Merge pull request #3797 from rabuzarus/20171015_-_duplicate_event

[friendica.git] / tests / xss_filter_test.php

diff --git a/tests/xss_filter_test.php b/tests/xss_filter_test.php
index d7dcf0472bd698c84df6487d7d1144b2d0e7b1d3..5bc8e0ad3f068e0b4b8fae1d23bf31cfbee736b4 100644 (file)
--- a/tests/xss_filter_test.php
+++ b/tests/xss_filter_test.php
@@ -1,7 +1,7 @@
 <?php
 /**
  * tests several functions which are used to prevent xss attacks
- * 
+ *
  * @package test.util
  */
 
@@ -27,12 +27,33 @@ class AntiXSSTest extends PHPUnit_Framework_TestCase {
         */
        public function testXmlify() {
                $text="<tag>I want to break\n this!11!<?hard?></tag>";
-               $xml=xmlify($text); //test whether it actually may be part of a xml document
+               $xml=xmlify($text);
                $retext=unxmlify($text);
 
                $this->assertEquals($text, $retext);
        }
 
+       /**
+        * xmlify and put in a document
+        */
+       public function testXmlifyDocument() {
+               $tag="<tag>I want to break</tag>";
+               $xml=xmlify($tag);
+               $text='<text>'.$xml.'</text>';
+
+               $xml_parser=xml_parser_create();
+               //should be possible to parse it
+               $values=array(); $index=array();
+               $this->assertEquals(1, xml_parse_into_struct($xml_parser, $text, $values, $index));
+
+               $this->assertEquals(array('TEXT'=>array(0)),
+                               $index);
+               $this->assertEquals(array(array('tag'=>'TEXT', 'type'=>'complete', 'level'=>1, 'value'=>$tag)),
+                               $values);
+
+               xml_parser_free($xml_parser);
+       }
+
        /**
         * test hex2bin and reverse
         */
@@ -47,4 +68,3 @@ class AntiXSSTest extends PHPUnit_Framework_TestCase {
        //get_mentions
        //get_contact_block, bis Zeile 538
 }
-?>