mirror of
https://github.com/slawkens/myaac.git
synced 2025-04-28 18:29:21 +02:00
8021308822
This fixes some errors on PHP 7.4 and contains even more fixes Also bumped PHP version to 5.5 as Twig requires it.
210 lines
7.0 KiB
PHP
210 lines
7.0 KiB
PHP
<?php
|
|
|
|
/*
|
|
* This file is part of Twig.
|
|
*
|
|
* (c) Fabien Potencier
|
|
*
|
|
* For the full copyright and license information, please view the LICENSE
|
|
* file that was distributed with this source code.
|
|
*/
|
|
|
|
namespace Twig\NodeVisitor;
|
|
|
|
use Twig\Environment;
|
|
use Twig\Node\AutoEscapeNode;
|
|
use Twig\Node\BlockNode;
|
|
use Twig\Node\BlockReferenceNode;
|
|
use Twig\Node\DoNode;
|
|
use Twig\Node\Expression\ConditionalExpression;
|
|
use Twig\Node\Expression\ConstantExpression;
|
|
use Twig\Node\Expression\FilterExpression;
|
|
use Twig\Node\Expression\InlinePrint;
|
|
use Twig\Node\ImportNode;
|
|
use Twig\Node\ModuleNode;
|
|
use Twig\Node\Node;
|
|
use Twig\Node\PrintNode;
|
|
use Twig\NodeTraverser;
|
|
|
|
/**
|
|
* @final
|
|
*
|
|
* @author Fabien Potencier <fabien@symfony.com>
|
|
*/
|
|
class EscaperNodeVisitor extends AbstractNodeVisitor
|
|
{
|
|
protected $statusStack = [];
|
|
protected $blocks = [];
|
|
protected $safeAnalysis;
|
|
protected $traverser;
|
|
protected $defaultStrategy = false;
|
|
protected $safeVars = [];
|
|
|
|
public function __construct()
|
|
{
|
|
$this->safeAnalysis = new SafeAnalysisNodeVisitor();
|
|
}
|
|
|
|
protected function doEnterNode(Node $node, Environment $env)
|
|
{
|
|
if ($node instanceof ModuleNode) {
|
|
if ($env->hasExtension('\Twig\Extension\EscaperExtension') && $defaultStrategy = $env->getExtension('\Twig\Extension\EscaperExtension')->getDefaultStrategy($node->getTemplateName())) {
|
|
$this->defaultStrategy = $defaultStrategy;
|
|
}
|
|
$this->safeVars = [];
|
|
$this->blocks = [];
|
|
} elseif ($node instanceof AutoEscapeNode) {
|
|
$this->statusStack[] = $node->getAttribute('value');
|
|
} elseif ($node instanceof BlockNode) {
|
|
$this->statusStack[] = isset($this->blocks[$node->getAttribute('name')]) ? $this->blocks[$node->getAttribute('name')] : $this->needEscaping($env);
|
|
} elseif ($node instanceof ImportNode) {
|
|
$this->safeVars[] = $node->getNode('var')->getAttribute('name');
|
|
}
|
|
|
|
return $node;
|
|
}
|
|
|
|
protected function doLeaveNode(Node $node, Environment $env)
|
|
{
|
|
if ($node instanceof ModuleNode) {
|
|
$this->defaultStrategy = false;
|
|
$this->safeVars = [];
|
|
$this->blocks = [];
|
|
} elseif ($node instanceof FilterExpression) {
|
|
return $this->preEscapeFilterNode($node, $env);
|
|
} elseif ($node instanceof PrintNode && false !== $type = $this->needEscaping($env)) {
|
|
$expression = $node->getNode('expr');
|
|
if ($expression instanceof ConditionalExpression && $this->shouldUnwrapConditional($expression, $env, $type)) {
|
|
return new DoNode($this->unwrapConditional($expression, $env, $type), $expression->getTemplateLine());
|
|
}
|
|
|
|
return $this->escapePrintNode($node, $env, $type);
|
|
}
|
|
|
|
if ($node instanceof AutoEscapeNode || $node instanceof BlockNode) {
|
|
array_pop($this->statusStack);
|
|
} elseif ($node instanceof BlockReferenceNode) {
|
|
$this->blocks[$node->getAttribute('name')] = $this->needEscaping($env);
|
|
}
|
|
|
|
return $node;
|
|
}
|
|
|
|
private function shouldUnwrapConditional(ConditionalExpression $expression, Environment $env, $type)
|
|
{
|
|
$expr2Safe = $this->isSafeFor($type, $expression->getNode('expr2'), $env);
|
|
$expr3Safe = $this->isSafeFor($type, $expression->getNode('expr3'), $env);
|
|
|
|
return $expr2Safe !== $expr3Safe;
|
|
}
|
|
|
|
private function unwrapConditional(ConditionalExpression $expression, Environment $env, $type)
|
|
{
|
|
// convert "echo a ? b : c" to "a ? echo b : echo c" recursively
|
|
$expr2 = $expression->getNode('expr2');
|
|
if ($expr2 instanceof ConditionalExpression && $this->shouldUnwrapConditional($expr2, $env, $type)) {
|
|
$expr2 = $this->unwrapConditional($expr2, $env, $type);
|
|
} else {
|
|
$expr2 = $this->escapeInlinePrintNode(new InlinePrint($expr2, $expr2->getTemplateLine()), $env, $type);
|
|
}
|
|
$expr3 = $expression->getNode('expr3');
|
|
if ($expr3 instanceof ConditionalExpression && $this->shouldUnwrapConditional($expr3, $env, $type)) {
|
|
$expr3 = $this->unwrapConditional($expr3, $env, $type);
|
|
} else {
|
|
$expr3 = $this->escapeInlinePrintNode(new InlinePrint($expr3, $expr3->getTemplateLine()), $env, $type);
|
|
}
|
|
|
|
return new ConditionalExpression($expression->getNode('expr1'), $expr2, $expr3, $expression->getTemplateLine());
|
|
}
|
|
|
|
private function escapeInlinePrintNode(InlinePrint $node, Environment $env, $type)
|
|
{
|
|
$expression = $node->getNode('node');
|
|
|
|
if ($this->isSafeFor($type, $expression, $env)) {
|
|
return $node;
|
|
}
|
|
|
|
return new InlinePrint($this->getEscaperFilter($type, $expression), $node->getTemplateLine());
|
|
}
|
|
|
|
protected function escapePrintNode(PrintNode $node, Environment $env, $type)
|
|
{
|
|
if (false === $type) {
|
|
return $node;
|
|
}
|
|
|
|
$expression = $node->getNode('expr');
|
|
|
|
if ($this->isSafeFor($type, $expression, $env)) {
|
|
return $node;
|
|
}
|
|
|
|
$class = \get_class($node);
|
|
|
|
return new $class($this->getEscaperFilter($type, $expression), $node->getTemplateLine());
|
|
}
|
|
|
|
protected function preEscapeFilterNode(FilterExpression $filter, Environment $env)
|
|
{
|
|
$name = $filter->getNode('filter')->getAttribute('value');
|
|
|
|
$type = $env->getFilter($name)->getPreEscape();
|
|
if (null === $type) {
|
|
return $filter;
|
|
}
|
|
|
|
$node = $filter->getNode('node');
|
|
if ($this->isSafeFor($type, $node, $env)) {
|
|
return $filter;
|
|
}
|
|
|
|
$filter->setNode('node', $this->getEscaperFilter($type, $node));
|
|
|
|
return $filter;
|
|
}
|
|
|
|
protected function isSafeFor($type, \Twig_NodeInterface $expression, $env)
|
|
{
|
|
$safe = $this->safeAnalysis->getSafe($expression);
|
|
|
|
if (null === $safe) {
|
|
if (null === $this->traverser) {
|
|
$this->traverser = new NodeTraverser($env, [$this->safeAnalysis]);
|
|
}
|
|
|
|
$this->safeAnalysis->setSafeVars($this->safeVars);
|
|
|
|
$this->traverser->traverse($expression);
|
|
$safe = $this->safeAnalysis->getSafe($expression);
|
|
}
|
|
|
|
return \in_array($type, $safe) || \in_array('all', $safe);
|
|
}
|
|
|
|
protected function needEscaping(Environment $env)
|
|
{
|
|
if (\count($this->statusStack)) {
|
|
return $this->statusStack[\count($this->statusStack) - 1];
|
|
}
|
|
|
|
return $this->defaultStrategy ? $this->defaultStrategy : false;
|
|
}
|
|
|
|
protected function getEscaperFilter($type, \Twig_NodeInterface $node)
|
|
{
|
|
$line = $node->getTemplateLine();
|
|
$name = new ConstantExpression('escape', $line);
|
|
$args = new Node([new ConstantExpression((string) $type, $line), new ConstantExpression(null, $line), new ConstantExpression(true, $line)]);
|
|
|
|
return new FilterExpression($node, $name, $args, $line);
|
|
}
|
|
|
|
public function getPriority()
|
|
{
|
|
return 0;
|
|
}
|
|
}
|
|
|
|
class_alias('Twig\NodeVisitor\EscaperNodeVisitor', 'Twig_NodeVisitor_Escaper');
|