45 lines
914 B
Go
45 lines
914 B
Go
package txt
|
|
|
|
import (
|
|
"fmt"
|
|
"strings"
|
|
"unicode"
|
|
)
|
|
|
|
// LogParam sanitizes strings created from user input in response to the log4j debacle.
|
|
func LogParam(s string) string {
|
|
if len(s) > ClipLongName || strings.Contains(s, "ldap:/") {
|
|
return "?"
|
|
}
|
|
|
|
// Trim quotes, tabs, and newline characters.
|
|
s = strings.Trim(s, "'\"“`\t\n\r")
|
|
|
|
// Remove non-printable and other potentially problematic characters.
|
|
s = strings.Map(func(r rune) rune {
|
|
if !unicode.IsPrint(r) {
|
|
return -1
|
|
}
|
|
|
|
switch r {
|
|
case '`', '"':
|
|
return '\''
|
|
case '~', '\\', '|', '$', '<', '>', '{', '}', '∅':
|
|
return '?'
|
|
default:
|
|
return r
|
|
}
|
|
}, s)
|
|
|
|
// Empty?
|
|
if s == "" || strings.ContainsAny(s, " ") {
|
|
return fmt.Sprintf("'%s'", s)
|
|
}
|
|
|
|
return s
|
|
}
|
|
|
|
// LogParamLower sanitizes strings created from user input and converts them to lowercase.
|
|
func LogParamLower(s string) string {
|
|
return LogParam(strings.ToLower(s))
|
|
}
|