<rdar://problem/35915075>

Created attachment 328735 [details] Patch

Comment on attachment 328735 [details] Patch View in context: https://bugs.webkit.org/attachment.cgi?id=328735&action=review r=me > Source/WebCore/Modules/applicationmanifest/ApplicationManifestParser.cpp:60 > RefPtr<JSON::Value> jsonValue; > - if (!JSON::Value::parseJSON(text, jsonValue)) { > + if (!JSON::Value::parseJSON(text.stripWhiteSpace(), jsonValue)) { Does this actually change behavior? parseJSON looks to ignore leading whitespace: > Token parseToken(const UChar* start, const UChar* end, const UChar** tokenStart, const UChar** tokenEnd) > { > while (start < end && isSpaceOrNewline(*start)) > ++start; > ... It might also be good to have a link to the spec at the top of this file somewhere for quick reference. I suspect that is: https://w3c.github.io/manifest/ This part appears to be: https://w3c.github.io/manifest/#dfn-obtaining-the-manifest 1. Let json be the result of parsing text. If parsing throws an error: ... And here parseJSON(text) should satisfy this without the stripWhiteSpace.

(In reply to Joseph Pecoraro from comment #3) > Comment on attachment 328735 [details] > Patch > > View in context: > https://bugs.webkit.org/attachment.cgi?id=328735&action=review > > r=me > > > Source/WebCore/Modules/applicationmanifest/ApplicationManifestParser.cpp:60 > > RefPtr<JSON::Value> jsonValue; > > - if (!JSON::Value::parseJSON(text, jsonValue)) { > > + if (!JSON::Value::parseJSON(text.stripWhiteSpace(), jsonValue)) { > > Does this actually change behavior? parseJSON looks to ignore leading > whitespace: > > > Token parseToken(const UChar* start, const UChar* end, const UChar** tokenStart, const UChar** tokenEnd) > > { > > while (start < end && isSpaceOrNewline(*start)) > > ++start; > > ... > > It might also be good to have a link to the spec at the top of this file > somewhere for quick reference. I suspect that is: > https://w3c.github.io/manifest/ > > This part appears to be: > https://w3c.github.io/manifest/#dfn-obtaining-the-manifest > > 1. Let json be the result of parsing text. If parsing throws an error: ... > > And here parseJSON(text) should satisfy this without the stripWhiteSpace. The issue is with trailing whitespace. JSON::Value::parseJSON() (JSONValues.cpp:531) appears to fail if there are any characters remaining after parsing the value: const UChar* start = characters; const UChar* end = start + jsonInput.length(); const UChar* tokenEnd; auto result = buildValue(start, end, &tokenEnd, 0); if (!result || tokenEnd != end) return false; where actual JSON parsing seems to handle it just fine: > JSON.parse("\t[1,2,3] \n") < [1, 2, 3] Also the fact that some manifests that apparently have trailing whitespace (e.g. https://www.progressivewebflap.com) parsed prior to switching to JSON::Value::parseJSON(), but not after, (but did again after this patch), means this *is* a change in behavior.

> > 1. Let json be the result of parsing text. If parsing throws an error: ... > > > > And here parseJSON(text) should satisfy this without the stripWhiteSpace. > > The issue is with trailing whitespace. JSON::Value::parseJSON() > (JSONValues.cpp:531) appears to fail if there are any characters remaining > after parsing the value: Sounds like we should fix JSON::Value::parseJSON then.

Created attachment 328824 [details] Patch v2 Fix JSON::Value::parseJSON() instead of stripping its input in ApplicationManifestParser.

Comment on attachment 328824 [details] Patch v2 View in context: https://bugs.webkit.org/attachment.cgi?id=328824&action=review > Tools/TestWebKitAPI/Tests/WTF/JSONValue.cpp:645 > + } I'd suggest another section to test leading/trailing whitespace permutations: { RefPtr<JSON::Value> value; EXPECT_TRUE(JSON::Value::parseJSON(" 1", value)); EXPECT_TRUE(JSON::Value::parseJSON("\t1", value)); EXPECT_TRUE(JSON::Value::parseJSON("\n1", value)); EXPECT_TRUE(JSON::Value::parseJSON("1 ", value)); EXPECT_TRUE(JSON::Value::parseJSON("1\t", value)); EXPECT_TRUE(JSON::Value::parseJSON("1\n", value)); EXPECT_TRUE(JSON::Value::parseJSON(" 1 ", value)); EXPECT_TRUE(JSON::Value::parseJSON(" {} ", value)); EXPECT_TRUE(JSON::Value::parseJSON(" [] ", value)); EXPECT_FALSE(JSON::Value::parseJSON("1 1", value)); EXPECT_FALSE(JSON::Value::parseJSON("{} {}", value)); EXPECT_FALSE(JSON::Value::parseJSON("[] []", value)); }

Created attachment 328837 [details] Patch for landing

Comment on attachment 328837 [details] Patch for landing cq+ again, failure is unrelated.

Comment on attachment 328837 [details] Patch for landing Clearing flags on attachment: 328837 Committed r225699: <https://trac.webkit.org/changeset/225699>

All reviewed patches have been landed. Closing bug.

Comment on attachment 328837 [details] Patch for landing View in context: https://bugs.webkit.org/attachment.cgi?id=328837&action=review > Source/WTF/wtf/JSONValues.cpp:545 > - if (!result || tokenEnd != end) > + if (!result) > return false; > > + for (const UChar* valueEnd = tokenEnd; valueEnd < end; ++valueEnd) { > + if (!isSpaceOrNewline(*valueEnd)) > + return false; > + } Where is the ChangeLog for these changes? Also, a change like this needs a layout test validated against the spec and other browsers, not an API test. > Source/WebCore/ChangeLog:10 > + * Modules/applicationmanifest/ApplicationManifestParser.cpp: > + (WebCore::ApplicationManifestParser::parseManifest): This change is not in the patch, and was not committed.

Please explain why this JSON parsing change is correct, and add a test. I don't think that we should keep this patch in the tree without that.

(In reply to Alexey Proskuryakov from comment #15) > Please explain why this JSON parsing change is correct, and add a test. I > don't think that we should keep this patch in the tree without that. This is a change to WTF::JSON::Value::parseJSON, used internally to WebKit and not directly exposed to the page (JSC::JSONParse). WTF::JSON::Value::parseJSON allowed leading whitespace but not trailing whitespace, and this change fixed that to allow trailing whitespace. This better aligns WTF::JSON's parse with the JavaScript `JSON.parse(" 1 ")` in webpages as well as JSON parsing in other environments (Ruby and Python in a quick test). As this is not directly exposed to web pages, TestWebKitAPI unit tests were written to test this directly. Additionally a specific Web App Manifest test was added where WTF::JSON::Value is used to parse a JSON manifest specified by the page that previously would have failed. I missed that the ChangeLogs were not updated between the first and second version of the patch in my review. Since it was addressing my review comments I overlooked ChangeLogs. I don't think this needs to be rolled out. Was there a specific kind of test you were looking for?

I was assuming that we were not crazy enough to have two JSON parsers! If this is not exposed to JS, then no other test is necessary.

(In reply to Alexey Proskuryakov from comment #17) > I was assuming that we were not crazy enough to have two JSON parsers! Heh. The JavaScriptCore JSC::JSONParse parses and immediately produces JSValues tracked by the GC which is hard to work with if you want to interact with values in the JSON. WTF::JSON::Value::parseJSON parses and produces WTF::JSON::Values so it is basically a dictionary type easy to query, build, and stringify.