Character reference handling for <, &, and > doesn't match notification-daemon

Cody, can you take a look at this one? Thanks

I've just noticed this as well, I have people with an apostrophe in their last name on my list and when they sign online the notification shows it as "&apos;"

&apos, by the way, is not listed on that wiki page. There could be other things missing as well.

Shane, what IM program is request the notification with "&apos;" in it?

I'm using pidgin.

Is that happening in the notification title or the body? If it's the title, I think we already have a patch for pidgin-libnotify that will fix that.

Cody, have you tested the patch against the test I provided? I don't see how it fixes the numeric references.

Why are you special-casing &quot; and &apos;? Do you have any evidence that applications escape " as &quot; or ' as &apos; when sending notifications? If so, let me know, and I'll add it to the spec. If not, we shouldn't render &quot; as " or &apos; as ', even though notification-daemon does, because it will mean more unwanted conversions for applications sending unescaped text. (We don't render &#164; as ¤ even though notification-daemon does, for example.) Either way, the implementation and the spec should be in sync.

I removed the "lone ampersand" fixup stuff. I think that was left over from when we were using Pango markup escaping, because it could confuse things. Note that bubble.c no longer uses pango_parse_markup(), it only uses filter_text(). This fixes a lot of things "such as <>" being interpreted when it should, "x < 1" being interpreted when it shouldn't, etc. It also is important from the unit test perspective, because now the unit test actually tests -exactly- what will be filtered by notify-osd (whereas previously it only tested what would be filtered by filter_text(), and then Pango would go and screw things up after that).

This also adds new regexes for the numerics, which I had forgotten to include in the last patch.

Hopefully the unit tests cover things pretty well and will make this easier for Mirco to integrate.

Same as last patch, just fixes indenting.

This patch should also fix these bugs:

https://bugs.launchpad.net/ubuntu/+source/notify-osd/+bug/356567
https://bugs.launchpad.net/ubuntu/+source/notify-osd/+bug/356556

Add unit tests for &apos; and &quot;

Thanks for working on this, Cody.

    +#define CHARACTER_LT_REGEX "&(lt;|#60;|#x3C;)"

This should be "&(lt;|#60;|#x3C;|#x3c;)"

    +#define CHARACTER_GT_REGEX "&(gt;|#62;|#x3e;)"

This should be "&(gt;|#62;|#x3E;|#x3e;)"

    +#define CHARACTER_APOS_REGEX "&(apos;|#39;|#x27;)"
    +#define CHARACTER_QUOT_REGEX "&(quot;|#34;|#x22;)"

To repeat my question from yesterday: Why are you special-casing &quot; and &apos;? The spec doesn't say to do that. (And why are you converting &#34; and &#39;, but not &#40;, &#41;, &#42;, &#43;, etc?) Do you have any evidence that applications escape " or ' when sending notifications? If so, let me know, and I'll change the spec. If not, unescaped text will work more often without those conversions.

    +#define LINK_MATCH_REGEX "<a[^>]*?href\\s*=\\s*[\"\"']?([^'\"\" >]+?)['\"\"]?>(.*?)</a>"
    +#define LINK_REPLACE_REGEX "<a[^>]*?href\\s*=\\s*[\"\"']?([^'\"\" >]+?)['\"\"]?>|</a>"

Why are you treating <a> elements separately from other elements? Again, that doesn't match the algorithm I provided in the spec, and I don't see any reason to do it. Please, either follow the spec or tell me why it needs changing, don't do something undocumented.

    +#define OTHER_MATCH_REGEX "<([A-Z][A-Z0-9]*)\\b[^>]*>(.*?)</\\1>"

I'm not a regexp expert, but that "\1" looks like it's not following the spec, which says to drop *any* sequence of characters that starts with "</" and ends with ">", not just those where what's between them matches a previous tag. Is your aim here to reduce unwanted tag-swallowing, on the grounds that "foo</i>" malfunctions in notification-daemon anyway? That could be nifty, though it would be harder to specify and implement in a non-regexp way. (Unless, or maybe even if, the Desktop Notifications Specification 1.0 totally redoes the body text format, the guessing algorithm probably should be included in that spec for all servers to implement.)

"To repeat my question from yesterday: Why are you special-casing &quot; and &apos;? The spec doesn't say to do that. (And why are you converting &#34; and &#39;, but not &#40;, &#41;, &#42;, &#43;, etc?) Do you have any evidence that applications escape " or ' when sending notifications? If so, let me know, and I'll change the spec. If not, unescaped text will work more often without those conversions."

Because I removed the Pango markup parsing, which was doing this for us. Once I removed that then I would get IM's from friends that said things like, "Hey let&apos;s go see a movie" or whatever. I only added &#39;, &#x27;, etc for thoroughness since you specifically mentioned doing that for ampersands, greater-than, and less-than characters.

+#define CHARACTER_LT_REGEX "&(lt;|#60;|#x3C;)"

This should be "&(lt;|#60;|#x3C;|#x3c;)"

I'm doing caseless regex, so this isn't necessary. However, I'm not sure if &#x3c; and &#X3c should be treated the same, so perhaps this is a bug and I should not be doing caseless? Let me know if that's wrong.

I'll remove the <a href> regex stuff. It doesn't seem necessary now that the 'other' regex seems to be solid enough to pick those up now.

This adds singleton tag catching, e.g. <br />

Also fixes a problem in TAG_REPLACE_REGEX where it wasn't matching closing tags if they were more than one character.. e.g., </img>

Note that this removes G_REGEX_CASELESS. This was intentional, as mpt discovered that notification-daemon interprets e.g., <b> but not <B>. I'm curious to do some investigation into this and find out if this is perhaps a bug in Pango or if it's deliberate.. but we can hold off on that for another time.

I'm about to push this to trunk. All old and new test-cases succeed.