Page MenuHomePhabricator
Create Task
Maniphest T324976

VE crashes on page with partially percent encoded URL in anchor of internal link
Closed, ResolvedPublicBUG REPORT
Actions

Description

Steps to replicate the issue (include links if applicable):

What happens?:

  • VE startup crashes with a JS error URIError.

mw.utils.parsoid.js: mw.libs.ve.getTargetDataFromHref

		if ( href.match( /^\.\// ) ) {
			// The specific case of parsoid resource URIs, which are in the form `./Title`.
			// If they're redlinks they now include a querystring which should be stripped.
			uri = new mw.Uri( href );

The mw.Uri fails with a URIError exception, after which VE stops loading, with no user feedback.

What should have happened instead?:
Editor should have given user feedback, as invalid anchors in wikitext are 'allowed'. Any new mw.Uri with untrusted user input (wikitext) should probably always be wrapped in a try/catch.

Software version (skip for WMF-hosted wikis like Wikipedia):

Other information (browser name/version, screenshots, etc.):

Details

SubjectRepoBranchLines +/-
Try/catch around mw.Uri when decoding parsoid resourcesmediawiki/extensions/VisualEditormaster+31 -18
Customize query in gerrit

Related Objects

Event Timeline

TheDJ created this task.Dec 12 2022, 1:42 PM
Restricted Application added a subscriber: Aklapper. · View Herald TranscriptDec 12 2022, 1:42 PM
TheDJ mentioned this in T268682: URIError: malformed URI sequence at CXContributions.Dec 12 2022, 1:46 PM
DLynch claimed this task.Dec 12 2022, 3:32 PM
DLynch added a project: Editing-team (Kanban Board).
DLynch moved this task from Incoming to Code Review on the Editing-team (Kanban Board) board.
gerritbot added a comment.Dec 12 2022, 3:37 PM

Change 867192 had a related patch set uploaded (by DLynch; author: DLynch):

[mediawiki/extensions/VisualEditor@master] Try/catch around mw.Uri when decoding parsoid resources

https://gerrit.wikimedia.org/r/867192

gerritbot added a project: Patch-For-Review.Dec 12 2022, 3:37 PM
gerritbot added a comment.Dec 12 2022, 4:52 PM

Change 867192 merged by jenkins-bot:

[mediawiki/extensions/VisualEditor@master] Try/catch around mw.Uri when decoding parsoid resources

https://gerrit.wikimedia.org/r/867192

Esanders subscribed.Dec 12 2022, 4:56 PM

.. a page with the incorrectly encoded anchor ..

Note that putting "0.7% ODA" in the fragment is not incorrect encoding. The spec is very loose on how to interpret percentages:

Otherwise, if byte is 0x25 (%) and the next two bytes after byte in input are not in the ranges 0x30 (0) to 0x39 (9), 0x41 (A) to 0x46 (F), and 0x61 (a) to 0x66 (f), all inclusive, append byte to output.

i.e. it should only try to decode % followed by two hex chars, so mw.Uri is the buggy code in this instance.

If we use the native URL API it should work fine, and we have that loaded via a polyfill.

ReleaseTaggerBot added a project: MW-1.40-notes (1.40.0-wmf.14; 2022-12-12).Dec 12 2022, 5:01 PM
Maintenance_bot removed a project: Patch-For-Review.Dec 12 2022, 5:30 PM
matmarex moved this task from Code Review to QA on the Editing-team (Kanban Board) board.Dec 14 2022, 9:49 PM
matmarex added a project: Editing QA.
matmarex mentioned this in T325249: Replace use of mw.Uri in VE with native URL API.Dec 14 2022, 10:11 PM
VPuffetMichel moved this task from To Triage to Triaged on the VisualEditor board.Dec 15 2022, 4:49 PM
EAkinloose added subscribers: matmarex, EAkinloose.Dec 19 2022, 5:15 PM

It is displayed as a red link and VE works fine without crashing.

@DLynch , confirming that this is the expected behaviour.
Cc: @Esanders , @matmarex

EAkinloose moved this task from QA to Blocked / Needs More Work on the Editing-team (Kanban Board) board.Dec 19 2022, 5:15 PM
DLynch moved this task from Blocked / Needs More Work to Ready for Sign Off on the Editing-team (Kanban Board) board.Dec 19 2022, 6:05 PM

It should, indeed, be a red link and not crash VE.

EAkinloose edited projects, added Verified; removed Editing QA.Dec 19 2022, 6:06 PM
In T324976#8479116, @DLynch wrote:

It should, indeed, be a red link and not crash VE.

Esanders renamed this task from VE crashes on page with incorrectly uri encoded anchor on internal link to VE crashes on page with partially percent encoded URL in anchor of internal link.Dec 19 2022, 6:56 PM
Esanders updated the task description. (Show Details)
ppelberg closed this task as Resolved.Dec 22 2022, 1:20 AM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL