mirrors
/
gitea
peilaus alkaen https://github.com/go-gitea/gitea.git
Tarkkaile 1
Äänestä 0
Fork 0
Koodi Ongelmat 0 Julkaisut 211 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
4645 Commitit
17 Branchit
Puu: c21e2c4151
Branchit Tagit
${ item.name }
Create branch ${ searchTerm }
from 'c21e2c4151'
${ noResults }
gitea/modules/markdown/markdown.go

markdown.go 13KB
Raaka Blame Historia

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407 
  1. // Copyright 2014 The Gogs Authors. All rights reserved.

  2. // Use of this source code is governed by a MIT-style

  3. // license that can be found in the LICENSE file.

  4. 

  5. package markdown

  6. 

  7. import (

  8. 	"bytes"

  9. 	"fmt"

  10. 	"io"

  11. 	"path"

  12. 	"path/filepath"

  13. 	"regexp"

  14. 	"strings"

  15. 

  16. 	"github.com/Unknwon/com"

  17. 	"github.com/microcosm-cc/bluemonday"

  18. 	"github.com/russross/blackfriday"

  19. 	"golang.org/x/net/html"

  20. 

  21. 	"code.gitea.io/gitea/modules/base"

  22. 	"code.gitea.io/gitea/modules/setting"

  23. )

  24. 

  25. // Issue name styles

  26. const (

  27. 	IssueNameStyleNumeric      = "numeric"

  28. 	IssueNameStyleAlphanumeric = "alphanumeric"

  29. )

  30. 

  31. // Sanitizer markdown sanitizer

  32. var Sanitizer = bluemonday.UGCPolicy()

  33. 

  34. // BuildSanitizer initializes sanitizer with allowed attributes based on settings.

  35. // This function should only be called once during entire application lifecycle.

  36. func BuildSanitizer() {

  37. 	// Normal markdown-stuff

  38. 	Sanitizer.AllowAttrs("class").Matching(regexp.MustCompile(`[\p{L}\p{N}\s\-_',:\[\]!\./\\\(\)&]*`)).OnElements("code")

  39. 

  40. 	// Checkboxes

  41. 	Sanitizer.AllowAttrs("type").Matching(regexp.MustCompile(`^checkbox$`)).OnElements("input")

  42. 	Sanitizer.AllowAttrs("checked", "disabled").OnElements("input")

  43. 

  44. 	// Custom URL-Schemes

  45. 	Sanitizer.AllowURLSchemes(setting.Markdown.CustomURLSchemes...)

  46. }

  47. 

  48. var validLinksPattern = regexp.MustCompile(`^[a-z][\w-]+://`)

  49. 

  50. // isLink reports whether link fits valid format.

  51. func isLink(link []byte) bool {

  52. 	return validLinksPattern.Match(link)

  53. }

  54. 

  55. // IsMarkdownFile reports whether name looks like a Markdown file

  56. // based on its extension.

  57. func IsMarkdownFile(name string) bool {

  58. 	extension := strings.ToLower(filepath.Ext(name))

  59. 	for _, ext := range setting.Markdown.FileExtensions {

  60. 		if strings.ToLower(ext) == extension {

  61. 			return true

  62. 		}

  63. 	}

  64. 	return false

  65. }

  66. 

  67. // IsReadmeFile reports whether name looks like a README file

  68. // based on its extension.

  69. func IsReadmeFile(name string) bool {

  70. 	name = strings.ToLower(name)

  71. 	if len(name) < 6 {

  72. 		return false

  73. 	} else if len(name) == 6 {

  74. 		return name == "readme"

  75. 	}

  76. 	return name[:7] == "readme."

  77. }

  78. 

  79. var (

  80. 	// MentionPattern matches string that mentions someone, e.g. @Unknwon

  81. 	MentionPattern = regexp.MustCompile(`(\s|^|\W)@[0-9a-zA-Z-_\.]+`)

  82. 

  83. 	// CommitPattern matches link to certain commit with or without trailing hash,

  84. 	// e.g. https://try.gogs.io/gogs/gogs/commit/d8a994ef243349f321568f9e36d5c3f444b99cae#diff-2

  85. 	CommitPattern = regexp.MustCompile(`(\s|^)https?.*commit/[0-9a-zA-Z]+(#+[0-9a-zA-Z-]*)?`)

  86. 

  87. 	// IssueFullPattern matches link to an issue with or without trailing hash,

  88. 	// e.g. https://try.gogs.io/gogs/gogs/issues/4#issue-685

  89. 	IssueFullPattern = regexp.MustCompile(`(\s|^)https?.*issues/[0-9]+(#+[0-9a-zA-Z-]*)?`)

  90. 	// IssueNumericPattern matches string that references to a numeric issue, e.g. #1287

  91. 	IssueNumericPattern = regexp.MustCompile(`( |^|\()#[0-9]+\b`)

  92. 	// IssueAlphanumericPattern matches string that references to an alphanumeric issue, e.g. ABC-1234

  93. 	IssueAlphanumericPattern = regexp.MustCompile(`( |^|\()[A-Z]{1,10}-[1-9][0-9]*\b`)

  94. 

  95. 	// Sha1CurrentPattern matches string that represents a commit SHA, e.g. d8a994ef243349f321568f9e36d5c3f444b99cae

  96. 	// FIXME: this pattern matches pure numbers as well, right now we do a hack to check in RenderSha1CurrentPattern

  97. 	// by converting string to a number.

  98. 	Sha1CurrentPattern = regexp.MustCompile(`\b[0-9a-f]{40}\b`)

  99. )

  100. 

  101. // FindAllMentions matches mention patterns in given content

  102. // and returns a list of found user names without @ prefix.

  103. func FindAllMentions(content string) []string {

  104. 	mentions := MentionPattern.FindAllString(content, -1)

  105. 	for i := range mentions {

  106. 		mentions[i] = mentions[i][strings.Index(mentions[i], "@")+1:] // Strip @ character

  107. 	}

  108. 	return mentions

  109. }

  110. 

  111. // Renderer is a extended version of underlying render object.

  112. type Renderer struct {

  113. 	blackfriday.Renderer

  114. 	urlPrefix string

  115. }

  116. 

  117. // Link defines how formal links should be processed to produce corresponding HTML elements.

  118. func (r *Renderer) Link(out *bytes.Buffer, link []byte, title []byte, content []byte) {

  119. 	if len(link) > 0 && !isLink(link) {

  120. 		if link[0] != '#' {

  121. 			link = []byte(path.Join(r.urlPrefix, string(link)))

  122. 		}

  123. 	}

  124. 

  125. 	r.Renderer.Link(out, link, title, content)

  126. }

  127. 

  128. // AutoLink defines how auto-detected links should be processed to produce corresponding HTML elements.

  129. // Reference for kind: https://github.com/russross/blackfriday/blob/master/markdown.go#L69-L76

  130. func (r *Renderer) AutoLink(out *bytes.Buffer, link []byte, kind int) {

  131. 	if kind != blackfriday.LINK_TYPE_NORMAL {

  132. 		r.Renderer.AutoLink(out, link, kind)

  133. 		return

  134. 	}

  135. 

  136. 	// Since this method could only possibly serve one link at a time,

  137. 	// we do not need to find all.

  138. 	if bytes.HasPrefix(link, []byte(setting.AppURL)) {

  139. 		m := CommitPattern.Find(link)

  140. 		if m != nil {

  141. 			m = bytes.TrimSpace(m)

  142. 			i := strings.Index(string(m), "commit/")

  143. 			j := strings.Index(string(m), "#")

  144. 			if j == -1 {

  145. 				j = len(m)

  146. 			}

  147. 			out.WriteString(fmt.Sprintf(` <code><a href="%s">%s</a></code>`, m, base.ShortSha(string(m[i+7:j]))))

  148. 			return

  149. 		}

  150. 

  151. 		m = IssueFullPattern.Find(link)

  152. 		if m != nil {

  153. 			m = bytes.TrimSpace(m)

  154. 			i := strings.Index(string(m), "issues/")

  155. 			j := strings.Index(string(m), "#")

  156. 			if j == -1 {

  157. 				j = len(m)

  158. 			}

  159. 			out.WriteString(fmt.Sprintf(`<a href="%s">#%s</a>`, m, base.ShortSha(string(m[i+7:j]))))

  160. 			return

  161. 		}

  162. 	}

  163. 

  164. 	r.Renderer.AutoLink(out, link, kind)

  165. }

  166. 

  167. // ListItem defines how list items should be processed to produce corresponding HTML elements.

  168. func (r *Renderer) ListItem(out *bytes.Buffer, text []byte, flags int) {

  169. 	// Detect procedures to draw checkboxes.

  170. 	switch {

  171. 	case bytes.HasPrefix(text, []byte("[ ] ")):

  172. 		text = append([]byte(`<input type="checkbox" disabled="" />`), text[3:]...)

  173. 	case bytes.HasPrefix(text, []byte("[x] ")):

  174. 		text = append([]byte(`<input type="checkbox" disabled="" checked="" />`), text[3:]...)

  175. 	}

  176. 	r.Renderer.ListItem(out, text, flags)

  177. }

  178. 

  179. // Note: this section is for purpose of increase performance and

  180. // reduce memory allocation at runtime since they are constant literals.

  181. var (

  182. 	svgSuffix         = []byte(".svg")

  183. 	svgSuffixWithMark = []byte(".svg?")

  184. 	spaceBytes        = []byte(" ")

  185. 	spaceEncodedBytes = []byte("%20")

  186. 	space             = " "

  187. 	spaceEncoded      = "%20"

  188. )

  189. 

  190. // Image defines how images should be processed to produce corresponding HTML elements.

  191. func (r *Renderer) Image(out *bytes.Buffer, link []byte, title []byte, alt []byte) {

  192. 	prefix := strings.Replace(r.urlPrefix, "/src/", "/raw/", 1)

  193. 	if len(link) > 0 {

  194. 		if isLink(link) {

  195. 			// External link with .svg suffix usually means CI status.

  196. 			// TODO: define a keyword to allow non-svg images render as external link.

  197. 			if bytes.HasSuffix(link, svgSuffix) || bytes.Contains(link, svgSuffixWithMark) {

  198. 				r.Renderer.Image(out, link, title, alt)

  199. 				return

  200. 			}

  201. 		} else {

  202. 			if link[0] != '/' {

  203. 				prefix += "/"

  204. 			}

  205. 			link = bytes.Replace([]byte((prefix + string(link))), spaceBytes, spaceEncodedBytes, -1)

  206. 			fmt.Println(333, string(link))

  207. 		}

  208. 	}

  209. 

  210. 	out.WriteString(`<a href="`)

  211. 	out.Write(link)

  212. 	out.WriteString(`">`)

  213. 	r.Renderer.Image(out, link, title, alt)

  214. 	out.WriteString("</a>")

  215. }

  216. 

  217. // cutoutVerbosePrefix cutouts URL prefix including sub-path to

  218. // return a clean unified string of request URL path.

  219. func cutoutVerbosePrefix(prefix string) string {

  220. 	if len(prefix) == 0 || prefix[0] != '/' {

  221. 		return prefix

  222. 	}

  223. 	count := 0

  224. 	for i := 0; i < len(prefix); i++ {

  225. 		if prefix[i] == '/' {

  226. 			count++

  227. 		}

  228. 		if count >= 3+setting.AppSubURLDepth {

  229. 			return prefix[:i]

  230. 		}

  231. 	}

  232. 	return prefix

  233. }

  234. 

  235. // RenderIssueIndexPattern renders issue indexes to corresponding links.

  236. func RenderIssueIndexPattern(rawBytes []byte, urlPrefix string, metas map[string]string) []byte {

  237. 	urlPrefix = cutoutVerbosePrefix(urlPrefix)

  238. 

  239. 	pattern := IssueNumericPattern

  240. 	if metas["style"] == IssueNameStyleAlphanumeric {

  241. 		pattern = IssueAlphanumericPattern

  242. 	}

  243. 

  244. 	ms := pattern.FindAll(rawBytes, -1)

  245. 	for _, m := range ms {

  246. 		if m[0] == ' ' || m[0] == '(' {

  247. 			m = m[1:] // ignore leading space or opening parentheses

  248. 		}

  249. 		var link string

  250. 		if metas == nil {

  251. 			link = fmt.Sprintf(`<a href="%s/issues/%s">%s</a>`, urlPrefix, m[1:], m)

  252. 		} else {

  253. 			// Support for external issue tracker

  254. 			if metas["style"] == IssueNameStyleAlphanumeric {

  255. 				metas["index"] = string(m)

  256. 			} else {

  257. 				metas["index"] = string(m[1:])

  258. 			}

  259. 			link = fmt.Sprintf(`<a href="%s">%s</a>`, com.Expand(metas["format"], metas), m)

  260. 		}

  261. 		rawBytes = bytes.Replace(rawBytes, m, []byte(link), 1)

  262. 	}

  263. 	return rawBytes

  264. }

  265. 

  266. // RenderSha1CurrentPattern renders SHA1 strings to corresponding links that assumes in the same repository.

  267. func RenderSha1CurrentPattern(rawBytes []byte, urlPrefix string) []byte {

  268. 	return []byte(Sha1CurrentPattern.ReplaceAllStringFunc(string(rawBytes[:]), func(m string) string {

  269. 		if com.StrTo(m).MustInt() > 0 {

  270. 			return m

  271. 		}

  272. 		return fmt.Sprintf(`<a href="%s/commit/%s"><code>%s</code></a>`, urlPrefix, m, base.ShortSha(string(m)))

  273. 	}))

  274. }

  275. 

  276. // RenderSpecialLink renders mentions, indexes and SHA1 strings to corresponding links.

  277. func RenderSpecialLink(rawBytes []byte, urlPrefix string, metas map[string]string) []byte {

  278. 	ms := MentionPattern.FindAll(rawBytes, -1)

  279. 	for _, m := range ms {

  280. 		m = m[bytes.Index(m, []byte("@")):]

  281. 		rawBytes = bytes.Replace(rawBytes, m,

  282. 			[]byte(fmt.Sprintf(`<a href="%s/%s">%s</a>`, setting.AppSubURL, m[1:], m)), -1)

  283. 	}

  284. 

  285. 	rawBytes = RenderIssueIndexPattern(rawBytes, urlPrefix, metas)

  286. 	rawBytes = RenderSha1CurrentPattern(rawBytes, urlPrefix)

  287. 	return rawBytes

  288. }

  289. 

  290. // RenderRaw renders Markdown to HTML without handling special links.

  291. func RenderRaw(body []byte, urlPrefix string) []byte {

  292. 	htmlFlags := 0

  293. 	htmlFlags |= blackfriday.HTML_SKIP_STYLE

  294. 	htmlFlags |= blackfriday.HTML_OMIT_CONTENTS

  295. 	renderer := &Renderer{

  296. 		Renderer:  blackfriday.HtmlRenderer(htmlFlags, "", ""),

  297. 		urlPrefix: urlPrefix,

  298. 	}

  299. 

  300. 	// set up the parser

  301. 	extensions := 0

  302. 	extensions |= blackfriday.EXTENSION_NO_INTRA_EMPHASIS

  303. 	extensions |= blackfriday.EXTENSION_TABLES

  304. 	extensions |= blackfriday.EXTENSION_FENCED_CODE

  305. 	extensions |= blackfriday.EXTENSION_AUTOLINK

  306. 	extensions |= blackfriday.EXTENSION_STRIKETHROUGH

  307. 	extensions |= blackfriday.EXTENSION_SPACE_HEADERS

  308. 	extensions |= blackfriday.EXTENSION_NO_EMPTY_LINE_BEFORE_BLOCK

  309. 

  310. 	if setting.Markdown.EnableHardLineBreak {

  311. 		extensions |= blackfriday.EXTENSION_HARD_LINE_BREAK

  312. 	}

  313. 

  314. 	body = blackfriday.Markdown(body, renderer, extensions)

  315. 	return body

  316. }

  317. 

  318. var (

  319. 	leftAngleBracket  = []byte("</")

  320. 	rightAngleBracket = []byte(">")

  321. )

  322. 

  323. var noEndTags = []string{"img", "input", "br", "hr"}

  324. 

  325. // PostProcess treats different types of HTML differently,

  326. // and only renders special links for plain text blocks.

  327. func PostProcess(rawHTML []byte, urlPrefix string, metas map[string]string) []byte {

  328. 	startTags := make([]string, 0, 5)

  329. 	var buf bytes.Buffer

  330. 	tokenizer := html.NewTokenizer(bytes.NewReader(rawHTML))

  331. 

  332. OUTER_LOOP:

  333. 	for html.ErrorToken != tokenizer.Next() {

  334. 		token := tokenizer.Token()

  335. 		switch token.Type {

  336. 		case html.TextToken:

  337. 			buf.Write(RenderSpecialLink([]byte(token.String()), urlPrefix, metas))

  338. 

  339. 		case html.StartTagToken:

  340. 			buf.WriteString(token.String())

  341. 			tagName := token.Data

  342. 			// If this is an excluded tag, we skip processing all output until a close tag is encountered.

  343. 			if strings.EqualFold("a", tagName) || strings.EqualFold("code", tagName) || strings.EqualFold("pre", tagName) {

  344. 				stackNum := 1

  345. 				for html.ErrorToken != tokenizer.Next() {

  346. 					token = tokenizer.Token()

  347. 

  348. 					// Copy the token to the output verbatim

  349. 					buf.WriteString(token.String())

  350. 

  351. 					if token.Type == html.StartTagToken {

  352. 						stackNum++

  353. 					}

  354. 

  355. 					// If this is the close tag to the outer-most, we are done

  356. 					if token.Type == html.EndTagToken {

  357. 						stackNum--

  358. 

  359. 						if stackNum <= 0 && strings.EqualFold(tagName, token.Data) {

  360. 							break

  361. 						}

  362. 					}

  363. 				}

  364. 				continue OUTER_LOOP

  365. 			}

  366. 

  367. 			if !com.IsSliceContainsStr(noEndTags, token.Data) {

  368. 				startTags = append(startTags, token.Data)

  369. 			}

  370. 

  371. 		case html.EndTagToken:

  372. 			if len(startTags) == 0 {

  373. 				buf.WriteString(token.String())

  374. 				break

  375. 			}

  376. 

  377. 			buf.Write(leftAngleBracket)

  378. 			buf.WriteString(startTags[len(startTags)-1])

  379. 			buf.Write(rightAngleBracket)

  380. 			startTags = startTags[:len(startTags)-1]

  381. 		default:

  382. 			buf.WriteString(token.String())

  383. 		}

  384. 	}

  385. 

  386. 	if io.EOF == tokenizer.Err() {

  387. 		return buf.Bytes()

  388. 	}

  389. 

  390. 	// If we are not at the end of the input, then some other parsing error has occurred,

  391. 	// so return the input verbatim.

  392. 	return rawHTML

  393. }

  394. 

  395. // Render renders Markdown to HTML with special links.

  396. func Render(rawBytes []byte, urlPrefix string, metas map[string]string) []byte {

  397. 	urlPrefix = strings.Replace(urlPrefix, space, spaceEncoded, -1)

  398. 	result := RenderRaw(rawBytes, urlPrefix)

  399. 	result = PostProcess(result, urlPrefix, metas)

  400. 	result = Sanitizer.SanitizeBytes(result)

  401. 	return result

  402. }

  403. 

  404. // RenderString renders Markdown to HTML with special links and returns string type.

  405. func RenderString(raw, urlPrefix string, metas map[string]string) string {

  406. 	return string(Render([]byte(raw), urlPrefix, metas))

  407. }