while (*p) {
const char *data = NULL;
- int datalen = 0, stuffcr = 0;
+ int datalen = 0, stuffcr = 0, htmlesc = 0;
if (*p == '%') {
p++;
} else if (*p == 's') {
data = va_arg(ap, const char *);
datalen = strlen(data);
+ } else if (*p == 'h') {
+ htmlesc = 1;
+ data = va_arg(ap, const char *);
+ datalen = strlen(data);
} else if (assert(*p == 'S'), 1) {
stuffcr = va_arg(ap, int);
data = va_arg(ap, const char *);
}
if (pass == 0) {
- totallen += datalen;
- if (stuffcr) {
- while (datalen > 0) {
- if (*data == '\n')
- totallen++;
- data++, datalen--;
- }
+ while (datalen > 0) {
+ totallen++;
+ if (stuffcr && *data == '\n')
+ totallen++;
+ if (htmlesc &&
+ (*data == '<' || *data == '>' || *data == '&'))
+ totallen += 4; /* max(len("gt;"),len("amp;")) */
+ data++, datalen--;
}
} else {
while (datalen > 0) {
- if (stuffcr && *data == '\n')
- *rp++ = '\r';
- *rp++ = *data++;
- datalen--;
+ if (htmlesc && (*data < 32 || *data >= 127))
+ *rp++ = '?'; /* *shrug* */
+ else if (htmlesc && *data == '<')
+ rp += sprintf(rp, "<");
+ else if (htmlesc && *data == '>')
+ rp += sprintf(rp, ">");
+ else if (htmlesc && *data == '&')
+ rp += sprintf(rp, "&");
+ else if (stuffcr && *data == '\n')
+ *rp++ = '\r', *rp++ = '\n';
+ else
+ *rp++ = *data;
+ data++, datalen--;
}
}
}
* printf)
* - %s takes a const char * and formats it like normal %s
* (again, no fine-tuning available)
+ * - %h takes a const char * but escapes it so that it's safe for
+ * HTML
* - %S takes an int followed by a const char *. If the int is
* zero, it behaves just like %s. If the int is nonzero, it
* transforms the string by stuffing a \r before every \n.
~mdw / sgt / agedu / commitdiff