Fix Rikaitan API not able to export dictionary CSS on Firefox

jason-ojisan · jason-ojisan · commit 699f97791efe · 2025-10-21T23:41:59.000+03:00
* Use CSSOM as fallback for sanitization

* Allow data-permissions-setting to trigger transforms

* Add frontend for rikaitanApiAllowCssSanitizationBypass

* Add rikaitanApiAllowCssSanitizationBypass option

* Allow css to be passed through without sanitization

* Move newline stripping outside sanitization method

* Log css when sanitization is bypassed

* Only show sanitization bypass for firefox

* Fix typo

* Improve sanitization bypass description

&lt;rikaitan.link&gt;OWU0NDQzN2RjNzE2N2U4NGM1Nzc2MmE5OTJkNDkzYWRlZDE0OGQ3ZQo=&lt;/rikaitan.link&gt;
diff --git a/ext/data/schemas/options-schema.json b/ext/data/schemas/options-schema.json
@@ -129,7 +129,8 @@
                                     "fontSize",
                                     "lineHeight",
                                     "enableRikaitanApi",
-                                    "rikaitanApiServer"
+                                    "rikaitanApiServer",
+                                    "rikaitanApiAllowCssSanitizationBypass"
                                 ],
                                 "properties": {
                                     "enable": {
@@ -346,6 +347,10 @@
                                     "rikaitanApiServer": {
                                         "type": "string",
                                         "default": "http://127.0.0.1:19633"
+                                    },
+                                    "rikaitanApiAllowCssSanitizationBypass": {
+                                        "type": "boolean",
+                                        "default": false
                                     }
                                 }
                             },
diff --git a/ext/js/comm/rikaitan-api.js b/ext/js/comm/rikaitan-api.js
@@ -213,7 +213,7 @@ export class RikaitanApi {
 
                         const dictionaryMedia = includeMedia ? await this._fetchDictionaryMedia(dictionaryEntries) : [];
                         const audioMedia = includeAudioMedia ? await this._fetchAudio(dictionaryEntries, profileOptions) : [];
-                        const commonDatas = await this._createCommonDatas(text, dictionaryEntries, dictionaryMedia, audioMedia, profileOptions);
+                        const commonDatas = await this._createCommonDatas(text, dictionaryEntries, dictionaryMedia, audioMedia, profileOptions, domlessDocument);
                         const ankiTemplateRenderer = new AnkiTemplateRenderer(domlessDocument, domlessWindow);
                         await ankiTemplateRenderer.prepare();
                         const templateRenderer = ankiTemplateRenderer.templateRenderer;
@@ -378,9 +378,10 @@ export class RikaitanApi {
      * @param {import('rikaitan-api.js').apiDictionaryMediaDetails[]} dictionaryMediaDetails
      * @param {import('rikaitan-api.js').apiAudioMediaDetails[]} audioMediaDetails
      * @param {import('settings').ProfileOptions} options
+     * @param {Document} domlessDocument
      * @returns {Promise<import('anki-note-builder.js').CommonData[]>}
      */
-    async _createCommonDatas(text, dictionaryEntries, dictionaryMediaDetails, audioMediaDetails, options) {
+    async _createCommonDatas(text, dictionaryEntries, dictionaryMediaDetails, audioMediaDetails, options, domlessDocument) {
         /** @type {import('anki-note-builder.js').CommonData[]} */
         const commonDatas = [];
         for (const dictionaryEntry of dictionaryEntries) {
@@ -451,43 +452,71 @@ export class RikaitanApi {
                     }],
                     dictionaryMedia: dictionaryMedia,
                 },
-                dictionaryStylesMap: await this._getDictionaryStylesMapDomless(options.dictionaries),
+                dictionaryStylesMap: await this._getDictionaryStylesMapDomless(options, domlessDocument),
             });
         }
         return commonDatas;
     }
 
     /**
-     * @param {import('settings').DictionariesOptions} dictionaries
+     * @param {import('settings').ProfileOptions} options
+     * @param {Document} domlessDocument
      * @returns {Promise<Map<string, string>>}
      */
-    async _getDictionaryStylesMapDomless(dictionaries) {
+    async _getDictionaryStylesMapDomless(options, domlessDocument) {
         const styleMap = new Map();
-        for (const dictionary of dictionaries) {
+        for (const dictionary of options.dictionaries) {
             const {name, styles} = dictionary;
             if (typeof styles === 'string') {
-                styleMap.set(name, await this._sanitizeCSSOffscreen(styles));
+                // newlines and returns do not get converted into json well, are not required in css, and cause invalid css if not parsed for by the api consumer, just do the work for them
+                const sanitizedCSS = (await this._sanitizeCSSOffscreen(options, styles, domlessDocument)).replaceAll(/(\r|\n)/g, ' ');
+                styleMap.set(name, sanitizedCSS);
             }
         }
         return styleMap;
     }
 
     /**
+     * @param {import('settings').ProfileOptions} options
      * @param {string} css
+     * @param {Document} domlessDocument
      * @returns {Promise<string>}
      */
-    async _sanitizeCSSOffscreen(css) {
+    async _sanitizeCSSOffscreen(options, css, domlessDocument) {
         if (css.length === 0) { return ''; }
         try {
+            if (!this._offscreen) {
+                throw new Error('Offscreen page not available');
+            }
             const sanitizedCSS = this._offscreen ? await this._offscreen.sendMessagePromise({action: 'sanitizeCSSOffscreen', params: {css}}) : '';
             if (sanitizedCSS.length === 0 && css.length > 0) {
-                throw new Error('Failed to sanitize css');
+                throw new Error('CSS parsing failed');
             }
-            // newlines and returns do not get converted into json well, are not required in css, and cause invalid css if not parsed for by the api consumer, just do the work for them
-            return sanitizedCSS.replaceAll(/(\r|\n)/g, ' ');
+            return sanitizedCSS;
         } catch (e) {
-            log.log('Failed to sanitize css: ' + css.replaceAll(/(\r|\n)/g, ' ') + ', ' + toError(e).message);
+            log.log('Offscreen CSS sanitizer failed: ' + toError(e).message);
         }
+
+        try {
+            const style = domlessDocument.createElement('style');
+            // eslint-disable-next-line no-unsanitized/property
+            style.innerHTML = css;
+            domlessDocument.appendChild(style);
+            const styleSheet = style.sheet;
+            if (!styleSheet) {
+                throw new Error('CSS parsing failed');
+            }
+            return [...styleSheet.cssRules].map((rule) => rule.cssText || '').join('\n');
+        } catch (e) {
+            log.log('CSSOM CSS sanitizer failed: ' + toError(e).message);
+        }
+
+        if (options.general.rikaitanApiAllowCssSanitizationBypass) {
+            log.log('Failed to sanitize CSS. Sanitization bypass is enabled, passing through CSS without sanitization: ' + css.replaceAll(/(\r|\n)/g, ' '));
+            return css;
+        }
+
+        log.log('Failed to sanitize CSS: ' + css.replaceAll(/(\r|\n)/g, ' '));
         return '';
     }
 
diff --git a/ext/js/dom/dom-data-binder.js b/ext/js/dom/dom-data-binder.js
@@ -25,16 +25,16 @@ import {SelectorObserver} from './selector-observer.js';
  */
 export class DOMDataBinder {
     /**
-     * @param {string} selector
+     * @param {string[]} selectors
      * @param {import('dom-data-binder').CreateElementMetadataCallback<T>} createElementMetadata
      * @param {import('dom-data-binder').CompareElementMetadataCallback<T>} compareElementMetadata
      * @param {import('dom-data-binder').GetValuesCallback<T>} getValues
      * @param {import('dom-data-binder').SetValuesCallback<T>} setValues
      * @param {import('dom-data-binder').OnErrorCallback<T>|null} [onError]
      */
-    constructor(selector, createElementMetadata, compareElementMetadata, getValues, setValues, onError = null) {
-        /** @type {string} */
-        this._selector = selector;
+    constructor(selectors, createElementMetadata, compareElementMetadata, getValues, setValues, onError = null) {
+        /** @type {string[]} */
+        this._selectors = selectors;
         /** @type {import('dom-data-binder').CreateElementMetadataCallback<T>} */
         this._createElementMetadata = createElementMetadata;
         /** @type {import('dom-data-binder').CompareElementMetadataCallback<T>} */
@@ -49,27 +49,31 @@ export class DOMDataBinder {
         this._updateTasks = new TaskAccumulator(this._onBulkUpdate.bind(this));
         /** @type {TaskAccumulator<import('dom-data-binder').ElementObserver<T>, import('dom-data-binder').AssignTaskValue>} */
         this._assignTasks = new TaskAccumulator(this._onBulkAssign.bind(this));
-        /** @type {SelectorObserver<import('dom-data-binder').ElementObserver<T>>} */
-        this._selectorObserver = new SelectorObserver({
+        /** @type {SelectorObserver<import('dom-data-binder').ElementObserver<T>>[]} */
+        this._selectorObservers = selectors.map((selector) => new SelectorObserver({
             selector,
             ignoreSelector: null,
             onAdded: this._createObserver.bind(this),
             onRemoved: this._removeObserver.bind(this),
             onChildrenUpdated: this._onObserverChildrenUpdated.bind(this),
             isStale: this._isObserverStale.bind(this),
-        });
+        }));
     }
 
     /**
      * @param {Element} element
      */
     observe(element) {
-        this._selectorObserver.observe(element, true);
+        for (const selectorObserver of this._selectorObservers) {
+            selectorObserver.observe(element, true);
+        }
     }
 
     /** */
     disconnect() {
-        this._selectorObserver.disconnect();
+        for (const selectorObserver of this._selectorObservers) {
+            selectorObserver.disconnect();
+        }
     }
 
     /** */
@@ -98,8 +102,10 @@ export class DOMDataBinder {
         }
         if (all) {
             targets.length = 0;
-            for (const observer of this._selectorObserver.datas()) {
-                targets.push([observer, null]);
+            for (const selectorObserver of this._selectorObservers) {
+                for (const observer of selectorObserver.datas()) {
+                    targets.push([observer, null]);
+                }
             }
         }
 
diff --git a/ext/js/pages/settings/generic-setting-controller.js b/ext/js/pages/settings/generic-setting-controller.js
@@ -32,7 +32,7 @@ export class GenericSettingController {
         this._defaultScope = 'profile';
         /** @type {DOMDataBinder<import('generic-setting-controller').ElementMetadata>} */
         this._dataBinder = new DOMDataBinder(
-            '[data-setting]',
+            ['[data-setting]', '[data-permissions-setting]'],
             this._createElementMetadata.bind(this),
             this._compareElementMetadata.bind(this),
             this._getValues.bind(this),
@@ -75,7 +75,8 @@ export class GenericSettingController {
      */
     _createElementMetadata(element) {
         if (!(element instanceof HTMLElement)) { return void 0; }
-        const {setting: path, scope, transform: transformRaw} = element.dataset;
+        const {scope, transform: transformRaw} = element.dataset;
+        const path = element.dataset.setting ?? element.dataset.permissionsSetting;
         if (typeof path !== 'string') { return void 0; }
         const scope2 = this._normalizeScope(scope);
         return {
diff --git a/ext/settings.html b/ext/settings.html
@@ -188,7 +188,13 @@ <h1>Rikaitan Settings</h1>
                         </div>
                     </div>
                     <div class="settings-item-right">
-                        <label class="toggle"><input type="checkbox" class="permissions-toggle" data-permissions-setting="general.enableRikaitanApi" data-required-permissions="nativeMessaging"><span class="toggle-body"><span class="toggle-track"></span><span class="toggle-knob"></span></span></label>
+                        <label class="toggle"><input type="checkbox" class="permissions-toggle" data-permissions-setting="general.enableRikaitanApi" data-required-permissions="nativeMessaging"
+                        data-transform='{
+                            "type": "setVisibility",
+                            "selector": "#rikaitan-api-additional-options",
+                            "condition": {"op": "===", "value": true}
+                        }'
+                    ><span class="toggle-body"><span class="toggle-track"></span><span class="toggle-knob"></span></span></label>
                     </div>
                 </div>
                 <div class="settings-item-children more" hidden>
@@ -205,6 +211,51 @@ <h1>Rikaitan Settings</h1>
                         <a tabindex="0" class="more-toggle" data-parent-distance="3">Less&hellip;</a>
                     </p>
                 </div>
+                <div class="settings-item-children settings-item-children-group" id="rikaitan-api-additional-options" hidden>
+                    <div class="settings-item">
+                        <div class="settings-item-inner settings-item-inner-wrappable">
+                            <div class="settings-item-left">
+                                <div class="settings-item-label">
+                                    Allow bypassing css sanitization
+                                </div>
+                                <div class="settings-item-description">
+                                    <p class="warning-text">
+                                        Only enable this option if you trust the authors of your dictionaries or will perform sanitization outside of Rikaitan.
+                                        Malicious dictionaries can send malformed CSS to allow Javascript execution if injected into a webview or browser.
+                                        <a tabindex="0" class="more-toggle more-only" data-parent-distance="4">More&hellip;</a>
+                                    </p>
+                                </div>
+                                <div class="settings-item-description more" hidden>
+                                    <p>
+                                        A malicious dictionary which contains malicious CSS may try to execute Javascript.
+                                        For example, if the output of the Rikaitan API is used in Anki, then the resulting Anki card may execute unintended Javascript.
+                                        The risk in this case is similar to downloading a malicious Anki deck.
+                                        Namely, in both cases, you are relying purely on Anki's sandbox to protect your machine and information from the malicious code.
+                                        If the Anki sandbox works, card contents could be leaked (a minor confidential issue).
+                                        If the sandbox fails, there is much more to worry about (actions being taken on your machine such as stealing credentials and sensitive information, or ransomware taking over your computer).
+                                    </p>
+                                    <p>
+                                        If you choose to disable the CSS sanitization, we recommend thinking end-to-end about where the Rikaitan API output is used, and whether that destination is resilient to potentially malicious Javascript code being included, otherwise you are potentially risking the data and integrity of your system.
+                                    </p>
+                                    <p>
+                                        Sanitization bypass will allow CSS that cannot be sanitized to pass through the sanitizer unchanged.
+                                        This ONLY applies to the Rikaitan API, it will not make any other areas of Rikaitan potentially vulnerable.
+                                    </p>
+                                    <p>
+                                        This can be required to retrieve CSS on some browsers which do not support the offscreen page necessary for full CSS sanitization in the Rikaitan API on the backend.
+                                        Rikaitan will attempt to fall back on basic sanitization but this will fail for dictionaries making use of complex CSS.
+                                    </p>
+                                    <p class="margin-above">
+                                        <a tabindex="0" class="more-toggle" data-parent-distance="3">Less&hellip;</a>
+                                    </p>
+                                </div>
+                            </div>
+                            <div class="settings-item-right">
+                                <label class="toggle"><input type="checkbox" data-setting="general.rikaitanApiAllowCssSanitizationBypass"><span class="toggle-body"><span class="toggle-track"></span><span class="toggle-knob"></span></span></label>
+                            </div>
+                        </div>
+                    </div>
+                </div>
             </div>
         </div>
 
diff --git a/test/options-util.test.js b/test/options-util.test.js
@@ -314,6 +314,7 @@ function createProfileOptionsUpdatedTestData1() {
             stickySearchHeader: false,
             enableRikaitanApi: false,
             rikaitanApiServer: 'http://127.0.0.1:19633',
+            rikaitanApiAllowCssSanitizationBypass: false,
         },
         audio: {
             enabled: true,
diff --git a/types/ext/settings.d.ts b/types/ext/settings.d.ts
@@ -153,6 +153,7 @@ export type GeneralOptions = {
     sortFrequencyDictionaryOrder: SortFrequencyDictionaryOrder;
     stickySearchHeader: boolean;
     enableRikaitanApi: boolean;
+    rikaitanApiAllowCssSanitizationBypass: boolean;
 };
 
 export type PopupWindowOptions = {
