Stas Bekman wrote:
Marcus has just reminded me that Apache::Util::escape_html fell of our radars: http://perl.apache.org/docs/2.0/user/porting/compat.html#C_Apache__Util__escape_html___
As the above URL suggests, Messiah is coming really soon now, or in other words, we were waiting for ap_escape_html to be reworked to not require a pool. As it didn't happen, how do we proceed? Just exposing the pool is bad idea, as we come back to the known risk os a user using the wrong pool to allocate the memory and getting memory corrupted.
Agreed, it's not a good idea.
though todo/features_missing suggests: * escape_html() - consider jeff baker's more robust implementation of my_escape_html(), which should probably be made in apache-2.0 itself (is there apache api? or just drop it)
Anybody has an idea what code is being mentioned here?
AFAIK, it's in mod_perl 1.x src/modules/perl/Util.xs
Of course we could just say: use HTML::Entities to do the work, but I believe it's slow(er?), as it's implemented in perl...
How about resolving the issue by porting the my_escape_html() from mp1 to mp2 ?
-- -------------------------------------------------------------------------------- Philippe M. Chiasson m/gozer\@(apache|cpan|ectoplasm)\.org/ GPG KeyID : 88C3A5A5 http://gozer.ectoplasm.org/ F9BF E0C2 480E 7680 1AE5 3631 CB32 A107 88C3A5A5
--------------------------------------------------------------------- To unsubscribe, e-mail: [EMAIL PROTECTED] For additional commands, e-mail: [EMAIL PROTECTED]
