From 0c2f42dea2039428f63d814be5f01368741b5764 Mon Sep 17 00:00:00 2001
From: Steven Lambert <stevenlambert503@gmail.com>
Date: Mon, 18 Feb 2019 02:50:59 -0700
Subject: [PATCH] fix: escape href attribute when creating a CSS selector 
 [#1137] (#1366)

* fix: escape href attribute when creating a CSS selector

* escape shortened urls
---
 lib/core/utils/get-selector.js  |  8 ++++++--
 test/core/utils/get-selector.js | 25 +++++++++++++++++++++----
 2 files changed, 27 insertions(+), 6 deletions(-)

diff --git a/lib/core/utils/get-selector.js b/lib/core/utils/get-selector.js
index a651e9b078..e0af47ad0d 100644
--- a/lib/core/utils/get-selector.js
+++ b/lib/core/utils/get-selector.js
@@ -36,12 +36,16 @@ function getAttributeNameValue(node, at) {
 		if (friendly) {
 			let value = encodeURI(friendly);
 			if (value) {
-				atnv = escapeSelector(at.name) + '$="' + value + '"';
+				atnv = escapeSelector(at.name) + '$="' + escapeSelector(value) + '"';
 			} else {
 				return;
 			}
 		} else {
-			atnv = escapeSelector(at.name) + '="' + node.getAttribute(name) + '"';
+			atnv =
+				escapeSelector(at.name) +
+				'="' +
+				escapeSelector(node.getAttribute(name)) +
+				'"';
 		}
 	} else {
 		atnv = escapeSelector(name) + '="' + escapeSelector(at.value) + '"';
diff --git a/test/core/utils/get-selector.js b/test/core/utils/get-selector.js
index d856131cdc..19de415e3b 100644
--- a/test/core/utils/get-selector.js
+++ b/test/core/utils/get-selector.js
@@ -494,8 +494,22 @@ describe('axe.utils.getSelector', function() {
 		img2.setAttribute('src', '//deque.com/logo.png');
 
 		fixtureSetup([link1, link2, img1, img2]);
-		assert.equal(axe.utils.getSelector(link2), 'a[href$="about/"]');
-		assert.equal(axe.utils.getSelector(img2), 'img[src$="logo.png"]');
+		assert.equal(axe.utils.getSelector(link2), 'a[href$="about\\/"]');
+		assert.equal(axe.utils.getSelector(img2), 'img[src$="logo\\.png"]');
+	});
+
+	it('should escape href attributes', function() {
+		var link1 = document.createElement('a');
+		link1.setAttribute('href', '//deque.com/about/');
+
+		var link2 = document.createElement('a');
+		link2.setAttribute('href', '//deque.com/child/ \n\n\n');
+
+		fixtureSetup([link1, link2]);
+		assert.equal(
+			axe.utils.getSelector(link2),
+			'a[href="\\/\\/deque\\.com\\/child\\/\\ \\a \\a \\a "]'
+		);
 	});
 
 	it('should not generate universal selectors', function() {
@@ -516,8 +530,11 @@ describe('axe.utils.getSelector', function() {
 		node2.setAttribute('href', href2);
 		fixtureSetup([node1, node2]);
 
-		assert.include(axe.utils.getSelector(node1), href1);
-		assert.include(axe.utils.getSelector(node2), href2);
+		assert.include(axe.utils.getSelector(node1), 'mars2\\.html\\?a\\=be_bold');
+		assert.include(
+			axe.utils.getSelector(node2),
+			'mars2\\.html\\?a\\=be_italic'
+		);
 	});
 
 	// shadow DOM v1 - note: v0 is compatible with this code, so no need