1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
|
package org.bouncycastle.i18n.filter;
/**
* Filter for strings to store in a SQL table.
*
* escapes ' " = - / \ ; \r \n
*/
public class SQLFilter implements Filter
{
public String doFilter(String input)
{
StringBuffer buf = new StringBuffer(input);
int i = 0;
while (i < buf.length())
{
char ch = buf.charAt(i);
switch (ch)
{
case '\'':
buf.replace(i,i+1,"\\\'");
i += 1;
break;
case '\"':
buf.replace(i,i+1,"\\\"");
i += 1;
break;
case '=':
buf.replace(i,i+1,"\\=");
i += 1;
break;
case '-':
buf.replace(i,i+1,"\\-");
i += 1;
break;
case '/':
buf.replace(i,i+1,"\\/");
i += 1;
break;
case '\\':
buf.replace(i,i+1,"\\\\");
i += 1;
break;
case ';':
buf.replace(i,i+1,"\\;");
i += 1;
break;
case '\r':
buf.replace(i,i+1,"\\r");
i += 1;
break;
case '\n':
buf.replace(i,i+1,"\\n");
i += 1;
break;
default:
}
i++;
}
return buf.toString();
}
public String doFilterUrl(String input)
{
return doFilter(input);
}
}
|