Fix browser-crashing bug #71

Merged
merged 2 commits into from Nov 1, 2013

Conversation

Projects
None yet
3 participants
Contributor

clintharrison commented Mar 25, 2013

If a user writes a line with an appropriate number of characters that ends in a tag with an entity immediately following, ajaxChat.breakLongWords() will insert the break string in the middle of the entity.

This is reproducible with the default settings of 32 character line lengths with the following message:
1234567890123456789012345678:)&

This results in the :) being replaced by the proper <img> tag while the &amp; does not get recognized as the beginning of an entity and &amp&#8203;; is the result.

Consequently the exception (DOM Exception 12--invalid syntax) is caught, but in the handling of it, there seems to be an infinite loop. In Firefox, Safari, and Chrome, memory usage will rise by about 100 MB per second until the task is killed. Removing the lines that report this error will stop the leak, but after a few minutes Chrome will crash anyway. The solution is to not produce invalid HTML in the first place ;)

Additionally a small fix, E_ALL is actually all errors but strict. This fixes that, too.

Owner

Frug commented Mar 25, 2013

Thank you for the report. I'll review and merge shortly.

Why would we want to show strict errors though? That's useful for development but showing strict warnings to users is usually not what they want. I was debating shutting off error reporting in the release code.

Contributor

clintharrison commented Mar 25, 2013

Well, if you're going to show any errors at all, I would say just go ahead and show them all. In production though you probably don't want to show any. I'm not sure what the best option is right now.

Owner

Frug commented Mar 25, 2013

STRICT messages aren't errors though, they're recommendations that can safely be ignored. Showing them when it's not necessary will actually cause problems that wouldn't otherwise be problems by, for example, breaking the XML output of a page.

Contributor

clintharrison commented Apr 2, 2013

Fair enough. Feel free not to merge that, though I've seen the other bug hit accidentally, killing the browsers of an entire room :P

I can confirm this, just tried with the example message and it killed the browsers of the whole room 👍

Owner

Frug commented Nov 1, 2013

I can also confirm this spectacularly crashed firefox for me.

Frug added a commit that referenced this pull request Nov 1, 2013

@Frug Frug merged commit 415e51f into Frug:master Nov 1, 2013

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment