| Zeile 13 | Zeile 13 |
|---|
allow_html
allow_smilies
allow_mycode
|
allow_html
allow_smilies
allow_mycode
|
| | allow_auto_url
|
nl2br
filter_badwords
me_username
| nl2br
filter_badwords
me_username
|
| Zeile 95 | Zeile 96 |
|---|
* @var boolean
*/
public $clear_needed = false;
|
* @var boolean
*/
public $clear_needed = false;
|
| |
/**
* Don't validate parser output
*/
const VALIDATION_DISABLE = 0;
/**
* Validate parser output and log errors
*/
const VALIDATION_REPORT_ONLY = 1;
/**
* Validate parser output, log errors, and block output on failure
*/
const VALIDATION_REQUIRE = 2;
/**
* Whether to validate the parser's HTML output when `allow_html` is disabled.
* Validation errors will be logged/sent/displayed according to board settings.
*
* @access public
* @var self::VALIDATION_*
*/
public $output_validation_policy = self::VALIDATION_REQUIRE;
|
/**
* Parses a message with the specified options.
*
* @param string $message The message to be parsed.
|
/**
* Parses a message with the specified options.
*
* @param string $message The message to be parsed.
|
* @param array $options Array of yes/no options - allow_html,filter_badwords,allow_mycode,allow_smilies,nl2br,me_username,filter_cdata.
| * @param array $options Array of yes/no options
|
* @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;
|
* @return string The parsed message.
*/
function parse_message($message, $options=array())
{
global $plugins, $mybb;
|
$this->clear_needed = false;
| $original_message = $message;
$this->clear_needed = false;
|
// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];
|
// Set base URL for parsing smilies
$this->base_url = $mybb->settings['bburl'];
|
|
|
if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")
| if($this->base_url != "")
{
if(my_substr($this->base_url, my_strlen($this->base_url) -1) != "/")
|
| Zeile 124 | Zeile 151 |
|---|
$this->options = $options;
$message = $plugins->run_hooks("parse_message_start", $message);
|
$this->options = $options;
$message = $plugins->run_hooks("parse_message_start", $message);
|
|
|
// Get rid of carriage returns for they are the workings of the devil
$message = str_replace("\r", "", $message);
| // Get rid of carriage returns for they are the workings of the devil
$message = str_replace("\r", "", $message);
|
| Zeile 151 | Zeile 178 |
|---|
foreach($code_matches as $point => $part)
{
if(isset($part[3]))
|
foreach($code_matches as $point => $part)
{
if(isset($part[3]))
|
{
| {
|
$part[1] = "[".$part[1]."]";
$code_matches[$point][2] = substr_replace($part[0], "", strrpos($part[0], $part[3]), strlen($part[3]));
$code_matches[$point][2] = substr_replace($code_matches[$point][2], "", strpos($code_matches[$point][2], $part[1]), strlen($part[1]));
| $part[1] = "[".$part[1]."]";
$code_matches[$point][2] = substr_replace($part[0], "", strrpos($part[0], $part[3]), strlen($part[3]));
$code_matches[$point][2] = substr_replace($code_matches[$point][2], "", strpos($code_matches[$point][2], $part[1]), strlen($part[1]));
|
| Zeile 205 | Zeile 232 |
|---|
if($mybb->settings['allowlinkmycode'] != 1)
{
$message = preg_replace("#\[(\/)?url{1}(.*?)\]#i", "", $message);
|
if($mybb->settings['allowlinkmycode'] != 1)
{
$message = preg_replace("#\[(\/)?url{1}(.*?)\]#i", "", $message);
|
}
| }
|
// Parse Highlights
if(!empty($this->options['highlight']))
|
// Parse Highlights
if(!empty($this->options['highlight']))
|
| Zeile 254 | Zeile 281 |
|---|
$message = $plugins->run_hooks("parse_message_end", $message);
|
$message = $plugins->run_hooks("parse_message_end", $message);
|
return $message;
| if ($this->output_allowed($original_message, $message) === true)
{
return $message;
}
else
{
return '';
}
|
}
/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.
|
}
/**
* Converts HTML in a message to their specific entities whilst allowing unicode characters.
|
*
| *
|
* @param string $message The message to be parsed.
* @return string The formatted message.
*/
| * @param string $message The message to be parsed.
* @return string The formatted message.
*/
|
| Zeile 270 | Zeile 304 |
|---|
$message = str_replace(">",">",$message);
return $message;
}
|
$message = str_replace(">",">",$message);
return $message;
}
|
|
|
/**
* Generates a cache of MyCode, both standard and custom.
*
| /**
* Generates a cache of MyCode, both standard and custom.
*
|
| Zeile 281 | Zeile 315 |
|---|
global $cache, $lang, $mybb;
$this->mycode_cache = array();
|
global $cache, $lang, $mybb;
$this->mycode_cache = array();
|
$standard_mycode = $callback_mycode = $nestable_mycode = array();
$standard_count = $callback_count = $nestable_count = 0;
| $standard_mycode = $callback_mycode = $nestable_mycode = $nestable_callback_mycode = array();
$standard_count = $callback_count = $nestable_count = $nestable_callback_count = 0;
|
if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";
$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\" class=\"mycode_b\">$1</span>";
|
if($mybb->settings['allowbasicmycode'] == 1)
{
$standard_mycode['b']['regex'] = "#\[b\](.*?)\[/b\]#si";
$standard_mycode['b']['replacement'] = "<span style=\"font-weight: bold;\" class=\"mycode_b\">$1</span>";
|
|
|
$standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";
$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\" class=\"mycode_u\">$1</span>";
| $standard_mycode['u']['regex'] = "#\[u\](.*?)\[/u\]#si";
$standard_mycode['u']['replacement'] = "<span style=\"text-decoration: underline;\" class=\"mycode_u\">$1</span>";
|
| Zeile 308 | Zeile 342 |
|---|
{
$standard_mycode['copy']['regex'] = "#\(c\)#i";
$standard_mycode['copy']['replacement'] = "©";
|
{
$standard_mycode['copy']['regex'] = "#\(c\)#i";
$standard_mycode['copy']['replacement'] = "©";
|
|
|
$standard_mycode['tm']['regex'] = "#\(tm\)#i";
$standard_mycode['tm']['replacement'] = "™";
$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "®";
|
$standard_mycode['tm']['regex'] = "#\(tm\)#i";
$standard_mycode['tm']['replacement'] = "™";
$standard_mycode['reg']['regex'] = "#\(r\)#i";
$standard_mycode['reg']['replacement'] = "®";
|
|
|
++$standard_count;
}
| ++$standard_count;
}
|
| Zeile 364 | Zeile 398 |
|---|
++$nestable_count;
++$callback_count;
|
++$nestable_count;
++$callback_count;
|
}
if($mybb->settings['allowfontmycode'] == 1)
{
$nestable_mycode['font']['regex'] = "#\[font=(\"?)([a-z0-9 ,\-_']+)\\1\](.*?)\[/font\]#si";
$nestable_mycode['font']['replacement'] = "<span style=\"font-family: $2;\" class=\"mycode_font\">$3</span>";
++$nestable_count;
| |
}
if($mybb->settings['allowalignmycode'] == 1)
| }
if($mybb->settings['allowalignmycode'] == 1)
|
| Zeile 380 | Zeile 406 |
|---|
$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\" class=\"mycode_align\">$2</div>";
++$nestable_count;
|
$nestable_mycode['align']['replacement'] = "<div style=\"text-align: $1;\" class=\"mycode_align\">$2</div>";
++$nestable_count;
|
| | }
if($mybb->settings['allowfontmycode'] == 1)
{
$nestable_callback_mycode['font']['regex'] = "#\[font=\\s*(\"?)([a-z0-9 ,\-_'\"]+)\\1\\s*\](.*?)\[/font\]#si";
$nestable_callback_mycode['font']['replacement'] = array($this, 'mycode_parse_font_callback');
++$nestable_callback_count;
|
}
$custom_mycode = $cache->read("mycode");
| }
$custom_mycode = $cache->read("mycode");
|
| Zeile 393 | Zeile 427 |
|---|
$custom_mycode[$key]['regex'] = "#".$mycode['regex']."#si";
++$standard_count;
|
$custom_mycode[$key]['regex'] = "#".$mycode['regex']."#si";
++$standard_count;
|
}
| }
|
$mycode = array_merge($standard_mycode, $custom_mycode);
|
$mycode = array_merge($standard_mycode, $custom_mycode);
|
}
| }
|
else
{
$mycode = $standard_mycode;
| else
{
$mycode = $standard_mycode;
|
| Zeile 406 | Zeile 440 |
|---|
{
$this->mycode_cache['standard']['find'][] = $code['regex'];
$this->mycode_cache['standard']['replacement'][] = $code['replacement'];
|
{
$this->mycode_cache['standard']['find'][] = $code['regex'];
$this->mycode_cache['standard']['replacement'][] = $code['replacement'];
|
}
| }
|
// Assign the nestable MyCode to the cache.
foreach($nestable_mycode as $code)
|
// Assign the nestable MyCode to the cache.
foreach($nestable_mycode as $code)
|
{
| {
|
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);
}
|
$this->mycode_cache['nestable'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);
}
|
// Assign the nestable MyCode to the cache.
| // Assign the callback MyCode to the cache.
|
foreach($callback_mycode as $code)
{
$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);
|
foreach($callback_mycode as $code)
{
$this->mycode_cache['callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);
|
}
| }
// Assign the nestable callback MyCode to the cache.
foreach($nestable_callback_mycode as $code)
{
$this->mycode_cache['nestable_callback'][] = array('find' => $code['regex'], 'replacement' => $code['replacement']);
}
|
$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;
|
$this->mycode_cache['standard_count'] = $standard_count;
$this->mycode_cache['callback_count'] = $callback_count;
$this->mycode_cache['nestable_count'] = $nestable_count;
|
| | $this->mycode_cache['nestable_callback_count'] = $nestable_callback_count;
|
}
/**
| }
/**
|
| Zeile 500 | Zeile 541 |
|---|
while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);
|
while(preg_match($mycode['find'], $message))
{
$message = preg_replace($mycode['find'], $mycode['replacement'], $message);
|
| | }
}
}
// Replace the nestable callback mycodes
if($this->mycode_cache['nestable_callback_count'] > 0)
{
foreach($this->mycode_cache['nestable_callback'] as $replace)
{
while(preg_match($replace['find'], $message))
{
$message_org = $message;
$message = preg_replace_callback($replace['find'], $replace['replacement'], $message);
if ($message_org == $message)
{
break;
}
|
}
}
}
// Reset list cache
if($mybb->settings['allowlistmycode'] == 1)
|
}
}
}
// Reset list cache
if($mybb->settings['allowlistmycode'] == 1)
|
{
| {
|
$this->list_elements = array();
$this->list_count = 0;
// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);
|
$this->list_elements = array();
$this->list_count = 0;
// Find all lists
$message = preg_replace_callback("#(\[list(=(a|A|i|I|1))?\]|\[/list\])#si", array($this, 'mycode_prepare_list'), $message);
|
|
|
// Replace all lists
for($i = $this->list_count; $i > 0; $i--)
{
| // Replace all lists
for($i = $this->list_count; $i > 0; $i--)
{
|
| Zeile 521 | Zeile 579 |
|---|
}
}
|
}
}
|
$message = $this->mycode_auto_url($message);
| if(
(!isset($this->options['allow_auto_url']) || $this->options['allow_auto_url'] == 1) &&
$mybb->settings['allowautourl'] == 1
)
{
$message = $this->mycode_auto_url($message);
}
|
return $message;
}
|
return $message;
}
|
| Zeile 542 | Zeile 606 |
|---|
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{
|
$extra_class = $onclick = '';
foreach($smilies as $sid => $smilie)
{
|
| | if(isset($theme['imgdir']))
{
$imgdir = $theme['imgdir'];
}
else
{
$imgdir = '';
}
|
$smilie['find'] = explode("\n", $smilie['find']);
|
$smilie['find'] = explode("\n", $smilie['find']);
|
$smilie['image'] = str_replace("{theme}", $theme['imgdir'], $smilie['image']);
| $smilie['image'] = str_replace("{theme}", $imgdir, $smilie['image']);
|
$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);
|
$smilie['image'] = htmlspecialchars_uni($mybb->get_asset_url($smilie['image']));
$smilie['name'] = htmlspecialchars_uni($smilie['name']);
|
|
|
foreach($smilie['find'] as $s)
{
$s = $this->parse_html($s);
| foreach($smilie['find'] as $s)
{
$s = $this->parse_html($s);
|
| Zeile 568 | Zeile 641 |
|---|
/**
* Parses smilie code in the specified message.
|
/**
* Parses smilie code in the specified message.
|
*
| *
|
* @param string $message $message The message being parsed.
* @param int $allow_html not used
* @return string The parsed message.
| * @param string $message $message The message being parsed.
* @param int $allow_html not used
* @return string The parsed message.
|
| Zeile 576 | Zeile 649 |
|---|
function parse_smilies($message, $allow_html=0)
{
if($this->smilies_cache == 0)
|
function parse_smilies($message, $allow_html=0)
{
if($this->smilies_cache == 0)
|
{
| {
|
$this->cache_smilies();
|
$this->cache_smilies();
|
}
| }
|
// No smilies?
if(!count($this->smilies_cache))
|
// No smilies?
if(!count($this->smilies_cache))
|
{
| {
|
return $message;
|
return $message;
|
}
| }
|
// First we take out any of the tags we don't want parsed between (url= etc)
preg_match_all("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#i", $message, $bad_matches, PREG_PATTERN_ORDER);
if(count($bad_matches[0]) > 0)
{
$message = preg_replace("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#si", "<mybb-bad-sm>", $message);
|
// First we take out any of the tags we don't want parsed between (url= etc)
preg_match_all("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#i", $message, $bad_matches, PREG_PATTERN_ORDER);
if(count($bad_matches[0]) > 0)
{
$message = preg_replace("#\[(url(=[^\]]*)?\]|quote=([^\]]*)?\])|(http|ftp)(s|)://[^\s]*#si", "<mybb-bad-sm>", $message);
|
}
$message = strtr($message, $this->smilies_cache);
| }
$message = strtr($message, $this->smilies_cache);
|
// If we matched any tags previously, swap them back in
if(count($bad_matches[0]) > 0)
{
| // If we matched any tags previously, swap them back in
if(count($bad_matches[0]) > 0)
{
|
| Zeile 645 | Zeile 718 |
|---|
{
reset($this->badwords_cache);
foreach($this->badwords_cache as $bid => $badword)
|
{
reset($this->badwords_cache);
foreach($this->badwords_cache as $bid => $badword)
|
{
| {
|
if(!$badword['replacement'])
{
$badword['replacement'] = "*****";
|
if(!$badword['replacement'])
{
$badword['replacement'] = "*****";
|
}
| }
|
if(!$badword['regex'])
{
$badword['badword'] = $this->generate_regex($badword['badword']);
}
|
if(!$badword['regex'])
{
$badword['badword'] = $this->generate_regex($badword['badword']);
}
|
|
|
$message = preg_replace('#'.$badword['badword'].'#is', $badword['replacement'], $message);
}
|
$message = preg_replace('#'.$badword['badword'].'#is', $badword['replacement'], $message);
}
|
}
| }
|
if(!empty($this->options['strip_tags']))
{
$message = strip_tags($message);
| if(!empty($this->options['strip_tags']))
{
$message = strip_tags($message);
|
| Zeile 671 | Zeile 744 |
|---|
*
* @param string $badword The word defined to replace.
* @return string The regex pattern to match the word or null on error.
|
*
* @param string $badword The word defined to replace.
* @return string The regex pattern to match the word or null on error.
|
*/
| */
|
function generate_regex($bad_word = "")
{
if($bad_word == "")
| function generate_regex($bad_word = "")
{
if($bad_word == "")
|
| Zeile 719 | Zeile 792 |
|---|
function parse_cdata($message)
{
$message = str_replace(']]>', ']]]]><![CDATA[>', $message);
|
function parse_cdata($message)
{
$message = str_replace(']]>', ']]]]><![CDATA[>', $message);
|
return $message;
}
|
return $message;
}
|
/**
* Attempts to move any javascript references in the specified message.
*
| /**
* Attempts to move any javascript references in the specified message.
*
|
| Zeile 735 | Zeile 808 |
|---|
"#(&\#(0*)106;?|&\#(0*)74;?|&\#x(0*)4a;?|&\#x(0*)6a;?|j)((&\#(0*)97;?|&\#(0*)65;?|a)(&\#(0*)118;?|&\#(0*)86;?|v)(&\#(0*)97;?|&\#(0*)65;?|a)(\s)?(&\#(0*)115;?|&\#(0*)83;?|s)(&\#(0*)99;?|&\#(0*)67;?|c)(&\#(0*)114;?|&\#(0*)82;?|r)(&\#(0*)105;?|&\#(0*)73;?|i)(&\#112;?|&\#(0*)80;?|p)(&\#(0*)116;?|&\#(0*)84;?|t)(&\#(0*)58;?|\:))#i",
"#([\s\"']on)([a-z]+\s*=)#i",
);
|
"#(&\#(0*)106;?|&\#(0*)74;?|&\#x(0*)4a;?|&\#x(0*)6a;?|j)((&\#(0*)97;?|&\#(0*)65;?|a)(&\#(0*)118;?|&\#(0*)86;?|v)(&\#(0*)97;?|&\#(0*)65;?|a)(\s)?(&\#(0*)115;?|&\#(0*)83;?|s)(&\#(0*)99;?|&\#(0*)67;?|c)(&\#(0*)114;?|&\#(0*)82;?|r)(&\#(0*)105;?|&\#(0*)73;?|i)(&\#112;?|&\#(0*)80;?|p)(&\#(0*)116;?|&\#(0*)84;?|t)(&\#(0*)58;?|\:))#i",
"#([\s\"']on)([a-z]+\s*=)#i",
);
|
|
|
// Add invisible white space
$message = preg_replace($js_array, "$1\xE2\x80\x8C$2$6", $message);
|
// Add invisible white space
$message = preg_replace($js_array, "$1\xE2\x80\x8C$2$6", $message);
|
|
|
return $message;
}
| return $message;
}
|
| Zeile 747 | Zeile 820 |
|---|
*
* @param int $size The original size.
* @param string $text The text within a size tag.
|
*
* @param int $size The original size.
* @param string $text The text within a size tag.
|
* @return string The parsed text.
| * @return string The parsed text.
|
*/
function mycode_handle_size($size, $text)
{
global $templates;
$size = (int)$size;
|
*/
function mycode_handle_size($size, $text)
{
global $templates;
$size = (int)$size;
|
|
|
if($size < 1)
{
$size = 1;
| if($size < 1)
{
$size = 1;
|
| Zeile 766 | Zeile 839 |
|---|
}
$text = str_replace("\'", "'", $text);
|
}
$text = str_replace("\'", "'", $text);
|
|
|
eval("\$mycode_size = \"".$templates->get("mycode_size_int", 1, 0)."\";");
return $mycode_size;
}
/**
* Handles fontsize.
|
eval("\$mycode_size = \"".$templates->get("mycode_size_int", 1, 0)."\";");
return $mycode_size;
}
/**
* Handles fontsize.
|
*
| *
|
* @param array $matches Matches.
* @return string The parsed text.
*/
| * @param array $matches Matches.
* @return string The parsed text.
*/
|
| Zeile 826 | Zeile 899 |
|---|
$find = array(
"#(\r\n*|\n*)<\/cite>(\r\n*|\n*)#",
"#(\r\n*|\n*)<\/blockquote>#"
|
$find = array(
"#(\r\n*|\n*)<\/cite>(\r\n*|\n*)#",
"#(\r\n*|\n*)<\/blockquote>#"
|
);
| );
|
$replace = array(
"</cite><br />",
|
$replace = array(
"</cite><br />",
|
| Zeile 836 | Zeile 909 |
|---|
}
return $message;
}
|
}
return $message;
}
|
|
|
/**
* Parses quotes with post id and/or dateline.
*
| /**
* Parses quotes with post id and/or dateline.
*
|
| Zeile 853 | Zeile 926 |
|---|
$message = trim($message);
$message = preg_replace("#(^<br(\s?)(\/?)>|<br(\s?)(\/?)>$)#i", "", $message);
|
$message = trim($message);
$message = preg_replace("#(^<br(\s?)(\/?)>|<br(\s?)(\/?)>$)#i", "", $message);
|
|
|
if(!$message)
{
return '';
| if(!$message)
{
return '';
|
| Zeile 863 | Zeile 936 |
|---|
$delete_quote = true;
preg_match("#pid=(?:"|\"|')?([0-9]+)[\"']?(?:"|\"|')?#i", $username, $match);
|
$delete_quote = true;
preg_match("#pid=(?:"|\"|')?([0-9]+)[\"']?(?:"|\"|')?#i", $username, $match);
|
if((int)$match[1])
| if(isset($match[1]) && (int)$match[1])
|
{
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";
| {
$pid = (int)$match[1];
$url = $mybb->settings['bburl']."/".get_post_link($pid)."#pid$pid";
|
| Zeile 882 | Zeile 955 |
|---|
unset($match);
preg_match("#dateline=(?:"|\"|')?([0-9]+)(?:"|\"|')?#i", $username, $match);
|
unset($match);
preg_match("#dateline=(?:"|\"|')?([0-9]+)(?:"|\"|')?#i", $username, $match);
|
if((int)$match[1])
| if(isset($match[1]) && (int)$match[1])
|
{
if($match[1] < TIME_NOW)
{
| {
if($match[1] < TIME_NOW)
{
|
| Zeile 902 | Zeile 975 |
|---|
if($delete_quote)
{
|
if($delete_quote)
{
|
$username = my_substr($username, 0, my_strlen($username)-1);
| $username = my_substr($username, 0, my_strlen($username)-1, true);
|
}
if(!empty($this->options['allow_html']))
{
$username = htmlspecialchars_uni($username);
|
}
if(!empty($this->options['allow_html']))
{
$username = htmlspecialchars_uni($username);
|
}
| }
|
if($text_only)
{
return "\n{$username} {$lang->wrote}{$date}\n--\n{$message}\n--\n";
|
if($text_only)
{
return "\n{$username} {$lang->wrote}{$date}\n--\n{$message}\n--\n";
|
}
| }
|
else
{
$span = "";
| else
{
$span = "";
|
| Zeile 936 | Zeile 1009 |
|---|
function mycode_parse_post_quotes_callback1($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3]);
|
function mycode_parse_post_quotes_callback1($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3]);
|
}
| }
|
/**
* Parses quotes with post id and/or dateline.
|
/**
* Parses quotes with post id and/or dateline.
|
*
| *
|
* @param array $matches Matches.
|
* @param array $matches Matches.
|
* @return string The parsed message.
*/
| * @return string The parsed message.
*/
|
function mycode_parse_post_quotes_callback2($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3], true);
| function mycode_parse_post_quotes_callback2($matches)
{
return $this->mycode_parse_post_quotes($matches[4],$matches[2].$matches[3], true);
|
| Zeile 959 | Zeile 1032 |
|---|
function mycode_parse_code($code, $text_only=false)
{
global $lang, $templates;
|
function mycode_parse_code($code, $text_only=false)
{
global $lang, $templates;
|
|
|
if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->code}\n--\n{$code}\n--\n" : $code;
|
if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->code}\n--\n{$code}\n--\n" : $code;
|
}
| }
|
// Clean the string before parsing.
$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
| // Clean the string before parsing.
$code = preg_replace('#^(\t*)(\n|\r|\0|\x0B| )*#', '\\1', $code);
$code = rtrim($code);
|
| Zeile 1007 | Zeile 1080 |
|---|
function mycode_parse_php($str, $bare_return = false, $text_only = false)
{
global $lang, $templates;
|
function mycode_parse_php($str, $bare_return = false, $text_only = false)
{
global $lang, $templates;
|
|
|
if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->php_code}\n--\n{$str}\n--\n" : $str;
| if($text_only == true)
{
return empty($this->options['signature_parse']) ? "\n{$lang->php_code}\n--\n{$str}\n--\n" : $str;
|
| Zeile 1042 | Zeile 1115 |
|---|
$code = @highlight_string($str, true);
// Do the actual replacing.
|
$code = @highlight_string($str, true);
// Do the actual replacing.
|
| | $code = preg_replace('#<pre><code style="color: \#000000">#i', "<code>", $code);
|
$code = preg_replace('#<code>\s*<span style="color: \#000000">\s*#i', "<code>", $code);
$code = preg_replace("#</span>\s*</code>#", "</code>", $code);
|
$code = preg_replace('#<code>\s*<span style="color: \#000000">\s*#i', "<code>", $code);
$code = preg_replace("#</span>\s*</code>#", "</code>", $code);
|
| | $code = preg_replace("#</code>\s*</pre>#", "</code>", $code);
|
$code = preg_replace("#</span>(\r\n?|\n?)</code>#", "</span></code>", $code);
$code = str_replace("\\", '\', $code);
$code = str_replace('$', '$', $code);
$code = preg_replace("#&\#([0-9]+);#si", "&#$1;", $code);
if($added_open_tag)
|
$code = preg_replace("#</span>(\r\n?|\n?)</code>#", "</span></code>", $code);
$code = str_replace("\\", '\', $code);
$code = str_replace('$', '$', $code);
$code = preg_replace("#&\#([0-9]+);#si", "&#$1;", $code);
if($added_open_tag)
|
{
$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\"><\?php( | )(<br />?)#", "<code><span style=\"color: #$1\">", $code);
| {
$code = preg_replace("#<code><span style=\"color: \#([A-Z0-9]{6})\"><\?php( | )(<br />|\n)#", "<code><span style=\"color: #$1\">", $code);
|
}
if($added_end_tag)
| }
if($added_end_tag)
|
| Zeile 1137 | Zeile 1212 |
|---|
eval("\$mycode_url = \"".$templates->get("mycode_url", 1, 0)."\";");
return $mycode_url;
|
eval("\$mycode_url = \"".$templates->get("mycode_url", 1, 0)."\";");
return $mycode_url;
|
| | }
/**
* Parses font MyCode.
*
* @param array $matches Matches.
* @return string The HTML <span> tag with styled font.
*/
function mycode_parse_font_callback($matches)
{
// Replace any occurrence(s) of double quotes in fonts with single quotes.
// A back-fix for double-quote-containing MyBB font tags in existing
// posts prior to the client-side aspect of this fix for the
// browser-independent SCEditor bug of issue #4182.
$fonts = str_replace('"', "'", $matches[2]);
return "<span style=\"font-family: {$fonts};\" class=\"mycode_font\">{$matches[3]}</span>";
|
}
/**
| }
/**
|
| Zeile 1211 | Zeile 1303 |
|---|
$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}
$alt = $this->encode_url($alt);
|
$alt = my_substr($alt, 0, 40).'...'.my_substr($alt, -10);
}
$alt = $this->encode_url($alt);
|
| | $alt = preg_replace("#&(?!\#[0-9]+;)#si", "&", $alt); // fix & but allow unicode
|
$alt = $lang->sprintf($lang->posted_image, $alt);
$width = $height = '';
|
$alt = $lang->sprintf($lang->posted_image, $alt);
$width = $height = '';
|
| Zeile 1346 | Zeile 1439 |
|---|
if(!$name)
{
$name = $email;
|
if(!$name)
{
$name = $email;
|
}
if(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+$/si", $email))
{
$email = $email;
}
elseif(preg_match("/^([a-zA-Z0-9-_\+\.]+?)@[a-zA-Z0-9-]+\.[a-zA-Z0-9\.-]+\?(.*?)$/si", $email))
{
$email = htmlspecialchars_uni($email);
| |
}
|
}
|
| |
$email = $this->encode_url($email);
|
eval("\$mycode_email = \"".$templates->get("mycode_email", 1, 0)."\";");
return $mycode_email;
|
eval("\$mycode_email = \"".$templates->get("mycode_email", 1, 0)."\";");
return $mycode_email;
|
}
| }
|
/**
* Parses email MyCode.
*
| /**
* Parses email MyCode.
*
|
| Zeile 1384 | Zeile 1471 |
|---|
*/
function mycode_parse_video($video, $url)
{
|
*/
function mycode_parse_video($video, $url)
{
|
global $templates;
| global $mybb, $templates;
|
if(empty($video) || empty($url))
|
if(empty($video) || empty($url))
|
{
| {
|
return "[video={$video}]{$url}[/video]";
}
// Check URL is a valid URL first, as `parse_url` doesn't check validity.
if(false === filter_var($url, FILTER_VALIDATE_URL))
|
return "[video={$video}]{$url}[/video]";
}
// Check URL is a valid URL first, as `parse_url` doesn't check validity.
if(false === filter_var($url, FILTER_VALIDATE_URL))
|
{
return "[video={$video}]{$url}[/video]";
}
| {
return "[video={$video}]{$url}[/video]";
}
|
$parsed_url = @parse_url(urldecode($url));
if($parsed_url === false)
|
$parsed_url = @parse_url(urldecode($url));
if($parsed_url === false)
|
{
return "[video={$video}]{$url}[/video]";
}
$fragments = array();
if($parsed_url['fragment'])
{
$fragments = explode("&", $parsed_url['fragment']);
}
if($video == "liveleak")
{
| {
return "[video={$video}]{$url}[/video]";
}
$bbdomain = parse_url($mybb->settings['bburl'], PHP_URL_HOST);
$fragments = empty($parsed_url['fragment']) ? array() : explode("&", $parsed_url['fragment']);
if($video == "liveleak" && !empty($parsed_url['query']))
{
|
// The query part can start with any alphabet, but set only 'i' to catch in index key later
$parsed_url['query'] = "i".substr($parsed_url['query'], 1);
|
// The query part can start with any alphabet, but set only 'i' to catch in index key later
$parsed_url['query'] = "i".substr($parsed_url['query'], 1);
|
}
$queries = explode("&", $parsed_url['query']);
| }
$queries = empty($parsed_url['query']) ? array() : explode("&", $parsed_url['query']);
|
$input = array();
foreach($queries as $query)
|
$input = array();
foreach($queries as $query)
|
{
list($key, $value) = explode("=", $query);
$key = str_replace("amp;", "", $key);
$input[$key] = $value;
| {
$query_array = explode("=", $query);
if(count($query_array) == 2)
{
list($key, $value) = $query_array;
$key = str_replace("amp;", "", $key);
$input[$key] = $value;
}
|
}
|
}
|
$path = explode('/', $parsed_url['path']);
| $path = empty($parsed_url['path']) ? array() : explode('/', $parsed_url['path']);
|
switch($video)
{
case "dailymotion":
|
switch($video)
{
case "dailymotion":
|
if(isset($path[2]))
{
| if(!empty($path[2]))
{
|
list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here
|
list($id) = explode('_', $path[2], 2); // http://www.dailymotion.com/video/fds123_title-goes-here
|
}
else
| }
elseif(!empty($path[1]))
|
{
$id = $path[1]; // http://dai.ly/fds123
}
break;
case "metacafe":
|
{
$id = $path[1]; // http://dai.ly/fds123
}
break;
case "metacafe":
|
$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/
$title = htmlspecialchars_uni($path[3]);
| if(!empty($path[2]))
{
$id = $path[2]; // http://www.metacafe.com/watch/fds123/title_goes_here/
}
|
break;
case "myspacetv":
|
break;
case "myspacetv":
|
$id = $path[4]; // http://www.myspace.com/video/fds/fds/123
| if(!empty($path[4]))
{
$id = $path[4]; // http://www.myspace.com/video/fds/fds/123
}
|
break;
case "facebook":
|
break;
case "facebook":
|
if(isset($input['v']))
| if(!empty($input['v']))
|
{
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
|
{
$id = $input['v']; // http://www.facebook.com/video/video.php?v=123
|
}
elseif(substr($path[3], 0, 3) == 'vb.')
| }
elseif(!empty($path[3]) && substr($path[3], 0, 3) == 'vb.' && !empty($path[4]))
|
{
$id = $path[4]; // https://www.facebook.com/fds/videos/vb.123/123/
}
|
{
$id = $path[4]; // https://www.facebook.com/fds/videos/vb.123/123/
}
|
else
| elseif(!empty($path[3]))
|
{
$id = $path[3]; // https://www.facebook.com/fds/videos/123/
}
break;
case "mixer":
|
{
$id = $path[3]; // https://www.facebook.com/fds/videos/123/
}
break;
case "mixer":
|
$id = $path[1]; // https://mixer.com/streamer
| if(!empty($path[1]))
{
$id = $path[1]; // https://mixer.com/streamer
}
|
break;
case "liveleak":
|
break;
case "liveleak":
|
$id = $input['i']; // http://www.liveleak.com/view?i=123
| if(!empty($input['i']))
{
$id = $input['i']; // http://www.liveleak.com/view?i=123
}
|
break;
case "yahoo":
|
break;
case "yahoo":
|
if(isset($path[2]))
| if(!empty($path[2]))
|
{
$id = $path[2]; // http://xy.screen.yahoo.com/fds/fds-123.html
|
{
$id = $path[2]; // http://xy.screen.yahoo.com/fds/fds-123.html
|
}
else
{
$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html
| }
elseif(!empty($path[1]))
{
$id = $path[1]; // http://xy.screen.yahoo.com/fds-123.html
|
}
// Support for localized portals
|
}
// Support for localized portals
|
$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))
{
$local = "{$domain[0]}.";
}
else
{
$local = '';
}
| if(!empty($parsed_url['host']))
{
$domain = explode('.', $parsed_url['host']);
if($domain[0] != 'screen' && preg_match('#^([a-z-]+)$#', $domain[0]))
{
$local = "{$domain[0]}.";
}
else
{
$local = '';
}
}
|
break;
case "vimeo":
|
break;
case "vimeo":
|
if(isset($path[3]))
{
| if(!empty($path[3]))
{
|
$id = $path[3]; // http://vimeo.com/fds/fds/fds123
|
$id = $path[3]; // http://vimeo.com/fds/fds/fds123
|
}
else
| }
elseif(!empty($path[1]))
|
{
$id = $path[1]; // http://vimeo.com/fds123
}
break;
case "youtube":
|
{
$id = $path[1]; // http://vimeo.com/fds123
}
break;
case "youtube":
|
if($fragments[0])
| if(!empty($fragments[0]))
|
{
$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123
|
{
$id = str_replace('!v=', '', $fragments[0]); // http://www.youtube.com/watch#!v=fds123
|
}
elseif($input['v'])
| }
elseif(!empty($input['v']))
|
{
$id = $input['v']; // http://www.youtube.com/watch?v=fds123
}
|
{
$id = $input['v']; // http://www.youtube.com/watch?v=fds123
}
|
else
| elseif(!empty($path[1]))
|
{
$id = $path[1]; // http://www.youtu.be/fds123
|
{
$id = $path[1]; // http://www.youtu.be/fds123
|
}
| }
|
break;
case "twitch":
if(count($path) >= 3 && $path[1] == 'videos')
| break;
case "twitch":
if(count($path) >= 3 && $path[1] == 'videos')
|
| Zeile 1529 | Zeile 1632 |
|---|
break;
default:
return "[video={$video}]{$url}[/video]";
|
break;
default:
return "[video={$video}]{$url}[/video]";
|
}
| }
|
if(empty($id))
{
|
if(empty($id))
{
|
| Zeile 1537 | Zeile 1640 |
|---|
}
$id = $this->encode_url($id);
|
}
$id = $this->encode_url($id);
|
|
|
eval("\$video_code = \"".$templates->get("video_{$video}_embed", 1, 0)."\";");
return $video_code;
}
| eval("\$video_code = \"".$templates->get("video_{$video}_embed", 1, 0)."\";");
return $video_code;
}
|
| Zeile 1549 | Zeile 1652 |
|---|
* @return string The built-up video code.
*/
function mycode_parse_video_callback($matches)
|
* @return string The built-up video code.
*/
function mycode_parse_video_callback($matches)
|
{
| {
|
return $this->mycode_parse_video($matches[1], $matches[2]);
|
return $this->mycode_parse_video($matches[1], $matches[2]);
|
}
| }
|
/**
* Parses video MyCode disabled.
|
/**
* Parses video MyCode disabled.
|
| Zeile 1566 | Zeile 1669 |
|---|
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);
$url = str_replace("\'", "'", $url);
|
$url = str_replace("\n", "", $url);
$url = str_replace("\r", "", $url);
$url = str_replace("\'", "'", $url);
|
|
|
$video = $lang->sprintf($lang->posted_video, $this->mycode_parse_url($url));
return $video;
|
$video = $lang->sprintf($lang->posted_video, $this->mycode_parse_url($url));
return $video;
|
}
| }
|
/**
* Parses video MyCode disabled.
|
/**
* Parses video MyCode disabled.
|
*
| *
|
* @param array $matches Matches.
* @return string The built-up video code.
*/
function mycode_parse_video_disabled_callback($matches)
|
* @param array $matches Matches.
* @return string The built-up video code.
*/
function mycode_parse_video_disabled_callback($matches)
|
{
| {
|
return $this->mycode_parse_video_disabled($matches[2]);
}
| return $this->mycode_parse_video_disabled($matches[2]);
}
|
| Zeile 1590 | Zeile 1693 |
|---|
*/
function mycode_auto_url($message)
{
|
*/
function mycode_auto_url($message)
{
|
$message = " ".$message;
// Links should end with slashes, numbers, characters and braces but not with dots, commas or question marks
// Don't create links within existing links (handled up-front in the callback function).
$message = preg_replace_callback("#<a\\s[^>]*>.*?</a>|([\s\(\)\[\>])(http|https|ftp|news|irc|ircs|irc6){1}(://)([^\/\"\s\<\[\.]+\.([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#ius", array($this, 'mycode_auto_url_callback'), $message);
$message = preg_replace_callback("#<a\\s[^>]*>.*?</a>|([\s\(\)\[\>])(www|ftp)(\.)(([^\/\"\s\<\[\.]+\.)*[\w]+(:[0-9]+)?(/([^\"\s<\[]|\[\])*)?([\w\/\)]))#ius", array($this, 'mycode_auto_url_callback'), $message);
$message = my_substr($message, 1);
| /*
* Don't create links:
* - within existing links (any <a> HTML tag must be returned as-is)
* - within HTML tags (must not be followed by a > character without a matching < after the link)
*
* Don't include:
* - common punctuation characters around the link
* - braces that likely constitute punctuation around the particular link (handled in the callback function)
* - partial HTML entities (https://github.com/mybb/mybb/issues/4303)
*/
$message = preg_replace_callback(
"~
<a\\s[^>]*>.*?</a>| # match and return existing links
(?<=^|[\s\(\)\[\>]) # character preceding the link
(?P<prefix>
(?:http|https|ftp|news|irc|ircs|irc6)://| # scheme, or
(?:www|ftp)\. # common subdomain
)
(?P<link>
(?:
\[[0-9a-fA-F:]+(?:%[0-9a-zA-Z._-]+)?\]| # IPv6 address with optional zone
(?:\d{1,3}\.){3}\d{1,3}| # IPv4 address
(?:[^\"\s<>\[\]:/?&#.]+\.)*[\w-]+ # domain name
)
(?::[0-9]+)? # optional port number
(?:/[^\"\s<>\[\]?&#]*)? # optional path
(?:\?(?:[^\"\s<>\[\]?#]|\[\])*)? # optional query
(?:\#[^\"\s<>\[\]]*)? # optional fragment
)
(?:
(?<=&)|(?<=<)|(?<=>)| # allow trailing entities
(?<![.,:`'\"?!])(?<!&) # exclude other trailing punctuation
)
(?![^<>]*?>) # not followed by unopened > (within HTML tags)
~iusx",
array($this, 'mycode_auto_url_callback'),
$message
);
|
return $message;
}
|
return $message;
}
|
| Zeile 1618 | Zeile 1752 |
|---|
$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces
|
$external = '';
// Allow links like http://en.wikipedia.org/wiki/PHP_(disambiguation) but detect mismatching braces
|
while(my_substr($matches[4], -1) == ')')
| while(my_substr($matches['link'], -1) == ')')
|
{
|
{
|
if(substr_count($matches[4], ')') > substr_count($matches[4], '('))
| if(substr_count($matches['link'], ')') > substr_count($matches['link'], '('))
|
{
|
{
|
$matches[4] = my_substr($matches[4], 0, -1);
| $matches['link'] = my_substr($matches['link'], 0, -1);
|
$external = ')'.$external;
}
else
| $external = ')'.$external;
}
else
|
| Zeile 1631 | Zeile 1765 |
|---|
}
// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)
|
}
// Example: ([...] http://en.wikipedia.org/Example_(disambiguation).)
|
$last_char = my_substr($matches[4], -1);
| $last_char = my_substr($matches['link'], -1);
|
while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{
|
while($last_char == '.' || $last_char == ',' || $last_char == '?' || $last_char == '!')
{
|
$matches[4] = my_substr($matches[4], 0, -1);
| $matches['link'] = my_substr($matches['link'], 0, -1);
|
$external = $last_char.$external;
|
$external = $last_char.$external;
|
$last_char = my_substr($matches[4], -1);
| $last_char = my_substr($matches['link'], -1);
|
}
}
|
}
}
|
$url = "{$matches[2]}{$matches[3]}{$matches[4]}";
| $url = $matches['prefix'].$matches['link'];
|
|
|
return $matches[1].$this->mycode_parse_url($url, $url).$external;
| return $this->mycode_parse_url($url, $url).$external;
|
}
/**
| }
/**
|
| Zeile 1808 | Zeile 1942 |
|---|
"#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=((?!javascript:)[^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",
|
"#\[img=([1-9][0-9]*)x([1-9][0-9]*)\](\r\n?|\n?)(https?://([^<>\"']+?))\[/img\]#is",
"#\[url=((?!javascript)[a-z]+?://)([^\r\n\"<]+?)\](.+?)\[/url\]#si",
"#\[url=((?!javascript:)[^\r\n\"<&\(\)]+?)\](.+?)\[/url\]#si",
|
| | "#\[attachment=([0-9]+?)\]#i",
|
);
$replace = array(
| );
$replace = array(
|
| Zeile 1816 | Zeile 1951 |
|---|
"$4",
"$3 ($1$2)",
"$2 ($1)",
|
"$4",
"$3 ($1$2)",
"$2 ($1)",
|
| | "",
|
);
$messageBefore = "";
| );
$messageBefore = "";
|
| Zeile 1868 | Zeile 2004 |
|---|
$url = str_replace(array_keys($entities), array_values($entities), $url);
return $url;
|
$url = str_replace(array_keys($entities), array_values($entities), $url);
return $url;
|
| | }
/**
* Determines whether the resulting HTML syntax is acceptable for output,
* according to the parser's validation policy and HTML support.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function output_allowed($source, $output)
{
if($this->output_validation_policy === self::VALIDATION_DISABLE || !empty($this->options['allow_html']))
{
return true;
}
else
{
$output_valid = $this->validate_output($source, $output);
if($this->output_validation_policy === self::VALIDATION_REPORT_ONLY)
{
return true;
}
else
{
return $output_valid === true;
}
}
}
/**
* Validate HTML syntax and pass errors to the error handler.
*
* @param string $source The original MyCode.
* @param string $output The output HTML code.
* @return bool
*/
function validate_output($source, $output)
{
global $error_handler;
$ignored_error_codes = array(
// entities may be broken through smilie parsing; cache_smilies() method workaround doesn't cover all entities
'XML_ERR_INVALID_DEC_CHARREF' => 7,
'XML_ERR_INVALID_CHAR' => 9,
'XML_ERR_UNDECLARED_ENTITY' => 26, // unrecognized HTML entities
'XML_ERR_ATTRIBUTE_WITHOUT_VALUE' => 41,
'XML_ERR_TAG_NAME_MISMATCH' => 76, // the parser may output tags closed in different levels and siblings
);
libxml_use_internal_errors(true);
@libxml_disable_entity_loader(true);
simplexml_load_string('<root>'.$output.'</root>', 'SimpleXMLElement', 524288 /* LIBXML_PARSEHUGE */);
$errors = libxml_get_errors();
libxml_use_internal_errors(false);
if(
$errors &&
array_diff(
array_column($errors, 'code'),
$ignored_error_codes
)
)
{
$data = array(
'sourceHtmlEntities' => htmlspecialchars_uni($source),
'outputHtmlEntities' => htmlspecialchars_uni($output),
'errors' => $errors,
);
$error_message = "Parser output validation failed.\n";
$error_message .= var_export($data, true);
$error_handler->error(E_USER_WARNING, $error_message, __FILE__, __LINE__, false);
return false;
} else {
return true;
}
|
}
}
| }
}
|