Support more HTML elements and CSS attributes and fix CSS filter crashes

src/freenet/client/filter/CSSTokenizerFilter.java

@@ -25,7 +25,6 @@
 import freenet.support.Fields;
 import freenet.support.Logger;
 import freenet.support.api.Bucket;
-import freenet.support.io.Closer;
 import freenet.support.io.FileBucket;
 
 /** Comprehensive CSS2.1 filter. The old jflex-based filter was very far
@@ -1030,7 +1029,7 @@ else if("font-family".equalsIgnoreCase(element))
 		}
 		else if("font-size".equalsIgnoreCase(element))
 		{
-			elementVerifiers.put(element,new CSSPropertyVerifier(Arrays.asList("xx-small","x-small","small","medium","large","x-large","xx-large","larger","smaller"),ElementInfo.VISUALMEDIA,Arrays.asList("le","pe")));
+			elementVerifiers.put(element,new CSSPropertyVerifier(Arrays.asList("xx-small","x-small","small","medium","large","x-large","xx-large","xxx-large","larger","smaller"),ElementInfo.VISUALMEDIA,Arrays.asList("le","pe")));
 			allelementVerifiers.remove(element);
 		}
 		else if("font-style".equalsIgnoreCase(element))
@@ -4871,18 +4870,15 @@ public static void main(String arg[]) throws Throwable {
 		fout.delete();
 		final Bucket inputBucket = new FileBucket(fin, true, false, false, false);
 		final Bucket outputBucket = new FileBucket(fout, false, true, false, false);
-		InputStream inputStream = null;
-		OutputStream outputStream = null;
-		try {
-			inputStream = inputBucket.getInputStream();
-			outputStream = outputBucket.getOutputStream();
+		try (
+			InputStream inputStream = inputBucket.getInputStream();
+			OutputStream outputStream = outputBucket.getOutputStream()
+		) {
 			Logger.setupStdoutLogging(Logger.LogLevel.DEBUG, "");
 
 			ContentFilter.filter(inputStream, outputStream, "text/css",
 					new URI("http://127.0.0.1:8888/freenet:USK@ZupQjDFZSc3I4orBpl1iTEAPZKo2733RxCUbZ2Q7iH0,EO8Tuf8SP3lnDjQdAPdCM2ve2RaUEN8m-hod3tQ5oQE,AQACAAE/jFreesite/19/Style/"), null, null, null, null);
 		} finally {
-			Closer.close(inputStream);
-			Closer.close(outputStream);
 			inputBucket.free();
 			outputBucket.free();
 		}

src/freenet/client/filter/ElementInfo.java

@@ -184,7 +184,7 @@ public class ElementInfo {
 			"visited", // privacy risk (see BANNED_PSEUDOCLASS below)
 			"hover",
 			"active",
-			"checked",
+			"checked", // forms
 			"focus",
 			"focus-within",
 			"first-line",
@@ -193,23 +193,23 @@ public class ElementInfo {
 			"after",
 			"target",
 			"any-link",
-			"default",
+			"default", // forms
 			"defined", // Javascript only (BANNED_PSEUDOCLASS)
 			"disabled", // forms
 			"empty",
 			"enabled", // forms
 			"focus-visible",
 			"indeterminate", // forms
-			"in-range",
-			"invalid",
+			"in-range", // forms
+			"invalid", // forms
 			"only-child",
 			"only-of-type",
-			"optional",
-			"out-of-range",
-			"placeholder-shown",
-			"read-only",
-			"read-write",
-			"required",
+			"optional", // forms
+			"out-of-range", // forms
+			"placeholder-shown", // forms
+			"read-only", // forms
+			"read-write", // forms
+			"required", // forms
 			"root"
 	)));
 
@@ -427,11 +427,16 @@ public static boolean isBannedPseudoClass(String cname)
 				// Pseudo-classes can be chained, at least dynamic ones can, see CSS2.1 section 5.11.3
 				String[] split = cname.split(":");
 				for(String s : split)
-					if(isBannedPseudoClass(s)) return true;
+					if(isBannedPseudoClass2(s)) return true;
 				return false;
+			} else {
+				return isBannedPseudoClass2(cname);
 			}
-			cname=cname.toLowerCase();
-			return BANNED_PSEUDOCLASS.contains(cname);
+		}
+
+		private static boolean isBannedPseudoClass2(String cname)
+		{
+			return BANNED_PSEUDOCLASS.contains(cname.toLowerCase());
 		}
 
 		public static boolean isValidPseudoClass(String cname)
@@ -440,20 +445,23 @@ public static boolean isValidPseudoClass(String cname)
 				// Pseudo-classes can be chained, at least dynamic ones can, see CSS2.1 section 5.11.3
 				String[] split = cname.split(":");
 				for(String s : split)
-					if(!isValidPseudoClass(s)) return false;
+					if(!isValidPseudoClass2(s)) return false;
 				return true;
+			} else {
+				return isValidPseudoClass2(cname);
 			}
+		}
+
+		private static boolean isValidPseudoClass2(String cname)
+		{
 			cname=cname.toLowerCase();
 			if(PSEUDOCLASS.contains(cname))
 				return true;
-
-
 			else if(cname.startsWith("lang") && Pattern.matches("[\\w\\-*]{1,30}", getPseudoClassArg(cname, "lang")))
 			{
 				// More than 8000 valid BCP-47 language codes. Just let through all of them.
 				return true;
 			}
-
 			else if(cname.startsWith("nth-child") && FilterUtils.isNth(getPseudoClassArg(cname, "nth-child")))
 				return true;
 			else if(cname.startsWith("nth-last-child") && FilterUtils.isNth(getPseudoClassArg(cname, "nth-last-child")))
@@ -466,7 +474,6 @@ else if(cname.startsWith("dir")) {
 				String arg = getPseudoClassArg(cname, "dir");
 				return arg.equalsIgnoreCase("ltr") || arg.equalsIgnoreCase("rtl");
 			}
-
 			return false;
 		}
 

test/freenet/client/filter/CSSParserTest.java

@@ -235,12 +235,58 @@ public class CSSParserTest {
 	static {
 		CSS_SELECTOR_LEVEL4.put("div:dir(ltr) {}", "div:dir(ltr)");
 		CSS_SELECTOR_LEVEL4.put("div:dir(rtl) {}", "div:dir(rtl)");
+		CSS_SELECTOR_LEVEL4.put(":target {}", ":target");
+		CSS_SELECTOR_LEVEL4.put(":any-link {}", ":any-link");
+		CSS_SELECTOR_LEVEL4.put(":empty {}", ":empty");
+		CSS_SELECTOR_LEVEL4.put(":focus-visible {}", ":focus-visible");
+		CSS_SELECTOR_LEVEL4.put(":only-child {}", ":only-child");
+		CSS_SELECTOR_LEVEL4.put(":only-of-type {}", ":only-of-type");
+		CSS_SELECTOR_LEVEL4.put(":root {font-size: xxx-large;}", ":root {font-size: xxx-large;}");
+		// forms
+		CSS_SELECTOR_LEVEL4.put("input:default {}", "input:default");
+		CSS_SELECTOR_LEVEL4.put("input:disabled {}", "input:disabled");
+		CSS_SELECTOR_LEVEL4.put("input:enabled {}", "input:enabled");
+		CSS_SELECTOR_LEVEL4.put("input:indeterminate {}", "input:indeterminate");
+		CSS_SELECTOR_LEVEL4.put("input:in-range {}", "input:in-range");
+		CSS_SELECTOR_LEVEL4.put("input:invalid {}", "input:invalid");
+		CSS_SELECTOR_LEVEL4.put("input:optional {}", "input:optional");
+		CSS_SELECTOR_LEVEL4.put("input:out-of-range {}", "input:out-of-range");
+		CSS_SELECTOR_LEVEL4.put("input:placeholder-shown {}", "input:placeholder-shown");
+		CSS_SELECTOR_LEVEL4.put("input:read-only {}", "input:read-only");
+		CSS_SELECTOR_LEVEL4.put("input:read-write {}", "input:read-write");
+		CSS_SELECTOR_LEVEL4.put("input:required {}", "input:required");
 	}
 
 	private final static HashSet<String> CSS_BAD_SELECTOR_LEVEL4= new HashSet<>();
 	static {
+		// not dir
 		CSS_BAD_SELECTOR_LEVEL4.add("div:bidir(ltr) {}");
-		CSS_BAD_SELECTOR_LEVEL4.add("div:dir {}"); // missing ltr or rtl
+		// missing ltr or rtl
+		CSS_BAD_SELECTOR_LEVEL4.add("div:dir {}");
+		// these selectors don't have arguments
+		CSS_BAD_SELECTOR_LEVEL4.add(":target() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":any-link() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":empty() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":focus-visible() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":only-child() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":only-of-type() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":root() {}");
+		// these forms selectors don't have arguments
+		CSS_BAD_SELECTOR_LEVEL4.add("input:default() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:disabled() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:enabled() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:indeterminate() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:in-range() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:invalid() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:optional() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:out-of-range() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:placeholder-shown() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:read-only() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:read-write() {}");
+		CSS_BAD_SELECTOR_LEVEL4.add("input:required() {}");
+		// banned
+		CSS_BAD_SELECTOR_LEVEL4.add(":defined {}");
+		CSS_BAD_SELECTOR_LEVEL4.add(":defined() {}");
 	}
 
 	private static final String CSS_STRING_NEWLINES = "* { content: \"this string does not terminate\n}\nbody {\nbackground: url(http://www.google.co.uk/intl/en_uk/images/logo.gif); }\n\" }";