core: Refactor XML unescape and error handling

Author: SuchAFuriousDeath

core/common/src/xml.rs

@@ -1,16 +1,17 @@
+use quick_xml::escape::EscapeError as XmlEscapeError;
 use regress::Regex;
 use std::{ops::Deref, sync::LazyLock};
 
-static ENTITY_REGEX: LazyLock<Regex> = LazyLock::new(|| Regex::new(r"&[^;]*;").unwrap());
+// Matches XML entities like &amp; or &#39; or &#x1F600;
+// We exclude both ';' and '&' from the middle to avoid matching across multiple
+// ampersands - e.g. in "& &thing;" we want to match only "&thing;", not "& &thing;"
+static ENTITY_REGEX: LazyLock<Regex> = LazyLock::new(|| Regex::new(r"&[^;&]*;").unwrap());
 
 /// Handles flash-specific XML unescaping behavior.
 /// We accept all XML entities, and also accept standalone '&' without
 /// a corresponding ';'
-pub fn custom_unescape(
-    data: &[u8],
-    decoder: quick_xml::Decoder,
-) -> Result<String, quick_xml::Error> {
-    let input = decoder.decode(data)?;
+pub fn custom_unescape(input: &[u8]) -> Result<String, std::str::Utf8Error> {
+    let input = std::str::from_utf8(input)?;
 
     let re = ENTITY_REGEX.deref();
     let mut result = String::new();
@@ -19,23 +20,30 @@ pub fn custom_unescape(
     // Find all entities, and try to unescape them.
     // Our regular expression will skip over '&' without a matching ';',
     // which will preserve them as-is in the output
-    for cap in re.find_iter(&input) {
+    for cap in re.find_iter(input) {
         let start = cap.start();
         let end = cap.end();
+
         result.push_str(&input[last_end..start]);
 
         let entity = &input[start..end];
         // Unfortunately, we need to call this on each entity individually,
         // since it bails out if *any* entities in the string lack a terminating ';'
         match quick_xml::escape::unescape(entity) {
             Ok(decoded) => result.push_str(&decoded),
-            // FIXME - check the actual error once https://github.com/tafia/quick-xml/pull/584 is merged
-            Err(_) => result.push_str(entity),
+            Err(err) => match err {
+                XmlEscapeError::InvalidCharRef(_) | XmlEscapeError::UnrecognizedEntity(_, _) => {
+                    result.push_str(entity)
+                }
+                // The regex guarantees a semicolon
+                XmlEscapeError::UnterminatedEntity(_) => unreachable!(),
+            },
         }
 
         last_end = end;
     }
 
     result.push_str(&input[last_end..]);
+
     Ok(result)
 }

core/src/avm1/globals/xml.rs

@@ -12,6 +12,7 @@ use crate::string::{AvmString, StringContext, WStr, WString};
 use gc_arena::barrier::unlock;
 use gc_arena::lock::Lock;
 use gc_arena::{Collect, Gc};
+use quick_xml::encoding::EncodingError;
 use quick_xml::errors::IllFormedError;
 use quick_xml::events::attributes::AttrError;
 use quick_xml::{Reader, events::Event};
@@ -174,17 +175,15 @@ impl<'gc> Xml<'gc> {
 
             match event {
                 Event::Start(bs) => {
-                    let child =
-                        XmlNode::from_start_event(activation, bs, self.id_map(), parser.decoder())?;
+                    let child = XmlNode::from_start_event(activation, bs, self.id_map())?;
                     open_tags
                         .last()
                         .unwrap()
                         .append_child(activation.gc(), child);
                     open_tags.push(child);
                 }
                 Event::Empty(bs) => {
-                    let child =
-                        XmlNode::from_start_event(activation, bs, self.id_map(), parser.decoder())?;
+                    let child = XmlNode::from_start_event(activation, bs, self.id_map())?;
                     open_tags
                         .last()
                         .unwrap()
@@ -195,7 +194,9 @@ impl<'gc> Xml<'gc> {
                 }
                 Event::Text(bt) => {
                     Self::handle_text_cdata(
-                        custom_unescape(&bt.into_inner(), parser.decoder())?.as_bytes(),
+                        custom_unescape(&bt)
+                            .map_err(|e| quick_xml::Error::Encoding(EncodingError::Utf8(e)))?
+                            .as_bytes(),
                         ignore_white,
                         &open_tags,
                         activation,

core/src/avm1/xml/tree.rs

@@ -8,6 +8,7 @@ use gc_arena::{
     Collect, Gc, Mutation,
     lock::{Lock, RefLock},
 };
+use quick_xml::encoding::EncodingError;
 use quick_xml::escape::escape;
 use quick_xml::events::BytesStart;
 use ruffle_common::xml::custom_unescape;
@@ -83,18 +84,19 @@ impl<'gc> XmlNode<'gc> {
         activation: &mut Activation<'_, 'gc>,
         bs: BytesStart<'_>,
         id_map: Object<'gc>,
-        decoder: quick_xml::Decoder,
     ) -> Result<Self, quick_xml::Error> {
         let name = AvmString::new_utf8_bytes(activation.gc(), bs.name().into_inner());
         let node = Self::new(activation.gc(), ELEMENT_NODE, Some(name));
 
         // Reverse attributes so they appear in the `PropertyMap` in their definition order.
-        let attributes: Result<Vec<_>, _> = bs.attributes().collect();
-        let attributes = attributes?;
+        let attributes = bs.attributes().collect::<Result<Vec<_>, _>>()?;
+
         for attribute in attributes.iter().rev() {
             let key = AvmString::new_utf8_bytes(activation.gc(), attribute.key.into_inner());
-            let value_str = custom_unescape(&attribute.value, decoder)?;
-            let value = AvmString::new_utf8_bytes(activation.gc(), value_str.as_bytes());
+
+            let value_str = custom_unescape(&attribute.value)
+                .map_err(|e| quick_xml::Error::Encoding(EncodingError::Utf8(e)))?;
+            let value = AvmString::new_utf8(activation.gc(), value_str);
 
             // Insert an attribute.
             node.attributes()

core/src/avm2/e4x.rs

@@ -1,6 +1,6 @@
 use crate::avm2::error::{
-    make_error_1010, make_error_1085, make_error_1088, make_error_1118, make_unknown_ns_error,
-    make_xml_error,
+    XmlErrorCode, make_error_1010, make_error_1085, make_error_1088, make_error_1118,
+    make_unknown_ns_error, make_xml_error,
 };
 use crate::avm2::function::FunctionArgs;
 use crate::avm2::object::{E4XOrXml, FunctionObject, NamespaceObject};
@@ -15,8 +15,8 @@ use gc_arena::{
 
 use quick_xml::{
     Error as XmlError, NsReader,
-    errors::IllFormedError,
-    events::{BytesStart, Event},
+    errors::{IllFormedError, SyntaxError as XmlSyntaxError},
+    events::{BytesStart, Event, attributes::AttrError as XmlAttrError},
     name::ResolveResult,
 };
 use ruffle_common::xml::custom_unescape;
@@ -765,41 +765,71 @@ impl<'gc> E4XNode<'gc> {
         loop {
             let event = match parser.read_event() {
                 Ok(event) => event,
-                Err(XmlError::IllFormed(IllFormedError::MismatchedEndTag { expected, found })) => {
-                    // We must accept </a/>, </a />, and </a b="c">
-                    // TODO: Reject </a bc>, </a//>, <a //> etc.
-                    if let Some(rest) = found.strip_prefix(&expected) {
-                        if rest.starts_with([' ', '\t', '/']) {
-                            let node = open_tags.pop().unwrap();
-                            if open_tags.is_empty() {
-                                top_level.push(node);
+                Err(err) => {
+                    let err = match err {
+                        XmlError::IllFormed(IllFormedError::MismatchedEndTag {
+                            expected,
+                            found,
+                        }) => {
+                            // We must accept </a/>, </a />, and </a b="c">
+                            // TODO: Reject </a bc>, </a//>, <a //> etc.
+                            if let Some(rest) = found.strip_prefix(&expected) {
+                                if rest.starts_with([' ', '\t', '/']) {
+                                    let node = open_tags.pop().unwrap();
+                                    if open_tags.is_empty() {
+                                        top_level.push(node);
+                                    }
+                                    continue;
+                                }
                             }
-                            continue;
+                            make_error_1085(activation, &expected)
                         }
-                    }
-                    return Err(make_error_1085(activation, &expected));
-                }
-                Err(XmlError::IllFormed(IllFormedError::UnmatchedEndTag(_)))
-                    if open_tags.is_empty() =>
-                {
-                    return Err(make_error_1088(activation));
+                        XmlError::IllFormed(IllFormedError::UnmatchedEndTag(_))
+                            if open_tags.is_empty() =>
+                        {
+                            make_error_1088(activation)
+                        }
+                        XmlError::InvalidAttr(XmlAttrError::Duplicated(_, _)) => {
+                            make_xml_error(activation, XmlErrorCode::DuplicateAttribute)
+                        }
+                        XmlError::Syntax(syntax_error) => {
+                            let code = match syntax_error {
+                                XmlSyntaxError::UnclosedPIOrXmlDecl => {
+                                    XmlErrorCode::UnterminatedProcessingInstruction
+                                }
+                                XmlSyntaxError::UnclosedComment => {
+                                    XmlErrorCode::UnterminatedComment
+                                }
+                                XmlSyntaxError::UnclosedDoctype => {
+                                    XmlErrorCode::UnterminatedDoctype
+                                }
+                                XmlSyntaxError::UnclosedCData => XmlErrorCode::UnterminatedCData,
+                                XmlSyntaxError::UnclosedTag => XmlErrorCode::ElementMalformed,
+                                // TODO: handle other errors properly
+                                _ => XmlErrorCode::ElementMalformed,
+                            };
+
+                            make_xml_error(activation, code)
+                        }
+                        // TODO: handle other errors properly
+                        _ => make_xml_error(activation, XmlErrorCode::ElementMalformed),
+                    };
+
+                    return Err(err);
                 }
-                Err(err) => return Err(make_xml_error(activation, err)),
             };
 
             match &event {
                 Event::Start(bs) => {
-                    let child =
-                        E4XNode::from_start_event(activation, &parser, bs, parser.decoder())?;
+                    let child = E4XNode::from_start_event(activation, &parser, bs)?;
 
                     if let Some(current_tag) = open_tags.last_mut() {
                         current_tag.append_child(activation.gc(), child);
                     }
                     open_tags.push(child);
                 }
                 Event::Empty(bs) => {
-                    let node =
-                        E4XNode::from_start_event(activation, &parser, bs, parser.decoder())?;
+                    let node = E4XNode::from_start_event(activation, &parser, bs)?;
                     push_childless_node(node, &mut open_tags, &mut top_level, activation);
                 }
                 Event::End(_) => {
@@ -810,8 +840,10 @@ impl<'gc> E4XNode<'gc> {
                 }
                 Event::Text(bt) => {
                     handle_text_cdata(
-                        custom_unescape(bt, parser.decoder())
-                            .map_err(|e| make_xml_error(activation, e))?
+                        custom_unescape(bt)
+                            .map_err(|_| {
+                                make_xml_error(activation, XmlErrorCode::ElementMalformed)
+                            })?
                             .as_bytes(),
                         ignore_white,
                         &mut open_tags,
@@ -836,9 +868,11 @@ impl<'gc> E4XNode<'gc> {
                     if ignore_comments {
                         continue;
                     }
-                    let text = custom_unescape(bt, parser.decoder())
-                        .map_err(|e| make_xml_error(activation, e))?;
-                    let text = AvmString::new_utf8_bytes(activation.gc(), text.as_bytes());
+
+                    let text = custom_unescape(bt)
+                        .map_err(|_| make_xml_error(activation, XmlErrorCode::ElementMalformed))?;
+                    let text = AvmString::new_utf8(activation.gc(), text);
+
                     let node = E4XNode(Gc::new(
                         activation.gc(),
                         E4XNodeData {
@@ -856,8 +890,10 @@ impl<'gc> E4XNode<'gc> {
                     if ignore_processing_instructions {
                         continue;
                     }
-                    let text = custom_unescape(bt, parser.decoder())
-                        .map_err(|e| make_xml_error(activation, e))?;
+
+                    let text = custom_unescape(bt)
+                        .map_err(|_| make_xml_error(activation, XmlErrorCode::ElementMalformed))?;
+
                     let (name, value) = if let Some((name, value)) = text.split_once(' ') {
                         (
                             AvmString::new_utf8_bytes(activation.gc(), name.as_bytes()),
@@ -910,18 +946,26 @@ impl<'gc> E4XNode<'gc> {
         activation: &mut Activation<'_, 'gc>,
         parser: &NsReader<&[u8]>,
         bs: &BytesStart<'_>,
-        decoder: quick_xml::Decoder,
     ) -> Result<Self, Error<'gc>> {
         let mut attribute_nodes = Vec::new();
         let mut namespaces = Vec::new();
 
-        let attributes: Result<Vec<_>, _> = bs.attributes().collect();
-        for attribute in
-            attributes.map_err(|e| make_xml_error(activation, XmlError::InvalidAttr(e)))?
-        {
-            let value_str = custom_unescape(&attribute.value, decoder)
-                .map_err(|e| make_xml_error(activation, e))?;
-            let value = AvmString::new_utf8_bytes(activation.gc(), value_str.as_bytes());
+        let attributes = bs
+            .attributes()
+            .collect::<Result<Vec<_>, XmlAttrError>>()
+            .map_err(|e| {
+                let code = match e {
+                    XmlAttrError::Duplicated(_, _) => XmlErrorCode::DuplicateAttribute,
+                    _ => XmlErrorCode::ElementMalformed,
+                };
+
+                make_xml_error(activation, code)
+            })?;
+
+        for attribute in attributes {
+            let value_str = custom_unescape(&attribute.value)
+                .map_err(|_| make_xml_error(activation, XmlErrorCode::ElementMalformed))?;
+            let value = AvmString::new_utf8(activation.gc(), value_str);
 
             let (ns, local_name) = parser.resolve_attribute(attribute.key);