DiscussionTools markup appears in dropdowns on Special:MediaSearch
Closed, ResolvedPublic
Actions

Assigned To

Authored By

	matmarex
	Sep 22 2021, 8:12 PM

Description

DiscussionTools markup appears in dropdowns on Special:MediaSearch.

https://commons.wikimedia.org/wiki/Special:MediaSearch

In T281165#7372994, @kostajh wrote:

@matmarex is this related? Shows up when doing a search on Commons.

Details

	Subject	Repo	Branch	Lines +/-
	Use text() instead of parse() for MediaSearch UI messages	mediawiki/extensions/MediaSearch	wmf/1.38.0-wmf.1	+47 -47
	Use text() instead of parse() for MediaSearch UI messages	mediawiki/extensions/MediaSearch	master	+47 -47

Customize query in gerrit

Related Objects
Search...

Status	Assigned	Task
Resolved	matmarex	T291833 Fix regressions caused by DiscussionTools page transformations
Resolved	matmarex	T291601 Re-evaluate Message 'interface' and 'title' flags for messages bundled via load.php, remove "Dwimmerlaik"
Resolved	ppelberg	T291630 Main namespace should not be listed in $wgExtraSignatureNamespaces on most wikis (e.g. Commons)
Resolved	matmarex	T291590 DiscussionTools markup appears in dropdowns on Special:MediaSearch

Event Timeline

matmarex created this task.Sep 22 2021, 8:12 PM

Restricted Application added a project: Structured-Data-Backlog. · View Herald TranscriptSep 22 2021, 8:12 PM

Restricted Application added a subscriber: Aklapper. · View Herald Transcript

matmarex mentioned this in T281165: 1.38.0-wmf.1 deployment blockers.Sep 22 2021, 8:12 PM

The obvious bug here is that these messages are parsed, while the rest of the code assumes they are plain text, and as a result they are double-escaped. This bug was already there.

But a second bug is that they are being parsed with the "interfaceMessage" flag turned off, so DiscussionTools thinks this is article content, and which may also have some other interesting consequences. I'm not sure why this happens yet.

I was going to submit a patch to resolve the first bug, but I noticed that the incorrect code was added in https://gerrit.wikimedia.org/r/c/mediawiki/extensions/MediaSearch/+/677030 in response to a security review. Do you have any reason to believe that these messages are not being escaped correctly somewhere else? @AnneT @matthiasmullie

As for the second bug…

The messages are parsed in a ResourceLoader packageFiles callback:

[mediawiki/extensions/MediaSearch]/extension.json

				{
					"name": "resources/data/searchOptions.json",
					"callback": "MediaWiki\\Extension\\MediaSearch\\SearchOptions::getSearchOptions"
				}

It invokes the callback with a ResourceLoaderContext object:

[mediawiki/core]/includes/resourceloader/ResourceLoaderFileModule.php

	private function expandPackageFiles( ResourceLoaderContext $context ) {
...
					$callbackResult = ( $fileInfo['callback'] )(
						$context,
						$this->getConfig(),
						$expanded['callbackParam']
					);

ResourceLoaderContext's msg() function uses inLanguage():

[mediawiki/core]/includes/resourceloader/ResourceLoaderContext.php

	public function msg( $key, ...$params ): Message {
		return wfMessage( $key, ...$params )
			->inLanguage( $this->getLanguage() )
			// Use a dummy title because there is no real title
			// for this endpoint, and the cache won't vary on it
			// anyways.
			->page( PageReferenceValue::localReference( NS_MAIN, 'Dwimmerlaik' ) );
	}

And inLanguage() turns off the interface flag!

[mediawiki/core]/includes/language/Message.php

	/**
	 * Request the message in any language that is supported.
	 *
	 * As a side effect interface message status is unconditionally
	 * turned off.
...
	 */
	public function inLanguage( $lang ) {
...
		$this->interface = false;
...
	}

This behavior was added in 2010 in commit rMWe5941506f9c3: Tidy up the class, which doesn't explain the reason why, other than asserting that it is "better handling for languages".

In T291590#7373050, @matmarex wrote:

I was going to submit a patch to resolve the first bug, but I noticed that the incorrect code was added in https://gerrit.wikimedia.org/r/c/mediawiki/extensions/MediaSearch/+/677030 in response to a security review. Do you have any reason to believe that these messages are not being escaped correctly somewhere else? @AnneT @matthiasmullie

We don't have any specific reason to believe that, this was just in response to security review findings (see the General Security Issues section).

Message does contains setInterfaceMessageFlag whose documentation seems to suggest it exists entirely to restore the interface behavior after setting a language. We could probably add that to the call chain in ResourceLoaderContext? I'm unsure of whether that'd cause side-effects we care about...

ppelberg subscribed.Sep 22 2021, 8:49 PM

In T291590#7373095, @AnneT wrote:

In T291590#7373050, @matmarex wrote:

I was going to submit a patch to resolve the first bug, but I noticed that the incorrect code was added in https://gerrit.wikimedia.org/r/c/mediawiki/extensions/MediaSearch/+/677030 in response to a security review. Do you have any reason to believe that these messages are not being escaped correctly somewhere else? @AnneT @matthiasmullie

We don't have any specific reason to believe that, this was just in response to security review findings (see the General Security Issues section).

In my experience, these suggestions from the Security team are never correct (see T242134#5898495). I guess I'll have a closer look at this case to make sure, and submit a patch. Thanks for the reply!

Thanks @matmarex for the summary.

It looks like this recent change (https://gerrit.wikimedia.org/r/c/mediawiki/extensions/DiscussionTools/+/713681/) may have caused an underlying problem in MediaSearch to surface?

If that's the case, would it be feasible to revert the DiscussionTools patch long enough for us to fix the underlying problem?

egardner merged a task: T291534: [commons-wmf.1] MediaSearch filters display html markup in filter labels.Sep 22 2021, 9:09 PM

egardner added subscribers: Etonkovidova, Seddon, • SWakiyama, CBogen.

@egardner If we're just fixing the use of parse in MediaSearch, I think it'd be quicker to do that (and backport it) than to revert the DiscussionTools patch.

The other issue with ResourceLoaderContext might require a bit more testing to work out if the simple fix would break anything elsewhere, but I don't think we need to rush that one?

In T291590#7373134, @DLynch wrote:

@egardner If we're just fixing the use of parse in MediaSearch, I think it'd be quicker to do that (and backport it) than to revert the DiscussionTools patch.

Fair enough, I can do this shortly unless someone else beats me to it.

ppelberg added a project: Editing-team (Kanban Board).Sep 22 2021, 9:25 PM

ppelberg moved this task from Incoming to Doing on the Editing-team (Kanban Board) board.

Change 722974 had a related patch set uploaded (by Eric Gardner; author: Eric Gardner):

[mediawiki/extensions/MediaSearch@master] Use text() instead of parse() for MediaSearch UI messages

https://gerrit.wikimedia.org/r/722974

gerritbot added a project: Patch-For-Review.Sep 22 2021, 9:36 PM

I didn't want to submit a patch until I could test it, and I couldn't reproduce the issue locally – it turns out you need $wgExtraSignatureNamespaces[] = NS_MAIN; in your LocalSettings.php to see it. (Which also implies that these messages are parsed in the context of a main namespace title, which seems to make ansolutely no sense, but oh well.)

In T291590#7373185, @matmarex wrote:

I didn't want to submit a patch until I could test it, and I couldn't reproduce the issue locally – it turns out you need $wgExtraSignatureNamespaces[] = NS_MAIN; in your LocalSettings.php to see it. (Which also implies that these messages are parsed in the context of a main namespace title, which seems to make ansolutely no sense, but oh well.)

We phased out Dwimmerlaik in the API a few years ago in favor of Special:Badtitle/dummy title for API calls set in api.php, it's probably time for ResourceLoader to do the same. As a side-effect this would probably fix this too since no one is adding NS_SPECIAL as an extra signature namespace?

As far as testing the patch, we can actually repro this problem on Beta commons: https://commons.wikimedia.beta.wmflabs.org/w/index.php?search=desert&title=Special:MediaSearch (garbled messages are visible there now).

So if someone wants to review and +2 the patch I just posted, we should be able to confirm on Beta that it fixes the problem before backporting.

matmarex merged a task: T291597: DiscussionTools inserts HTML paragraphs into MediaSearch filter combo boxes.Sep 22 2021, 10:43 PM

matmarex added a subscriber: mxn.

Reedy merged a task: T291599: Code error on Commons search results.Sep 22 2021, 11:38 PM

Reedy added a subscriber: Bethany.

Change 722974 merged by jenkins-bot:

[mediawiki/extensions/MediaSearch@master] Use text() instead of parse() for MediaSearch UI messages

https://gerrit.wikimedia.org/r/722974

Change 722990 had a related patch set uploaded (by Catrope; author: Eric Gardner):

[mediawiki/extensions/MediaSearch@wmf/1.38.0-wmf.1] Use text() instead of parse() for MediaSearch UI messages

https://gerrit.wikimedia.org/r/722990

ReleaseTaggerBot added a project: MW-1.38-notes (1.38.0-wmf.2; 2021-09-28).Sep 23 2021, 12:00 AM

Change 722990 merged by jenkins-bot:

[mediawiki/extensions/MediaSearch@wmf/1.38.0-wmf.1] Use text() instead of parse() for MediaSearch UI messages

https://gerrit.wikimedia.org/r/722990

Mentioned in SAL (#wikimedia-operations) [2021-09-23T00:35:57Z] <catrope@deploy1002> Synchronized php-1.38.0-wmf.1/extensions/MediaSearch/: Use text() instead of parse() for MediaSearch UI messages (T291590) (duration: 01m 08s)

Thanks for the quick patch @egardner (and the review and the backport @Catrope).

ReleaseTaggerBot edited projects, added MW-1.38-notes (1.38.0-wmf.1; 2021-09-21); removed MW-1.38-notes (1.38.0-wmf.2; 2021-09-28).Sep 23 2021, 1:00 AM

Maintenance_bot removed a project: Patch-For-Review.Sep 23 2021, 1:10 AM

Krinkle mentioned this in T291601: Re-evaluate Message 'interface' and 'title' flags for messages bundled via load.php, remove "Dwimmerlaik".Sep 23 2021, 1:18 AM

ppelberg closed this task as Resolved.Sep 23 2021, 5:49 AM

In T291590#7373188, @Legoktm wrote:

In T291590#7373185, @matmarex wrote:

I didn't want to submit a patch until I could test it, and I couldn't reproduce the issue locally – it turns out you need $wgExtraSignatureNamespaces[] = NS_MAIN; in your LocalSettings.php to see it. (Which also implies that these messages are parsed in the context of a main namespace title, which seems to make ansolutely no sense, but oh well.)

We phased out Dwimmerlaik in the API a few years ago in favor of Special:Badtitle/dummy title for API calls set in api.php, it's probably time for ResourceLoader to do the same. As a side-effect this would probably fix this too since no one is adding NS_SPECIAL as an extra signature namespace?