Fix promises at EOF #4097
Fix promises at EOF #4097
Conversation
The previous computation could result in invalid values, which could lead to invalid promise ranges and subsequent crashes.
Don't include (part of) the PHP open tag in the HTML input.
Codecov ReportAll modified and coverable lines are covered by tests ✅
Additional details and impacted files@@ Coverage Diff @@
## master #4097 +/- ##
==========================================
+ Coverage 85.72% 85.85% +0.13%
==========================================
Files 239 239
Lines 56961 58633 +1672
==========================================
+ Hits 48827 50338 +1511
- Misses 8134 8295 +161 ☔ View full report in Codecov by Sentry. |
|
Thank you.
I agree with you. Some issues I have opened these days are related to this area. I will review this. |
| body input.php /^<div id="body">$/;" I line:26 language:HTML roles:def | ||
| content input.php /^ <main id="content">$/;" I line:27 language:HTML roles:def | ||
| post input.php /^ <article class="post" id="post-<?p/;" c line:31 language:HTML roles:attribute | ||
| post-<?p input.php /^ <article class="post" id="post-<?p/;" I line:31 language:HTML roles:def |
There was a problem hiding this comment.
I have a follow-up to fix the HTML promise range from the PHP lexer to fix this spurious <?p, but it currently depends on these changes so I'll post it after this is sorted out (no pressure, just saying that indeed, this tag is not exactly as it should be).
There was a problem hiding this comment.
Could you paste this comment into the commit log for this commit?
So people can understand this commit from its log only with 'git log'.
There was a problem hiding this comment.
If you want, but I'm not sure its so important to specify in the commit, it's just a note for review that it's not to be worried about, but I don't think it undermines the patch much.
Another option could be removing this line from the test case and add a new one for the other patch, I merely kept it like this because it's a "real" file and made me notice the issue.
Anyway, I can do either just fine, as you prefer :)
|
I'm very sorry to be late to respond. Though I introduced the original bug, let me report a case where this pull request doesn't work this time. input.html makes enter an infinite loop: |
JSP tags shouldn't trigger the PHP parser. This used to happen and trigger an infinite loop of a ping-pong effect with the HTML parser asking the PHP parser to parse the JSP block, and the PHP parser, not recognizing the input, asking the HTML one to deal with it. Rinse and repeat.
Don't worry, I understand only too well :)
I don't think it's a bug in this PR, but rather an existing issue in the HTML parser, and in the fact that the HTML and PHP parser both make promises for each other. I think if it's new with these changes, they might have merely uncovered it by fixing ranges. However, as this is likely a pretty rare issue limited to possibly the PHP/HTML couple, maybe a more localized fix would be fine -- if there's a way to know the input is from a promise, it might be easy. Or at the promise layer, refuse 2 promises starting at the same offset? |
|
Maybe even something like this? diff --git a/main/promise.c b/main/promise.c
index 01e84f5ca..428742c73 100644
--- a/main/promise.c
+++ b/main/promise.c
@@ -96,6 +96,17 @@ int makePromise (const char *parser,
return -1;
}
+ for (int i = 0; i < promise_count; i++)
+ {
+ p = promises + i;
+ if (p->startLine == startLine && p->startCharOffset == startCharOffset)
+ {
+ error (WARNING, "Ignoring promise at line %lu offset %lu because there is already an existing one at this location\n",
+ startLine, startCharOffset);
+ return -1;
+ }
+ }
+
if ( promise_count == promise_allocated)
{
size_t c = promise_allocated? (promise_allocated * 2): 8;beware that I know very little about this and didn't dig deep, it might drop legitimate promises e.g. if the offset is relative to the reduced input rather than the input file itself. But this illustrates a potential solution anyway. |
|
(I have not read the comments yet. I'm currently running ctags on the entire source code in Fedora now. So I have many chances to find bugs.) input.php makes enter an infinite loop: (Edited: This bug is reproduced with ctags 6.0.0. So this has nothing to do with this pull request, as @b4n wrote.) |
|
Instead of fcab90a, the following change also passes the test cases (parser-php.r/wp-guest.d) When PEG-based parsers run as guests, they don't work at all. |
getInputLineOffset()was giving very wrong results at EOF, leading to overlong promises, leading to crashes in building the narrowed input stream (see e.g. newly introduced test case, and geany/geany#3939).I'm unsure if this is a good way to fix the issue, but I couldn't find a better one; but admittedly I didn't poke around this code for a long time, and it got a fair bit more complicated with its newer features, so I might have missed something.