Page MenuHomePhabricator
Create Task
Maniphest T67747

Sanitizer::removeHTMLtags doesn't close tags correctly when $wgUseTidy is enabled
Closed, ResolvedPublic
Actions

Description

When a construct such as {{DISPLAYTITLE:<b>Foo bar<b>}} is used, the unbalanced tags leak and affect the rest of the page, as well as MediaWiki's interface.

Version: 1.24rc
URL: https://en.wikipedia.org/wiki/User:Jackmcbarn/65747

Details

Reference
bz65747
SubjectRepoBranchLines +/-
Add Sanitizer::removeSomeTags() which uses Remex to tokenizemediawiki/coremaster+360 -39
Customize query in gerrit

Related Objects
Search...

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 22 2014, 3:22 AM
bzimport added a project: MediaWiki-Parser.
bzimport set Reference to bz65747.
bzimport added a subscriber: Unknown Object (MLST).
Jackmcbarn created this task.May 25 2014, 7:55 PM
Jackmcbarn added a comment.May 25 2014, 7:56 PM

(hmm, why did this submit early?)

When a construct such as {{DISPLAYTITLE:<b>Foo bar<b>}} is used, the unbalanced tags leak and affect the rest of the page, as well as MediaWiki's interface.

Florian added a comment.May 26 2014, 1:10 PM

Maybe an extension problem on wikipedia? I have tested on a clean 1.24wmf5 version without anything and AllowDisplayTitle=true and RestrictDisplayTitle=false, but if i use displytitle parser hook in te same format like given (unclosed b-tag) i become only the plain title without bold (it's written bold, if i close the tag correctly). So, on a fresh mediawiki installation i can not reproduce this error (correct me, if i does everything false :)).

Jackmcbarn added a comment.May 26 2014, 5:05 PM

I've tracked this problem down to Sanitizer::removeHTMLtags and $wgUseTidy. When $wgUseTidy is disabled (as it is on default MediaWiki installations), calling Sanitizer::removeHTMLtags on "<b>test<b>" correctly yields "<b>test&lt;b&gt;</b>". However, when it is enabled, calling it on "<b>test<b>" yields "<b>test<b>" back unchanged, which is incorrect and the cause of this bug.

MrStradivarius added a comment.Oct 22 2014, 4:48 AM

Related to this, I've found that if you save the page with the following code on enwiki, it results in some very strange formatting:

<table> <table>Some text (The whitespace appears to be important.) See https://en.wikipedia.org/w/index.php?title=User:Mr._Stradivarius/Sandbox&oldid=630607976 for an example. You might need to try the link a few times; it appears to be an intermittent behaviour. Additionally, if this code is used on preview, it sometimes causes the input to be lost. I've opened bug 72343 about this.
MrStradivarius added a comment.Oct 22 2014, 4:50 AM

Created attachment 16838
Strange formatting after using double unclosed table tags

Attached:

MediaWiki_double_table_tag_screenshot.png (652×1 px, 90 KB)

Danny_B added a project: Tidy.May 28 2016, 10:31 AM
Danny_B removed a subscriber: wikibugs-l-list.
Danny_B removed a parent task: T4542: [DO NOT USE] HTML Tidy issues (tracking) [superseded by the #Tidy tag].May 28 2016, 10:50 AM
Izno updated the task description. (Show Details)Aug 16 2018, 3:52 PM
Izno added projects: RemexHtml, MediaWiki-extensions-Linter.Aug 16 2018, 4:06 PM
Izno added subscribers: ssastry, Izno.

The original "bug" is something Remex is still allowing. I wonder if it should be closed invalid due to the manual work all of those Wikimedians slaving over Linter. Should Sanitizer be trying to make fixes like the one it apparently made (and I would guess it still makes)? If it shouldn't, should that be a separate task somewhere to remove that from Sanitizer?

I think Mr. S's problem is probably reasonably resolved by the Linter categories related to table tags.

Izno added a comment.Aug 16 2018, 4:07 PM

(Response might be related to T198214: Deprecate and remove non-remex Tidy modes of the core parser.)

cscott subscribed.Sep 27 2018, 4:23 PM

I think the correct fix is actually something like T114445: [RFC] Balanced templates, which will ensure that templates (or magic words like DISPLAYTITLE) don't "leak".

stjn subscribed.Jan 25 2019, 11:19 AM

Another example of this type of bug: unclosed <font> tag affects the entire page due to leaking out of DISPLAYTITLE.

https://bcl.wikipedia.org/wiki/Paragamit:Cyrus_noto3at_bulaga

Would be harmful to Wikipedia design if more people get hold of this kind of bug.

cscott mentioned this in T299722: Sanitizer::removeHTMLtags should use Remex to tidy.Jan 20 2022, 10:34 PM
cscott added a parent task: T299722: Sanitizer::removeHTMLtags should use Remex to tidy.
cscott added a subtask: Restricted Task.
gerritbot added a comment.Jan 22 2022, 2:23 PM

Change 756116 had a related patch set uploaded (by C. Scott Ananian; author: C. Scott Ananian):

[mediawiki/core@master] WIP: Implement Sanitizer::removeHTMLtags() using Remex

https://gerrit.wikimedia.org/r/756116

gerritbot added a project: Patch-For-Review.Jan 22 2022, 2:23 PM
sbassett closed subtask Restricted Task as Resolved.Jan 24 2022, 7:33 PM
gerritbot added a comment.Mar 6 2022, 8:35 AM

Change 756116 merged by jenkins-bot:

[mediawiki/core@master] Add Sanitizer::removeSomeTags() which uses Remex to tokenize

https://gerrit.wikimedia.org/r/756116

ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.25; 2022-03-07).Mar 6 2022, 9:00 AM
Maintenance_bot removed a project: Patch-For-Review.Mar 6 2022, 9:10 AM
cscott closed this task as Resolved.Mar 10 2022, 8:55 PM
cscott claimed this task.
cscott mentioned this in T306862: Chinese Language Converter is not working in the sidebar table of the contents in Vector-2022.Mar 6 2023, 5:10 PM
Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL