-
-
Notifications
You must be signed in to change notification settings - Fork 216
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
Protect community from confusable homoglyphs #1470
Open
MartinDelille
wants to merge
9
commits into
master
Choose a base branch
from
1469-confusable-homoglyps
base: master
Could not load branches
Branch not found: {{ refName }}
Loading
Could not load tags
Nothing to show
Loading
Are you sure you want to change the base?
Some commits from the old base branch may be removed from the timeline,
and old review comments may become outdated.
Open
Changes from all commits
Commits
Show all changes
9 commits
Select commit
Hold shift + click to select a range
d4e9256
protect community from confusable homoglyphs
MartinDelille 6f100de
adding confusable_homoglyphs to requirements_base.txt
MartinDelille b4d4c05
fix flake8 test
MartinDelille 4883243
update confusable_homoglyphs in make env step
MartinDelille 9b496bc
move unconfusable_string to liberapay/utils/unconfusable.py
MartinDelille 64033bd
disable confusable_homoglyphs update in make env
MartinDelille 03b1fa3
add spacing line in requirements_base.txt
MartinDelille 2a96f25
one liner import
MartinDelille a73af92
document unconfusable_string
MartinDelille File filter
Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,13 @@ | ||
from confusable_homoglyphs import confusables | ||
|
||
# Convert an Unicode string to its equivalent replacing all confusable homoglyphs | ||
# to its common/latin equivalent | ||
There was a problem hiding this comment. Choose a reason for hiding this commentThe reason will be displayed to describe this comment to others. Learn more. That's a comment, not a docstring. |
||
def unconfusable_string(s): | ||
unconfusable_string = '' | ||
for c in s: | ||
confusable = confusables.is_confusable(c, preferred_aliases=['COMMON', 'LATIN']) | ||
if confusable: | ||
# if the character is confusable we replace it with the first prefered alias | ||
c = confusable[0]['homoglyphs'][0]['c'] | ||
unconfusable_string += c | ||
return unconfusable_string |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
This is a very inefficient implementation, the more communities there are the slower it becomes. Also you're repeating an identical function call (
cls._unconfusable(name)
) in every loop iteration.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Fixed here: 9b496bc
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
You only fixed the repeated call, not the wider issue: this implementation is still inefficient.
There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
Which part is the most inefficient:
unconfusable_string
function?There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
The fetching of all the existing community names from the database and the subsequent loop. That's linear complexity, O(n), with
n
being the number of existing communities.There was a problem hiding this comment.
Choose a reason for hiding this comment
The reason will be displayed to describe this comment to others. Learn more.
We should probably do something like this instead: