Home Explore Help
Sign In
shangshang
/
jili2
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 3fd2e40d91
Branches Tags
jili2
/
vendor
/
ezyang
/
htmlpurifier
/
library
/
HTMLPurifier
/
Injector
/
SafeObject.php

SafeObject.php 3.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * Adds important param elements to inside of object in order to make
    5. 

  5.  * things safe.
    6. 

  6.  */
    7. 

  7. class HTMLPurifier_Injector_SafeObject extends HTMLPurifier_Injector
    8. 

  8. {
    9. 

  9.     /**
    10. 

  10.      * @type string
    11. 

  11.      */
    12. 

  12.     public $name = 'SafeObject';
    13. 

  13. 

  14.     /**
    15. 

  15.      * @type array
    16. 

  16.      */
    17. 

  17.     public $needed = array('object', 'param');
    18. 

  18. 

  19.     /**
    20. 

  20.      * @type array
    21. 

  21.      */
    22. 

  22.     protected $objectStack = array();
    23. 

  23. 

  24.     /**
    25. 

  25.      * @type array
    26. 

  26.      */
    27. 

  27.     protected $paramStack = array();
    28. 

  28. 

  29.     /**
    30. 

  30.      * Keep this synchronized with AttrTransform/SafeParam.php.
    31. 

  31.      * @type array
    32. 

  32.      */
    33. 

  33.     protected $addParam = array(
    34. 

  34.         'allowScriptAccess' => 'never',
    35. 

  35.         'allowNetworking' => 'internal',
    36. 

  36.     );
    37. 

  37. 

  38.     /**
    39. 

  39.      * These are all lower-case keys.
    40. 

  40.      * @type array
    41. 

  41.      */
    42. 

  42.     protected $allowedParam = array(
    43. 

  43.         'wmode' => true,
    44. 

  44.         'movie' => true,
    45. 

  45.         'flashvars' => true,
    46. 

  46.         'src' => true,
    47. 

  47.         'allowfullscreen' => true, // if omitted, assume to be 'false'
    48. 

  48.     );
    49. 

  49. 

  50.     /**
    51. 

  51.      * @param HTMLPurifier_Config $config
    52. 

  52.      * @param HTMLPurifier_Context $context
    53. 

  53.      * @return void
    54. 

  54.      */
    55. 

  55.     public function prepare($config, $context)
    56. 

  56.     {
    57. 

  57.         parent::prepare($config, $context);
    58. 

  58.     }
    59. 

  59. 

  60.     /**
    61. 

  61.      * @param HTMLPurifier_Token $token
    62. 

  62.      */
    63. 

  63.     public function handleElement(&$token)
    64. 

  64.     {
    65. 

  65.         if ($token->name == 'object') {
    66. 

  66.             $this->objectStack[] = $token;
    67. 

  67.             $this->paramStack[] = array();
    68. 

  68.             $new = array($token);
    69. 

  69.             foreach ($this->addParam as $name => $value) {
    70. 

  70.                 $new[] = new HTMLPurifier_Token_Empty('param', array('name' => $name, 'value' => $value));
    71. 

  71.             }
    72. 

  72.             $token = $new;
    73. 

  73.         } elseif ($token->name == 'param') {
    74. 

  74.             $nest = count($this->currentNesting) - 1;
    75. 

  75.             if ($nest >= 0 && $this->currentNesting[$nest]->name === 'object') {
    76. 

  76.                 $i = count($this->objectStack) - 1;
    77. 

  77.                 if (!isset($token->attr['name'])) {
    78. 

  78.                     $token = false;
    79. 

  79.                     return;
    80. 

  80.                 }
    81. 

  81.                 $n = $token->attr['name'];
    82. 

  82.                 // We need this fix because YouTube doesn't supply a data
    83. 

  83.                 // attribute, which we need if a type is specified. This is
    84. 

  84.                 // *very* Flash specific.
    85. 

  85.                 if (!isset($this->objectStack[$i]->attr['data']) &&
    86. 

  86.                     ($token->attr['name'] == 'movie' || $token->attr['name'] == 'src')
    87. 

  87.                 ) {
    88. 

  88.                     $this->objectStack[$i]->attr['data'] = $token->attr['value'];
    89. 

  89.                 }
    90. 

  90.                 // Check if the parameter is the correct value but has not
    91. 

  91.                 // already been added
    92. 

  92.                 if (!isset($this->paramStack[$i][$n]) &&
    93. 

  93.                     isset($this->addParam[$n]) &&
    94. 

  94.                     $token->attr['name'] === $this->addParam[$n]) {
    95. 

  95.                     // keep token, and add to param stack
    96. 

  96.                     $this->paramStack[$i][$n] = true;
    97. 

  97.                 } elseif (isset($this->allowedParam[strtolower($n)])) {
    98. 

  98.                     // keep token, don't do anything to it
    99. 

  99.                     // (could possibly check for duplicates here)
    100. 

  100.                     // Note: In principle, parameters should be case sensitive.
    101. 

  101.                     // But it seems they are not really; so accept any case.
    102. 

  102.                 } else {
    103. 

  103.                     $token = false;
    104. 

  104.                 }
    105. 

  105.             } else {
    106. 

  106.                 // not directly inside an object, DENY!
    107. 

  107.                 $token = false;
    108. 

  108.             }
    109. 

  109.         }
    110. 

  110.     }
    111. 

  111. 

  112.     public function handleEnd(&$token)
    113. 

  113.     {
    114. 

  114.         // This is the WRONG way of handling the object and param stacks;
    115. 

  115.         // we should be inserting them directly on the relevant object tokens
    116. 

  116.         // so that the global stack handling handles it.
    117. 

  117.         if ($token->name == 'object') {
    118. 

  118.             array_pop($this->objectStack);
    119. 

  119.             array_pop($this->paramStack);
    120. 

  120.         }
    121. 

  121.     }
    122. 

  122. }
    123. 

  123. 

  124. // vim: et sw=4 sts=4
    125.