json: improve escaping for script tags.

* lib.c (out_json_str): Strengthen the test for escaping the forward slash. It has to occur in the sequence </script rather than just </. Recognize  in the string, and encode them. * tests/010/json.tl: Cover this area with some tests. * txr.1: Documented.
author: Kaz Kylheku <kaz@kylheku.com> 2021-06-03 06:29:10 -0700
committer: Kaz Kylheku <kaz@kylheku.com> 2021-06-03 06:29:10 -0700
commit: 4edb6eac41259a43a547772c4249ba2d6cc68106 (patch)
tree: 5ef739853974cf1f148f7733d0d734f0ced27d3e /lib.c
parent: 0f66ac2b5412eb432f165b680fb495f972f33917 (diff)
download: txr-4edb6eac41259a43a547772c4249ba2d6cc68106.tar.gz
txr-4edb6eac41259a43a547772c4249ba2d6cc68106.tar.bz2
txr-4edb6eac41259a43a547772c4249ba2d6cc68106.zip
1 files changed, 12 insertions, 1 deletions
diff --git a/lib.c b/lib.c
index 38837e43..d3ae1425 100644
--- a/lib.c
+++ b/lib.c
@@ -12600,8 +12600,19 @@ static void out_json_str(val str, val out)
       break;
     case '<':
       put_char(chr(ch), out);
-      if (*cstr == '/')
+      if (wcsncmp(cstr, L"/script", 7) == 0) {
         put_char(chr('\\'), out);
+      } else if (wcsncmp(cstr, L"!--", 3) == 0) {
+        put_string(lit("\\u0021"), out);
+        cstr++;
+      }
+      break;
+    case '-':
+      put_char(chr(ch), out);
+      if (wcsncmp(cstr, L"->", 2) == 0) {
+        put_string(lit("\\u002D"), out);
+        cstr++;
+      }
       break;
     case 0xDC00:
       put_string(lit("\\u0000"), out);
author	Kaz Kylheku <kaz@kylheku.com>	2021-06-03 06:29:10 -0700
committer	Kaz Kylheku <kaz@kylheku.com>	2021-06-03 06:29:10 -0700
commit	4edb6eac41259a43a547772c4249ba2d6cc68106 (patch)
tree	5ef739853974cf1f148f7733d0d734f0ced27d3e /lib.c
parent	0f66ac2b5412eb432f165b680fb495f972f33917 (diff)
download	txr-4edb6eac41259a43a547772c4249ba2d6cc68106.tar.gz txr-4edb6eac41259a43a547772c4249ba2d6cc68106.tar.bz2 txr-4edb6eac41259a43a547772c4249ba2d6cc68106.zip