From 43de33afc7fcc4cab25f578566e225ba9e4d4258 Mon Sep 17 00:00:00 2001
From: Jarred Sumner <jarred@jarredsumner.com>
Date: Tue, 7 Jun 2022 22:32:46 -0700
Subject: Web Streams API (#176)

* [bun.js] `WritableStream`, `ReadableStream`, `TransformStream`, `WritableStreamDefaultController`, `ReadableStreamDefaultController` & more

* Implement `Blob.stream()`

* Update streams.test.js

* Fix sourcemaps crash

* [TextEncoder] 3x faster in hot loops

* reading almost works

* start to implement native streams

* Implement `Blob.stream()`

* Implement `Bun.file(pathOrFd).stream()`

* Add an extra function

* [fs.readFile] Improve performance

* make jsc bindings a little easier to work with

* fix segfault

* faster async/await + readablestream optimizations

* WebKit updates

* More WebKit updates

* Add releaseWEakrefs binding

* `bun:jsc`

* More streams

* Update streams.test.js

* Update Makefile

* Update mimalloc

* Update WebKit

* Create bun-jsc.test.js

* Faster ReadableStream

* Fix off by one & exceptions

* Handle empty files/blobs

* Update streams.test.js

* Move streams to it's own file

* temp

* impl #1

* take two

* good enough for now

* Implement `readableStreamToArray`, `readableStreamToArrayBuffer`, `concatArrayBuffers`

* jsxOptimizationInlining

* Fix crash

* Add `jsxOptimizationInline` to Bun.Transpiler

* Update Transpiler types

* Update js_ast.zig

* Automatically choose production mode when NODE_ENV="production"

* Update cli.zig

* [jsx] Handle defaultProps when inlining

* Update transpiler.test.js

* uncomment some tests

Co-authored-by: Jarred Sumner <709451+Jarred-Sumner@users.noreply.github.com>
---
 integration/bunjs-only-snippets/escapeHTML.test.js | 105 +++++++++++++++++++++
 1 file changed, 105 insertions(+)
 create mode 100644 integration/bunjs-only-snippets/escapeHTML.test.js

(limited to 'integration/bunjs-only-snippets/escapeHTML.test.js')

diff --git a/integration/bunjs-only-snippets/escapeHTML.test.js b/integration/bunjs-only-snippets/escapeHTML.test.js
new file mode 100644
index 000000000..ecfcc5e7c
--- /dev/null
+++ b/integration/bunjs-only-snippets/escapeHTML.test.js
@@ -0,0 +1,105 @@
+import { describe, it, expect } from "bun:test";
+import { gcTick } from "./gc";
+import { escapeHTML } from "bun";
+
+describe("escapeHTML", () => {
+  // The matrix of cases we need to test for:
+  // 1. Works with short strings
+  // 2. Works with long strings
+  // 3. Works with latin1 strings
+  // 4. Works with utf16 strings
+  // 5. Works when the text to escape is somewhere in the middle
+  // 6. Works when the text to escape is in the beginning
+  // 7. Works when the text to escape is in the end
+  // 8. Returns the same string when there's no need to escape
+  it("works", () => {
+    expect(escapeHTML("absolutely nothing to do here")).toBe(
+      "absolutely nothing to do here"
+    );
+    expect(escapeHTML("<script>alert(1)</script>")).toBe(
+      "&lt;script&gt;alert(1)&lt;/script&gt;"
+    );
+    expect(escapeHTML("<")).toBe("&lt;");
+    expect(escapeHTML(">")).toBe("&gt;");
+    expect(escapeHTML("&")).toBe("&amp;");
+    expect(escapeHTML("'")).toBe("&#x27;");
+    expect(escapeHTML('"')).toBe("&quot;");
+    expect(escapeHTML("\n")).toBe("\n");
+    expect(escapeHTML("\r")).toBe("\r");
+    expect(escapeHTML("\t")).toBe("\t");
+    expect(escapeHTML("\f")).toBe("\f");
+    expect(escapeHTML("\v")).toBe("\v");
+    expect(escapeHTML("\b")).toBe("\b");
+    expect(escapeHTML("\u00A0")).toBe("\u00A0");
+    expect(escapeHTML("<script>ab")).toBe("&lt;script&gt;ab");
+    expect(escapeHTML("<script>")).toBe("&lt;script&gt;");
+    expect(escapeHTML("<script><script>")).toBe("&lt;script&gt;&lt;script&gt;");
+
+    expect(escapeHTML("lalala" + "<script>alert(1)</script>" + "lalala")).toBe(
+      "lalala&lt;script&gt;alert(1)&lt;/script&gt;lalala"
+    );
+
+    expect(escapeHTML("<script>alert(1)</script>" + "lalala")).toBe(
+      "&lt;script&gt;alert(1)&lt;/script&gt;lalala"
+    );
+    expect(escapeHTML("lalala" + "<script>alert(1)</script>")).toBe(
+      "lalala" + "&lt;script&gt;alert(1)&lt;/script&gt;"
+    );
+
+    expect(escapeHTML("What does 😊 mean?")).toBe("What does 😊 mean?");
+    const output = escapeHTML("<What does 😊");
+    expect(output).toBe("&lt;What does 😊");
+    expect(escapeHTML("<div>What does 😊 mean in text?")).toBe(
+      "&lt;div&gt;What does 😊 mean in text?"
+    );
+
+    expect(
+      escapeHTML(
+        ("lalala" + "<script>alert(1)</script>" + "lalala").repeat(900)
+      )
+    ).toBe("lalala&lt;script&gt;alert(1)&lt;/script&gt;lalala".repeat(900));
+    expect(
+      escapeHTML(("<script>alert(1)</script>" + "lalala").repeat(900))
+    ).toBe("&lt;script&gt;alert(1)&lt;/script&gt;lalala".repeat(900));
+    expect(
+      escapeHTML(("lalala" + "<script>alert(1)</script>").repeat(900))
+    ).toBe(("lalala" + "&lt;script&gt;alert(1)&lt;/script&gt;").repeat(900));
+
+    // the positions of the unicode codepoint are important
+    // our simd code for U16 is at 8 bytes, so we need to especially check the boundaries
+    expect(
+      escapeHTML("😊lalala" + "<script>alert(1)</script>" + "lalala")
+    ).toBe("😊lalala&lt;script&gt;alert(1)&lt;/script&gt;lalala");
+    expect(escapeHTML("<script>😊alert(1)</script>" + "lalala")).toBe(
+      "&lt;script&gt;😊alert(1)&lt;/script&gt;lalala"
+    );
+    expect(escapeHTML("<script>alert(1)😊</script>" + "lalala")).toBe(
+      "&lt;script&gt;alert(1)😊&lt;/script&gt;lalala"
+    );
+    expect(escapeHTML("<script>alert(1)</script>" + "😊lalala")).toBe(
+      "&lt;script&gt;alert(1)&lt;/script&gt;😊lalala"
+    );
+    expect(escapeHTML("<script>alert(1)</script>" + "lal😊ala")).toBe(
+      "&lt;script&gt;alert(1)&lt;/script&gt;lal😊ala"
+    );
+    expect(
+      escapeHTML("<script>alert(1)</script>" + "lal😊ala".repeat(10))
+    ).toBe("&lt;script&gt;alert(1)&lt;/script&gt;" + "lal😊ala".repeat(10));
+
+    for (let i = 1; i < 10; i++)
+      expect(escapeHTML("<script>alert(1)</script>" + "la😊".repeat(i))).toBe(
+        "&lt;script&gt;alert(1)&lt;/script&gt;" + "la😊".repeat(i)
+      );
+
+    expect(escapeHTML("la😊" + "<script>alert(1)</script>")).toBe(
+      "la😊" + "&lt;script&gt;alert(1)&lt;/script&gt;"
+    );
+    expect(
+      escapeHTML(("lalala" + "<script>alert(1)</script>😊").repeat(1))
+    ).toBe(("lalala" + "&lt;script&gt;alert(1)&lt;/script&gt;😊").repeat(1));
+
+    expect(escapeHTML("😊".repeat(100))).toBe("😊".repeat(100));
+    expect(escapeHTML("😊<".repeat(100))).toBe("😊&lt;".repeat(100));
+    expect(escapeHTML("<😊>".repeat(100))).toBe("&lt;😊&gt;".repeat(100));
+  });
+});
-- 
cgit v1.2.3