1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
|
<?php
/**
* url_parser.php
*
* This code provides various string manipulation functions that are
* used by the rest of the SquirrelMail code.
*
* @copyright 1999-2012 The SquirrelMail Project Team
* @license http://opensource.org/licenses/gpl-license.php GNU Public License
* @version $Id: url_parser.php 14248 2012-01-02 00:18:17Z pdontthink $
* @package squirrelmail
*/
/**
* Undocumented - complain, then patch.
*/
function replaceBlock (&$in, $replace, $start, $end) {
$begin = substr($in,0,$start);
$end = substr($in,$end,strlen($in)-$end);
$in = $begin.$replace.$end;
}
/* Having this defined in just one spot could help when changes need
* to be made to the pattern
* Make sure that the expression is evaluated case insensitively
*
* Here's pretty sophisticated IP matching:
* $IPMatch = '(2[0-5][0-9]|1?[0-9]{1,2})';
* $IPMatch = '\[?' . $IPMatch . '(\.' . $IPMatch . '){3}\]?';
*/
/* Here's enough: */
global $IP_RegExp_Match, $Host_RegExp_Match, $Email_RegExp_Match;
$IP_RegExp_Match = '\\[?[0-9]{1,3}(\\.[0-9]{1,3}){3}\\]?';
$Host_RegExp_Match = '(' . $IP_RegExp_Match .
'|[0-9a-z]([-.]?[0-9a-z])*\\.[a-z][a-z]+)';
$Email_RegExp_Match = '[0-9a-z]([-_.+]?[0-9a-z])*(%' . $Host_RegExp_Match .
')?@' . $Host_RegExp_Match;
/**
* rfc 2368 (mailto URL) preg_match() regexp
* @link http://www.ietf.org/rfc/rfc2368.txt
* @global string MailTo_PReg_Match the encapsulated regexp for preg_match()
*/
global $MailTo_PReg_Match;
$Mailto_Email_RegExp = '[0-9a-z%]([-_.+%]?[0-9a-z])*(%' . $Host_RegExp_Match . ')?@' . $Host_RegExp_Match;
$MailTo_PReg_Match = '/((?:' . $Mailto_Email_RegExp . ')*)((?:\?(?:to|cc|bcc|subject|body)=[^\s\?&=,()]+)?(?:&(?:to|cc|bcc|subject|body)=[^\s\?&=,()]+)*)/i';
function parseEmail (&$body) {
global $color, $Email_RegExp_Match, $compose_new_win;
$sbody = $body;
$addresses = array();
/* Find all the email addresses in the body */
while(preg_match('/'.$Email_RegExp_Match.'/i', $sbody, $regs)) {
$addresses[$regs[0]] = $regs[0];
$start = strpos($sbody, $regs[0]) + strlen($regs[0]);
$sbody = substr($sbody, $start);
}
/* Replace each email address with a compose URL */
foreach ($addresses as $email) {
$comp_uri = makeComposeLink('src/compose.php?send_to='.urlencode($email), $email);
$body = str_replace($email, $comp_uri, $body);
}
/* Return number of unique addresses found */
return count($addresses);
}
/* We don't want to re-initialize this stuff for every line. Save work
* and just do it once here.
*/
global $url_parser_url_tokens;
$url_parser_url_tokens = array(
'http://',
'https://',
'ftp://',
'telnet:', // Special case -- doesn't need the slashes
'mailto:', // Special case -- doesn't use the slashes
'gopher://',
'news://');
global $url_parser_poss_ends;
$url_parser_poss_ends = array(' ', "\n", "\r", '<', '>', ".\r", ".\n",
'. ', ' ', ')', '(', '"', '<', '>', '.<',
']', '[', '{', '}', "\240", ', ', '. ', ",\n", ",\r");
/**
* Parses a body and converts all found URLs to clickable links.
*
* @param string body the body to process, by ref
* @return void
*/
function parseUrl (&$body) {
global $url_parser_poss_ends, $url_parser_url_tokens;
$start = 0;
$blength = strlen($body);
while ($start < $blength) {
$target_token = '';
$target_pos = $blength;
/* Find the first token to replace */
foreach ($url_parser_url_tokens as $the_token) {
$pos = strpos(strtolower($body), $the_token, $start);
if (is_int($pos) && $pos < $target_pos) {
$target_pos = $pos;
$target_token = $the_token;
}
}
/* Look for email addresses between $start and $target_pos */
$check_str = substr($body, $start, $target_pos-$start);
if (parseEmail($check_str)) {
replaceBlock($body, $check_str, $start, $target_pos);
$blength = strlen($body);
$target_pos = strlen($check_str) + $start;
}
// rfc 2368 (mailto URL)
if ($target_token == 'mailto:') {
$target_pos += 7; //skip mailto:
$end = $blength;
$mailto = substr($body, $target_pos, $end-$target_pos);
global $MailTo_PReg_Match;
if ((preg_match($MailTo_PReg_Match, $mailto, $regs)) && ($regs[0] != '')) {
$mailto_before = $target_token . $regs[0];
/**
* '+' characters in a mailto URI don't need to be percent-encoded.
* However, when mailto URI data is transported via HTTP, '+' must
* be percent-encoded as %2B so that when the HTTP data is
* percent-decoded, you get '+' back and not a space.
*/
$mailto_params = str_replace("+", "%2B", $regs[10]);
if ($regs[1]) { //if there is an email addr before '?', we need to merge it with the params
$to = 'to=' . str_replace("+", "%2B", $regs[1]);
if (strpos($mailto_params, 'to=') > -1) //already a 'to='
$mailto_params = str_replace('to=', $to . '%2C%20', $mailto_params);
else {
if ($mailto_params) //already some params, append to them
$mailto_params .= '&' . $to;
else
$mailto_params .= '?' . $to;
}
}
$url_str = preg_replace(array('/to=/i', '/(?<!b)cc=/i', '/bcc=/i'), array('send_to=', 'send_to_cc=', 'send_to_bcc='), $mailto_params);
$comp_uri = makeComposeLink('src/compose.php' . $url_str, $mailto_before);
replaceBlock($body, $comp_uri, $target_pos - 7, $target_pos + strlen($regs[0]));
$target_pos += strlen($comp_uri) - 7;
}
}
else
/* If there was a token to replace, replace it */
if ($target_token != '') {
/* Find the end of the URL */
$end = $blength;
foreach ($url_parser_poss_ends as $val) {
$enda = strpos($body, $val, $target_pos);
if (is_int($enda) && $enda < $end) {
$end = $enda;
}
}
/* make sure that there are no 8bit chars between $target_pos and suspected end of URL */
if (!is_bool($first8bit=sq_strpos_8bit($body,$target_pos,$end))) {
$end = $first8bit;
}
/* Extract URL */
$url = substr($body, $target_pos, $end-$target_pos);
/* Needed since lines are not passed with \n or \r */
while ( preg_match('/[,.]$/', $url) ) {
$url = substr( $url, 0, -1 );
$end--;
}
/* Replace URL with HyperLinked Url, requires 1 char in link */
if ($url != '' && $url != $target_token) {
$url_str = "<a href=\"$url\" target=\"_blank\">$url</a>";
replaceBlock($body,$url_str,$target_pos,$end);
$target_pos += strlen($url_str);
}
else {
// Not quite a valid link, skip ahead to next chance
$target_pos += strlen($target_token);
}
}
/* Move forward */
$start = $target_pos;
$blength = strlen($body);
}
}
/**
* Finds first occurrence of 8bit data in the string
*
* Function finds first 8bit symbol or html entity that represents 8bit character.
* Search start is defined by $offset argument. Search ends at $maxlength position.
* If $maxlength is not defined or bigger than provided string, search ends when
* string ends.
*
* Check returned data type in order to avoid confusion between bool(false)
* (not found) and int(0) (first char in the string).
* @param string $haystack
* @param integer $offset
* @param integer $maxlength
* @return mixed integer with first 8bit character position or boolean false
* @since 1.5.2 and 1.4.7
*/
function sq_strpos_8bit($haystack,$offset=0,$maxlength=false) {
$ret = false;
if ($maxlength===false || strlen($haystack) < $maxlength) {
$maxlength=strlen($haystack);
}
for($i=$offset;$i<$maxlength;$i++) {
/* rh7-8 compatibility. don't use full 8bit range in regexp */
if (preg_match('/[\200-\237]|\240|[\241-\377]/',$haystack[$i])) {
/* we have 8bit char. stop here and return position */
$ret = $i;
break;
} elseif ($haystack[$i]=='&') {
$substring = substr($haystack,$i);
/**
* 1. look for "&#(decimal number);" where decimal_number is bigger than 127
* 2. look for "&x(hexadecimal number);", where hex number is bigger than x7f
* 3. look for any html character entity that is not 7bit html special char. Use
* own sq_get_html_translation_table() function with 'utf-8' character set in
* order to get all html entities.
*/
if ((preg_match('/^&#(\d+);/',$substring,$match) && $match[1]>127) ||
(preg_match('/^&x([0-9a-f]+);/i',$substring,$match) && $match[1]>"\x7f") ||
(preg_match('/^&([a-z]+);/i',$substring,$match) &&
!in_array($match[0],get_html_translation_table(HTML_SPECIALCHARS)) &&
in_array($match[0],sq_get_html_translation_table(HTML_ENTITIES,ENT_COMPAT,'utf-8')))) {
$ret = $i;
break;
}
}
}
return $ret;
}
|
