1// Copyright 2010 The Go Authors. All rights reserved. 2// Use of this source code is governed by a BSD-style 3// license that can be found in the LICENSE file. 4 5package html 6 7import ( 8 "bytes" 9 "errors" 10 "io" 11 "strconv" 12 "strings" 13 14 "golang.org/x/net/html/atom" 15) 16 17// A TokenType is the type of a Token. 18type TokenType uint32 19 20const ( 21 // ErrorToken means that an error occurred during tokenization. 22 ErrorToken TokenType = iota 23 // TextToken means a text node. 24 TextToken 25 // A StartTagToken looks like <a>. 26 StartTagToken 27 // An EndTagToken looks like </a>. 28 EndTagToken 29 // A SelfClosingTagToken tag looks like <br/>. 30 SelfClosingTagToken 31 // A CommentToken looks like <!--x-->. 32 CommentToken 33 // A DoctypeToken looks like <!DOCTYPE x> 34 DoctypeToken 35) 36 37// ErrBufferExceeded means that the buffering limit was exceeded. 38var ErrBufferExceeded = errors.New("max buffer exceeded") 39 40// String returns a string representation of the TokenType. 41func (t TokenType) String() string { 42 switch t { 43 case ErrorToken: 44 return "Error" 45 case TextToken: 46 return "Text" 47 case StartTagToken: 48 return "StartTag" 49 case EndTagToken: 50 return "EndTag" 51 case SelfClosingTagToken: 52 return "SelfClosingTag" 53 case CommentToken: 54 return "Comment" 55 case DoctypeToken: 56 return "Doctype" 57 } 58 return "Invalid(" + strconv.Itoa(int(t)) + ")" 59} 60 61// An Attribute is an attribute namespace-key-value triple. Namespace is 62// non-empty for foreign attributes like xlink, Key is alphabetic (and hence 63// does not contain escapable characters like '&', '<' or '>'), and Val is 64// unescaped (it looks like "a<b" rather than "a<b"). 65// 66// Namespace is only used by the parser, not the tokenizer. 67type Attribute struct { 68 Namespace, Key, Val string 69} 70 71// A Token consists of a TokenType and some Data (tag name for start and end 72// tags, content for text, comments and doctypes). A tag Token may also contain 73// a slice of Attributes. Data is unescaped for all Tokens (it looks like "a<b" 74// rather than "a<b"). For tag Tokens, DataAtom is the atom for Data, or 75// zero if Data is not a known tag name. 76type Token struct { 77 Type TokenType 78 DataAtom atom.Atom 79 Data string 80 Attr []Attribute 81} 82 83// tagString returns a string representation of a tag Token's Data and Attr. 84func (t Token) tagString() string { 85 if len(t.Attr) == 0 { 86 return t.Data 87 } 88 buf := bytes.NewBufferString(t.Data) 89 for _, a := range t.Attr { 90 buf.WriteByte(' ') 91 buf.WriteString(a.Key) 92 buf.WriteString(`="`) 93 escape(buf, a.Val) 94 buf.WriteByte('"') 95 } 96 return buf.String() 97} 98 99// String returns a string representation of the Token. 100func (t Token) String() string { 101 switch t.Type { 102 case ErrorToken: 103 return "" 104 case TextToken: 105 return EscapeString(t.Data) 106 case StartTagToken: 107 return "<" + t.tagString() + ">" 108 case EndTagToken: 109 return "</" + t.tagString() + ">" 110 case SelfClosingTagToken: 111 return "<" + t.tagString() + "/>" 112 case CommentToken: 113 return "<!--" + t.Data + "-->" 114 case DoctypeToken: 115 return "<!DOCTYPE " + t.Data + ">" 116 } 117 return "Invalid(" + strconv.Itoa(int(t.Type)) + ")" 118} 119 120// span is a range of bytes in a Tokenizer's buffer. The start is inclusive, 121// the end is exclusive. 122type span struct { 123 start, end int 124} 125 126// A Tokenizer returns a stream of HTML Tokens. 127type Tokenizer struct { 128 // r is the source of the HTML text. 129 r io.Reader 130 // tt is the TokenType of the current token. 131 tt TokenType 132 // err is the first error encountered during tokenization. It is possible 133 // for tt != Error && err != nil to hold: this means that Next returned a 134 // valid token but the subsequent Next call will return an error token. 135 // For example, if the HTML text input was just "plain", then the first 136 // Next call would set z.err to io.EOF but return a TextToken, and all 137 // subsequent Next calls would return an ErrorToken. 138 // err is never reset. Once it becomes non-nil, it stays non-nil. 139 err error 140 // readErr is the error returned by the io.Reader r. It is separate from 141 // err because it is valid for an io.Reader to return (n int, err1 error) 142 // such that n > 0 && err1 != nil, and callers should always process the 143 // n > 0 bytes before considering the error err1. 144 readErr error 145 // buf[raw.start:raw.end] holds the raw bytes of the current token. 146 // buf[raw.end:] is buffered input that will yield future tokens. 147 raw span 148 buf []byte 149 // maxBuf limits the data buffered in buf. A value of 0 means unlimited. 150 maxBuf int 151 // buf[data.start:data.end] holds the raw bytes of the current token's data: 152 // a text token's text, a tag token's tag name, etc. 153 data span 154 // pendingAttr is the attribute key and value currently being tokenized. 155 // When complete, pendingAttr is pushed onto attr. nAttrReturned is 156 // incremented on each call to TagAttr. 157 pendingAttr [2]span 158 attr [][2]span 159 nAttrReturned int 160 // rawTag is the "script" in "</script>" that closes the next token. If 161 // non-empty, the subsequent call to Next will return a raw or RCDATA text 162 // token: one that treats "<p>" as text instead of an element. 163 // rawTag's contents are lower-cased. 164 rawTag string 165 // textIsRaw is whether the current text token's data is not escaped. 166 textIsRaw bool 167 // convertNUL is whether NUL bytes in the current token's data should 168 // be converted into \ufffd replacement characters. 169 convertNUL bool 170 // allowCDATA is whether CDATA sections are allowed in the current context. 171 allowCDATA bool 172} 173 174// AllowCDATA sets whether or not the tokenizer recognizes <![CDATA[foo]]> as 175// the text "foo". The default value is false, which means to recognize it as 176// a bogus comment "<!-- [CDATA[foo]] -->" instead. 177// 178// Strictly speaking, an HTML5 compliant tokenizer should allow CDATA if and 179// only if tokenizing foreign content, such as MathML and SVG. However, 180// tracking foreign-contentness is difficult to do purely in the tokenizer, 181// as opposed to the parser, due to HTML integration points: an <svg> element 182// can contain a <foreignObject> that is foreign-to-SVG but not foreign-to- 183// HTML. For strict compliance with the HTML5 tokenization algorithm, it is the 184// responsibility of the user of a tokenizer to call AllowCDATA as appropriate. 185// In practice, if using the tokenizer without caring whether MathML or SVG 186// CDATA is text or comments, such as tokenizing HTML to find all the anchor 187// text, it is acceptable to ignore this responsibility. 188func (z *Tokenizer) AllowCDATA(allowCDATA bool) { 189 z.allowCDATA = allowCDATA 190} 191 192// NextIsNotRawText instructs the tokenizer that the next token should not be 193// considered as 'raw text'. Some elements, such as script and title elements, 194// normally require the next token after the opening tag to be 'raw text' that 195// has no child elements. For example, tokenizing "<title>a<b>c</b>d</title>" 196// yields a start tag token for "<title>", a text token for "a<b>c</b>d", and 197// an end tag token for "</title>". There are no distinct start tag or end tag 198// tokens for the "<b>" and "</b>". 199// 200// This tokenizer implementation will generally look for raw text at the right 201// times. Strictly speaking, an HTML5 compliant tokenizer should not look for 202// raw text if in foreign content: <title> generally needs raw text, but a 203// <title> inside an <svg> does not. Another example is that a <textarea> 204// generally needs raw text, but a <textarea> is not allowed as an immediate 205// child of a <select>; in normal parsing, a <textarea> implies </select>, but 206// one cannot close the implicit element when parsing a <select>'s InnerHTML. 207// Similarly to AllowCDATA, tracking the correct moment to override raw-text- 208// ness is difficult to do purely in the tokenizer, as opposed to the parser. 209// For strict compliance with the HTML5 tokenization algorithm, it is the 210// responsibility of the user of a tokenizer to call NextIsNotRawText as 211// appropriate. In practice, like AllowCDATA, it is acceptable to ignore this 212// responsibility for basic usage. 213// 214// Note that this 'raw text' concept is different from the one offered by the 215// Tokenizer.Raw method. 216func (z *Tokenizer) NextIsNotRawText() { 217 z.rawTag = "" 218} 219 220// Err returns the error associated with the most recent ErrorToken token. 221// This is typically io.EOF, meaning the end of tokenization. 222func (z *Tokenizer) Err() error { 223 if z.tt != ErrorToken { 224 return nil 225 } 226 return z.err 227} 228 229// readByte returns the next byte from the input stream, doing a buffered read 230// from z.r into z.buf if necessary. z.buf[z.raw.start:z.raw.end] remains a contiguous byte 231// slice that holds all the bytes read so far for the current token. 232// It sets z.err if the underlying reader returns an error. 233// Pre-condition: z.err == nil. 234func (z *Tokenizer) readByte() byte { 235 if z.raw.end >= len(z.buf) { 236 // Our buffer is exhausted and we have to read from z.r. Check if the 237 // previous read resulted in an error. 238 if z.readErr != nil { 239 z.err = z.readErr 240 return 0 241 } 242 // We copy z.buf[z.raw.start:z.raw.end] to the beginning of z.buf. If the length 243 // z.raw.end - z.raw.start is more than half the capacity of z.buf, then we 244 // allocate a new buffer before the copy. 245 c := cap(z.buf) 246 d := z.raw.end - z.raw.start 247 var buf1 []byte 248 if 2*d > c { 249 buf1 = make([]byte, d, 2*c) 250 } else { 251 buf1 = z.buf[:d] 252 } 253 copy(buf1, z.buf[z.raw.start:z.raw.end]) 254 if x := z.raw.start; x != 0 { 255 // Adjust the data/attr spans to refer to the same contents after the copy. 256 z.data.start -= x 257 z.data.end -= x 258 z.pendingAttr[0].start -= x 259 z.pendingAttr[0].end -= x 260 z.pendingAttr[1].start -= x 261 z.pendingAttr[1].end -= x 262 for i := range z.attr { 263 z.attr[i][0].start -= x 264 z.attr[i][0].end -= x 265 z.attr[i][1].start -= x 266 z.attr[i][1].end -= x 267 } 268 } 269 z.raw.start, z.raw.end, z.buf = 0, d, buf1[:d] 270 // Now that we have copied the live bytes to the start of the buffer, 271 // we read from z.r into the remainder. 272 var n int 273 n, z.readErr = readAtLeastOneByte(z.r, buf1[d:cap(buf1)]) 274 if n == 0 { 275 z.err = z.readErr 276 return 0 277 } 278 z.buf = buf1[:d+n] 279 } 280 x := z.buf[z.raw.end] 281 z.raw.end++ 282 if z.maxBuf > 0 && z.raw.end-z.raw.start >= z.maxBuf { 283 z.err = ErrBufferExceeded 284 return 0 285 } 286 return x 287} 288 289// Buffered returns a slice containing data buffered but not yet tokenized. 290func (z *Tokenizer) Buffered() []byte { 291 return z.buf[z.raw.end:] 292} 293 294// readAtLeastOneByte wraps an io.Reader so that reading cannot return (0, nil). 295// It returns io.ErrNoProgress if the underlying r.Read method returns (0, nil) 296// too many times in succession. 297func readAtLeastOneByte(r io.Reader, b []byte) (int, error) { 298 for i := 0; i < 100; i++ { 299 if n, err := r.Read(b); n != 0 || err != nil { 300 return n, err 301 } 302 } 303 return 0, io.ErrNoProgress 304} 305 306// skipWhiteSpace skips past any white space. 307func (z *Tokenizer) skipWhiteSpace() { 308 if z.err != nil { 309 return 310 } 311 for { 312 c := z.readByte() 313 if z.err != nil { 314 return 315 } 316 switch c { 317 case ' ', '\n', '\r', '\t', '\f': 318 // No-op. 319 default: 320 z.raw.end-- 321 return 322 } 323 } 324} 325 326// readRawOrRCDATA reads until the next "</foo>", where "foo" is z.rawTag and 327// is typically something like "script" or "textarea". 328func (z *Tokenizer) readRawOrRCDATA() { 329 if z.rawTag == "script" { 330 z.readScript() 331 z.textIsRaw = true 332 z.rawTag = "" 333 return 334 } 335loop: 336 for { 337 c := z.readByte() 338 if z.err != nil { 339 break loop 340 } 341 if c != '<' { 342 continue loop 343 } 344 c = z.readByte() 345 if z.err != nil { 346 break loop 347 } 348 if c != '/' { 349 z.raw.end-- 350 continue loop 351 } 352 if z.readRawEndTag() || z.err != nil { 353 break loop 354 } 355 } 356 z.data.end = z.raw.end 357 // A textarea's or title's RCDATA can contain escaped entities. 358 z.textIsRaw = z.rawTag != "textarea" && z.rawTag != "title" 359 z.rawTag = "" 360} 361 362// readRawEndTag attempts to read a tag like "</foo>", where "foo" is z.rawTag. 363// If it succeeds, it backs up the input position to reconsume the tag and 364// returns true. Otherwise it returns false. The opening "</" has already been 365// consumed. 366func (z *Tokenizer) readRawEndTag() bool { 367 for i := 0; i < len(z.rawTag); i++ { 368 c := z.readByte() 369 if z.err != nil { 370 return false 371 } 372 if c != z.rawTag[i] && c != z.rawTag[i]-('a'-'A') { 373 z.raw.end-- 374 return false 375 } 376 } 377 c := z.readByte() 378 if z.err != nil { 379 return false 380 } 381 switch c { 382 case ' ', '\n', '\r', '\t', '\f', '/', '>': 383 // The 3 is 2 for the leading "</" plus 1 for the trailing character c. 384 z.raw.end -= 3 + len(z.rawTag) 385 return true 386 } 387 z.raw.end-- 388 return false 389} 390 391// readScript reads until the next </script> tag, following the byzantine 392// rules for escaping/hiding the closing tag. 393func (z *Tokenizer) readScript() { 394 defer func() { 395 z.data.end = z.raw.end 396 }() 397 var c byte 398 399scriptData: 400 c = z.readByte() 401 if z.err != nil { 402 return 403 } 404 if c == '<' { 405 goto scriptDataLessThanSign 406 } 407 goto scriptData 408 409scriptDataLessThanSign: 410 c = z.readByte() 411 if z.err != nil { 412 return 413 } 414 switch c { 415 case '/': 416 goto scriptDataEndTagOpen 417 case '!': 418 goto scriptDataEscapeStart 419 } 420 z.raw.end-- 421 goto scriptData 422 423scriptDataEndTagOpen: 424 if z.readRawEndTag() || z.err != nil { 425 return 426 } 427 goto scriptData 428 429scriptDataEscapeStart: 430 c = z.readByte() 431 if z.err != nil { 432 return 433 } 434 if c == '-' { 435 goto scriptDataEscapeStartDash 436 } 437 z.raw.end-- 438 goto scriptData 439 440scriptDataEscapeStartDash: 441 c = z.readByte() 442 if z.err != nil { 443 return 444 } 445 if c == '-' { 446 goto scriptDataEscapedDashDash 447 } 448 z.raw.end-- 449 goto scriptData 450 451scriptDataEscaped: 452 c = z.readByte() 453 if z.err != nil { 454 return 455 } 456 switch c { 457 case '-': 458 goto scriptDataEscapedDash 459 case '<': 460 goto scriptDataEscapedLessThanSign 461 } 462 goto scriptDataEscaped 463 464scriptDataEscapedDash: 465 c = z.readByte() 466 if z.err != nil { 467 return 468 } 469 switch c { 470 case '-': 471 goto scriptDataEscapedDashDash 472 case '<': 473 goto scriptDataEscapedLessThanSign 474 } 475 goto scriptDataEscaped 476 477scriptDataEscapedDashDash: 478 c = z.readByte() 479 if z.err != nil { 480 return 481 } 482 switch c { 483 case '-': 484 goto scriptDataEscapedDashDash 485 case '<': 486 goto scriptDataEscapedLessThanSign 487 case '>': 488 goto scriptData 489 } 490 goto scriptDataEscaped 491 492scriptDataEscapedLessThanSign: 493 c = z.readByte() 494 if z.err != nil { 495 return 496 } 497 if c == '/' { 498 goto scriptDataEscapedEndTagOpen 499 } 500 if 'a' <= c && c <= 'z' || 'A' <= c && c <= 'Z' { 501 goto scriptDataDoubleEscapeStart 502 } 503 z.raw.end-- 504 goto scriptData 505 506scriptDataEscapedEndTagOpen: 507 if z.readRawEndTag() || z.err != nil { 508 return 509 } 510 goto scriptDataEscaped 511 512scriptDataDoubleEscapeStart: 513 z.raw.end-- 514 for i := 0; i < len("script"); i++ { 515 c = z.readByte() 516 if z.err != nil { 517 return 518 } 519 if c != "script"[i] && c != "SCRIPT"[i] { 520 z.raw.end-- 521 goto scriptDataEscaped 522 } 523 } 524 c = z.readByte() 525 if z.err != nil { 526 return 527 } 528 switch c { 529 case ' ', '\n', '\r', '\t', '\f', '/', '>': 530 goto scriptDataDoubleEscaped 531 } 532 z.raw.end-- 533 goto scriptDataEscaped 534 535scriptDataDoubleEscaped: 536 c = z.readByte() 537 if z.err != nil { 538 return 539 } 540 switch c { 541 case '-': 542 goto scriptDataDoubleEscapedDash 543 case '<': 544 goto scriptDataDoubleEscapedLessThanSign 545 } 546 goto scriptDataDoubleEscaped 547 548scriptDataDoubleEscapedDash: 549 c = z.readByte() 550 if z.err != nil { 551 return 552 } 553 switch c { 554 case '-': 555 goto scriptDataDoubleEscapedDashDash 556 case '<': 557 goto scriptDataDoubleEscapedLessThanSign 558 } 559 goto scriptDataDoubleEscaped 560 561scriptDataDoubleEscapedDashDash: 562 c = z.readByte() 563 if z.err != nil { 564 return 565 } 566 switch c { 567 case '-': 568 goto scriptDataDoubleEscapedDashDash 569 case '<': 570 goto scriptDataDoubleEscapedLessThanSign 571 case '>': 572 goto scriptData 573 } 574 goto scriptDataDoubleEscaped 575 576scriptDataDoubleEscapedLessThanSign: 577 c = z.readByte() 578 if z.err != nil { 579 return 580 } 581 if c == '/' { 582 goto scriptDataDoubleEscapeEnd 583 } 584 z.raw.end-- 585 goto scriptDataDoubleEscaped 586 587scriptDataDoubleEscapeEnd: 588 if z.readRawEndTag() { 589 z.raw.end += len("</script>") 590 goto scriptDataEscaped 591 } 592 if z.err != nil { 593 return 594 } 595 goto scriptDataDoubleEscaped 596} 597 598// readComment reads the next comment token starting with "<!--". The opening 599// "<!--" has already been consumed. 600func (z *Tokenizer) readComment() { 601 z.data.start = z.raw.end 602 defer func() { 603 if z.data.end < z.data.start { 604 // It's a comment with no data, like <!-->. 605 z.data.end = z.data.start 606 } 607 }() 608 for dashCount := 2; ; { 609 c := z.readByte() 610 if z.err != nil { 611 // Ignore up to two dashes at EOF. 612 if dashCount > 2 { 613 dashCount = 2 614 } 615 z.data.end = z.raw.end - dashCount 616 return 617 } 618 switch c { 619 case '-': 620 dashCount++ 621 continue 622 case '>': 623 if dashCount >= 2 { 624 z.data.end = z.raw.end - len("-->") 625 return 626 } 627 case '!': 628 if dashCount >= 2 { 629 c = z.readByte() 630 if z.err != nil { 631 z.data.end = z.raw.end 632 return 633 } 634 if c == '>' { 635 z.data.end = z.raw.end - len("--!>") 636 return 637 } 638 } 639 } 640 dashCount = 0 641 } 642} 643 644// readUntilCloseAngle reads until the next ">". 645func (z *Tokenizer) readUntilCloseAngle() { 646 z.data.start = z.raw.end 647 for { 648 c := z.readByte() 649 if z.err != nil { 650 z.data.end = z.raw.end 651 return 652 } 653 if c == '>' { 654 z.data.end = z.raw.end - len(">") 655 return 656 } 657 } 658} 659 660// readMarkupDeclaration reads the next token starting with "<!". It might be 661// a "<!--comment-->", a "<!DOCTYPE foo>", a "<![CDATA[section]]>" or 662// "<!a bogus comment". The opening "<!" has already been consumed. 663func (z *Tokenizer) readMarkupDeclaration() TokenType { 664 z.data.start = z.raw.end 665 var c [2]byte 666 for i := 0; i < 2; i++ { 667 c[i] = z.readByte() 668 if z.err != nil { 669 z.data.end = z.raw.end 670 return CommentToken 671 } 672 } 673 if c[0] == '-' && c[1] == '-' { 674 z.readComment() 675 return CommentToken 676 } 677 z.raw.end -= 2 678 if z.readDoctype() { 679 return DoctypeToken 680 } 681 if z.allowCDATA && z.readCDATA() { 682 z.convertNUL = true 683 return TextToken 684 } 685 // It's a bogus comment. 686 z.readUntilCloseAngle() 687 return CommentToken 688} 689 690// readDoctype attempts to read a doctype declaration and returns true if 691// successful. The opening "<!" has already been consumed. 692func (z *Tokenizer) readDoctype() bool { 693 const s = "DOCTYPE" 694 for i := 0; i < len(s); i++ { 695 c := z.readByte() 696 if z.err != nil { 697 z.data.end = z.raw.end 698 return false 699 } 700 if c != s[i] && c != s[i]+('a'-'A') { 701 // Back up to read the fragment of "DOCTYPE" again. 702 z.raw.end = z.data.start 703 return false 704 } 705 } 706 if z.skipWhiteSpace(); z.err != nil { 707 z.data.start = z.raw.end 708 z.data.end = z.raw.end 709 return true 710 } 711 z.readUntilCloseAngle() 712 return true 713} 714 715// readCDATA attempts to read a CDATA section and returns true if 716// successful. The opening "<!" has already been consumed. 717func (z *Tokenizer) readCDATA() bool { 718 const s = "[CDATA[" 719 for i := 0; i < len(s); i++ { 720 c := z.readByte() 721 if z.err != nil { 722 z.data.end = z.raw.end 723 return false 724 } 725 if c != s[i] { 726 // Back up to read the fragment of "[CDATA[" again. 727 z.raw.end = z.data.start 728 return false 729 } 730 } 731 z.data.start = z.raw.end 732 brackets := 0 733 for { 734 c := z.readByte() 735 if z.err != nil { 736 z.data.end = z.raw.end 737 return true 738 } 739 switch c { 740 case ']': 741 brackets++ 742 case '>': 743 if brackets >= 2 { 744 z.data.end = z.raw.end - len("]]>") 745 return true 746 } 747 brackets = 0 748 default: 749 brackets = 0 750 } 751 } 752} 753 754// startTagIn returns whether the start tag in z.buf[z.data.start:z.data.end] 755// case-insensitively matches any element of ss. 756func (z *Tokenizer) startTagIn(ss ...string) bool { 757loop: 758 for _, s := range ss { 759 if z.data.end-z.data.start != len(s) { 760 continue loop 761 } 762 for i := 0; i < len(s); i++ { 763 c := z.buf[z.data.start+i] 764 if 'A' <= c && c <= 'Z' { 765 c += 'a' - 'A' 766 } 767 if c != s[i] { 768 continue loop 769 } 770 } 771 return true 772 } 773 return false 774} 775 776// readStartTag reads the next start tag token. The opening "<a" has already 777// been consumed, where 'a' means anything in [A-Za-z]. 778func (z *Tokenizer) readStartTag() TokenType { 779 z.readTag(true) 780 if z.err != nil { 781 return ErrorToken 782 } 783 // Several tags flag the tokenizer's next token as raw. 784 c, raw := z.buf[z.data.start], false 785 if 'A' <= c && c <= 'Z' { 786 c += 'a' - 'A' 787 } 788 switch c { 789 case 'i': 790 raw = z.startTagIn("iframe") 791 case 'n': 792 raw = z.startTagIn("noembed", "noframes", "noscript") 793 case 'p': 794 raw = z.startTagIn("plaintext") 795 case 's': 796 raw = z.startTagIn("script", "style") 797 case 't': 798 raw = z.startTagIn("textarea", "title") 799 case 'x': 800 raw = z.startTagIn("xmp") 801 } 802 if raw { 803 z.rawTag = strings.ToLower(string(z.buf[z.data.start:z.data.end])) 804 } 805 // Look for a self-closing token like "<br/>". 806 if z.err == nil && z.buf[z.raw.end-2] == '/' { 807 return SelfClosingTagToken 808 } 809 return StartTagToken 810} 811 812// readTag reads the next tag token and its attributes. If saveAttr, those 813// attributes are saved in z.attr, otherwise z.attr is set to an empty slice. 814// The opening "<a" or "</a" has already been consumed, where 'a' means anything 815// in [A-Za-z]. 816func (z *Tokenizer) readTag(saveAttr bool) { 817 z.attr = z.attr[:0] 818 z.nAttrReturned = 0 819 // Read the tag name and attribute key/value pairs. 820 z.readTagName() 821 if z.skipWhiteSpace(); z.err != nil { 822 return 823 } 824 for { 825 c := z.readByte() 826 if z.err != nil || c == '>' { 827 break 828 } 829 z.raw.end-- 830 z.readTagAttrKey() 831 z.readTagAttrVal() 832 // Save pendingAttr if saveAttr and that attribute has a non-empty key. 833 if saveAttr && z.pendingAttr[0].start != z.pendingAttr[0].end { 834 z.attr = append(z.attr, z.pendingAttr) 835 } 836 if z.skipWhiteSpace(); z.err != nil { 837 break 838 } 839 } 840} 841 842// readTagName sets z.data to the "div" in "<div k=v>". The reader (z.raw.end) 843// is positioned such that the first byte of the tag name (the "d" in "<div") 844// has already been consumed. 845func (z *Tokenizer) readTagName() { 846 z.data.start = z.raw.end - 1 847 for { 848 c := z.readByte() 849 if z.err != nil { 850 z.data.end = z.raw.end 851 return 852 } 853 switch c { 854 case ' ', '\n', '\r', '\t', '\f': 855 z.data.end = z.raw.end - 1 856 return 857 case '/', '>': 858 z.raw.end-- 859 z.data.end = z.raw.end 860 return 861 } 862 } 863} 864 865// readTagAttrKey sets z.pendingAttr[0] to the "k" in "<div k=v>". 866// Precondition: z.err == nil. 867func (z *Tokenizer) readTagAttrKey() { 868 z.pendingAttr[0].start = z.raw.end 869 for { 870 c := z.readByte() 871 if z.err != nil { 872 z.pendingAttr[0].end = z.raw.end 873 return 874 } 875 switch c { 876 case ' ', '\n', '\r', '\t', '\f', '/': 877 z.pendingAttr[0].end = z.raw.end - 1 878 return 879 case '=', '>': 880 z.raw.end-- 881 z.pendingAttr[0].end = z.raw.end 882 return 883 } 884 } 885} 886 887// readTagAttrVal sets z.pendingAttr[1] to the "v" in "<div k=v>". 888func (z *Tokenizer) readTagAttrVal() { 889 z.pendingAttr[1].start = z.raw.end 890 z.pendingAttr[1].end = z.raw.end 891 if z.skipWhiteSpace(); z.err != nil { 892 return 893 } 894 c := z.readByte() 895 if z.err != nil { 896 return 897 } 898 if c != '=' { 899 z.raw.end-- 900 return 901 } 902 if z.skipWhiteSpace(); z.err != nil { 903 return 904 } 905 quote := z.readByte() 906 if z.err != nil { 907 return 908 } 909 switch quote { 910 case '>': 911 z.raw.end-- 912 return 913 914 case '\'', '"': 915 z.pendingAttr[1].start = z.raw.end 916 for { 917 c := z.readByte() 918 if z.err != nil { 919 z.pendingAttr[1].end = z.raw.end 920 return 921 } 922 if c == quote { 923 z.pendingAttr[1].end = z.raw.end - 1 924 return 925 } 926 } 927 928 default: 929 z.pendingAttr[1].start = z.raw.end - 1 930 for { 931 c := z.readByte() 932 if z.err != nil { 933 z.pendingAttr[1].end = z.raw.end 934 return 935 } 936 switch c { 937 case ' ', '\n', '\r', '\t', '\f': 938 z.pendingAttr[1].end = z.raw.end - 1 939 return 940 case '>': 941 z.raw.end-- 942 z.pendingAttr[1].end = z.raw.end 943 return 944 } 945 } 946 } 947} 948 949// Next scans the next token and returns its type. 950func (z *Tokenizer) Next() TokenType { 951 z.raw.start = z.raw.end 952 z.data.start = z.raw.end 953 z.data.end = z.raw.end 954 if z.err != nil { 955 z.tt = ErrorToken 956 return z.tt 957 } 958 if z.rawTag != "" { 959 if z.rawTag == "plaintext" { 960 // Read everything up to EOF. 961 for z.err == nil { 962 z.readByte() 963 } 964 z.data.end = z.raw.end 965 z.textIsRaw = true 966 } else { 967 z.readRawOrRCDATA() 968 } 969 if z.data.end > z.data.start { 970 z.tt = TextToken 971 z.convertNUL = true 972 return z.tt 973 } 974 } 975 z.textIsRaw = false 976 z.convertNUL = false 977 978loop: 979 for { 980 c := z.readByte() 981 if z.err != nil { 982 break loop 983 } 984 if c != '<' { 985 continue loop 986 } 987 988 // Check if the '<' we have just read is part of a tag, comment 989 // or doctype. If not, it's part of the accumulated text token. 990 c = z.readByte() 991 if z.err != nil { 992 break loop 993 } 994 var tokenType TokenType 995 switch { 996 case 'a' <= c && c <= 'z' || 'A' <= c && c <= 'Z': 997 tokenType = StartTagToken 998 case c == '/': 999 tokenType = EndTagToken 1000 case c == '!' || c == '?': 1001 // We use CommentToken to mean any of "<!--actual comments-->", 1002 // "<!DOCTYPE declarations>" and "<?xml processing instructions?>". 1003 tokenType = CommentToken 1004 default: 1005 // Reconsume the current character. 1006 z.raw.end-- 1007 continue 1008 } 1009 1010 // We have a non-text token, but we might have accumulated some text 1011 // before that. If so, we return the text first, and return the non- 1012 // text token on the subsequent call to Next. 1013 if x := z.raw.end - len("<a"); z.raw.start < x { 1014 z.raw.end = x 1015 z.data.end = x 1016 z.tt = TextToken 1017 return z.tt 1018 } 1019 switch tokenType { 1020 case StartTagToken: 1021 z.tt = z.readStartTag() 1022 return z.tt 1023 case EndTagToken: 1024 c = z.readByte() 1025 if z.err != nil { 1026 break loop 1027 } 1028 if c == '>' { 1029 // "</>" does not generate a token at all. Generate an empty comment 1030 // to allow passthrough clients to pick up the data using Raw. 1031 // Reset the tokenizer state and start again. 1032 z.tt = CommentToken 1033 return z.tt 1034 } 1035 if 'a' <= c && c <= 'z' || 'A' <= c && c <= 'Z' { 1036 z.readTag(false) 1037 if z.err != nil { 1038 z.tt = ErrorToken 1039 } else { 1040 z.tt = EndTagToken 1041 } 1042 return z.tt 1043 } 1044 z.raw.end-- 1045 z.readUntilCloseAngle() 1046 z.tt = CommentToken 1047 return z.tt 1048 case CommentToken: 1049 if c == '!' { 1050 z.tt = z.readMarkupDeclaration() 1051 return z.tt 1052 } 1053 z.raw.end-- 1054 z.readUntilCloseAngle() 1055 z.tt = CommentToken 1056 return z.tt 1057 } 1058 } 1059 if z.raw.start < z.raw.end { 1060 z.data.end = z.raw.end 1061 z.tt = TextToken 1062 return z.tt 1063 } 1064 z.tt = ErrorToken 1065 return z.tt 1066} 1067 1068// Raw returns the unmodified text of the current token. Calling Next, Token, 1069// Text, TagName or TagAttr may change the contents of the returned slice. 1070// 1071// The token stream's raw bytes partition the byte stream (up until an 1072// ErrorToken). There are no overlaps or gaps between two consecutive token's 1073// raw bytes. One implication is that the byte offset of the current token is 1074// the sum of the lengths of all previous tokens' raw bytes. 1075func (z *Tokenizer) Raw() []byte { 1076 return z.buf[z.raw.start:z.raw.end] 1077} 1078 1079// convertNewlines converts "\r" and "\r\n" in s to "\n". 1080// The conversion happens in place, but the resulting slice may be shorter. 1081func convertNewlines(s []byte) []byte { 1082 for i, c := range s { 1083 if c != '\r' { 1084 continue 1085 } 1086 1087 src := i + 1 1088 if src >= len(s) || s[src] != '\n' { 1089 s[i] = '\n' 1090 continue 1091 } 1092 1093 dst := i 1094 for src < len(s) { 1095 if s[src] == '\r' { 1096 if src+1 < len(s) && s[src+1] == '\n' { 1097 src++ 1098 } 1099 s[dst] = '\n' 1100 } else { 1101 s[dst] = s[src] 1102 } 1103 src++ 1104 dst++ 1105 } 1106 return s[:dst] 1107 } 1108 return s 1109} 1110 1111var ( 1112 nul = []byte("\x00") 1113 replacement = []byte("\ufffd") 1114) 1115 1116// Text returns the unescaped text of a text, comment or doctype token. The 1117// contents of the returned slice may change on the next call to Next. 1118func (z *Tokenizer) Text() []byte { 1119 switch z.tt { 1120 case TextToken, CommentToken, DoctypeToken: 1121 s := z.buf[z.data.start:z.data.end] 1122 z.data.start = z.raw.end 1123 z.data.end = z.raw.end 1124 s = convertNewlines(s) 1125 if (z.convertNUL || z.tt == CommentToken) && bytes.Contains(s, nul) { 1126 s = bytes.Replace(s, nul, replacement, -1) 1127 } 1128 if !z.textIsRaw { 1129 s = unescape(s, false) 1130 } 1131 return s 1132 } 1133 return nil 1134} 1135 1136// TagName returns the lower-cased name of a tag token (the `img` out of 1137// `<IMG SRC="foo">`) and whether the tag has attributes. 1138// The contents of the returned slice may change on the next call to Next. 1139func (z *Tokenizer) TagName() (name []byte, hasAttr bool) { 1140 if z.data.start < z.data.end { 1141 switch z.tt { 1142 case StartTagToken, EndTagToken, SelfClosingTagToken: 1143 s := z.buf[z.data.start:z.data.end] 1144 z.data.start = z.raw.end 1145 z.data.end = z.raw.end 1146 return lower(s), z.nAttrReturned < len(z.attr) 1147 } 1148 } 1149 return nil, false 1150} 1151 1152// TagAttr returns the lower-cased key and unescaped value of the next unparsed 1153// attribute for the current tag token and whether there are more attributes. 1154// The contents of the returned slices may change on the next call to Next. 1155func (z *Tokenizer) TagAttr() (key, val []byte, moreAttr bool) { 1156 if z.nAttrReturned < len(z.attr) { 1157 switch z.tt { 1158 case StartTagToken, SelfClosingTagToken: 1159 x := z.attr[z.nAttrReturned] 1160 z.nAttrReturned++ 1161 key = z.buf[x[0].start:x[0].end] 1162 val = z.buf[x[1].start:x[1].end] 1163 return lower(key), unescape(convertNewlines(val), true), z.nAttrReturned < len(z.attr) 1164 } 1165 } 1166 return nil, nil, false 1167} 1168 1169// Token returns the current Token. The result's Data and Attr values remain 1170// valid after subsequent Next calls. 1171func (z *Tokenizer) Token() Token { 1172 t := Token{Type: z.tt} 1173 switch z.tt { 1174 case TextToken, CommentToken, DoctypeToken: 1175 t.Data = string(z.Text()) 1176 case StartTagToken, SelfClosingTagToken, EndTagToken: 1177 name, moreAttr := z.TagName() 1178 for moreAttr { 1179 var key, val []byte 1180 key, val, moreAttr = z.TagAttr() 1181 t.Attr = append(t.Attr, Attribute{"", atom.String(key), string(val)}) 1182 } 1183 if a := atom.Lookup(name); a != 0 { 1184 t.DataAtom, t.Data = a, a.String() 1185 } else { 1186 t.DataAtom, t.Data = 0, string(name) 1187 } 1188 } 1189 return t 1190} 1191 1192// SetMaxBuf sets a limit on the amount of data buffered during tokenization. 1193// A value of 0 means unlimited. 1194func (z *Tokenizer) SetMaxBuf(n int) { 1195 z.maxBuf = n 1196} 1197 1198// NewTokenizer returns a new HTML Tokenizer for the given Reader. 1199// The input is assumed to be UTF-8 encoded. 1200func NewTokenizer(r io.Reader) *Tokenizer { 1201 return NewTokenizerFragment(r, "") 1202} 1203 1204// NewTokenizerFragment returns a new HTML Tokenizer for the given Reader, for 1205// tokenizing an existing element's InnerHTML fragment. contextTag is that 1206// element's tag, such as "div" or "iframe". 1207// 1208// For example, how the InnerHTML "a<b" is tokenized depends on whether it is 1209// for a <p> tag or a <script> tag. 1210// 1211// The input is assumed to be UTF-8 encoded. 1212func NewTokenizerFragment(r io.Reader, contextTag string) *Tokenizer { 1213 z := &Tokenizer{ 1214 r: r, 1215 buf: make([]byte, 0, 4096), 1216 } 1217 if contextTag != "" { 1218 switch s := strings.ToLower(contextTag); s { 1219 case "iframe", "noembed", "noframes", "noscript", "plaintext", "script", "style", "title", "textarea", "xmp": 1220 z.rawTag = s 1221 } 1222 } 1223 return z 1224} 1225