Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out "J" #305

Closed
erik-alm opened this issue Dec 8, 2023 · 4 comments
Closed

Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out "J" #305

erik-alm opened this issue Dec 8, 2023 · 4 comments
Assignees
@casid

Comments

@erik-alm
Copy link

erik-alm commented Dec 8, 2023

StringUtils.startsWithIgnoringCaseAndWhitespaces() is implemented "backwards". Instead of trying to find the prefix in the string, it tries to find the string in the prefix. This causes this undesired behavior:

final String string = "J";
final String prefix = "javascript";
System.out.println(startsWithIgnoringCaseAndWhitespaces(string, prefix)); // result: true

It also means you cannot write a variable with the content "J" or "Ja" etc. when it's part of an "a href"-attribute like:

<a data-toggle="tab" href="#key_${key}">${key}</a>

Trying to fix the problem using "unsafe", like so:

<a data-toggle="tab" href="#key_$unsafe{key}">${key}</a>

…seems to cause another bug (since "key" is a "Character"? — I had to convert it to a String to make it work):

gg.jte.TemplateException: Failed to compile template, error at pages/browse.jte:82
.../jte-classes/gg/jte/generated/ondemand/pages/JtebrowseGenerated.java:64: error: incompatible types: Character cannot be converted to String
				jteOutput.writeUnsafeContent(key);
				                             ^
.../jte-classes/gg/jte/generated/ondemand/pages/JtebrowseGenerated.java:71: error: incompatible types: Character cannot be converted to String
				jteOutput.writeUnsafeContent(key);
				                             ^
Note: Some messages have been simplified; recompile with -Xdiags:verbose to get full output
2 errors

at gg.jte.compiler.java.JavaClassCompiler.runCompiler(JavaClassCompiler.java:49)
at gg.jte.compiler.java.JavaClassCompiler.compile(JavaClassCompiler.java:38)
at gg.jte.compiler.TemplateCompiler.precompileClasses(TemplateCompiler.java:114)
at gg.jte.compiler.TemplateCompiler.precompile(TemplateCompiler.java:94)
at gg.jte.compiler.TemplateCompiler.load(TemplateCompiler.java:50)
at gg.jte.TemplateEngine.lambda$resolveTemplateOnDemand$0(TemplateEngine.java:354)
at java.base/java.util.concurrent.ConcurrentHashMap.compute(ConcurrentHashMap.java:1955)
at gg.jte.TemplateEngine.resolveTemplateOnDemand(TemplateEngine.java:347)
at gg.jte.TemplateEngine.resolveTemplate(TemplateEngine.java:337)
at gg.jte.TemplateEngine.render(TemplateEngine.java:210)
at net.blockm.starmap.web.WebRepository.render(WebRepository.java:36)
at net.blockm.starmap.app.WebBuilder.writeIndex(WebBuilder.java:1269)
at net.blockm.starmap.app.WebBuilder.buildGroupsIndex(WebBuilder.java:585)
at net.blockm.starmap.app.WebBuilder.build(WebBuilder.java:87)
at net.blockm.starmap.app.Main.main(Main.java:145)
@erik-alm erik-alm changed the title Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out "J" Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out 'J' Dec 8, 2023
@erik-alm erik-alm changed the title Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out 'J' Bug in StringUtils.startsWithIgnoringCaseAndWhitespaces() prevents writing out "J" Dec 8, 2023
@casid casid self-assigned this Dec 8, 2023
casid added a commit that referenced this issue Dec 8, 2023
@casid
#305 fix startsWithIgnoringCaseAndWhitespaces
9aca56c
@casid
Copy link
Owner

casid commented Dec 8, 2023

Hi @erik-alm, thank you for reporting this issue.

Indeed, that method did not verify that the entire prefix got checked. I just pushed a fix and will release a hotfix version later today.

@casid
Copy link
Owner

casid commented Dec 8, 2023

I just released jte version 3.1.6, containing a fix for this issue.

@casid casid closed this as completed Dec 8, 2023
@erik-alm
Copy link
Author

erik-alm commented Dec 10, 2023
edited
Loading

Great! It seems to work. Though "unsafe(Character)" is still broken. Here's how to make it break:

$unsafe{Character.valueOf('x')}

@casid
Copy link
Owner

casid commented Dec 10, 2023

$unsafe has only implementations for String and Content, since usually it does not make sense to have unsafe for single characters.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees

@casid casid

Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@casid @erik-alm