Skip to content
New issue

Have a question about this project? # for a free GitHub account to open an issue and contact its maintainers and the community.

#

By clicking “#”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? # to your account

Jump to bottom

decodeURI happening twice on a request causing server to crash #13298

Closed
1 task done
patheticGeek opened this issue Feb 23, 2025 · 0 comments · Fixed by #13303
Closed
1 task done

decodeURI happening twice on a request causing server to crash #13298

patheticGeek opened this issue Feb 23, 2025 · 0 comments · Fixed by #13303
Assignees
@ematipico
Labels
- P4: important Violate documented behavior or significantly impacts performance (priority) feat: routing Related to Astro routing (scope)

Comments

@patheticGeek
Copy link

patheticGeek commented Feb 23, 2025
edited
Loading

Astro Info

Astro                    v5.3.0
Node                     v18.20.3
System                   Linux (x64)
Package Manager          pnpm
Output                   server
Adapter                  @astrojs/node
Integrations             @astrojs/svelte

If this issue only occurs in one browser, which browser is a problem?

No response

Describe the Bug

When a request comes, the pathname is decoded and set in vite-plugin-astro-server/request.ts
but then in routing/match.ts -> matchAllRoutes we try to decode the uri again for some reason

this double decoding will break on routes such as:
original uri - /d/_'%22()&%25%3Czzz%3E%3CScRiPt%20%3EjEUh(9725)%3C%2fScRiPt%3E_4pGyF4moGuWlju5fyPal9rk6Zu7C8E77dNJetF_tSY0
decodeURI result - /d/_'"()&%<zzz><ScRiPt >jEUh(9725)<%2fScRiPt>_4pGyF4moGuWlju5fyPal9rk6Zu7C8E77dNJetF_tSY0

which if you try to decode again throws an error

Log:

URIError: URI malformed
    at decodeURI (<anonymous>)
    at file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/core/routing/match.js:12:31
    at Array.filter (<anonymous>)
    at matchAllRoutes (file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/core/routing/match.js:10:26)
    at matchRoute (file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/vite-plugin-astro-server/route.js:33:19)
    at run (file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/vite-plugin-astro-server/request.js:40:34)
    at runWithErrorHandling (file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/vite-plugin-astro-server/controller.js:64:11)
    at handleRequest (file:///home/work/company/node/services/next/node_modules/.pnpm/astro@5.3.0_@types+node@20.14.5_rollup@4.34.8_sass-embedded@1.77.5_sass@1.66.1_stylus@0.60.0__lgghma3k6xpffmxk56i5opga3e/node_modules/astro/dist/vite-plugin-astro-server/request.js:35:9)

What's the expected result?

The decode uri happens once and no error is emitted

Link to Minimal Reproducible Example

https://stackblitz.com/edit/github-gwdsqj

Participation

  • I am willing to submit a pull request for this issue.
@github-actions github-actions bot added the needs triage Issue needs to be triaged label Feb 23, 2025
@ematipico ematipico added the - P4: important Violate documented behavior or significantly impacts performance (priority) label Feb 24, 2025
@ematipico ematipico self-assigned this Feb 24, 2025
@github-actions github-actions bot removed the needs triage Issue needs to be triaged label Feb 24, 2025
@ematipico ematipico mentioned this issue Feb 24, 2025
Merged
@ematipico ematipico added pkg: astro Related to the core `astro` package (scope) feat: routing Related to Astro routing (scope) and removed pkg: astro Related to the core `astro` package (scope) labels Feb 25, 2025
# for free to join this conversation on GitHub. Already have an account? # to comment
Assignees

@ematipico ematipico

Labels
- P4: important Violate documented behavior or significantly impacts performance (priority) feat: routing Related to Astro routing (scope)
Projects
None yet
Milestone
No milestone
Development

Successfully merging a pull request may close this issue.

fix(core): double encoding during match of routes withastro/astro
2 participants
@ematipico @patheticGeek