3 require_once 'HTMLPurifier/EntityLookup.php';
4 require_once 'HTMLPurifier/Encoder.php';
6 // if want to implement error collecting here, we'll need to use some sort
7 // of global data (probably trigger_error) because it's impossible to pass
8 // $config or $context to the callback functions.
11 * Handles referencing and derefencing character entities
13 class HTMLPurifier_EntityParser
17 * Reference to entity lookup table.
23 * Callback regex string for parsing entities.
26 var $_substituteEntitiesRegex =
27 '/&(?:[#]x([a-fA-F0-9]+)|[#]0*(\d+)|([A-Za-z]+));?/';
28 // 1. hex 2. dec 3. string
32 * Decimal to parsed string conversion table for special entities.
35 var $_special_dec2str =
45 * Stripped entity names to decimal conversion table for special entities.
48 var $_special_ent2dec =
57 * Substitutes non-special entities with their parsed equivalents. Since
58 * running this whenever you have parsed character is t3h 5uck, we run
59 * it before everything else.
62 * @param $string String to have non-special entities parsed.
63 * @returns Parsed string.
65 function substituteNonSpecialEntities($string) {
66 // it will try to detect missing semicolons, but don't rely on it
67 return preg_replace_callback(
68 $this->_substituteEntitiesRegex
,
69 array($this, 'nonSpecialEntityCallback'),
75 * Callback function for substituteNonSpecialEntities() that does the work.
77 * @warning Though this is public in order to let the callback happen,
78 * calling it directly is not recommended.
79 * @param $matches PCRE matches array, with 0 the entire match, and
80 * either index 1, 2 or 3 set with a hex value, dec value,
81 * or string (respectively).
82 * @returns Replacement string.
85 function nonSpecialEntityCallback($matches) {
86 // replaces all but big five
87 $entity = $matches[0];
88 $is_num = (@$matches[0][1] === '#');
90 $is_hex = (@$entity[2] === 'x');
91 $code = $is_hex ?
hexdec($matches[1]) : (int) $matches[2];
93 // abort for special characters
94 if (isset($this->_special_dec2str
[$code])) return $entity;
96 return HTMLPurifier_Encoder
::unichr($code);
98 if (isset($this->_special_ent2dec
[$matches[3]])) return $entity;
99 if (!$this->_entity_lookup
) {
100 require_once 'HTMLPurifier/EntityLookup.php';
101 $this->_entity_lookup
= HTMLPurifier_EntityLookup
::instance();
103 if (isset($this->_entity_lookup
->table
[$matches[3]])) {
104 return $this->_entity_lookup
->table
[$matches[3]];
112 * Substitutes only special entities with their parsed equivalents.
114 * @notice We try to avoid calling this function because otherwise, it
115 * would have to be called a lot (for every parsed section).
118 * @param $string String to have non-special entities parsed.
119 * @returns Parsed string.
121 function substituteSpecialEntities($string) {
122 return preg_replace_callback(
123 $this->_substituteEntitiesRegex
,
124 array($this, 'specialEntityCallback'),
129 * Callback function for substituteSpecialEntities() that does the work.
131 * This callback has same syntax as nonSpecialEntityCallback().
133 * @warning Though this is public in order to let the callback happen,
134 * calling it directly is not recommended.
135 * @param $matches PCRE-style matches array, with 0 the entire match, and
136 * either index 1, 2 or 3 set with a hex value, dec value,
137 * or string (respectively).
138 * @returns Replacement string.
140 function specialEntityCallback($matches) {
141 $entity = $matches[0];
142 $is_num = (@$matches[0][1] === '#');
144 $is_hex = (@$entity[2] === 'x');
145 $int = $is_hex ?
hexdec($matches[1]) : (int) $matches[2];
146 return isset($this->_special_dec2str
[$int]) ?
147 $this->_special_dec2str
[$int] :
150 return isset($this->_special_ent2dec
[$matches[3]]) ?
151 $this->_special_ent2dec
[$matches[3]] :