Prevent 500 with badly formed task list (#11328)

Fix #11317

Signed-off-by: Andrew Thornton <art27@cantab.net>

modules/markup/markdown/goldmark.go

@@ -125,24 +125,30 @@ func (g *ASTTransformer) Transform(node *ast.Document, reader text.Reader, pc pa
 			}
 			v.Destination = link
 		case *ast.List:
-			if v.HasChildren() && v.FirstChild().HasChildren() && v.FirstChild().FirstChild().HasChildren() {
+			if v.HasChildren() {
-				if _, ok := v.FirstChild().FirstChild().FirstChild().(*east.TaskCheckBox); ok {
+				children := make([]ast.Node, 0, v.ChildCount())
-					v.SetAttributeString("class", []byte("task-list"))
+				child := v.FirstChild()
-					children := make([]ast.Node, 0, v.ChildCount())
+				for child != nil {
-					child := v.FirstChild()
+					children = append(children, child)
-					for child != nil {
+					child = child.NextSibling()
-						children = append(children, child)
+				}
-						child = child.NextSibling()
+				v.RemoveChildren(v)
-					}
-					v.RemoveChildren(v)
 
-					for _, child := range children {
+				for _, child := range children {
-						listItem := child.(*ast.ListItem)
+					listItem := child.(*ast.ListItem)
-						newChild := NewTaskCheckBoxListItem(listItem)
+					if !child.HasChildren() || !child.FirstChild().HasChildren() {
-						taskCheckBox := child.FirstChild().FirstChild().(*east.TaskCheckBox)
+						v.AppendChild(v, child)
-						newChild.IsChecked = taskCheckBox.IsChecked
+						continue
-						v.AppendChild(v, newChild)
 					}
+					taskCheckBox, ok := child.FirstChild().FirstChild().(*east.TaskCheckBox)
+					if !ok {
+						v.AppendChild(v, child)
+						continue
+					}
+					newChild := NewTaskCheckBoxListItem(listItem)
+					newChild.IsChecked = taskCheckBox.IsChecked
+					newChild.SetAttributeString("class", []byte("task-list-item"))
+					v.AppendChild(v, newChild)
 				}
 			}
 		}

modules/markup/markdown/markdown_test.go

@@ -141,10 +141,10 @@ func testAnswers(baseURLContent, baseURLImages string) []string {
 <h2 id="user-content-custom-id">More tests</h2>
 <p>(from <a href="https://www.markdownguide.org/extended-syntax/" rel="nofollow">https://www.markdownguide.org/extended-syntax/</a>)</p>
 <h3 id="user-content-checkboxes">Checkboxes</h3>
-<ul class="task-list">
+<ul>
-<li><span class="ui checkbox"><input type="checkbox" readonly="readonly"/><label>unchecked</label></span></li>
+<li class="task-list-item"><span class="ui checkbox"><input type="checkbox" readonly="readonly"/><label>unchecked</label></span></li>
-<li><span class="ui checked checkbox"><input type="checkbox" checked="" readonly="readonly"/><label>checked</label></span></li>
+<li class="task-list-item"><span class="ui checked checkbox"><input type="checkbox" checked="" readonly="readonly"/><label>checked</label></span></li>
-<li><span class="ui checkbox"><input type="checkbox" readonly="readonly"/><label>still unchecked</label></span></li>
+<li class="task-list-item"><span class="ui checkbox"><input type="checkbox" readonly="readonly"/><label>still unchecked</label></span></li>
 </ul>
 <h3 id="user-content-definition-list">Definition list</h3>
 <dl>

modules/markup/sanitizer.go

@@ -54,7 +54,7 @@ func ReplaceSanitizer() {
 	sanitizer.policy.AllowAttrs("class").Matching(regexp.MustCompile(`ref-issue`)).OnElements("a")
 
 	// Allow classes for task lists
-	sanitizer.policy.AllowAttrs("class").Matching(regexp.MustCompile(`task-list`)).OnElements("ul")
+	sanitizer.policy.AllowAttrs("class").Matching(regexp.MustCompile(`task-list-item`)).OnElements("li")
 
 	// Allow icons
 	sanitizer.policy.AllowAttrs("class").Matching(regexp.MustCompile(`^icon(\s+[\p{L}\p{N}_-]+)+$`)).OnElements("i")

web_src/less/_markdown.less

@@ -192,9 +192,9 @@
         list-style-type: none;
     }
 
-    ul.task-list,
+    li.task-list-item {
-    ol.task-list {
         list-style-type: none;
+        margin-left: calc(-2em + 2px);
     }
 
     ul ul,