0
0
mirror of https://github.com/ezyang/htmlpurifier.git synced 2024-11-14 17:28:40 +00:00
Commit Graph

1606 Commits

Author SHA1 Message Date
Edward Z. Yang
af0de616ae Add a variableWidthAttack smoketest, and add analysis to some smoketests.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@294 48356398-32a2-884e-a903-53898d9a118a
2006-08-17 23:36:35 +00:00
Edward Z. Yang
66ddc4cc5a Add lots of documentation.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@293 48356398-32a2-884e-a903-53898d9a118a
2006-08-17 20:29:34 +00:00
Edward Z. Yang
252c5afae0 Update NEWS and TODO after IPv6 was fixed.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@287 48356398-32a2-884e-a903-53898d9a118a
2006-08-17 01:49:38 +00:00
Edward Z. Yang
04c0953af0 Link back to home page.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@286 48356398-32a2-884e-a903-53898d9a118a
2006-08-17 01:41:32 +00:00
Edward Z. Yang
1cadb08fbb Commit IPv6 fix, with majoring factoring out. Thank you Feyd!
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@284 48356398-32a2-884e-a903-53898d9a118a
2006-08-17 01:05:35 +00:00
Edward Z. Yang
cd0108d656 Update docs, add CREDITS.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@283 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 17:35:24 +00:00
Edward Z. Yang
ed7e72f2e3 Commit FontFamily implementation. It's a little flaky, but should be reasonable for 99% of all fonts.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@282 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 17:25:25 +00:00
Edward Z. Yang
ad31107b1e Update docs, add NEWS and WYSIWYG.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@281 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 16:32:44 +00:00
Edward Z. Yang
cb463f9676 Commit text-decoration implementation.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@280 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 15:12:48 +00:00
Edward Z. Yang
f36a05ce87 Update TODO.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@279 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 14:05:03 +00:00
Edward Z. Yang
48a97c1957 Rename root-docs to standard names.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@278 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 04:16:35 +00:00
Edward Z. Yang
bd081fd50c Add readme and install documents.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@277 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 04:14:59 +00:00
Edward Z. Yang
1b867888e8 Rename so that there's no txt extension, adhering with good practices.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@276 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 03:57:02 +00:00
Edward Z. Yang
68a300c55b Commit SLOW, which details what to do if the library's not running fast enough.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@275 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 03:55:19 +00:00
Edward Z. Yang
80a0e24afb Update progress document.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@274 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 01:46:54 +00:00
Edward Z. Yang
3422378c32 Implement all "Multiple" CSS properties.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@273 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 01:39:06 +00:00
Edward Z. Yang
2d28380763 Commit Multiple AttrDef, forms scaffolding for a few more CSS properties.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@272 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 00:34:37 +00:00
Edward Z. Yang
1388beb456 Implement all composite CSS definitions.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@271 48356398-32a2-884e-a903-53898d9a118a
2006-08-16 00:18:58 +00:00
Edward Z. Yang
490fc003c8 Update TODO.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@270 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 23:59:40 +00:00
Edward Z. Yang
0da17072d1 Change unacceptable value default behavior to drop silently.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@269 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 23:58:18 +00:00
Edward Z. Yang
38e0485fcd Prevent image crash attacks.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@268 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 22:53:12 +00:00
Edward Z. Yang
52c598730e Urldecode the US-ASCII test.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@267 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 22:03:04 +00:00
Edward Z. Yang
5690c9e0a2 Further optimization: 20% - 12%. Also fixed broken benchmarks.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@266 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 21:19:45 +00:00
Edward Z. Yang
acd7ceb940 Major optimization on tokenizeDOM(), reduce execution time from 75% to 20% by passing tokens by reference and using a token factory.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@265 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 20:19:16 +00:00
Edward Z. Yang
ed79facadf Add profiling capabilities to demo.php .
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@264 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 15:33:24 +00:00
Edward Z. Yang
44e95dac34 Add more threads to Devnetwork.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@263 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 14:24:37 +00:00
Edward Z. Yang
386b5679d3 Spelling fix.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@262 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 12:59:41 +00:00
Edward Z. Yang
a20287e582 Add license document. We still haven't added notices to all the source files though.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@261 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 12:54:27 +00:00
Edward Z. Yang
cedcbb9e15 Update TODO, add extra fringe test-case for extractBody()
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@259 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 01:14:39 +00:00
Edward Z. Yang
9a35dfa6b9 Add support for full document parsing, aka discard everything that's not in-between body if applicable.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@258 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 00:53:24 +00:00
Edward Z. Yang
d7140f2e05 Outfit a bunch of other classes so they can accept a configuration object. Put in basic scaffolding for extractBody() functionality.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@257 48356398-32a2-884e-a903-53898d9a118a
2006-08-15 00:31:12 +00:00
Edward Z. Yang
24c64dbbac Implement attribute transforms for required attributes. I can now confidently say that output will always be valid.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@256 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 23:11:28 +00:00
Edward Z. Yang
e770d994a7 Rename Definition to HTMLDefinition.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@255 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 21:22:49 +00:00
Edward Z. Yang
4ef26bbd31 Update docs.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@254 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 21:21:54 +00:00
Edward Z. Yang
218eb67167 Remove legacy required code from AttrDef_URI, also explicitly disallow < and > in URIs.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@253 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 21:06:57 +00:00
Edward Z. Yang
299236f695 Fix DOM bug where default encoding for HTML docs is not UTF-8.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@252 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 13:27:18 +00:00
Edward Z. Yang
ebf0da9b78 Add UTF-8 encoding declaration to htmlspecialchars.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@251 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 13:08:59 +00:00
Edward Z. Yang
8c1a4c63ba Fix minor mispelling.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@250 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 04:15:39 +00:00
Edward Z. Yang
25026cc168 Fix misleading statement: To say it's completely done is incorrect: if the URI is missing to begin with, the lenient output won't get it.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@249 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 04:14:09 +00:00
Edward Z. Yang
9ac52b51dd Bugfix: test overwrite another.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@248 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 04:01:05 +00:00
Edward Z. Yang
b8e6e16b5c Commit XSS cheatsheet-based smoketest.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@247 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 03:40:51 +00:00
Edward Z. Yang
d9d2fea769 Format config-ideas correctly.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@246 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 03:05:28 +00:00
Edward Z. Yang
4bf0398984 Add sample test file which demonstrates basic usage.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@245 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 02:57:16 +00:00
Edward Z. Yang
4cf7d4acfe Bugfix: add missing include Percentage
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@244 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 02:47:49 +00:00
Edward Z. Yang
238678871e - Fixed lots of bugs
- Defined new directive %Core.EscapeInvalidChildren, for previously commented out functionality
- Removed convenience configuration generation: you *have* to pass it unless you're interfacing with HTMLPurifier
- Homogenized function parameters even when only a few of them are used
- Rewrote unit tests that expected previous behavior
- Introduced configuration object to ChildDef tests

git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@243 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 02:46:34 +00:00
Edward Z. Yang
0170bb2120 Add Percentage, and font-size (not all styles fully realized yet though).
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@242 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 02:08:45 +00:00
Edward Z. Yang
76b593e060 Have child definition drop invalid tags.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@241 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 01:40:44 +00:00
Edward Z. Yang
f72d8d3dc1 Add missing caption child definition.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@240 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 01:24:01 +00:00
Edward Z. Yang
681e91b75f Rename to demo.
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@239 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 00:29:25 +00:00
Edward Z. Yang
35fa08420d Commit live demo, implement unified interface, and fix some security bugs (involving forgotten calls to strategies).
git-svn-id: http://htmlpurifier.org/svnroot/htmlpurifier/trunk@238 48356398-32a2-884e-a903-53898d9a118a
2006-08-14 00:27:15 +00:00