Work around '#' escaping bug in bip21 crate #373
Conversation
|
Hmm. It looks like The You can see the |
|
It seems like this PR is missing the corresponding percent-decode in Something like the following seems to address the issue in my local environment. "pj" if self.pj.is_none() => {
let encoded = Cow::try_from(value).map_err(|_| InternalPjParseError::NotUtf8)?;
let decoded = percent_decode_str(&encoded)
.map_err(|_| InternalPjParseError::BadEndpoint)?
.decode_utf8()
.map_err(|_| InternalPjParseError::NotUtf8)?;
let url = Url::parse(&decoded).map_err(|_| InternalPjParseError::BadEndpoint)?;
self.pj = Some(url);
Ok(bip21::de::ParamKind::Known)
}These commits should be squashed if we agree that they're the right ones to make |
|
I don't understand the CI error, I can't replicate it locally with act, and neither cargo 1.77.2 (e52e36006 2024-03-26), 1.80.0 (376290515 2024-07-16), nor 1.81.0 (2dbb1af80 2024-08-20) does anything to the lockfile, I'd appreciate some guidance |
|
I believe the long-running ohttp relay and directory tasks in integration tests started becoming flaky around a week ago. I'm not sure why they're causing the problem, but the problem seems to have to do with the GitHub CI environment |
My fix is actually buggy, because the '#' only encoding pass should happen after the incomplete encoding, because it runs before the '%' in the '%23' is then escaped as well The bip21 crate is correct here, so unfortunately I don't think there's a simple workaround without the upstream fix:
This is not correct as it would decode escaped parameter values, e.g. if the pj URI has a query string in it, and that has an escaped # in it, it'd break the pj URI parsing. Decoding is already done here: https://github.com/Kixunil/bip21/blob/eae72026cc5838bb169949641948b8c1cef99cbe/src/de.rs#L65 As confirmed by this test: |
|
I don't see any other way of fixing serialization Something like the following approach could work if impl<'a> fmt::Display for PjUri<'a> {
fn fmt(&self, f: &mut fmt::Formatter) -> fmt::Result {
let malformed_uri = format!("{}", self);
let escaped = malformed_uri.replacen("#", "%23", 1);
write!(f, "{}", escaped)?;
}
}The only solutions I can see are waiting for upstream fix to be merged or making I pushed a version of the latter with a |
nothingmuch
force-pushed
the
escape-fragment-separator
branch
2 times, most recently
from
16e7fb7 to
f2b9dfa
Compare
|
Dropped the Deref hack, just froze the dep to use the bugfix PR branch as per our chat |
nothingmuch
force-pushed
the
escape-fragment-separator
branch
from
f2b9dfa to
ba0378c
Compare
|
rust-bitcoin/rust-bitcoin#3650 edit: Crates.io does NOT allow wildcard version dependencies |
|
Since this is deadlocked by kixunil I propose we start a new crate with hopes to implement the new unmerged bip spec anyhow. @spacebear21 is this something you'll have capacity for? |
Sure, should we start by just forking Kixunil's repo into the payjoin project and merge Kixunil/bip21#26 there? I'm hesitant to publish a crate for an unfinalized/unmerged bip, which wouldn't even be compliant with said bip, but I guess we could put a big disclaimer up front. |
These commits: 1. encode fragment paramters as bech32 strings (with no checksum), with 2 character param names in the human readable part, and `+` as a delimiter - expiry time parameter encoded as a little endian u32, in line with bitcoin header timestamp and unix time nLocktime encoding. `EX` hrp - ohttp has `OH` hrp, same byte representation as previously encoded in base64 - receiver key has `RK` hrp, same byte representation as previously encoded in base64 2. use bech32 with no human readable part for the subdirectory IDs 3. uppercase the scheme and host of the URI 4. move the pj so it follows the pjos parameter Once the `#` %-escaping bug is fixed (see #373), and as long as no path elements between the host and the subdirectory ID, the entire `pj` parameter of the bip21 URI can be encoded in a QR using the alphanumeric mode. Closes #389. Manually verified, with manual % escaping of `#`, using the `qrencode` CLI encoder alphanumeric mode is indeed used for everything following `pj=`.
|
The Kixunil/bip21#26 issue is now fixed in bitcoin_uri 0.1.0 fork |
nothingmuch
force-pushed
the
escape-fragment-separator
branch
2 times, most recently
from
18dd004 to
a7affe7
Compare
nothingmuch
force-pushed
the
escape-fragment-separator
branch
from
a7affe7 to
d46d704
Compare
Pull Request Test Coverage Report for Build 12131928990Details
💛 - Coveralls |
nothingmuch
force-pushed
the
escape-fragment-separator
branch
2 times, most recently
from
80be48e to
d822f02
Compare
These commits:
1. encode fragment paramters as bech32 strings (with no checksum), with
2 character param names in the human readable part, and `+` as a
delimiter
- expiry time parameter encoded as a little endian u32, in line with
bitcoin header timestamp and unix time nLocktime encoding. `EX` hrp
- ohttp has `OH` hrp, same byte representation as previously encoded in
base64
- receiver key has `RK` hrp, same byte representation as previously
encoded in base64
2. use bech32 with no human readable part for the subdirectory IDs
3. uppercase the scheme and host of the URI
4. move the pj so it follows the pjos parameter
Once the `#` %-escaping bug is fixed (see #373), and as long as no path
elements between the host and the subdirectory ID, the entire `pj`
parameter of the bip21 URI can be encoded in a QR using the alphanumeric
mode. Closes #389.
The last commit seems sufficiently motivated. Since there is no purpose
to clearing these values it doesn't actually simplify the code that much.
Manually verified, with manual % escaping of `#`, using the `qrencode`
CLI encoder alphanumeric mode is indeed used for everything following
`pj=`.
nothingmuch
force-pushed
the
escape-fragment-separator
branch
from
d822f02 to
66e243d
Compare
The `pj` parameter of the BIP 21 URL is itself a URL which contains a fragment. The # character was not escaped by bip21 during serialization. According to RFC 3986, this terminates the query string, effectively truncating the `pj` parameter. The buggy deserialization likewise ignored #, parsing it as part of the value, which survived a round trips with the incorrect serialization behavior.
nothingmuch
force-pushed
the
escape-fragment-separator
branch
from
66e243d to
1aaa7a7
Compare
The
pjparameter of the BIP 21 URL is itself a URL which contains afragment.
The # character was not escaped by bip21 during serialization. According
to RFC 3986, this terminates the query string, effectively truncating the
pjparameter.
The buggy deserialization likewise ignored #, parsing it as part of the
value, which survived a round trips with the incorrect serialization
behavior.
Upstream fix PR: payjoin/bitcoin_uri#3