Dec 15 2020, 10:02 PM
In T269948#6693286, @Krinkle wrote:

The impact is that when someone is given a link to a full-screen MediaViewer lighbox for an image that contains a % in its file name, then they will see neither the lightbox nor a centralnotice banner. I expect this to be extremely rare.

K thanks so much! Ahh ok so, if I understand correctly, adding the try/catch to CN won't solve any issues outside CN not showing a banner on malformed URIs, right? Mostly the CN error in just alerted to the malformed URIs, correct?

If that's the case, I think we should make a separate task to add a try/catch for the call to mw.Uri() in CN (and in the catch block we probably would just emit a warning or something). Does that sound right?

Jdlrobson mentioned this in T270331: VisualEditor Uri exception breaks display of CentralNotice banners.Dec 16 2020, 6:25 PM
Umherirrender added a project: JavaScript.Dec 19 2020, 10:26 PM
CBogen moved this task from Triage to Multimedia on the Structured-Data-Backlog board.Jan 13 2021, 4:19 PM
SarthakKundra subscribed.Feb 3 2021, 8:29 AM

Hi. Has a new task been made for this as mentioned by @AndyRussG ? I'll like to take this / new task up. Also I agree with the approach suggested by him to add a try{} catch{} block to the call to mw.Uri(). If the author / maintainer agrees with that I can go ahead with it.

Jdlrobson added a comment.Feb 3 2021, 8:13 PM

@SarthakKundra try and catch could be one way to go here.

The offending line in Central Notice is:
var urlParams = $.extend( state.urlParams, ( new mw.Uri() ).query ),
https://github.com/wikimedia/mediawiki-extensions-CentralNotice/blob/8225a51b13cce067006fa31500621aa41e33e418/resources/ext.centralNotice.display/state.js#L156

SarthakKundra added a comment.Feb 8 2021, 12:36 PM

@Jdlrobson Thanks. I'll add a block. Sorry for the late reply, seems like I missed the notification.

SarthakKundra claimed this task.Feb 8 2021, 12:36 PM
SarthakKundra added a comment.Feb 10 2021, 12:25 PM

Hi @Jdlrobson. I can't find the steps to setup the project locally on Github or Gerrit. Can you help me with that? Thanks!

Jdlrobson added a subtask: T275799: mw.Uri cannot be called on subpages (TypeError: Cannot read property 'protocol' of undefined).Feb 25 2021, 5:26 PM
matmarex mentioned this in T275799: mw.Uri cannot be called on subpages (TypeError: Cannot read property 'protocol' of undefined).Feb 25 2021, 5:53 PM
matmarex closed this task as a duplicate of T207365: URL with % in fragment breaks scripts that use mw.Uri.
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL · Credits