fix: filename xml escaping

author Joe Koop <joe@joekoop.com>

Sun, 5 Jun 2022 23:54:12 +0000 (18:54 -0500)

committer GitHub <noreply@github.com>

Sun, 5 Jun 2022 23:54:12 +0000 (07:54 +0800)
author Joe Koop <joe@joekoop.com>
Sun, 5 Jun 2022 23:54:12 +0000 (18:54 -0500)
committer GitHub <noreply@github.com>
Sun, 5 Jun 2022 23:54:12 +0000 (07:54 +0800)
diff --git a/Cargo.lock b/Cargo.lock

index c9563388481f2a2ee0ca108b3ca235e58a345bb7..0d8e4a671d5f6b5a9eba384061b2542322c27b5b 100644 (file)
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -313,6 +313,7 @@ dependencies = [
   "tokio-util",
   "urlencoding",
   "uuid",
+ "xml-rs",
  ]
  
  [[package]]
@@ -1368,6 +1369,12 @@ version = "0.36.1"
  source = "registry+https://github.com/rust-lang/crates.io-index"
  checksum = "c811ca4a8c853ef420abd8592ba53ddbbac90410fab6903b3e79972a631f7680"
  
+[[package]]
+name = "xml-rs"
+version = "0.8.4"
+source = "registry+https://github.com/rust-lang/crates.io-index"
+checksum = "d2d7d3948613f75c98fd9328cfdcc45acc4d360655289d0a7d4ec931392200a3"
+
  [[package]]
  name = "xz2"
  version = "0.1.6"
diff --git a/Cargo.toml b/Cargo.toml

index 0908a63b1af383a192c42e92dcaabe0093cd54b1..cb3b302c0a7edce19f1a1ebbb3cbc5c8a9763449 100644 (file)
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -35,6 +35,7 @@ md5 = "0.7.0"
  lazy_static = "1.4.0"
  uuid = { version = "1.1.1", features = ["v4", "fast-rng"] }
  urlencoding = "2.1.0"
+xml-rs = "0.8"
  env_logger = { version = "0.9.0", default-features = false, features = ["humantime"] }
  log = "0.4.17"
  
diff --git a/src/server.rs b/src/server.rs

index 123f875e9922a581633cc2c2cd3e59c0ace640a8..5bda54c8a0ff206f6e0ee834d1bfff40f5b65c1d 100644 (file)
--- a/src/server.rs
+++ b/src/server.rs
@@ -1,5 +1,6 @@
  use crate::auth::{generate_www_auth, valid_digest};
  use crate::{encode_uri, Args, BoxResult};
+use xml::escape::escape_str_pcdata;
  
  use async_walkdir::WalkDir;
  use async_zip::write::{EntryOptions, ZipFileWriter};
@@ -822,8 +823,8 @@ impl PathItem {
  </D:propstat>
  </D:response>"#,
                  prefix,
-                encode_uri(&self.name),
-                urlencoding::encode(&self.base_name),
+                escape_str_pcdata(&self.name),
+                escape_str_pcdata(&self.base_name),
                  mtime
              ),
              PathType::File | PathType::SymlinkFile => format!(
@@ -840,8 +841,8 @@ impl PathItem {
  </D:propstat>
  </D:response>"#,
                  prefix,
-                encode_uri(&self.name),
-                urlencoding::encode(&self.base_name),
+                escape_str_pcdata(&self.name),
+                escape_str_pcdata(&self.base_name),
                  self.size.unwrap_or_default(),
                  mtime
              ),
author	Joe Koop <joe@joekoop.com>
	Sun, 5 Jun 2022 23:54:12 +0000 (18:54 -0500)
committer	GitHub <noreply@github.com>
	Sun, 5 Jun 2022 23:54:12 +0000 (07:54 +0800)
Cargo.lock		patch \| blob \| history
Cargo.toml		patch \| blob \| history
src/server.rs		patch \| blob \| history