Display Unicode URIs side-by-side with their Punycode encoding #15488
Conversation
microsoft-github-policy-service
bot
added
Issue-Bug
| @@ -3042,56 +3042,85 @@ namespace winrt::Microsoft::Terminal::Control::implementation | |||
| _core.ClearHoveredCell(); | |||
| } | |||
|
|
|||
| winrt::fire_and_forget TermControl::_hoveredHyperlinkChanged(IInspectable /*sender*/, | |||
| IInspectable /*args*/) | |||
| // Attackers abuse Unicode characters that happen to look similar to ASCII characters. Cyrillic for instance has | |||
There was a problem hiding this comment.
|
This is what it looks like: This is what happens if you use a right-to-left override (RTLO): |
| } | ||
|
|
||
| const auto uriText = sanitizeURI(_core.HoveredUriText()); |
There was a problem hiding this comment.
I'm not sure if we should encode URIs to Punycode a little earlier than this... If the encoding to Punycode fails, we shouldn't even allow the option to click it. On the other hand, the old code didn't handle that either and this fixes the immediate issue.
There was a problem hiding this comment.
Honestly, I am OKAY with this.
Thanks so much.
|
wait can you ctrl+click invalid URIs? |
|
send a screenshot! |
Yep, you can. It just might not work, because the OS validates them. For instance, this doesn't work: "`n`e]8;;https://www.`u{202e}xn--fcbook-3nf5b.com/`e\TOTALLY REAL FACEBOOK LINK. YOU CAN TRUST ME.`e]8;;`e\ `n`n"but this does (the a and e in "facebook" are not ASCII): "`n`e]8;;https://www.`u{202e}fаcеbook.com/`e\TOTALLY REAL FACEBOOK LINK. YOU CAN TRUST ME.`e]8;;`e\ `n`n"...which is a little concerning. You get this message instead:
What would you like to see? A comment above shows 2 situations - I'd be happy to make more. |
to be clear, it was not intended to |
| } | ||
|
|
||
| const auto uriText = sanitizeURI(_core.HoveredUriText()); |
There was a problem hiding this comment.
Honestly, I am OKAY with this.
Thanks so much.
| { | ||
| auto weakThis{ get_weak() }; | ||
| co_await wil::resume_foreground(Dispatcher()); |
There was a problem hiding this comment.
This is another instance where we were switching to the foreground to make touching UI objects safe. Are we convinced that this is safe?
There was a problem hiding this comment.
The only place _hoveredHyperlinkChanged is called from is the _core.HoveredHyperlinkChanged() event. _HoveredHyperlinkChangedHandlers is only called in ControlCore::_updateHoveredCell, which in turn is only called by SetHoveredCell and ClearHoveredCell. The former is only called by ControlInteractivity::PointerMoved which is a UI-thread-only function and the latter is only called by TermControl::_PointerExitedHandler which is the same. BTW It's somewhat weird that PointerMoved us in ControlInteractivity, but "pointer exited" isn't.
So yeah this can only be called from the UI thread.
There was a problem hiding this comment.
That's technically an implementation detail, but I'll allow it ;P
microsoft-github-policy-service
bot
added
Needs-Author-Feedback
| @@ -178,6 +178,10 @@ | |||
| <data name="HowToOpenRun.Text" xml:space="preserve"> | |||
| <value>Ctrl+Click to follow link</value> | |||
| </data> | |||
| <data name="InvalidUri" xml:space="preserve"> | |||
| <value>Invalid URI</value> | |||
| <comment>Whenever we encounter an invalid URI or URL we show this string as a warning.</comment> | |||
There was a problem hiding this comment.
| <comment>Whenever we encounter an invalid URI or URL we show this string as a warning.</comment> | |
| <comment>Whenever we encounter an invalid URI or URL we show this string as an error.</comment> |
nit
There was a problem hiding this comment.
Hmm I feel like "as a warning" is better in this case. 🤔
After all, this doesn't prevent you from clicking the URL.
Co-authored-by: Carlos Zamora <carlos.zamora@microsoft.com>
lhecker
added
the
AutoMerge
microsoft-github-policy-service
bot
merged commit f1aa699
into
main
microsoft-github-policy-service
bot
deleted the
dev/lhecker/15432-homoglyph-uris
branch
06174a9 didn't properly fix the issue of us showing homoglyphs in our URI tooltip. This commit introduces a different approach where we display both, the Punycode and Unicode encoding, whenever we encounter an IDN. This isn't perfect but simple to implement. Closes #15432 ## Validation Steps Performed * `https://www.xn--fcbook-3nf5b.com/` (which contains confusing glyphs) is shown both in its Punycode and Unicode form simultaneously. ✅ --------- Co-authored-by: Carlos Zamora <carlos.zamora@microsoft.com> (cherry picked from commit f1aa699) Service-Card-Id: 90012448 Service-Version: 1.17
06174a9 didn't properly fix the issue of us showing homoglyphs in our URI tooltip. This commit introduces a different approach where we display both, the Punycode and Unicode encoding, whenever we encounter an IDN. This isn't perfect but simple to implement. Closes #15432 ## Validation Steps Performed * `https://www.xn--fcbook-3nf5b.com/` (which contains confusing glyphs) is shown both in its Punycode and Unicode form simultaneously. ✅ --------- Co-authored-by: Carlos Zamora <carlos.zamora@microsoft.com> (cherry picked from commit f1aa699) Service-Card-Id: 90012449 Service-Version: 1.18
06174a9 didn't properly fix the issue of us showing homoglyphs in our
URI tooltip. This commit introduces a different approach where we
display both, the Punycode and Unicode encoding, whenever we encounter
an IDN. This isn't perfect but simple to implement.
Closes #15432
Validation Steps Performed
https://www.xn--fcbook-3nf5b.com/(which contains confusing glyphs)is shown both in its Punycode and Unicode form simultaneously. ✅