repo.or.cz
/
htmlpurifier.git
/
search
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
log
|
graphiclog1
|
graphiclog2
|
commit
|
commitdiff
|
tree
|
refs
|
edit
|
fork
first
·
prev
·
next
Use a Zipper to process MakeWellFormed, removing quadratic behavior.
2013-10-13
Edward Z
.
Yang
Use a Zip
p
e
r to process MakeWellFor
m
ed, re
m
oving quadratic
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-10-13
Edward
Z
.
Y
a
n
g
Properly handl
e
cont
e
xt variabl
e
s that are NULL
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-10-13
E
dward
Z
.
Yang
Im
p
lementation of
a
Zipper, f
o
r efficient splice
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-10-13
Edward Z
.
Y
a
ng
Improve gitignore
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-17
E
dward Z
.
Yang
Fix quadratic b
e
havior in
DOMLe
x
due to array_s
h
ift
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-09-14
Ed
w
ard Z
.
Y
a
ng
P
r
operly us
e
HMAC for secure
m
unging
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
E
dward Z
.
Yang
Tighten
u
p in
v
ariants
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
Edward
Z
.
Ya
n
g
Ex
p
lici
t
ly specify decorator name
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-27
E
dward
Z
.
Yang
New
d
irect
i
ve
%C
o
re
.
AllowH
o
stn
a
meUn
d
e
r
s
core
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-07-18
Edward
Z
.
Yang
Add
note fall th
r
ough is i
n
t
e
nti
o
nal
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-06-06
Edwar
d
Z
.
Yang
Make
list nesting
test mo
r
e
s
e
nsitive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-22
Edward
Z
.
Yang
Use in
f
o_parent_def
to get parent i
n
formation, si
n
ce
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-21
Edward Z
.
Yang
Ig
n
ore co
m
mas and nbsps f
o
r li
n
kifi
c
atio
n
.
Than
k
s nAS
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-05-18
Edw
a
r
d Z
.
Yang
Doc fi
x
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-04-16
E
d
ward Z
.
Y
a
n
g
Mak
e
URI pa
r
sing
a
lgorithm
more strict
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-21
E
d
wa
r
d
Z
.
Yang
Fix N
E
WS
e
ntry
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-18
Ed
w
ard Z
.
Yang
Release 4
.
5
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2013-02-17
Edward Z
.
Yang
Add %Core
.
DisableExclu
d
es directive
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Y
a
ng
Use SHA-
1
instead of MD5
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Yang
B
l
acklist
m
ore ta
g
s
f
rom RemoveEmp
t
y
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward
Z
.
Y
ang
Cleanup after d
a
ta validation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-27
Edward Z
.
Y
ang
Do checks
agains
t
iconvAvail
a
ble because PHP 5
.
4 has
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Ed
w
ard Z
.
Ya
n
g
Co
m
me
n
t fo
r
bug that nee
d
s to get fixed
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-10-11
Edwar
d
Z
.
Yang
CSS pr
o
perties
pag
e
-break
-
*
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-07-30
Edward Z
.
Yang
Fix bug with no
n
-lowe
r
case color n
a
mes i
n
HTML
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-07-27
Edward Z
.
Yang
Pe
r
mit un
d
erscor
e
s in
f
o
nt-fami
l
ies
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-16
Ed
w
a
r
d Z
.
Y
a
ng
More
s
uppo
r
t fo
r
wh
i
te-space
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-06-02
Ed
w
ard
Z
.
Yang
Don't l
o
wer-cas
e
components
of background
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-26
E
d
ward Z
.
Yang
Support
for inline-
b
lo
c
k
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-15
Edward Z
.
Ya
n
g
Fix in
Attr
T
ransform_Nofol
l
ow
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-05-02
Edward
Z
.
Yang
Use prepend for au
t
olo
a
ding o
n
PHP 5
.
3+
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-04-27
Edward Z
.
Yang
Support for safe ext
e
rnal scri
p
ts v
i
a explicit whit
e
list
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-17
Edward Z
.
Y
a
ng
F
ix problem where stack
e
d AttrTransfor
m
s clobber each
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-03-02
Edward Z
.
Yang
Actually make
URI
.
DisableResources do
s
omethin
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-02-18
Edw
a
r
d
Z
.
Yan
g
Bug
f
ix: _blank not blank
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-25
Edwa
r
d Z
.
Yang
Update NEWS
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-19
Edw
a
r
d
Z
.
Ya
n
g
Releas
e
4
.
4
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Edward Z
.
Yang
Ma
k
e
all
o
f the t
e
sts work on all P
H
P versions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
E
dward Z
.
Yang
A
v
oid doing stupidly clever
reflection tricks that
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-18
Ed
w
ard Z
.
Yang
Modernize some o
f
the te
s
ti
n
g
facilitie
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-17
Edward Z
.
Y
a
n
g
Tigh
t
er
CSS sele
c
tor validation
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Ed
w
ar
d
Z
.
Yang
Rem
a
rk abo
u
t bypassi
n
g host
l
i
s
t with punycode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-06
Edward Z
.
Y
ang
Optional support for IDNAs
w
ith PEAR Net_IDNA2
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2012-01-03
E
d
wa
r
d Z
.
Yang
Rem
o
v
e
PEA
R
Sax3
l
e
xer
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-30
Edward Z
.
Y
a
ng
M
a
ke f
o
r
ms
w
or
k
for trans
i
tional doc
t
ypes
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edward Z
.
Yang
Rem
o
ve inscru
t
able
T
O
D
O,
optionalize
a
nother
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-27
Edward Z
.
Yang
Ad
d
no
t
e abou
t
supersedin
g
modules in TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Bump mi
n
o
r version number
t
o
4
.
4
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Ed
w
ard
Z
.
Ya
n
g
Add
t
est
f
or inv
a
lid SafeIframe usage
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Ad
d
m
or
e
a
t
tribu
t
ions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward
Z
.
Yang
Implement
%
H
T
ML
.
Allo
w
edComments and %HTML
.
AllowedC
o
mm
e
ntsRegexp
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
E
d
w
a
rd Z
.
Yan
g
F
ix broken table
con
t
ent model, easily
s
e
e
n in XH
T
M
L
1
.
1
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Properly han
d
l
e
neste
d
sublists by folding into prev
i
ous
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-26
Edward Z
.
Yang
Im
p
l
ement %
H
TML
.
Target
B
lank
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
E
dward Z
.
Ya
n
g
Add
isBenign and getDefault
S
chem
e
methods
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Ya
n
g
Add a
little bit of
documentation ab
o
ut contexts for
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Y
ang
Core
.
Escap
e
N
o
nASCIICharacte
r
s now always works,
e
ven
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Add
s
upport
for scope a
t
tribute
o
n td and
t
h
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edward Z
.
Yang
Add one more t
e
st for SPL
autoload
d
efaults
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-25
Edwa
r
d Z
.
Yang
Fix ic
o
nv
t
runc
a
t
i
o
n bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Ya
n
g
Remove
spurious ab
s
tract definiti
o
n;
P
HP 5
.
4
doesn
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-12-18
Edward Z
.
Yang
Don't unset p
a
rse
r
varia
b
le
;
plays
po
o
rly with
s
erialize
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
E
d
ward Z
.
Yang
Typofix
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edwar
d
Z
.
Y
ang
Don't add
n
ofollow for matching hosts, general
i
ze this
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
Edward Z
.
Y
ang
Update INS
T
ALL to avo
i
d missing
config snafu,
update
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-08-24
E
d
ward Z
.
Yang
Do not d
u
plicate nofollow attri
b
ute in transform
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-19
Edwar
d
Z
.
Ya
n
g
Explicitly initiali
z
e anonModule t
o
null
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
E
d
ward Z
.
Yang
U
RI
.
Munge mun
g
es https to http URIs
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-04-10
Edwa
r
d Z
.
Yang
Color keywo
r
ds now
cas
e
-i
n
s
e
nsitive
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Y
an
g
Release 4
.
3
.
0
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
Edward Z
.
Yang
Fix CSS URL innerHTML/cssTex
t
es
c
aping bug
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
d
ward Z
.
Y
a
ng
Protec
t
against font family innerHTML/
c
ssText attacks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-27
E
d
ward Z
.
Yang
Fix In
t
ernet Explo
r
er innerHTML b
u
g
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-24
Edw
a
r
d Z
.
Yang
Impl
e
me
n
t CSS
.
A
l
lo
w
edF
o
nts
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-22
Edwa
r
d Z
.
Yang
Do
n
't
autoclose if no parents suppo
r
t
the tag
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-21
Ed
w
ard
Z
.
Yang
Sa
f
ety update for
n
ested ul test
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-03-17
E
d
w
a
rd Z
.
Yang
Fix E_NO
T
ICE from inde
x
ing into empty s
t
ring
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-02-27
Edward Z
.
Yang
Fi
x
m
issing numer
i
c
e
ntities (shows up when DirectLexing)
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-25
E
d
ward Z
.
Y
a
n
g
Dr
a
matically rewrite null
h
ost UR
I
handling
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-22
Ed
w
ard Z
.
Yang
F
i
x emb
e
dd
i
ng fla
s
h
o
n non-IE b
r
o
wsers
and a
l
low more
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-14
Edward Z
.
Yang
Bump version number for
C
ach
e
.
SerializerPermission
s
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2011-01-13
Edward Z
.
Yang
Check that argv
is
s
et
before o
p
era
t
i
ng on it
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-31
Ed
w
a
rd Z
.
Yang
Fix b
a
d intera
c
ti
o
n be
t
w
een
bo
o
tstrap
a
utoloader and
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-12-30
Edward
Z
.
Y
a
ng
Fix two bug
s
with c
a
c
h
ing of
c
ustomized raw defini
t
ions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-21
Edward Z
.
Yang
Updat
e
PHPT instructions
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
E
dward Z
.
Yang
Ad
d
init
i
al implementa
t
ion
of
C
SS
.
Trusted
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Ed
w
ard Z
.
Yan
g
A
dd san
i
t
y
check against
z
e1_comp
a
tibility_mode
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-11-12
Ed
w
a
r
d
Z
.
Yang
Fix
i
nc
o
r
rect PEAR
S
a
x
3 test assertion
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-29
Edward Z
.
Yang
Check if schema
.
ser
w
a
s
c
orrupte
d
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-10-28
Edward Z
.
Y
a
n
g
Fix r
e
moval of i
d
w
ith D
i
rectLex by preserving armor
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Ed
w
ard Z
.
Yang
Escape
C
D
ATA bef
o
r
e handl
i
n
g
cond
i
ti
o
nal
comments
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edward Z
.
Ya
n
g
Im
p
lement
HTML
.
No
f
ollow for extern
a
l
li
n
ks
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-28
Edw
a
rd Z
.
Yang
Make IE conditio
n
al
c
ommen
t
matc
h
ing ung
r
eedy
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Yan
g
R
e
l
ease 4
.
2
.
0
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edw
a
rd
Z
.
Yang
Rename newline n
o
rmalization dire
c
tive to s
o
mething
.
.
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-15
Edward Z
.
Yang
Shift to 4
.
2
.
0
r
el
e
ase
c
ycle
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Ya
n
g
Add support fo
r
f
i
le:// URI scheme
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
Edward Z
.
Y
a
ng
Update TODO
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-09
E
d
ward Z
.
Yang
Imple
m
ent
H
T
ML
.
FlashAllowFull
S
creen
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
2010-09-04
Edward Z
.
Yang
Add %CSS
.
Forbi
d
denProperties di
r
ectiv
e
.
Signed-off-by:
Edward Z. Yang
<ezyang@mit.edu>
commit
|
commitdiff
|
tree
next