archive/php-src
1
0
Fork 0
mirror of https://github.com/php/php-src.git synced 2025-08-18 15:08:55 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

- Unicode impl of strip_tags()

Browse source
This commit is contained in:
Rolland Santimano 2005-10-03 17:00:00 +00:00
parent a0674235e3
commit 11d1574211
1 changed files with 307 additions and 29 deletions
Download patch file Download diff file Expand all files Collapse all files

330
ext/standard/string.c
View file

@ -4803,34 +4803,30 @@ PHP_FUNCTION(nl2br)
Strips HTML and PHP tags from a string */ Strips HTML and PHP tags from a string */
PHP_FUNCTION(strip_tags) PHP_FUNCTION(strip_tags)
{ {
char *buf; void *str, *allow=NULL;
zval **str, **allow=NULL; int32_t str_len, allow_len;
char *allowed_tags=NULL; zend_uchar str_type, allow_type;
int allowed_tags_len=0; void *buf;
size_t retval_len; int32_t retval_len;
switch (ZEND_NUM_ARGS()) { if (zend_parse_parameters(ZEND_NUM_ARGS() TSRMLS_CC, "T|T", &str, &str_len, &str_type,
case 1: &allow, &allow_len, &allow_type) == FAILURE) {
if (zend_get_parameters_ex(1, &str) == FAILURE) { return;
RETURN_FALSE;
} }
break;
case 2: if (str_type == IS_UNICODE) {
if (zend_get_parameters_ex(2, &str, &allow) == FAILURE) { buf = eustrndup(str, str_len);
RETURN_FALSE; retval_len = php_u_strip_tags((UChar *)buf, str_len, NULL, (UChar *)allow, allow_len TSRMLS_CC);
RETURN_UNICODEL((UChar *)buf, retval_len, 0);
} else {
buf = estrndup(str, str_len);
retval_len = php_strip_tags((char *)buf, str_len, NULL, (char *)allow, allow_len);
if (str_type == IS_BINARY) {
RETURN_BINARYL((char *)buf, retval_len, 0);
} else {
RETURN_STRINGL((char *)buf, retval_len, 0);
} }
convert_to_string_ex(allow);
allowed_tags = Z_STRVAL_PP(allow);
allowed_tags_len = Z_STRLEN_PP(allow);
break;
default:
WRONG_PARAM_COUNT;
break;
} }
convert_to_string_ex(str);
buf = estrndup(Z_STRVAL_PP(str), Z_STRLEN_PP(str));
retval_len = php_strip_tags(buf, Z_STRLEN_PP(str), NULL, allowed_tags, allowed_tags_len);
RETURN_STRINGL(buf, retval_len, 0);
} }
/* }}} */ /* }}} */
@ -4971,7 +4967,7 @@ PHP_FUNCTION(parse_str)
#define PHP_TAG_BUF_SIZE 1023 #define PHP_TAG_BUF_SIZE 1023
/* {{{ php_tag_find /* php_u_tag_find / php_tag_find
* *
* Check if tag is in a set of tags * Check if tag is in a set of tags
* *
@ -4980,6 +4976,63 @@ PHP_FUNCTION(parse_str)
* 0 start tag * 0 start tag
* 1 first non-whitespace char seen * 1 first non-whitespace char seen
*/ */
/* {{{ php_u_tag_find
*/
int php_u_tag_find(UChar *tag, int32_t len, UChar *set, int32_t set_len)
{
int32_t idx = 0;
UChar32 ch, *norm, *n;
int state = 0, done = 0;
if (!len) {
return 0;
}
norm = eumalloc(len+1);
n = norm;
while (!done) {
U16_NEXT(tag, idx, len, ch);
switch (u_tolower(ch)) {
case '<':
*(n++) = ch;
break;
case '>':
done = 1;
break;
default:
if (u_isWhitespace(ch) == FALSE) {
if (state == 0) {
state = 1;
if (ch != '/')
*(n++) = ch;
} else {
*(n++) = ch;
}
} else {
if (state == 1)
done = 1;
}
break;
}
}
*(n++) = '>';
*n = '\0';
if (u_strFindFirst(tag, len, set, set_len) != NULL) {
done = 1;
} else {
done = 0;
}
efree(norm);
return done;
}
/* }}} */
/* {{{ php_tag_find
*/
int php_tag_find(char *tag, int len, char *set) { int php_tag_find(char *tag, int len, char *set) {
char c, *n, *t; char c, *n, *t;
int state=0, done=0; int state=0, done=0;
@ -5033,7 +5086,7 @@ int php_tag_find(char *tag, int len, char *set) {
} }
/* }}} */ /* }}} */
/* {{{ php_strip_tags /* php_u_strip_tags / php_strip_tags
A simple little state-machine to strip out html and php tags A simple little state-machine to strip out html and php tags
@ -5053,6 +5106,231 @@ int php_tag_find(char *tag, int len, char *set) {
swm: Added ability to strip <?xml tags without assuming it PHP swm: Added ability to strip <?xml tags without assuming it PHP
code. code.
*/ */
/* {{{ php_u_strip_tags
*/
PHPAPI int32_t php_u_strip_tags(UChar *rbuf, int32_t len, int *stateptr, UChar *allow, int32_t allow_len TSRMLS_DC)
{
UChar *tbuf = NULL, *tp = NULL;
UChar *buf, *rp;
int32_t idx = 0, tmp, codepts;
UChar32 ch, next, prev1, prev2, last, doctype[6];
int br = 0, depth = 0, state = 0, i;
if (stateptr)
state = *stateptr;
buf = eustrndup(rbuf, len);
rp = rbuf;
if (allow) {
php_u_strtolower(&allow, &allow_len, UG(default_locale));
tbuf = eumalloc(PHP_TAG_BUF_SIZE+1);
tp = tbuf;
}
last = 0x00;
ch = prev1 = prev2 = next = -1;
codepts = 0;
while (idx < len) {
prev2 = prev1; prev1 = ch;
U16_NEXT(buf, idx, len, ch);
codepts++;
switch (ch) {
case 0x00: /* '\0' */
break;
case 0x3C: /* '<' */
U16_GET(buf, 0, idx, len, next);
if (u_isWhitespace(next) == TRUE) {
goto reg_u_char;
}
if (state == 0) {
last = 0x3C;
state = 1;
if (allow) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
*(tp++) = ch;
}
} else if (state == 1) {
depth++;
}
break;
case 0x28: /* '(' */
if (state == 2) {
if (last != 0x22 && last != 0x27) { /* '"' & '\'' */
last = 0x28;
br++;
}
} else if (allow && state == 1) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
*(tp++) = ch;
} else if (state == 0) {
*(rp++) = ch;
}
break;
case 0x29: /* ')' */
if (state == 2) {
if (last != 0x22 && last != 0x27) { /* '"' & '\'' */
last = ch;
br--;
}
} else if (allow && state == 1) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
*(tp++) = ch;
} else if (state == 0) {
*(rp++) = ch;
}
break;
case 0x3E: /* '>' */
if (depth) {
depth--;
break;
}
switch (state) {
case 1: /* HTML/XML */
last = ch;
state = 0;
if (allow) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
*(tp++) = ch;
*(tp) = 0;
if (php_u_tag_find(tbuf, tp-tbuf, allow, allow_len)) {
u_memcpy(rp, tbuf, tp-tbuf);
rp += tp-tbuf;
}
tp = tbuf;
}
break;
case 2: /* PHP */
if (!br && last != 0x22 && prev1 == 0x3F) { /* '"' & '?' */
state = 0;
tp = tbuf;
}
break;
case 3:
state = 0;
tp = tbuf;
break;
case 4: /* JavaScript/CSS/etc... */
if (codepts >= 2 && prev1 == 0x2D && prev2 == 0x2D) { /* '-' */
state = 0;
tp = tbuf;
}
break;
default:
*(rp++) = ch;
break;
}
break;
case 0x22: /* '"' */
case 0x27: /* '\'' */
if (state == 2 && prev1 != 0x5C) { /* '\\' */
if (last == ch) {
last = 0x00;
} else if (last != 0x5C) {
last = ch;
}
} else if (state == 0) {
*(rp++) = ch;
} else if (allow && state == 1) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
*(tp++) = ch;
}
break;
case 0x21: /* '!' */
/* JavaScript & Other HTML scripting languages */
if (state == 1 && prev1 == 0x3C) { /* '<' */
state = 3;
last = ch;
} else {
if (state == 0) {
(*rp++) = 0x21;
} else if (allow && state == 1) {
tp = ((tp-tbuf) >= PHP_TAG_BUF_SIZE ? tbuf: tp);
*(tp++) = 0x21;
}
}
break;
case 0x2D: /* '-' */
if (state == 3 && codepts >= 2 && prev1 == 0x2D && prev2 == 0x21) { /* '-' & '!' */
state = 4;
} else {
goto reg_u_char;
}
break;
case 0x3F: /* '?' */
if (state == 1 && prev1 == 0x3C) { /* '<' */
br = 0;
state = 2;
break;
}
case 'E':
case 'e':
/* !DOCTYPE exception */
if (state==3 && codepts > 6) {
tmp = idx;
for (i = 0 ; i < 6 ; i++) {
U16_PREV(buf, 0, tmp, doctype[i]);
}
if (u_tolower(doctype[0])=='p' && u_tolower(doctype[1])=='y' &&
u_tolower(doctype[2])=='t' && u_tolower(doctype[3])=='c' &&
u_tolower(doctype[4])=='o' && u_tolower(doctype[5])=='d') {
state = 1;
break;
}
}
/* fall-through */
case 'l':
/* swm: If we encounter '<?xml' then we shouldn't be in
* state == 2 (PHP). Switch back to HTML.
*/
if (state == 2 && codepts > 2 && prev1 == 'm' && prev2 == 'x') {
state = 1;
break;
}
/* fall-through */
default:
reg_u_char:
if (state == 0) {
rp += zend_codepoint_to_uchar(ch, rp);
} else if (allow && state == 1) {
tp = ((tp-tbuf) >= UBYTES(PHP_TAG_BUF_SIZE) ? tbuf: tp);
tp += zend_codepoint_to_uchar(ch, tp);
}
break;
}
}
*rp = 0;
efree(buf);
if (allow)
efree(tbuf);
if (stateptr)
*stateptr = state;
return (size_t)(rp-rbuf);
}
/* }}} */
/* {{{ php_strip_tags
*/
PHPAPI size_t php_strip_tags(char *rbuf, int len, int *stateptr, char *allow, int allow_len) PHPAPI size_t php_strip_tags(char *rbuf, int len, int *stateptr, char *allow, int allow_len)
{ {
char *tbuf, *buf, *p, *tp, *rp, c, lc; char *tbuf, *buf, *p, *tp, *rp, c, lc;