Page MenuHomePhabricator
Create Task
Maniphest T26258

mediawiki doesn't allow "%ab" as page name, but does allow "%ft" or "%a"
Closed, InvalidPublic
Actions

Description

Author: debian

Description:
Forwarded bug from Ubuntu.

Binary package hint: mediawiki

mediawiki blocked %[a-f][a-f] only, that's confusing

if these names will lead to problems, you'd better block "%" entirely for better understanding.
and i don't know what are the problems. it doesn't appears to be any problems since all links to the name "%ft%rs" works well. if there are, those should be bugs.

if these names will not lead to problems, why should you have such a limit? remove it.

Version: 1.15.x
Severity: enhancement

Details

Reference
bz24258

Event Timeline

bzimport raised the priority of this task from to Medium.Nov 21 2014, 10:59 PM
bzimport added a project: MediaWiki-General.
bzimport set Reference to bz24258.
bzimport added a subscriber: Unknown Object (MLST).
bzimport created this task.Jul 4 2010, 8:37 PM
MZMcBride added a comment.Jul 4 2010, 8:41 PM

http://en.wikipedia.org/w/index.php?title=%AB&redirect=no seems to work fine.

MaxSem added a comment.Jul 4 2010, 8:51 PM

http://www.mediawiki.org/wiki/%ab - works, though because it's not valid UTF-8 it gets converted to « according to content language's fallback encoding.

http://www.mediawiki.org/wiki/%ft - "Bad Request" by Apache
http://www.mediawiki.org/w/index.php?title=%ft - works, though because %ft is not a valid URL-encoded sequence, it gets eventually converted to %25ft

same thing with %a

I see no problem with MediaWiki, just Apache/rewrite rules.

MaxSem added a comment.Jul 4 2010, 9:03 PM

Aforementioned bug:

https://bugs.launchpad.net/ubuntu/+source/mediawiki/+bug/577822

IAlex added a comment.Jul 4 2010, 9:09 PM

This is the correct behavior, since we only block "%[0-9A-Fa-f]{2}" to not conflict with URL escaping sequences (includes/Title.php line 2420 in trunk).

bzimport added a comment.Jul 4 2010, 9:22 PM

debian wrote:

So to clarify, this behaviour is by design? Is it likely to be left like that or changed in future?

bzimport added a comment.Oct 24 2010, 2:49 PM

Bryan.TongMinh wrote:

This behaviour is by design indeed.

Content licensed under Creative Commons Attribution-ShareAlike (CC BY-SA) 4.0 unless otherwise noted; code licensed under GNU General Public License (GPL) 2.0 or later and other open source licenses. By using this site, you agree to the Terms of Use, Privacy Policy, and Code of Conduct. · Wikimedia Foundation · Privacy Policy · Code of Conduct · Terms of Use · Disclaimer · CC-BY-SA · GPL