2 files changed, 26 insertions, 0 deletions
diff --git a/include/opkele/util.h b/include/opkele/util.h
index 6f3ddf6..719f951 100644
--- a/include/opkele/util.h
+++ b/include/opkele/util.h
@@ -97,12 +97,19 @@ namespace opkele {
         * @return encoded string
         * @throw failed_conversion in case of failure
         */
        string url_encode(const string& str);
        /**
+         * Make string suitable for using as x(ht)ml attribute.
+         * @param str string to escape
+         * @return escaped string
+         */
+        string attr_escape(const string& str);
+        /**
         * Convert number to string
         * @param l number
         * @return string representation
         * @throw failed_conversion in case of failure
         */
        string long_to_string(long l);
diff --git a/lib/util.cc b/lib/util.cc
index 54d6535..b7bc437 100644
--- a/lib/util.cc
+++ b/lib/util.cc
@@ -158,12 +158,31 @@ namespace opkele {
                throw failed_conversion(OPKELE_CP_ "failed to curl_escape()");
            string rv(t);
            curl_free(t);
            return rv;
        }
+        string attr_escape(const string& str) {
+            static const char *unsafechars = "<>&\n\"'";
+            string rv;
+            string::size_type p=0;
+            while(true) {
+                string::size_type us = str.find_first_of(unsafechars,p);
+                if(us==string::npos) {
+                    if(p!=str.length())
+                        rv.append(str,p,str.length()-p);
+                    return rv;
+                }
+                rv.append(str,p,us-p);
+                rv += "&#";
+                rv += long_to_string((long)str[us]);
+                rv += ';';
+                p = us+1;
+            }
+        }
        string long_to_string(long l) {
            char rv[32];
            int r=snprintf(rv,sizeof(rv),"%ld",l);
            if(r<0 || r>=(int)sizeof(rv))
                throw failed_conversion(OPKELE_CP_ "failed to snprintf()");
            return rv;

diff --git a/include/opkele/util.h b/include/opkele/util.h index 6f3ddf6..719f951 100644 --- a/include/opkele/util.h +++ b/include/opkele/util.h
@@ -97,12 +97,19 @@ namespace opkele {
97	* @return encoded string	97	* @return encoded string
98	* @throw failed_conversion in case of failure	98	* @throw failed_conversion in case of failure
99	*/	99	*/
100	string url_encode(const string& str);	100	string url_encode(const string& str);
101		101
102	/**	102	/**
		103	* Make string suitable for using as x(ht)ml attribute.
		104	* @param str string to escape
		105	* @return escaped string
		106	*/
		107	string attr_escape(const string& str);
		108
		109	/**
103	* Convert number to string	110	* Convert number to string
104	* @param l number	111	* @param l number
105	* @return string representation	112	* @return string representation
106	* @throw failed_conversion in case of failure	113	* @throw failed_conversion in case of failure
107	*/	114	*/
108	string long_to_string(long l);	115	string long_to_string(long l);


diff --git a/lib/util.cc b/lib/util.cc index 54d6535..b7bc437 100644 --- a/lib/util.cc +++ b/lib/util.cc
@@ -158,12 +158,31 @@ namespace opkele {
158	throw failed_conversion(OPKELE_CP_ "failed to curl_escape()");	158	throw failed_conversion(OPKELE_CP_ "failed to curl_escape()");
159	string rv(t);	159	string rv(t);
160	curl_free(t);	160	curl_free(t);
161	return rv;	161	return rv;
162	}	162	}
163		163
		164	string attr_escape(const string& str) {
		165	static const char *unsafechars = "<>&\n\"'";
		166	string rv;
		167	string::size_type p=0;
		168	while(true) {
		169	string::size_type us = str.find_first_of(unsafechars,p);
		170	if(us==string::npos) {
		171	if(p!=str.length())
		172	rv.append(str,p,str.length()-p);
		173	return rv;
		174	}
		175	rv.append(str,p,us-p);
		176	rv += "&#";
		177	rv += long_to_string((long)str[us]);
		178	rv += ';';
		179	p = us+1;
		180	}
		181	}
		182
164	string long_to_string(long l) {	183	string long_to_string(long l) {
165	char rv[32];	184	char rv[32];
166	int r=snprintf(rv,sizeof(rv),"%ld",l);	185	int r=snprintf(rv,sizeof(rv),"%ld",l);
167	if(r<0 \|\| r>=(int)sizeof(rv))	186	if(r<0 \|\| r>=(int)sizeof(rv))
168	throw failed_conversion(OPKELE_CP_ "failed to snprintf()");	187	throw failed_conversion(OPKELE_CP_ "failed to snprintf()");
169	return rv;	188	return rv;