/moodle/lib/htmlpurifier/HTMLPurifier/Strategy/MakeWellFormed.php

https://bitbucket.org/geek745/moodle-db2 · PHP · 316 lines · 205 code · 48 blank · 63 comment · 52 complexity · 2e49daa80113f69e7d707726055f6e63 MD5 · raw file 

    

  1. <?php
    2. 

  2. 

  3. require_once 'HTMLPurifier/Strategy.php';
    4. 

  4. require_once 'HTMLPurifier/HTMLDefinition.php';
    5. 

  5. require_once 'HTMLPurifier/Generator.php';
    6. 

  6. 

  7. require_once 'HTMLPurifier/Injector/AutoParagraph.php';
    8. 

  8. require_once 'HTMLPurifier/Injector/Linkify.php';
    9. 

  9. require_once 'HTMLPurifier/Injector/PurifierLinkify.php';
    10. 

  10. 

  11. HTMLPurifier_ConfigSchema::define(
    12. 

  12.     'AutoFormat', 'Custom', array(), 'list', '
    13. 

  13. <p>
    14. 

  14.   This directive can be used to add custom auto-format injectors.
    15. 

  15.   Specify an array of injector names (class name minus the prefix)
    16. 

  16.   or concrete implementations. Injector class must exist. This directive
    17. 

  17.   has been available since 2.0.1.
    18. 

  18. </p>
    19. 

  19. '
    20. 

  20. );
    21. 

  21. 

  22. /**
    23. 

  23.  * Takes tokens makes them well-formed (balance end tags, etc.)
    24. 

  24.  */
    25. 

  25. class HTMLPurifier_Strategy_MakeWellFormed extends HTMLPurifier_Strategy
    26. 

  26. {
    27. 

  27.     
    28. 

  28.     /**
    29. 

  29.      * Locally shared variable references
    30. 

  30.      * @private
    31. 

  31.      */
    32. 

  32.     var $inputTokens, $inputIndex, $outputTokens, $currentNesting,
    33. 

  33.         $currentInjector, $injectors;
    34. 

  34.     
    35. 

  35.     function execute($tokens, $config, &$context) {
    36. 

  36.         
    37. 

  37.         $definition = $config->getHTMLDefinition();
    38. 

  38.         
    39. 

  39.         // local variables
    40. 

  40.         $result = array();
    41. 

  41.         $generator = new HTMLPurifier_Generator();
    42. 

  42.         $escape_invalid_tags = $config->get('Core', 'EscapeInvalidTags');
    43. 

  43.         $e =& $context->get('ErrorCollector', true);
    44. 

  44.         
    45. 

  45.         // member variables
    46. 

  46.         $this->currentNesting = array();
    47. 

  47.         $this->inputIndex     = false;
    48. 

  48.         $this->inputTokens    =& $tokens;
    49. 

  49.         $this->outputTokens   =& $result;
    50. 

  50.         
    51. 

  51.         // context variables
    52. 

  52.         $context->register('CurrentNesting', $this->currentNesting);
    53. 

  53.         $context->register('InputIndex', $this->inputIndex);
    54. 

  54.         $context->register('InputTokens', $tokens);
    55. 

  55.         
    56. 

  56.         // -- begin INJECTOR --
    57. 

  57.         
    58. 

  58.         $this->injectors = array();
    59. 

  59.         
    60. 

  60.         $injectors = $config->getBatch('AutoFormat');
    61. 

  61.         $custom_injectors = $injectors['Custom'];
    62. 

  62.         unset($injectors['Custom']); // special case
    63. 

  63.         foreach ($injectors as $injector => $b) {
    64. 

  64.             $injector = "HTMLPurifier_Injector_$injector";
    65. 

  65.             if (!$b) continue;
    66. 

  66.             $this->injectors[] = new $injector;
    67. 

  67.         }
    68. 

  68.         foreach ($custom_injectors as $injector) {
    69. 

  69.             if (is_string($injector)) {
    70. 

  70.                 $injector = "HTMLPurifier_Injector_$injector";
    71. 

  71.                 $injector = new $injector;
    72. 

  72.             }
    73. 

  73.             $this->injectors[] = $injector;
    74. 

  74.         }
    75. 

  75.         
    76. 

  76.         // array index of the injector that resulted in an array
    77. 

  77.         // substitution. This enables processTokens() to know which
    78. 

  78.         // injectors are affected by the added tokens and which are
    79. 

  79.         // not (namely, the ones after the current injector are not
    80. 

  80.         // affected)
    81. 

  81.         $this->currentInjector = false;
    82. 

  82.         
    83. 

  83.         // give the injectors references to the definition and context
    84. 

  84.         // variables for performance reasons
    85. 

  85.         foreach ($this->injectors as $i => $x) {
    86. 

  86.             $error = $this->injectors[$i]->prepare($config, $context);
    87. 

  87.             if (!$error) continue;
    88. 

  88.             list($injector) = array_splice($this->injectors, $i, 1);
    89. 

  89.             $name = $injector->name;
    90. 

  90.             trigger_error("Cannot enable $name injector because $error is not allowed", E_USER_WARNING);
    91. 

  91.         }
    92. 

  92.         
    93. 

  93.         // warning: most foreach loops follow the convention $i => $x.
    94. 

  94.         // be sure, for PHP4 compatibility, to only perform write operations
    95. 

  95.         // directly referencing the object using $i: $x is only safe for reads
    96. 

  96.         
    97. 

  97.         // -- end INJECTOR --
    98. 

  98.         
    99. 

  99.         $token = false;
    100. 

  100.         $context->register('CurrentToken', $token);
    101. 

  101.         
    102. 

  102.         for ($this->inputIndex = 0; isset($tokens[$this->inputIndex]); $this->inputIndex++) {
    103. 

  103.             
    104. 

  104.             // if all goes well, this token will be passed through unharmed
    105. 

  105.             $token = $tokens[$this->inputIndex];
    106. 

  106.             
    107. 

  107.             //printTokens($tokens, $this->inputIndex);
    108. 

  108.             
    109. 

  109.             foreach ($this->injectors as $i => $x) {
    110. 

  110.                 if ($x->skip > 0) $this->injectors[$i]->skip--;
    111. 

  111.             }
    112. 

  112.             
    113. 

  113.             // quick-check: if it's not a tag, no need to process
    114. 

  114.             if (empty( $token->is_tag )) {
    115. 

  115.                 if ($token->type === 'text') {
    116. 

  116.                      // injector handler code; duplicated for performance reasons
    117. 

  117.                      foreach ($this->injectors as $i => $x) {
    118. 

  118.                          if (!$x->skip) $this->injectors[$i]->handleText($token);
    119. 

  119.                          if (is_array($token)) {
    120. 

  120.                              $this->currentInjector = $i;
    121. 

  121.                              break;
    122. 

  122.                          }
    123. 

  123.                      }
    124. 

  124.                 }
    125. 

  125.                 $this->processToken($token, $config, $context);
    126. 

  126.                 continue;
    127. 

  127.             }
    128. 

  128.             
    129. 

  129.             $info = $definition->info[$token->name]->child;
    130. 

  130.             
    131. 

  131.             // quick tag checks: anything that's *not* an end tag
    132. 

  132.             $ok = false;
    133. 

  133.             if ($info->type == 'empty' && $token->type == 'start') {
    134. 

  134.                 // test if it claims to be a start tag but is empty
    135. 

  135.                 $token = new HTMLPurifier_Token_Empty($token->name, $token->attr);
    136. 

  136.                 $ok = true;
    137. 

  137.             } elseif ($info->type != 'empty' && $token->type == 'empty' ) {
    138. 

  138.                 // claims to be empty but really is a start tag
    139. 

  139.                 $token = array(
    140. 

  140.                     new HTMLPurifier_Token_Start($token->name, $token->attr),
    141. 

  141.                     new HTMLPurifier_Token_End($token->name)
    142. 

  142.                 );
    143. 

  143.                 $ok = true;
    144. 

  144.             } elseif ($token->type == 'empty') {
    145. 

  145.                 // real empty token
    146. 

  146.                 $ok = true;
    147. 

  147.             } elseif ($token->type == 'start') {
    148. 

  148.                 // start tag
    149. 

  149.                 
    150. 

  150.                 // ...unless they also have to close their parent
    151. 

  151.                 if (!empty($this->currentNesting)) {
    152. 

  152.                     
    153. 

  153.                     $parent = array_pop($this->currentNesting);
    154. 

  154.                     $parent_info = $definition->info[$parent->name];
    155. 

  155.                     
    156. 

  156.                     // this can be replaced with a more general algorithm:
    157. 

  157.                     // if the token is not allowed by the parent, auto-close
    158. 

  158.                     // the parent
    159. 

  159.                     if (!isset($parent_info->child->elements[$token->name])) {
    160. 

  160.                         if ($e) $e->send(E_NOTICE, 'Strategy_MakeWellFormed: Tag auto closed', $parent);
    161. 

  161.                         // close the parent, then re-loop to reprocess token
    162. 

  162.                         $result[] = new HTMLPurifier_Token_End($parent->name);
    163. 

  163.                         $this->inputIndex--;
    164. 

  164.                         continue;
    165. 

  165.                     }
    166. 

  166.                     
    167. 

  167.                     $this->currentNesting[] = $parent; // undo the pop
    168. 

  168.                 }
    169. 

  169.                 $ok = true;
    170. 

  170.             }
    171. 

  171.             
    172. 

  172.             // injector handler code; duplicated for performance reasons
    173. 

  173.             if ($ok) {
    174. 

  174.                 foreach ($this->injectors as $i => $x) {
    175. 

  175.                     if (!$x->skip) $this->injectors[$i]->handleElement($token);
    176. 

  176.                     if (is_array($token)) {
    177. 

  177.                         $this->currentInjector = $i;
    178. 

  178.                         break;
    179. 

  179.                     }
    180. 

  180.                 }
    181. 

  181.                 $this->processToken($token, $config, $context);
    182. 

  182.                 continue;
    183. 

  183.             }
    184. 

  184.             
    185. 

  185.             // sanity check: we should be dealing with a closing tag
    186. 

  186.             if ($token->type != 'end') continue;
    187. 

  187.             
    188. 

  188.             // make sure that we have something open
    189. 

  189.             if (empty($this->currentNesting)) {
    190. 

  190.                 if ($escape_invalid_tags) {
    191. 

  191.                     if ($e) $e->send(E_WARNING, 'Strategy_MakeWellFormed: Unnecessary end tag to text');
    192. 

  192.                     $result[] = new HTMLPurifier_Token_Text(
    193. 

  193.                         $generator->generateFromToken($token, $config, $context)
    194. 

  194.                     );
    195. 

  195.                 } elseif ($e) {
    196. 

  196.                     $e->send(E_WARNING, 'Strategy_MakeWellFormed: Unnecessary end tag removed');
    197. 

  197.                 }
    198. 

  198.                 continue;
    199. 

  199.             }
    200. 

  200.             
    201. 

  201.             // first, check for the simplest case: everything closes neatly
    202. 

  202.             $current_parent = array_pop($this->currentNesting);
    203. 

  203.             if ($current_parent->name == $token->name) {
    204. 

  204.                 $result[] = $token;
    205. 

  205.                 foreach ($this->injectors as $i => $x) {
    206. 

  206.                     $this->injectors[$i]->notifyEnd($token);
    207. 

  207.                 }
    208. 

  208.                 continue;
    209. 

  209.             }
    210. 

  210.             
    211. 

  211.             // okay, so we're trying to close the wrong tag
    212. 

  212.             
    213. 

  213.             // undo the pop previous pop
    214. 

  214.             $this->currentNesting[] = $current_parent;
    215. 

  215.             
    216. 

  216.             // scroll back the entire nest, trying to find our tag.
    217. 

  217.             // (feature could be to specify how far you'd like to go)
    218. 

  218.             $size = count($this->currentNesting);
    219. 

  219.             // -2 because -1 is the last element, but we already checked that
    220. 

  220.             $skipped_tags = false;
    221. 

  221.             for ($i = $size - 2; $i >= 0; $i--) {
    222. 

  222.                 if ($this->currentNesting[$i]->name == $token->name) {
    223. 

  223.                     // current nesting is modified
    224. 

  224.                     $skipped_tags = array_splice($this->currentNesting, $i);
    225. 

  225.                     break;
    226. 

  226.                 }
    227. 

  227.             }
    228. 

  228.             
    229. 

  229.             // we still didn't find the tag, so remove
    230. 

  230.             if ($skipped_tags === false) {
    231. 

  231.                 if ($escape_invalid_tags) {
    232. 

  232.                     $result[] = new HTMLPurifier_Token_Text(
    233. 

  233.                         $generator->generateFromToken($token, $config, $context)
    234. 

  234.                     );
    235. 

  235.                     if ($e) $e->send(E_WARNING, 'Strategy_MakeWellFormed: Stray end tag to text');
    236. 

  236.                 } elseif ($e) {
    237. 

  237.                     $e->send(E_WARNING, 'Strategy_MakeWellFormed: Stray end tag removed');
    238. 

  238.                 }
    239. 

  239.                 continue;
    240. 

  240.             }
    241. 

  241.             
    242. 

  242.             // okay, we found it, close all the skipped tags
    243. 

  243.             // note that skipped tags contains the element we need closed
    244. 

  244.             for ($i = count($skipped_tags) - 1; $i >= 0; $i--) {
    245. 

  245.                 if ($i && $e && !isset($skipped_tags[$i]->armor['MakeWellFormed_TagClosedError'])) {
    246. 

  246.                     $e->send(E_NOTICE, 'Strategy_MakeWellFormed: Tag closed by element end', $skipped_tags[$i]);
    247. 

  247.                 }
    248. 

  248.                 $result[] = $new_token = new HTMLPurifier_Token_End($skipped_tags[$i]->name);
    249. 

  249.                 foreach ($this->injectors as $j => $x) { // $j, not $i!!!
    250. 

  250.                     $this->injectors[$j]->notifyEnd($new_token);
    251. 

  251.                 }
    252. 

  252.             }
    253. 

  253.             
    254. 

  254.         }
    255. 

  255.         
    256. 

  256.         $context->destroy('CurrentNesting');
    257. 

  257.         $context->destroy('InputTokens');
    258. 

  258.         $context->destroy('InputIndex');
    259. 

  259.         $context->destroy('CurrentToken');
    260. 

  260.         
    261. 

  261.         // we're at the end now, fix all still unclosed tags (this is
    262. 

  262.         // duplicated from the end of the loop with some slight modifications)
    263. 

  263.         // not using $skipped_tags since it would invariably be all of them
    264. 

  264.         if (!empty($this->currentNesting)) {
    265. 

  265.             for ($i = count($this->currentNesting) - 1; $i >= 0; $i--) {
    266. 

  266.                 if ($e && !isset($this->currentNesting[$i]->armor['MakeWellFormed_TagClosedError'])) {
    267. 

  267.                     $e->send(E_NOTICE, 'Strategy_MakeWellFormed: Tag closed by document end', $this->currentNesting[$i]);
    268. 

  268.                 }
    269. 

  269.                 $result[] = $new_token = new HTMLPurifier_Token_End($this->currentNesting[$i]->name);
    270. 

  270.                 foreach ($this->injectors as $j => $x) { // $j, not $i!!!
    271. 

  271.                     $this->injectors[$j]->notifyEnd($new_token);
    272. 

  272.                 }
    273. 

  273.             }
    274. 

  274.         }
    275. 

  275.         
    276. 

  276.         unset($this->outputTokens, $this->injectors, $this->currentInjector,
    277. 

  277.           $this->currentNesting, $this->inputTokens, $this->inputIndex);
    278. 

  278.         
    279. 

  279.         return $result;
    280. 

  280.     }
    281. 

  281.     
    282. 

  282.     function processToken($token, $config, &$context) {
    283. 

  283.         if (is_array($token)) {
    284. 

  284.             // the original token was overloaded by an injector, time
    285. 

  285.             // to some fancy acrobatics
    286. 

  286.             
    287. 

  287.             // $this->inputIndex is decremented so that the entire set gets
    288. 

  288.             // re-processed
    289. 

  289.             array_splice($this->inputTokens, $this->inputIndex--, 1, $token);
    290. 

  290.             
    291. 

  291.             // adjust the injector skips based on the array substitution
    292. 

  292.             if ($this->injectors) {
    293. 

  293.                 $offset = count($token);
    294. 

  294.                 for ($i = 0; $i <= $this->currentInjector; $i++) {
    295. 

  295.                     // because of the skip back, we need to add one more
    296. 

  296.                     // for uninitialized injectors. I'm not exactly
    297. 

  297.                     // sure why this is the case, but I think it has to
    298. 

  298.                     // do with the fact that we're decrementing skips
    299. 

  299.                     // before re-checking text
    300. 

  300.                     if (!$this->injectors[$i]->skip) $this->injectors[$i]->skip++;
    301. 

  301.                     $this->injectors[$i]->skip += $offset;
    302. 

  302.                 }
    303. 

  303.             }
    304. 

  304.         } elseif ($token) {
    305. 

  305.             // regular case
    306. 

  306.             $this->outputTokens[] = $token;
    307. 

  307.             if ($token->type == 'start') {
    308. 

  308.                 $this->currentNesting[] = $token;
    309. 

  309.             } elseif ($token->type == 'end') {
    310. 

  310.                 array_pop($this->currentNesting); // not actually used
    311. 

  311.             }
    312. 

  312.         }
    313. 

  313.     }
    314. 

  314.     
    315. 

  315. }
    316.