We use cookies to ensure you get the best experience on our website
Inicio Explorar Ayuda
Registro Iniciar sesión
0ct0pu5
/
ladybird
1
0
Fork 0
Archivos Incidencias 0 Pull Requests 0 Wiki
Explorar el Código

LibHTML+IRCClient: Add an escape_html_entities() helper

This simple helper escapes '<', '>' and '&' so they can be used in HTML
text without interfering with the parser.

Use this in IRCClient to prevent incoming messages from messing with
the DOM :^)
Andreas Kling hace 5 años
padre
d17930d9e2
commit
a377e8d3f5
Se han modificado 3 ficheros con 19 adiciones y 2 borrados
Dividir vista Mostrar estadísticas de diff
  1. 2 2
      Applications/IRCClient/IRCLogBuffer.cpp
  2. 16 0
      Libraries/LibHTML/Parser/HTMLParser.cpp
  3. 1 0
      Libraries/LibHTML/Parser/HTMLParser.h

+ 2 - 2
Applications/IRCClient/IRCLogBuffer.cpp
Ver fichero 

@@ -54,7 +54,7 @@ void IRCLogBuffer::add_message(char prefix, const String& name, const String& te
 
         color.to_string().characters(),
 
         timestamp_string().characters(),
 
         nick_string.characters(),
 
-        text.characters());
 
+        escape_html_entities(text).characters());
 
     auto fragment = parse_html_fragment(*m_document, html);
 
     m_container_element->append_child(fragment->remove_child(*fragment->first_child()));
 
     m_document->force_layout();
 
@@ -69,7 +69,7 @@ void IRCLogBuffer::add_message(const String& text, Color color)
 
         "</div>",
 
         color.to_string().characters(),
 
         timestamp_string().characters(),
 
-        text.characters());
 
+        escape_html_entities(text).characters());
 
     auto fragment = parse_html_fragment(*m_document, html);
 
     m_container_element->append_child(fragment->remove_child(*fragment->first_child()));
 
     m_document->force_layout();

+ 16 - 0
Libraries/LibHTML/Parser/HTMLParser.cpp
Ver fichero 

@@ -339,3 +339,19 @@ RefPtr<Document> parse_html_document(const StringView& html, const URL& url)
 
 
     return document;
 
 }
 
+
 
+String escape_html_entities(const StringView& html)
 
+{
 
+    StringBuilder builder;
 
+    for (int i = 0; i < html.length(); ++i) {
 
+        if (html[i] == '<')
 
+            builder.append("&lt;");
 
+        else if (html[i] == '>')
 
+            builder.append("&gt;");
 
+        else if (html[i] == '&')
 
+            builder.append("&amp;");
 
+        else
 
+            builder.append(html[i]);
 
+    }
 
+    return builder.to_string();
 
+}

+ 1 - 0
Libraries/LibHTML/Parser/HTMLParser.h
Ver fichero 

@@ -7,3 +7,4 @@ class DocumentFragment;
 
 
 RefPtr<Document> parse_html_document(const StringView&, const URL& = URL());
 
 RefPtr<DocumentFragment> parse_html_fragment(Document&, const StringView&);
 
+String escape_html_entities(const StringView&);

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5