array('open' => $start_open, 'close' => $start_close), 'end' => array('open' => $end_open, 'close' => $end_open + strlen('[/' . $name . ']')) ); if( $start_equal !== false) $res['start']['equal'] = $start_equal + 1; return $res; } function bb_tag_preg_replace($pattern, $replace, $name, $s) { $string = $s; $occurance = 1; $pos = get_bb_tag_pos($string, $name, $occurance); while($pos !== false && $occurance < 1000) { $start = substr($string, 0, $pos['start']['open']); $subject = substr($string, $pos['start']['open'], $pos['end']['close'] - $pos['start']['open']); $end = substr($string, $pos['end']['close']); if($end === false) $end = ''; $subject = preg_replace($pattern, $replace, $subject); $string = $start . $subject . $end; $occurance++; $pos = get_bb_tag_pos($string, $name, $occurance); } return $string; } function tryoembed($match) { $url = ((count($match) == 2) ? $match[1] : $match[2]); $o = oembed_fetch_url($url); if ($o['type'] == 'error') return $match[0]; $html = oembed_format_object($o); return $html; } function nakedoembed($match) { $url = ((count($match) == 2) ? $match[1] : $match[2]); $strip_url = strip_escaped_zids($url); // this function no longer performs oembed on naked links // because they author may have created naked links intentionally. // Now it just strips zids on naked links. return str_replace($url,$strip_url,$match[0]); } function tryzrlaudio($match) { $link = $match[1]; $zrl = is_matrix_url($link); if($zrl) $link = zid($link); return '

'; } function tryzrlvideo($match) { $link = $match[1]; $zrl = is_matrix_url($link); if($zrl) $link = zid($link); $static_link = get_config('system','video_default_poster','images/video_poster.jpg'); if($static_link) $poster = 'poster="' . escape_tags($static_link) . '" ' ; return '

'; } function videowithopts($match) { $link = $match[2]; $zrl = is_matrix_url($link); if($zrl) $link = zid($link); $attributes = $match[1]; $poster = ""; preg_match("/poster='(.*?)'/ism", $attributes, $matches); if ($matches[1] != "") $poster = 'poster="' . (($zrl) ? zid($matches[1]) : $matches[1]) . '"'; return '

'; } // [noparse][i]italic[/i][/noparse] turns into // [noparse][ i ]italic[ /i ][/noparse], // to hide them from parser. function bb_spacefy($st) { $whole_match = $st[0]; $captured = $st[1]; $spacefied = preg_replace("/\[(.*?)\]/", "[ $1 ]", $captured); $new_str = str_replace($captured, $spacefied, $whole_match); return $new_str; } // The previously spacefied [noparse][ i ]italic[ /i ][/noparse], // now turns back returning [noparse][i]italic[/i][/noparse] function bb_unspacefy($st) { $whole_match = $st[0]; $captured = $st[1]; $spacefied = preg_replace("/\[ (.*?) \]/", "[$1]", $captured); $new_str = str_replace($captured, $spacefied, $whole_match); return $new_str; } // The previously spacefied [noparse][ i ]italic[ /i ][/noparse], // now turns back and the [noparse] tags are trimmed // returning [i]italic[/i] function bb_unspacefy_and_trim($st) { //$whole_match = $st[0]; $captured = $st[1]; $unspacefied = preg_replace("/\[ (.*?)\ ]/", "[$1]", $captured); return $unspacefied; } function bb_extract_images($body) { $saved_image = array(); $orig_body = $body; $new_body = ''; $cnt = 0; $img_start = strpos($orig_body, '[img'); $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false); $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false); while(($img_st_close !== false) && ($img_end !== false)) { $img_st_close++; // make it point to AFTER the closing bracket $img_end += $img_start; if(! strcmp(substr($orig_body, $img_start + $img_st_close, 5), 'data:')) { // This is an embedded image $saved_image[$cnt] = substr($orig_body, $img_start + $img_st_close, $img_end - ($img_start + $img_st_close)); $new_body = $new_body . substr($orig_body, 0, $img_start) . '[$#saved_image' . $cnt . '#$]'; $cnt++; } else $new_body = $new_body . substr($orig_body, 0, $img_end + strlen('[/img]')); $orig_body = substr($orig_body, $img_end + strlen('[/img]')); if($orig_body === false) // in case the body ends on a closing image tag $orig_body = ''; $img_start = strpos($orig_body, '[img'); $img_st_close = ($img_start !== false ? strpos(substr($orig_body, $img_start), ']') : false); $img_end = ($img_start !== false ? strpos(substr($orig_body, $img_start), '[/img]') : false); } $new_body = $new_body . $orig_body; return array('body' => $new_body, 'images' => $saved_image); } function bb_replace_images($body, $images) { $newbody = $body; $cnt = 0; if(! $images) return $newbody; foreach($images as $image) { // We're depending on the property of 'foreach' (specified on the PHP website) that // it loops over the array starting from the first element and going sequentially // to the last element $newbody = str_replace('[$#saved_image' . $cnt . '#$]', ' ' . t('Image/photo') . '

', $newbody); $cnt++; } // logger('replace_images: ' . $newbody); return $newbody; } /** * @brief Parses crypt BBCode. * * @param array $match * @return string HTML code */ function bb_parse_crypt($match) { $matches = []; $hint = ''; $algorithm = ''; $payload = $match[1]; if (isset($match[2])) { // backwards compatibility $attributes = $match[1]; $payload = $match[2]; preg_match("/alg='(.*?)'/ism", $attributes, $matches); $algorithm = $matches[1] ?? ''; if (!$algorithm) { preg_match("/alg=\"\;(.*?)\"\;/ism", $attributes, $matches); $algorithm = $matches[1] ?? ''; } preg_match("/hint='(.*?)'/ism", $attributes, $matches); $hint = $matches[1] ?? ''; if (!$hint) { preg_match("/hint=\"\;(.*?)\"\;/ism", $attributes, $matches); $hint = $matches[1] ?? ''; } } $x = random_string(32); $onclick = 'onclick="sodium_decrypt(\'' . $payload . '\',\'#' . $x . '\');"'; if (in_array($algorithm, ['AES-128-CCM', 'rot13', 'triple-rot13'])) { // backwards compatibility $onclick = 'onclick="hz_decrypt(\'' . $algorithm . '\',\'' . $hint . '\',\'' . $payload . '\',\'#' . $x . '\');"'; } $label = t('Encrypted content'); $text = '

'; return $text; } /** * @brief Returns raw base64 encoded crypt content. * * @param array $match * @return string */ function bb_parse_b64_crypt($match) { if(empty($match[1])) { return; } $r = '-----BEGIN ENCRYPTED MESSAGE-----' . "\n"; $r .= $match[1] . "\n"; $r .= '-----END ENCRYPTED MESSAGE-----' . "\n"; $r = '

' . str_replace("\n", '
', wordwrap($r, 75, "\n", true)) . '

'; return $r; } function bb_parse_app($match) { $app = Zotlabs\Lib\Apps::app_decode($match[1]); if ($app) return preg_replace('/[[:cntrl:]]/', '', Zotlabs\Lib\Apps::app_render($app, 'inline')); } function bb_svg($match) { $params = str_replace(['
', '"'], [ '', '"'],$match[1]); $Text = str_replace([ '[',']' ], [ '<','>' ], $match[2]); $output = '' . str_replace(['
', '"', ' '], [ '', '"', ' '],$Text) . ''; $purify = new SvgSanitizer(); $purify->loadXML($output); $purify->sanitize(); $output = $purify->saveSVG(); $output = preg_replace("/\<\?xml(.*?)\?\>/",'',$output); return $output; } function bb_parse_element($match) { $j = json_decode(base64url_decode($match[1]),true); if ($j && local_channel()) { $text = sprintf( t('Install %1$s element %2$s'), translate_design_element($j['type']), $j['pagetitle']); $o = EOL . '' . EOL; } else { $text = sprintf( t('This post contains an installable %s element, however you lack permissions to install it on this site.' ), translate_design_element($j['type'])) . $j['pagetitle']; $o = EOL . $text . EOL; } return $o; } function translate_design_element($type) { switch($type) { case 'webpage': $ret = t('webpage'); break; case 'layout': $ret = t('layout'); break; case 'block': $ret = t('block'); break; case 'menu': $ret = t('menu'); break; } return $ret; } function bb_format_attachdata($body) { $data = getAttachmentData($body); if($data) { $txt = ''; if(isset($data['url']) && isset($data['title'])) { $txt .= "\n\n" . '[url=' . $data['url'] . ']' . $data['title'] . '[/url]'; } else { if(isset($data['url'])) { $txt .= "\n\n" . $data['url']; } if(isset($data['title'])) { $txt .= "\n\n" . $data['title']; } } if(isset($data['preview'])) { $txt .= "\n\n" . '[img]' . $data['preview'] . '[/img]'; } if(isset($data['image'])) { $txt .= "\n\n" . '[img]' . $data['image'] . '[/img]'; } if(isset($data['text'])) { $txt .= "\n\n" . $data['text']; } return preg_replace('/\[attachment(.*?)\](.*?)\[\/attachment\]/ism',$txt,$body); } return $body; } function getAttachmentData($body) { $data = []; if (! preg_match("/\[attachment(.*?)\](.*?)\[\/attachment\]/ism", $body, $match)) { return null; } $attributes = $match[1]; $data["text"] = trim($match[2]); $type = ""; preg_match("/type='(.*?)'/ism", $attributes, $matches); if (x($matches, 1)) { $type = strtolower($matches[1]); } preg_match('/type=\"\;(.*?)\"\;/ism', $attributes, $matches); if (x($matches, 1)) { $type = strtolower($matches[1]); } if ($type == "") { return []; } if (!in_array($type, ["link", "audio", "photo", "video"])) { return []; } if ($type != "") { $data["type"] = $type; } $url = ""; preg_match("/url='(.*?)'/ism", $attributes, $matches); if (x($matches, 1)) { $url = $matches[1]; } preg_match('/url=\"\;(.*?)\"\;/ism', $attributes, $matches); if (x($matches, 1)) { $url = $matches[1]; } if ($url != "") { $data["url"] = html_entity_decode($url, ENT_QUOTES, 'UTF-8'); } $title = ""; preg_match("/title='(.*?)'/ism", $attributes, $matches); if (x($matches, 1)) { $title = $matches[1]; } preg_match('/title=\"\;(.*?)\"\;/ism', $attributes, $matches); if (x($matches, 1)) { $title = $matches[1]; } if ($title != "") { $title = html_entity_decode($title, ENT_QUOTES, 'UTF-8'); $title = str_replace(["[", "]"], ["[", "]"], $title); $data["title"] = $title; } $image = ""; preg_match("/image='(.*?)'/ism", $attributes, $matches); if (x($matches, 1)) { $image = $matches[1]; } preg_match('/image=\"\;(.*?)\"\;/ism', $attributes, $matches); if (x($matches, 1)) { $image = $matches[1]; } if ($image != "") { $data["image"] = html_entity_decode($image, ENT_QUOTES, 'UTF-8'); } $preview = ""; preg_match("/preview='(.*?)'/ism", $attributes, $matches); if (x($matches, 1)) { $preview = $matches[1]; } preg_match('/preview=\"\;(.*?)\"\;/ism', $attributes, $matches); if (x($matches, 1)) { $preview = $matches[1]; } if ($preview != "") { $data["preview"] = html_entity_decode($preview, ENT_QUOTES, 'UTF-8'); } $data["description"] = ((isset($match[3])) ? trim($match[3]) : ''); $data["after"] = ((isset($match[4])) ? trim($match[4]) : ''); return $data; } function bb_ShareAttributes($match) { $matches = array(); $attributes = $match[1]; $author = ""; preg_match("/author='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { $author = urldecode($matches[1]); } $link = ""; preg_match("/link='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { $link = $matches[1]; } $avatar = ""; preg_match("/avatar='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { $avatar = $matches[1]; } $profile = ""; preg_match("/profile='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { $profile = $matches[1]; } $posted = ""; preg_match("/posted='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { $posted = $matches[1]; } $auth = ""; preg_match("/auth='(.*?)'/ism", $attributes, $matches); if (isset($matches[1]) && $matches[1] !== '') { if($matches[1] === 'true') $auth = true; else $auth = false; } if($auth === EMPTY_STR) { $auth = is_matrix_url($profile); } $rnd = mt_rand(); $reldate = '' . datetime_convert('UTC', date_default_timezone_get(), $posted, 'r') . ''; $headline = '

'; if ($avatar != "") $headline .= '

'; if(strpos($link,'/cards/')) $type = t('card'); elseif(strpos($link,'/articles/')) $type = t('article'); else $type = t('post'); // Bob Smith wrote the following post 2 hours ago $fmt = sprintf( t('%1$s wrote the following %2$s %3$s'), '' . $author . '', '' . $type . '', $reldate ); $headline .= '' . $fmt . '

'; $text = $headline . '

' . trim($match[2]) . '

'; return $text; } function bb_location($match) { // not yet implemented } /** * @brief Returns an iframe from $match[1]. * * @param array $match * @return string HTML iframe with content of $match[1] */ function bb_iframe($match) { $sandbox = ((strpos($match[1], App::get_hostname())) ? ' sandbox="allow-scripts" ' : ''); return ''; } function bb_ShareAttributesSimple($match) { $matches = array(); $attributes = $match[1]; $author = ""; preg_match("/author='(.*?)'/ism", $attributes, $matches); if ($matches[1] != "") $author = html_entity_decode($matches[1],ENT_QUOTES,'UTF-8'); preg_match('/author="(.*?)"/ism', $attributes, $matches); if ($matches[1] != "") $author = $matches[1]; $profile = ""; preg_match("/profile='(.*?)'/ism", $attributes, $matches); if ($matches[1] != "") $profile = $matches[1]; preg_match('/profile="(.*?)"/ism', $attributes, $matches); if ($matches[1] != "") $profile = $matches[1]; $text = html_entity_decode("♲ ", ENT_QUOTES, 'UTF-8') . ' ' . $author . ':

' . $match[2] . '

'; return($text); } function rpost_callback($match) { if ($match[2]) { return str_replace($match[0], Libzot::get_rpost_path(App::get_observer()) . '&title=' . urlencode($match[2]) . '&body=' . urlencode($match[3]), $match[0]); } else { return str_replace($match[0], Libzot::get_rpost_path(App::get_observer()) . '&body=' . urlencode($match[3]), $match[0]); } } function bb_map_coords($match) { // the extra space in the following line is intentional return str_replace($match[0],'

' . generate_map(str_replace('/',' ',$match[1])) . '

', $match[0]); } function bb_map_location($match) { // the extra space in the following line is intentional return str_replace($match[0],'

' . generate_named_map($match[1]) . '

', $match[0]); } function bb_opentag($match) { $openclose = (($match[2]) ? '' . $match[1] . '' : t('Click to open/close')); $text = (($match[2]) ? $match[2] : $match[1]); $rnd = mt_rand(); return '

' . $openclose . '

'; } function bb_spoilertag($match) { $openclose = (($match[2]) ? '' . $match[1] . ' ' . t('spoiler') . '' : t('Click to open/close')); $text = (($match[2]) ? $match[2] : $match[1]); $rnd = mt_rand(); return '

' . $openclose . '

'; } function bb_summary($match) { $rnd1 = mt_rand(); $rnd2 = mt_rand(); $rnd3 = mt_rand(); $rnd4 = mt_rand(); return $match[1] . '

' . $match[2] . '

' . t('View article') . '

'; } function bb_definitionList($match) { // $match[1] is the markup styles for the "terms" in the definition list. // $match[2] is the content between the [dl]...[/dl] tags $classes = ''; if (stripos($match[1], "b") !== false) $classes .= 'dl-terms-bold '; if (stripos($match[1], "i") !== false) $classes .= 'dl-terms-italic '; if (stripos($match[1], "u") !== false) $classes .= 'dl-terms-underline '; if (stripos($match[1], "l") !== false) $classes .= 'dl-terms-large '; if (stripos($match[1], "m") !== false) $classes .= 'dl-terms-monospace '; if (stripos($match[1], "h") !== false) $classes .= 'dl-horizontal '; // dl-horizontal is already provided by bootstrap if (strlen($classes) === 0) $classes = "dl-terms-plain"; // The bbcode transformation will be: // [*=term-text] description-text =>

term-text

description-text // then after all replacements have been made, the extra

at the start of the // first line can be removed. HTML5 allows the tag to be missing from the end of the last line. // Using '(?\n"; $eatLeadingSpaces = '(?: |[ \t])*'; // prevent spaces infront of [*= from adding another line to the previous element $listElements = preg_replace('/^(\n|
)/', '', $match[2]); // ltrim the first newline $listElements = preg_replace( '/' . $eatLeadingSpaces . '\[\*=([[:print:]]*?)(?$1

', $listElements ); // Unescape any \] inside the

tags $listElements = preg_replace_callback('/

(.*?)<\/dt>/ism', 'bb_definitionList_unescapeBraces', $listElements); // Remove the extra at the start of the string, if there is one. $firstOpenTag = strpos($listElements, '

'); $firstCloseTag = strpos($listElements, $closeDescriptionTag); if ($firstCloseTag !== false && ($firstOpenTag === false || ($firstCloseTag < $firstOpenTag))) { $listElements = preg_replace( '/<\/dd>/ism', '', $listElements, 1); } return '

' . $listElements . '';; } function bb_definitionList_unescapeBraces($match) { return '

' . str_replace('\]', ']', $match[1]) . '

'; } function bb_checklist($match) { $str = $match[1]; $str = str_replace("[]", "

", $str); $str = str_replace("[x]", "

", $str); return '

' . $str . ''; } /** * @brief Sanitize style properties from BBCode to HTML. * * @param array $input * @return string A HTML span tag with the styles. */ function bb_sanitize_style($input) { // whitelist array: property => limits (0 = no limitation) $w = array( // color properties "color" => 0, "background-color" => 0, // box properties "padding" => array("px"=>100, "%"=>0, "em"=>2, "ex"=>2, "mm"=>0, "cm"=>0, "in"=>0, "pt"=>0, "pc"=>0), "margin" => array("px"=>100, "%"=>0, "em"=>2, "ex"=>2, "mm"=>0, "cm"=>0, "in"=>0, "pt"=>0, "pc"=>0), "border" => array("px"=>100, "%"=>0, "em"=>2, "ex"=>2, "mm"=>0, "cm"=>0, "in"=>0, "pt"=>0, "pc"=>0), "float" => 0, "clear" => 0, // text properties "text-decoration" => 0, ); $css = array(); $css_string = $input[1]; $a = explode(';', $css_string); foreach($a as $parts){ list($k, $v) = explode(':', $parts); $css[ trim($k) ] = trim($v); } // sanitize properties $b = array_merge(array_diff_key($css, $w), array_diff_key($w, $css)); $css = array_diff_key($css, $b); $css_string_san = ''; foreach ($css as $key => $value) { if ($w[$key] != null) { foreach ($w[$key] as $limit_key => $limit_value) { //sanitize values if (strpos($value, $limit_key)) { $value = preg_replace_callback( "/(\S.*?)$limit_key/ism", function($match) use($limit_value, $limit_key) { if ($match[1] > $limit_value) { return $limit_value . $limit_key; } else { return $match[1] . $limit_key; } }, $value ); } } } $css_string_san .= $key . ":" . $value ."; "; } return '' . $input[2] . ''; } function oblanguage_callback($matches) { if(strlen($matches[1]) == 2) { $compare = strtolower(substr(\App::$language,0,2)); } else { $compare = strtolower(\App::$language); } if($compare === strtolower($matches[1])) return $matches[2]; return ''; } function oblanguage_necallback($matches) { if(strlen($matches[1]) == 2) { $compare = strtolower(substr(\App::$language,0,2)); } else { $compare = strtolower(\App::$language); } if($compare !== strtolower($matches[1])) return $matches[2]; return ''; } /** * Process [observer] tags in the source text. * * @param string $text The source BBCode text. * @param ?array $observer Array containing the observer we render for, or * null if none. * * @return A string where the [observer] tags have been processed. */ function bb_observer(string $text, ?array $observer): string { if ((strpos($text,'[/observer]') !== false) || (strpos($text,'[/rpost]') !== false)) { $text = preg_replace_callback("/\[observer\.language\=(.*?)\](.*?)\[\/observer\]/ism",'oblanguage_callback', $text); $text = preg_replace_callback("/\[observer\.language\!\=(.*?)\](.*?)\[\/observer\]/ism",'oblanguage_necallback', $text); if ($observer) { $text = preg_replace("/\[observer\=1\](.*?)\[\/observer\]/ism", '$1', $text); $text = preg_replace("/\[observer\=0\].*?\[\/observer\]/ism", '', $text); $text = preg_replace_callback("/\[rpost(=(.*?))?\](.*?)\[\/rpost\]/ism", 'rpost_callback', $text); } else { $text = preg_replace("/\[observer\=1\].*?\[\/observer\]/ism", '', $text); $text = preg_replace("/\[observer\=0\](.*?)\[\/observer\]/ism", '$1', $text); $text = preg_replace("/\[rpost(=.*?)?\](.*?)\[\/rpost\]/ism", '', $text); } } return $text; } /** * Process [channel] tags in the source text. * * @param string $text The source BBCode text. * @param ?array $channel Array containing the channel we render for, or * null if none. * * @return A string where the [channel] tags have been processed. */ function bb_channel(string $text, ?array $channel): string { if (strpos($text,'[/channel]') !== false) { if ($channel) { $text = preg_replace("/\[channel\=1\](.*?)\[\/channel\]/ism", '$1', $text); $text = preg_replace("/\[channel\=0\].*?\[\/channel\]/ism", '', $text); } else { $text = preg_replace("/\[channel\=1\].*?\[\/channel\]/ism", '', $text); $text = preg_replace("/\[channel\=0\](.*?)\[\/channel\]/ism", '$1', $text); } } return $text; } function bb_imgoptions($match) { // $Text = preg_replace_callback("/\[([zi])mg([ \=])(.*?)\](.*?)\[\/[zi]mg\]/ism",'bb_imgoptions',$Text); // alt text cannot contain ']' // [img|zmg=wwwxhhh float=left|right alt=alt text]url[/img|zmg] $local_match = null; $width = EMPTY_STR; $height = EMPTY_STR; $float = EMPTY_STR; $alt = EMPTY_STR; $title = EMPTY_STR; $style = EMPTY_STR; $class = EMPTY_STR; $attributes = $match[3]; $x = preg_match("/alt='(.*?)'/ism", $attributes, $matches); if ($x) { $alt = $matches[1]; } $x = preg_match("/title=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $title = $matches[1]; } $x = preg_match("/title='(.*?)'/ism", $attributes, $matches); if ($x) { $title = $matches[1]; } $x = preg_match("/alt=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $alt = $matches[1]; } $x = preg_match("/width='(.*?)'/ism", $attributes, $matches); if ($x) { $width = $matches[1]; } $x = preg_match("/width=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $width = $matches[1]; } $x = preg_match("/height='(.*?)'/ism", $attributes, $matches); if ($x) { $height = $matches[1]; } $x = preg_match("/height=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $height = $matches[1]; } $x = preg_match("/class='(.*?)'/ism", $attributes, $matches); if ($x) { $class = $matches[1]; } $x = preg_match("/class=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $class = $matches[1]; } /* should probably sanitize css somehow $x = preg_match("/style='(.*?)'/ism", $attributes, $matches); if ($x) { $style = $matches[1] . ' '; } $x = preg_match("/style=\"\;(.*?)\"\;/ism", $attributes, $matches); if ($x) { $style = $matches[1] . ' '; } */ // legacy img options if ($match[2] === '=') { // pull out (optional) legacy size declarations first if (preg_match("/([0-9]*)x([0-9]*)/ism",$match[3],$local_match)) { $width = intval($local_match[1]); } $match[3] = substr($match[3],strpos($match[3],' ')); } // then (optional) legacy float specifiers if ($n = strpos($match[3],'float=left') !== false) { $float = 'left'; $match[3] = substr($match[3],$n + 10); } if ($n = strpos($match[3],'float=right') !== false) { $float = 'right'; $match[3] = substr($match[3],$n + 11); } // finally alt text which extends to the close of the tag if ((! $alt) && ($n = strpos($match[3],'alt=') !== false)) { $alt = substr($match[3],$n + 4); } // now assemble the resulting img tag from these components $output = ''; return $output; } function bb_code_protect($s) { return 'b64.^9e%.' . base64_encode($s) . '.b64.$9e%'; } function bb_code_unprotect($s) { return preg_replace_callback('|b64\.\^9e\%\.(.*?)\.b64\.\$9e\%|ism','bb_code_unprotect_sub',$s); } function bb_code_unprotect_sub($match) { return base64_decode($match[1]); } function bb_code($match) { if(strpos($match[0], PHP_EOL) !== false) return '

' . bb_code_protect(trim($match[1])) . '

'; else return '' . bb_code_protect(trim($match[1])) . ''; } function bb_code_options($match) { if(strpos($match[0], PHP_EOL)) { $class = ""; $pre = true; } else { $class = "inline-code"; $pre = false; } if(strpos($match[1], 'nowrap')) { $style = "overflow-x: auto; white-space: pre;"; } else { $style = ""; } if($pre) { return '

' . bb_code_protect(trim($match[2])) . '

'; } else { return '' . bb_code_protect(trim($match[2])) . ''; } } function bb_highlight($match) { return bb_code_protect(text_highlight($match[2],strtolower($match[1]))); } function bb_fixtable_lf($match) { // remove extraneous whitespace between table element tags since newlines will all // be converted to '
' and turn your neatly crafted tables into a whole lot of // empty space. $x = preg_replace("/\]\s+\[/",'][',$match[1]); return '[table]' . $x . '[/table]'; } function bb_fix_lf($match) { // remove extraneous whitespace between element tags since newlines will all // be converted to '
' and turn your neatly crafted tables into a whole lot of // empty space. $new_content = str_replace(["\n\r", "\n", "\r"], '', $match[1]); return str_replace($match[1], $new_content, $match[0]); } function bbtopoll($s) { $pl = []; $match = ''; if(! preg_match("/\[poll=(.*?)\](.*?)\[\/poll\]/ism",$s,$match)) { return null; } $pl['poll_id'] = $match[1]; $pl['poll_question'] = $match[2]; $match = []; if(preg_match_all("/\[poll\-answer=(.*?)\](.*?)\[\/poll\-answer\]/is",$s,$match,PREG_SET_ORDER)) { $pl['answer'] = []; foreach($match as $m) { $ans = [ 'answer_id' => $m[1], 'answer_text' => $m[2] ]; $pl['answer'][] = $ans; } } return $pl; } function parseIdentityAwareHTML($Text) { // Hide all [noparse] contained bbtags by spacefying them if (strpos($Text,'[noparse]') !== false) { $Text = preg_replace_callback("/\[noparse\](.*?)\[\/noparse\]/ism", 'bb_spacefy',$Text); } if (strpos($Text,'[nobb]') !== false) { $Text = preg_replace_callback("/\[nobb\](.*?)\[\/nobb\]/ism", 'bb_spacefy',$Text); } if (strpos($Text,'[pre]') !== false) { $Text = preg_replace_callback("/\[pre\](.*?)\[\/pre\]/ism", 'bb_spacefy',$Text); } // process [observer] tags before we do anything else because we might // be stripping away stuff that then doesn't need to be worked on anymore $observer = App::get_observer(); if ((strpos($Text,'[/observer]') !== false) || (strpos($Text,'[/rpost]') !== false)) { $Text = preg_replace_callback("/\[observer\.language\=(.*?)\](.*?)\[\/observer\]/ism",'oblanguage_callback', $Text); $Text = preg_replace_callback("/\[observer\.language\!\=(.*?)\](.*?)\[\/observer\]/ism",'oblanguage_necallback', $Text); if ($observer) { $Text = preg_replace("/\[observer\=1\](.*?)\[\/observer\]/ism", '$1', $Text); $Text = preg_replace("/\[observer\=0\].*?\[\/observer\]/ism", '', $Text); $Text = preg_replace_callback("/\[rpost(=(.*?))?\](.*?)\[\/rpost\]/ism", 'rpost_callback', $Text); } else { $Text = preg_replace("/\[observer\=1\].*?\[\/observer\]/ism", '', $Text); $Text = preg_replace("/\[observer\=0\](.*?)\[\/observer\]/ism", '$1', $Text); $Text = preg_replace("/\[rpost(=.*?)?\](.*?)\[\/rpost\]/ism", '', $Text); } } // replace [observer.baseurl] if ($observer) { $s1 = ''; $s2 = ''; $obsBaseURL = $observer['xchan_connurl']; $obsBaseURL = preg_replace("/\/poco\/.*$/", '', $obsBaseURL); $Text = str_replace('[observer.baseurl]', $obsBaseURL, $Text); $Text = str_replace('[observer.url]',$observer['xchan_url'], $Text); $Text = str_replace('[observer.name]',$s1 . $observer['xchan_name'] . $s2, $Text); $Text = str_replace('[observer.address]',$s1 . $observer['xchan_addr'] . $s2, $Text); $Text = str_replace('[observer.webname]', substr($observer['xchan_addr'],0,strpos($observer['xchan_addr'],'@')), $Text); $Text = str_replace('[observer.photo]',$s1 . '[zmg]'.$observer['xchan_photo_l'].'[/zmg]' . $s2, $Text); } else { $Text = str_replace('[observer.baseurl]', '', $Text); $Text = str_replace('[observer.url]','', $Text); $Text = str_replace('[observer.name]','', $Text); $Text = str_replace('[observer.address]','', $Text); $Text = str_replace('[observer.webname]','',$Text); $Text = str_replace('[observer.photo]','', $Text); } $Text = str_replace(array('[baseurl]','[sitename]'),array(z_root(),get_config('system','sitename')),$Text); // Unhide all [noparse] contained bbtags unspacefying them // and triming the [noparse] tag. if (strpos($Text,'[noparse]') !== false) { $Text = preg_replace_callback("/\[noparse\](.*?)\[\/noparse\]/ism", 'bb_unspacefy_and_trim', $Text); } if (strpos($Text,'[nobb]') !== false) { $Text = preg_replace_callback("/\[nobb\](.*?)\[\/nobb\]/ism", 'bb_unspacefy_and_trim', $Text); } if (strpos($Text,'[pre]') !== false) { $Text = preg_replace_callback("/\[pre\](.*?)\[\/pre\]/ism", 'bb_unspacefy_and_trim', $Text); } return $Text; } /** * Converts Hubzilla flavoured BBCode to HTML. * * @param string $text BBCode formatted text * * @param array $options Optional arguments to controll how the conversion * is to be done. * - `tryoembed` (`true`) - Whether we should try to generate link previews/oembeds. * - `cache` (`false`) - Avoids some processing if true, unsure about the significancd of it for now. * - `newwin` (`true`) - Wether links should open in a new window (`target="_blank"`) * * @return A string containing the resulting HTML code. */ function bbcode($text, $options = []) { if (!$text) { return EMPTY_STR; } if(! is_array($options)) { $options = []; } $tryoembed = ((array_key_exists('tryoembed',$options)) ? $options['tryoembed'] : true); $cache = ((array_key_exists('cache',$options)) ? $options['cache'] : false); $newwin = ((array_key_exists('newwin',$options)) ? $options['newwin'] : true); $target = (($newwin) ? ' target="_blank" ' : ''); /** * @hooks bbcode_filter * * _string_ **bbcode** - The raw bbcode input before converting it to HTML. */ call_hooks('bbcode_filter', $text); if(isset($options['drop_media'])) { if (strpos($text,'[/img]') !== false) { $text = preg_replace('/\[img(.*?)\[\/(img)\]/ism', '', $text); } if (strpos($text,'[/audio]') !== false) { $text = preg_replace('/\[audio(.*?)\[\/(audio)\]/ism', '', $text); } if (strpos($text,'[/video]') !== false) { $text = preg_replace('/\[video(.*?)\[\/(video)\]/ism', '', $text); } if (strpos($text,'[/zmg]') !== false) { $text = preg_replace('/\[zmg(.*?)\[\/(zmg)\]/ism', '', $text); } if (strpos($text,'[/zaudio]') !== false) { $text = preg_replace('/\[zaudio(.*?)\[\/(zaudio)\]/ism', '', $text); } if (strpos($text,'[/zvideo]') !== false) { $text = preg_replace('/\[zvideo(.*?)\[\/(zvideo)\]/ism', '', $text); } } $text = bb_format_attachdata($text); // If we find any event code, turn it into an event. // After we're finished processing the bbcode we'll // replace all of the event code with a reformatted version. $ev = bbtoevent($text); // and the same with polls $pl = bbtopoll($text); if($cache) { $observer = null; $channel = null; } else { $observer = App::get_observer(); $channel = App::get_channel(); } // process [observer] and [channel] tags before we do anything else because // we might be stripping away stuff that then doesn't need to be worked on // anymore $text = bb_observer($text, $observer); $text = bb_channel($text, $channel); $x = bb_extract_images($text); $text = $x['body']; $saved_images = $x['images']; $text = str_replace(array('[baseurl]','[sitename]'),array(z_root(),get_config('system','sitename')),$text); // Replace any html brackets with HTML Entities to prevent executing HTML or script // Don't use strip_tags here because it breaks [url] search by replacing & with amp $text = str_replace("<", "<", $text); $text = str_replace(">", ">", $text); $text = str_replace(array("\t", " "), array(" ", " "), $text); // Check for [code] text here, before the linefeeds are messed with. // The highlighter will unescape and re-escape the content. if (strpos($text,'[code=') !== false) { $text = preg_replace_callback("/\[code=(.*?)\](.*?)\[\/code\]/ism", 'bb_highlight', $text); } // Check for [code] text if (strpos($text,'[code]') !== false) { $text = preg_replace_callback("/\[code\](.*?)\[\/code\]/ism", 'bb_code', $text); } // Check for [code options] text if (strpos($text,'[code ') !== false) { $text = preg_replace_callback("/\[code(.*?)\](.*?)\[\/code\]/ism", 'bb_code_options', $text); } // Hide all [noparse] contained bbtags by spacefying them if (strpos($text,'[noparse]') !== false) { $text = preg_replace_callback("/\[noparse\](.*?)\[\/noparse\]/ism", 'bb_spacefy',$text); } if (strpos($text,'[nobb]') !== false) { $text = preg_replace_callback("/\[nobb\](.*?)\[\/nobb\]/ism", 'bb_spacefy',$text); } if (strpos($text,'[pre]') !== false) { $text = preg_replace_callback("/\[pre\](.*?)\[\/pre\]/ism", 'bb_spacefy',$text); } if (strpos($text,'[summary]') !== false) { $text = preg_replace_callback("/\[summary\](.*?)\[\/summary\]/ism", 'bb_spacefy',$text); } if (strpos($text,'[/img]') !== false) { $text = preg_replace_callback('/\[img(.*?)\[\/(img)\]/ism','\red_escape_codeblock',$text); } if (strpos($text,'[/zmg]') !== false) { $text = preg_replace_callback('/\[zmg(.*?)\[\/(zmg)\]/ism','\red_escape_codeblock',$text); } // Set up the parameters for a URL search string $URLSearchString = "^\[\]"; // Set up the parameters for a MAIL search string $MAILSearchString = $URLSearchString; // replace [observer.baseurl] if ($observer) { $s1 = ''; $s2 = ''; $obsBaseURL = $observer['xchan_connurl']; $obsBaseURL = preg_replace("/\/poco\/.*$/", '', $obsBaseURL); $text = str_replace('[observer.baseurl]', $obsBaseURL, $text); $text = str_replace('[observer.url]',$observer['xchan_url'], $text); $text = str_replace('[observer.name]',$s1 . $observer['xchan_name'] . $s2, $text); $text = str_replace('[observer.address]',$s1 . $observer['xchan_addr'] . $s2, $text); $text = str_replace('[observer.webname]', substr($observer['xchan_addr'],0,strpos($observer['xchan_addr'],'@')), $text); $text = str_replace('[observer.photo]',$s1 . '[zmg]'.$observer['xchan_photo_l'].'[/zmg]' . $s2, $text); } else { $text = str_replace('[observer.baseurl]', '', $text); $text = str_replace('[observer.url]','', $text); $text = str_replace('[observer.name]','', $text); $text = str_replace('[observer.address]','', $text); $text = str_replace('[observer.webname]','',$text); $text = str_replace('[observer.photo]','', $text); } // Perform URL Search $urlchars = '[a-zA-Z0-9\pL\:\/\-\?\&\;\.\=\_\~\#\%\$\!\+\,\@]'; if (strpos($text,'http') !== false) { if($tryoembed) { $text = preg_replace_callback("/([^\]\='".'"'."\;\/]|^|\#\^)(https?\:\/\/$urlchars+)/ismu", 'tryoembed', $text); } // Is this still desired? // We already turn naked URLs into links during creation time cleanup_bbcode() $text = preg_replace("/([^\]\='".'"'."\;\/]|^|\#\^)(https?\:\/\/$urlchars+)/ismu", '$1$2', $text); } $count = 0; while (strpos($text,'[/share]') !== false && $count < 10) { $text = preg_replace_callback("/\[share(.*?)\](.*?)\[\/share\]/ism", 'bb_ShareAttributes', $text); $count ++; } if($tryoembed) { if (strpos($text,'[/url]') !== false) { $text = preg_replace_callback("/[^\^]\[url\]([$URLSearchString]*)\[\/url\]/ism", 'tryoembed', $text); } } if (strpos($text,'[/url]') !== false) { $text = preg_replace("/\#\^\[url\]([$URLSearchString]*)\[\/url\]/ism", '#^$1', $text); $text = preg_replace("/\#\^\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism", '#^$2', $text); $text = preg_replace("/\[url\]([$URLSearchString]*)\[\/url\]/ism", '$1', $text); $text = preg_replace("/\[url\=([$URLSearchString]*)\](.*?)\[\/url\]/ism", '$2', $text); } if (strpos($text,'[/zrl]') !== false) { $text = preg_replace("/\#\^\[zrl\]([$URLSearchString]*)\[\/zrl\]/ism", '#^$1', $text); $text = preg_replace("/\#\^\[zrl\=([$URLSearchString]*)\](.*?)\[\/zrl\]/ism", '#^$2', $text); $text = preg_replace("/\[zrl\]([$URLSearchString]*)\[\/zrl\]/ism", '$1', $text); $text = preg_replace("/\[zrl\=([$URLSearchString]*)\](.*?)\[\/zrl\]/ism", '$2', $text); } // Perform MAIL Search if (strpos($text,'[/mail]') !== false) { $text = preg_replace("/\[mail\]([$MAILSearchString]*)\[\/mail\]/", '$1', $text); $text = preg_replace("/\[mail\=([$MAILSearchString]*)\](.*?)\[\/mail\]/", '$2', $text); } // leave open the posibility of [map=something] // this is replaced in prepare_body() which has knowledge of the item location if ($cache) { $text = str_replace([ '[map]','[/map]' ], [ '','' ], $text); $text = preg_replace('/\[map=(.*?)\]/ism','$1',$text); } else { if (strpos($text,'[/map]') !== false) { $text = preg_replace_callback("/\[map\](.*?)\[\/map\]/ism", 'bb_map_location', $text); } if (strpos($text,'[map=') !== false) { $text = preg_replace_callback("/\[map=(.*?)\]/ism", 'bb_map_coords', $text); } if (strpos($text,'[map]') !== false) { $text = preg_replace("/\[map\]/", '

', $text); } } // Check for bold text if (strpos($text,'[b]') !== false) { $text = preg_replace("(\[b\](.*?)\[\/b\])ism", '$1', $text); } // Check for Italics text if (strpos($text,'[i]') !== false) { $text = preg_replace("(\[i\](.*?)\[\/i\])ism", '$1', $text); } // Check for Underline text if (strpos($text,'[u]') !== false) { $text = preg_replace("(\[u\](.*?)\[\/u\])ism", '$1', $text); } // Check for strike-through text if (strpos($text,'[s]') !== false) { $text = preg_replace("(\[s\](.*?)\[\/s\])ism", '$1', $text); } // Check for over-line text if (strpos($text,'[o]') !== false) { $text = preg_replace("(\[o\](.*?)\[\/o\])ism", '$1', $text); } if (strpos($text,'[sup]') !== false) { $text = preg_replace("(\[sup\](.*?)\[\/sup\])ism", '^$1', $text); } if (strpos($text,'[sub]') !== false) { $text = preg_replace("(\[sub\](.*?)\[\/sub\])ism", '_$1', $text); } // Check for colored text if (strpos($text,'[/color]') !== false) { $text = preg_replace("(\[color=(.*?)\](.*?)\[\/color\])ism", "$2", $text); } // @DEPRECATED: Check for colored text (deprecated in favor of mark which is a html5 standard) if (strpos($text,'[/hl]') !== false) { $text = preg_replace("(\[hl\](.*?)\[\/hl\])ism", "$1", $text); $text = preg_replace("(\[hl=(.*?)\](.*?)\[\/hl\])ism", "$2", $text); } if (strpos($text,'[/mark]') !== false) { $text = preg_replace("(\[mark\](.*?)\[\/mark\])ism", "$1", $text); $text = preg_replace("(\[mark=(.*?)\](.*?)\[\/mark\])ism", "$2", $text); } // Check for sized text // [size=50] --> font-size: 50px (with the unit). if (strpos($text,'[/size]') !== false) { $text = preg_replace("(\[size=(\d*?)\](.*?)\[\/size\])ism", "$2", $text); $text = preg_replace("(\[size=(.*?)\](.*?)\[\/size\])ism", "$2", $text); } // Check for h1 if (strpos($text,'[h1]') !== false) { $text = preg_replace("(\[h1\](.*?)\[\/h1\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for h2 if (strpos($text,'[h2]') !== false) { $text = preg_replace("(\[h2\](.*?)\[\/h2\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for h3 if (strpos($text,'[h3]') !== false) { $text = preg_replace("(\[h3\](.*?)\[\/h3\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for h4 if (strpos($text,'[h4]') !== false) { $text = preg_replace("(\[h4\](.*?)\[\/h4\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for h5 if (strpos($text,'[h5]') !== false) { $text = preg_replace("(\[h5\](.*?)\[\/h5\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for h6 if (strpos($text,'[h6]') !== false) { $text = preg_replace("(\[h6\](.*?)\[\/h6\])ism",'

$1

',$text); $text = str_replace(["\r", "\n"], '', $text); } // Check for table of content without params while(strpos($text,'[toc]') !== false) { $toc_id = 'toc-' . random_string(10); $text = preg_replace("/\[toc\]/ism", '

', $text, 1); } // Check for table of content with params while(strpos($text,'[toc') !== false) { $toc_id = 'toc-' . random_string(10); $text = preg_replace("/\[toc([^\]]+?)\]/ism", '

', $text, 1); } // Check for centered text if (strpos($text,'[/center]') !== false) { $text = preg_replace("(\[center\](.*?)\[\/center\])ism", "

", $text); } // Check for footer if (strpos($text,'[/footer]') !== false) { $text = preg_replace("(\[footer\](.*?)\[\/footer\])ism", "

", $text); } // Check for bdi if (strpos($text,'[/bdi]') !== false) { $text = preg_replace("(\[bdi\](.*?)\[\/bdi\])ism", "$1", $text); } // Check for list text $text = str_replace(["\r\n[*]", "\r[*]", "\n[*]"], "[*]", $text); $text = str_replace("[*]", "

", $text); // handle nested lists $endlessloop = 0; while ((((strpos($text, "[/list]") !== false) && (strpos($text, "[list") !== false)) || ((strpos($text, "[/ol]") !== false) && (strpos($text, "[ol]") !== false)) || ((strpos($text, "[/ul]") !== false) && (strpos($text, "[ul]") !== false)) || ((strpos($text, "[/dl]") !== false) && (strpos($text, "[dl") !== false)) || ((strpos($text, "[/li]") !== false) && (strpos($text, "[li]") !== false))) && (++$endlessloop < 20)) { $text = str_replace(["[/list]\r", "[/list]\n"], '[/list]', $text); $text = preg_replace_callback("/\[list\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list\](.*?)\[\/list\]/ism", '

$1', $text); $text = preg_replace_callback("/\[list=\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=\](.*?)\[\/list\]/ism", '

$1', $text); $text = preg_replace_callback("/\[list=1\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=1\](.*?)\[\/list\]/ism", '

$1', $text); $text = preg_replace_callback("/\[list=((?-i)i)\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=((?-i)i)\](.*?)\[\/list\]/ism",'

$2', $text); $text = preg_replace_callback("/\[list=((?-i)I)\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=((?-i)I)\](.*?)\[\/list\]/ism", '

$2', $text); $text = preg_replace_callback("/\[list=((?-i)a)\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=((?-i)a)\](.*?)\[\/list\]/ism", '

$2', $text); $text = preg_replace_callback("/\[list=((?-i)A)\](.*?)\[\/list\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[list=((?-i)A)\](.*?)\[\/list\]/ism", '

$2', $text); $text = preg_replace_callback("/\[ol\](.*?)\[\/ol\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[ol\](.*?)\[\/ol\]/ism", '

$1', $text); $text = preg_replace_callback("/\[ul\](.*?)\[\/ul\]/ism",'bb_fix_lf', $text); $text = preg_replace("/\[ul\](.*?)\[\/ul\]/ism", '

$1', $text); $text = preg_replace("/\[\/li\]
\[li\]/ism",'[/li][li]', $text); $text = preg_replace("/\[li\](.*?)\[\/li\]/ism", '

', $text); // [dl] tags have an optional [dl terms="bi"] form where bold/italic/underline/mono/large // etc. style may be specified for the "terms" in the definition list. The quotation marks // are also optional. The regex looks intimidating, but breaks down as: // "[dl"

"]" "[/dl]" // where optional-termStyles are: "terms="

$text = preg_replace_callback('/\[dl[[:space:]]*(?:terms=(?:"|")?([a-zA-Z]+)(?:"|")?)?\](.*?)\[\/dl\]/ism', 'bb_definitionList', $text); } if (strpos($text,'[checklist]') !== false) { $text = preg_replace_callback("/\[checklist\](.*?)\[\/checklist\]/ism",'bb_fix_lf', $text); $text = preg_replace_callback("/\[checklist\](.*?)\[\/checklist\]/ism", 'bb_checklist', $text); } if (strpos($text,'[th]') !== false) { $text = preg_replace("/\[th\](.*?)\[\/th\]/sm", '$1', $text); } if (strpos($text,'[td]') !== false) { $text = preg_replace("/\[td\](.*?)\[\/td\]/sm", '$1', $text); } if (strpos($text,'[tr]') !== false) { $text = preg_replace("/\[tr\](.*?)\[\/tr\]/sm", '$1', $text); } if (strpos($text,'[/table]') !== false) { $text = preg_replace_callback("/\[table\](.*?)\[\/table\]/ism",'bb_fix_lf',$text); $text = preg_replace("/\[table\](.*?)\[\/table\]/sm", '$1

', $text); $text = preg_replace("/\[table border=1\](.*?)\[\/table\]/sm", '$1

', $text); $text = preg_replace("/\[table border=0\](.*?)\[\/table\]/sm", '$1

', $text); } $text = str_replace('[hr]', '

', $text); // This is actually executed in prepare_body() $text = str_replace('[nosmile]', '', $text); // Check for font change text if (strpos($text,'[/font]') !== false) { $text = preg_replace("/\[font=(.*?)\](.*?)\[\/font\]/sm", "$2", $text); } // Check for [spoiler] text $endlessloop = 0; while ((strpos($text, "[/spoiler]")!== false) and (strpos($text, "[spoiler]") !== false) and (++$endlessloop < 20)) { $text = preg_replace_callback("/\[spoiler\](.*?)\[\/spoiler\]/ism", 'bb_spoilertag', $text); } // Check for [spoiler=Author] text $endlessloop = 0; while ((strpos($text, "[/spoiler]")!== false) and (strpos($text, "[spoiler=") !== false) and (++$endlessloop < 20)) { $text = preg_replace_callback("/\[spoiler=(.*?)\](.*?)\[\/spoiler\]/ism", 'bb_spoilertag', $text); } // Check for [open] text $endlessloop = 0; while ((strpos($text, "[/open]")!== false) and (strpos($text, "[open]") !== false) and (++$endlessloop < 20)) { $text = preg_replace_callback("/\[open\](.*?)\[\/open\]/ism", 'bb_opentag', $text); } // Check for [open=Title] text $endlessloop = 0; while ((strpos($text, "[/open]")!== false) and (strpos($text, "[open=") !== false) and (++$endlessloop < 20)) { $text = preg_replace_callback("/\[open=(.*?)\](.*?)\[\/open\]/ism", 'bb_opentag', $text); } // Declare the format for [quote] layout $QuoteLayout = '

$1

'; // Check for [quote] text // handle nested quotes $endlessloop = 0; while ((strpos($text, "[/quote]") !== false) and (strpos($text, "[quote]") !== false) and (++$endlessloop < 20)) $text = preg_replace("/\[quote\](.*?)\[\/quote\]/ism", "$QuoteLayout", $text); // Check for [quote=Author] text $t_wrote = t('$1 wrote:'); // handle nested quotes $endlessloop = 0; while ((strpos($text, "[/quote]")!== false) and (strpos($text, "[quote=") !== false) and (++$endlessloop < 20)) $text = preg_replace("/\[quote=[\"\']*(.*?)[\"\']*\](.*?)\[\/quote\]/ism", "" . $t_wrote . "

$2

", $text); // Images if (strpos($text,'[/img]') !== false) { $text = preg_replace_callback('/\[\$b64img(.*?)\[\/(img)\]/ism','\red_unescape_codeblock',$text); } if (strpos($text,'[/zmg]') !== false) { $text = preg_replace_callback('/\[\$b64zmg(.*?)\[\/(zmg)\]/ism','\red_unescape_codeblock',$text); } // [img]pathtoimage[/img] if (strpos($text,'[/img]') !== false) { $text = preg_replace("/\[img\](.*?)\[\/img\]/ism", ' ' . t('Image/photo') . '

', $text); } // [img=pathtoimage]image description[/img] if (strpos($text,'[/img]') !== false) { $text = preg_replace("/\[img=http(.*?)\](.*?)\[\/img\]/ism", '

', $text); } // [zmg]pathtoimage[/zmg] if (strpos($text,'[/zmg]') !== false) { $text = preg_replace("/\[zmg\](.*?)\[\/zmg\]/ism", ' ' . t('Image/photo') . '

', $text); } // [zmg=pathtoimage]image description[/zmg] if (strpos($text,'[/zmg]') !== false) { $text = preg_replace("/\[zmg=http(.*?)\](.*?)\[\/zmg\]/ism", '

', $text); } $text = preg_replace_callback("/\[([zi])mg([ \=])(.*?)\](.*?)\[\/[zi]mg\]/ism",'bb_imgoptions',$text); // style (sanitized) if (strpos($text,'[/style]') !== false) { $text = preg_replace_callback("(\[style=(.*?)\](.*?)\[\/style\])ism", "bb_sanitize_style", $text); } // crypt if (strpos($text,'[/crypt]') !== false) { $text = preg_replace_callback("/\[crypt\](.*?)\[\/crypt\]/ism", 'bb_parse_crypt', $text); $text = preg_replace_callback("/\[crypt (.*?)\](.*?)\[\/crypt\]/ism", 'bb_parse_crypt', $text); } if(strpos($text,'[/app]') !== false) { $text = preg_replace_callback("/\[app\](.*?)\[\/app\]/ism",'bb_parse_app', $text); } if(strpos($text,'[/element]') !== false) { $text = preg_replace_callback("/\[element\](.*?)\[\/element\]/ism",'bb_parse_element', $text); } // html5 video and audio if (strpos($text,'[/video]') !== false) { $text = preg_replace_callback("/\[video (.*?)\](.*?)\[\/video\]/ism", 'videowithopts', $text); $text = preg_replace_callback("/\[video\](.*?)\[\/video\]/ism", 'tryzrlvideo', $text); } if (strpos($text,'[/audio]') !== false) { $text = preg_replace_callback("/\[audio\](.*?)\[\/audio\]/ism", 'tryzrlaudio', $text); } if (strpos($text,'[/zvideo]') !== false) { $text = preg_replace_callback("/\[zvideo (.*?)\](.*?)\[\/zvideo\]/ism", 'videowithopts', $text); $text = preg_replace_callback("/\[zvideo\](.*?)\[\/zvideo\]/ism", 'tryzrlvideo', $text); } if (strpos($text,'[/zaudio]') !== false) { $text = preg_replace_callback("/\[zaudio\](.*?)\[\/zaudio\]/ism", 'tryzrlaudio', $text); } // SVG stuff $text = preg_replace_callback("/\[svg(.*?)\](.*?)\[\/svg\]/ism", 'bb_svg', $text); // Try to Oembed if ($tryoembed) { if (strpos($text,'[/video]') !== false) { $text = preg_replace_callback("/\[video\](.*?)\[\/video\]/ism", 'tryoembed', $text); } if (strpos($text,'[/audio]') !== false) { $text = preg_replace_callback("/\[audio\](.*?)\[\/audio\]/ism", 'tryoembed', $text); } if (strpos($text,'[/zvideo]') !== false) { $text = preg_replace_callback("/\[zvideo\](.*?)\[\/zvideo\]/ism", 'tryoembed', $text); } if (strpos($text,'[/zaudio]') !== false) { $text = preg_replace_callback("/\[zaudio\](.*?)\[\/zaudio\]/ism", 'tryoembed', $text); } } // if video couldn't be embedded, link to it instead. if (strpos($text,'[/video]') !== false) { $text = preg_replace("/\[video\](.*?)\[\/video\]/", '$1', $text); } if (strpos($text,'[/audio]') !== false) { $text = preg_replace("/\[audio\](.*?)\[\/audio\]/", '$1', $text); } if (strpos($text,'[/zvideo]') !== false) { $text = preg_replace("/\[zvideo\](.*?)\[\/zvideo\]/", '$1', $text); } if (strpos($text,'[/zaudio]') !== false) { $text = preg_replace("/\[zaudio\](.*?)\[\/zaudio\]/", '$1', $text); } // oembed tag if (strpos($text,'[/embed]') !== false) { $text = oembed_bbcode2html($text); // Avoid triple linefeeds through oembed $text = str_replace("

", "
", $text); } // If we found an event earlier, strip out all the event code and replace with a reformatted version. // Replace the event-start section with the entire formatted event. The other bbcode is stripped. // Summary (e.g. title) is required, earlier revisions only required description (in addition to // start which is always required). Allow desc with a missing summary for compatibility. if ((x($ev,'desc') || x($ev,'summary')) && x($ev,'dtstart')) { $sub = format_event_html($ev); $sub = str_replace('$',"\0",$sub); $text = preg_replace("/\[event\-start\](.*?)\[\/event\-start\]/ism",$sub,$text); $text = preg_replace("/\[event\](.*?)\[\/event\]/ism",'',$text); $text = preg_replace("/\[event\-summary\](.*?)\[\/event\-summary\]/ism",'',$text); $text = preg_replace("/\[event\-description\](.*?)\[\/event\-description\]/ism",'',$text); $text = preg_replace("/\[event\-finish\](.*?)\[\/event\-finish\]/ism",'',$text); $text = preg_replace("/\[event\-id\](.*?)\[\/event\-id\]/ism",'',$text); $text = preg_replace("/\[event\-location\](.*?)\[\/event\-location\]/ism",'',$text); $text = preg_replace("/\[event\-timezone\](.*?)\[\/event\-timezone\]/ism",'',$text); $text = preg_replace("/\[event\-adjust\](.*?)\[\/event\-adjust\]/ism",'',$text); $text = str_replace("\0",'$',$text); } if (strpos($text,'[summary]') !== false) { $text = preg_replace_callback("/\[summary\](.*?)\[\/summary\]/ism", 'bb_unspacefy',$text); } if(strpos($text,'[/summary]') !== false) { $text = preg_replace_callback("/^(.*?)\[summary\](.*?)\[\/summary\](.*?)$/is", 'bb_summary', $text); } // Unhide all [noparse] contained bbtags unspacefying them // and triming the [noparse] tag. if (strpos($text,'[noparse]') !== false) { $text = preg_replace_callback("/\[noparse\](.*?)\[\/noparse\]/ism", 'bb_unspacefy_and_trim', $text); } if (strpos($text,'[nobb]') !== false) { $text = preg_replace_callback("/\[nobb\](.*?)\[\/nobb\]/ism", 'bb_unspacefy_and_trim', $text); } if (strpos($text,'[pre]') !== false) { $text = preg_replace_callback("/\[pre\](.*?)\[\/pre\]/ism", 'bb_unspacefy_and_trim', $text); } // replace escaped links in code= blocks $text = str_replace('%eY9-!','http', $text); $text = bb_code_unprotect($text); $text = preg_replace('/\[\&\;([#a-z0-9]+)\;\]/', '&$1;', $text); // fix any escaped ampersands that may have been converted into links if(strpos($text,'&') !== false) $text = preg_replace("/\<(.*?)(src|href)=(.*?)\&\;(.*?)\>/ism", '<$1$2=$3&$4>', $text); // This is subtle - it's an XSS filter. It only accepts links with a protocol scheme and where // the scheme begins with z (zhttp), h (http(s)), f (ftp(s)), m (mailto), t (tel) and named anchors. $text = preg_replace("/\<(.*?)(src|href)=\"[^zhfmt#](.*?)\>/ism", '<$1$2="">', $text); $text = bb_replace_images($text, $saved_images); // Convert new line chars to html
tags // nlbr seems to be hopelessly messed up // $text = nl2br($text); // We'll emulate it. $text = str_replace("\r\n", "\n", $text); $text = str_replace(["\r", "\n"], '
', $text); /** * @hooks bbcode * * _string_ **html** - The resulting HTML after converting from bbcode. */ call_hooks('bbcode', $text); return $text; }