Git-Mirrors/onionshare
1
0
Fork 0
mirror of https://github.com/onionshare/onionshare.git synced 2025-08-24 13:59:20 -04:00
Code Issues Projects Releases Packages Wiki Activity

Revert "Replaced sanitize_html() function that was based on regex with python3's html.escape()"

Browse source 
This reverts commit cff11cd7e4.
This commit is contained in:
Garrett Robinson 2016-12-30 12:02:40 -05:00
parent 0ab29ff8af
commit e1f9957f56
1 changed files with 2 additions and 2 deletions
Download patch file Download diff file Expand all files Collapse all files

4
onionshare/web.py
View file

@ -17,7 +17,7 @@ GNU General Public License for more details.
You should have received a copy of the GNU General Public License You should have received a copy of the GNU General Public License
along with this program. If not, see <http://www.gnu.org/licenses/>. along with this program. If not, see <http://www.gnu.org/licenses/>.
""" """
import queue, mimetypes, platform, os, sys, socket, logging, html import queue, mimetypes, platform, os, sys, socket, logging, re
from urllib.request import urlopen from urllib.request import urlopen
from flask import Flask, Response, request, render_template_string, abort from flask import Flask, Response, request, render_template_string, abort
@ -42,7 +42,7 @@ def set_file_info(filenames, processed_size_callback=None):
file_info = {'files': [], 'dirs': []} file_info = {'files': [], 'dirs': []}
for filename in filenames: for filename in filenames:
# strips trailing '/' and sanitizes filename # strips trailing '/' and sanitizes filename
basename = html.escape(os.path.basename(filename.rstrip('/'))) basename = sanitize_html(os.path.basename(filename.rstrip('/')))
info = { info = {
'filename': filename, 'filename': filename,
'basename': basename 'basename': basename