template: allow accesses only to exported fields and methods

R=rsc, gri CC=golang-dev https://golang.org/cl/3890042

template: allow accesses only to exported fields and methods
R=rsc, gri CC=golang-dev https://golang.org/cl/3890042
02e88019 · Rob Pike · ac1c0945 · 02e88019 · 02e88019
Commit 02e88019 authored Jan 11, 2011 by Rob Pike
Expand all Hide whitespace changes
Inline Side-by-side

Showing with 125 additions and 110 deletions

src/pkg/template/template.go src/pkg/template/template.go +14 -0

src/pkg/template/template_test.go src/pkg/template/template_test.go +111 -110

No files found.
--- a/src/pkg/template/template.go
+++ b/src/pkg/template/template.go
@@ -73,6 +73,8 @@ import (
 	"os"
 	"reflect"
 	"strings"
+	"unicode"
+	"utf8"
 )
 // Errors returned during parsing and execution.  Users may extract the information and reformat
@@ -198,6 +200,12 @@ func (t *Template) parseError(err string, args ...interface{}) {
 	panic(&Error{t.linenum, fmt.Sprintf(err, args...)})
 }
+// Is this an exported - upper case - name?
+func isExported(name string) bool {
+	rune, _ := utf8.DecodeRuneInString(name)
+	return unicode.IsUpper(rune)
+}
 // -- Lexical analysis
 // Is c a white space character?
@@ -596,6 +604,9 @@ func lookup(v reflect.Value, name string) reflect.Value {
 				m := typ.Method(i)
 				mtyp := m.Type
 				if m.Name == name && mtyp.NumIn() == 1 && mtyp.NumOut() == 1 {
+					if !isExported(name) {
+						return nil
+					}
 					return v.Method(i).Call(nil)[0]
 				}
 			}
@@ -606,6 +617,9 @@ func lookup(v reflect.Value, name string) reflect.Value {
 		case *reflect.InterfaceValue:
 			v = av.Elem()
 		case *reflect.StructValue:
+			if !isExported(name) {
+				return nil
+			}
 			return av.FieldByName(name)
 		case *reflect.MapValue:
 			return av.Elem(reflect.NewValue(name))

--- a/src/pkg/template/template_test.go
+++ b/src/pkg/template/template_test.go