public class org.owasp.validator.html.scan.AntiSamyDOMScanner extends org.owasp.validator.html.scan.AbstractAntiSamyScanner { private org.w3c.dom.Document document; private org.w3c.dom.DocumentFragment dom; private org.owasp.validator.html.CleanResults results; private static final int maxDepth; private static final java.util.regex.Pattern invalidXmlCharacters; private static final java.util.regex.Pattern conditionalDirectives; private static final java.util.Queue cachedItems; static void () { java.util.regex.Pattern v, v; java.util.concurrent.ConcurrentLinkedQueue v; v = staticinvoke ("[\\u0000-\\u001F\\uD800-\\uDFFF\\uFFFE-\\uFFFF&&[^\\u0009\\u000A\\u000D]]"); = v; v = staticinvoke ("?"); = v; v = new java.util.concurrent.ConcurrentLinkedQueue; specialinvoke v.()>(); = v; return; } public void (org.owasp.validator.html.Policy) { org.w3c.dom.DocumentFragment v; org.owasp.validator.html.Policy v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Document v; org.htmlunit.cyberneko.xerces.dom.DocumentImpl v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.owasp.validator.html.Policy; specialinvoke v.(org.owasp.validator.html.Policy)>(v); v = new org.htmlunit.cyberneko.xerces.dom.DocumentImpl; specialinvoke v.()>(); v. = v; v = v.; v = interfaceinvoke v.(); v. = v; v. = null; return; } public void () throws org.owasp.validator.html.PolicyException { org.w3c.dom.DocumentFragment v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Document v; org.htmlunit.cyberneko.xerces.dom.DocumentImpl v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; specialinvoke v.()>(); v = new org.htmlunit.cyberneko.xerces.dom.DocumentImpl; specialinvoke v.()>(); v. = v; v = v.; v = interfaceinvoke v.(); v. = v; v. = null; return; } public org.owasp.validator.html.CleanResults scan(java.lang.String) throws org.owasp.validator.html.ScanException { java.lang.Integer v, v; java.lang.NullPointerException v; java.util.regex.Matcher v; org.owasp.validator.html.scan.AntiSamyDOMScanner$1 v; boolean v, v, v; org.htmlunit.cyberneko.parsers.DOMFragmentParser v; org.owasp.validator.html.CleanResults v, v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.apache.xml.serialize.HTMLSerializer v; java.lang.Exception v, v; org.w3c.dom.DocumentFragment v, v, v, v; java.util.List v, v, v; java.util.Queue v, v; java.lang.Object[] v; org.owasp.validator.html.scan.AntiSamyDOMScanner$CachedItem v; org.owasp.validator.html.InternalPolicy v, v, v, v; long v; org.owasp.validator.html.ScanException v, v, v, v; java.lang.StringBuffer v; int v, v, v; java.lang.String v, v, v, v; org.xml.sax.InputSource v; java.io.StringWriter v; org.apache.xml.serialize.OutputFormat v; java.io.StringReader v; java.lang.Object v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: java.lang.String; if v != null goto label; v = new org.owasp.validator.html.ScanException; v = new java.lang.NullPointerException; specialinvoke v.(java.lang.String)>("Null HTML input"); specialinvoke v.(java.lang.Exception)>(v); throw v; label: v = v.; interfaceinvoke v.(); v = v.; v = virtualinvoke v.(); v = virtualinvoke v.(); if v >= v goto label; v = newarray (java.lang.Object)[2]; v = virtualinvoke v.(); v = staticinvoke (v); v[0] = v; v = staticinvoke (v); v[1] = v; virtualinvoke v.("error.size.toolarge", v); v = new org.owasp.validator.html.ScanException; v = v.; v = interfaceinvoke v.(0); specialinvoke v.(java.lang.String)>(v); throw v; label: v = v.; v = virtualinvoke v.(); v. = v; v = v.; v = virtualinvoke v.(); v. = v; v = v.; v = virtualinvoke v.(); v. = v; v = staticinvoke (); label: v = ; v = interfaceinvoke v.(); if v != null goto label; v = new org.owasp.validator.html.scan.AntiSamyDOMScanner$CachedItem; specialinvoke v.()>(); v = v; label: v = v.; v = specialinvoke v.(v, v); v = virtualinvoke v.(); label: v = new org.xml.sax.InputSource; v = new java.io.StringReader; specialinvoke v.(java.lang.String)>(v); specialinvoke v.(java.io.Reader)>(v); v = v.; virtualinvoke v.(v, v); label: goto label; label: v := @caughtexception; v = new org.owasp.validator.html.ScanException; specialinvoke v.(java.lang.Exception)>(v); throw v; label: v = v.; specialinvoke v.(v, 0); v = new java.io.StringWriter; specialinvoke v.()>(); v = virtualinvoke v.(); v = virtualinvoke v.(v, v); v = v.; virtualinvoke v.(v); v = virtualinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(v, v); v = new org.owasp.validator.html.scan.AntiSamyDOMScanner$1; specialinvoke v.(org.owasp.validator.html.scan.AntiSamyDOMScanner,java.lang.String)>(v, v); v = new org.owasp.validator.html.CleanResults; v = v.; v = v.; specialinvoke v.(long,java.util.concurrent.Callable,org.w3c.dom.DocumentFragment,java.util.List)>(v, v, v, v); v. = v; v = ; interfaceinvoke v.(v); v = v.; label: return v; label: v := @caughtexception; v = new org.owasp.validator.html.ScanException; specialinvoke v.(java.lang.Exception)>(v); throw v; catch java.lang.Exception from label to label with label; catch org.xml.sax.SAXException from label to label with label; catch java.io.IOException from label to label with label; } static org.htmlunit.cyberneko.parsers.DOMFragmentParser getDomParser() throws org.xml.sax.SAXNotRecognizedException, org.xml.sax.SAXNotSupportedException { org.htmlunit.cyberneko.parsers.DOMFragmentParser v; v = new org.htmlunit.cyberneko.parsers.DOMFragmentParser; specialinvoke v.()>(); virtualinvoke v.("http://cyberneko.org/html/properties/names/elems", "lower"); virtualinvoke v.("http://cyberneko.org/html/features/scanner/style/strip-cdata-delims", 0); virtualinvoke v.("http://cyberneko.org/html/features/scanner/cdata-sections", 1); return v; } private void recursiveValidateTag(org.w3c.dom.Node, int) throws org.owasp.validator.html.ScanException { java.lang.Object[] v; org.owasp.validator.html.InternalPolicy v, v, v; short v; org.owasp.validator.html.ScanException v; org.w3c.dom.Node v, v; int v, v, v; java.lang.String v, v, v; org.owasp.validator.html.model.Tag v, v; boolean v, v, v, v, v, v, v, v, v, v, v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v := @parameter: int; v = v + 1; if v <= 250 goto label; v = new org.owasp.validator.html.ScanException; specialinvoke v.(java.lang.String)>("Too many nested tags"); throw v; label: v = v instanceof org.w3c.dom.Comment; if v == 0 goto label; specialinvoke v.(v); return; label: v = v instanceof org.w3c.dom.Element; v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); if v != 0 goto label; v = specialinvoke v.(v); if v == 0 goto label; return; label: v = v instanceof org.w3c.dom.Text; if v == 0 goto label; v = interfaceinvoke v.(); if 4 != v goto label; specialinvoke v.(v); return; label: v = v instanceof org.w3c.dom.ProcessingInstruction; if v == 0 goto label; specialinvoke v.(v); label: if v != 0 goto label; return; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = virtualinvoke v.(); v = v.; v = virtualinvoke v.(v); v = v.; v = virtualinvoke v.(); v = specialinvoke v.(v, v, v); if v == 0 goto label; v = ; label: if v != null goto label; v = v.; v = virtualinvoke v.(); if v != 0 goto label; label: if v == null goto label; v = virtualinvoke v.("encode"); if v == 0 goto label; label: specialinvoke v.(v, v, v, v); goto label; label: if v == null goto label; v = virtualinvoke v.("filter"); if v == 0 goto label; label: specialinvoke v.(v, v, v, v, v); goto label; label: v = virtualinvoke v.("validate"); if v == 0 goto label; specialinvoke v.(v, v, v, v, v, v, v, v, v); goto label; label: v = virtualinvoke v.("truncate"); if v == 0 goto label; specialinvoke v.(v, v, v); goto label; label: v = newarray (java.lang.Object)[1]; v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.tag.removed", v); specialinvoke v.(v); label: return; } private boolean isMasqueradingParam(org.owasp.validator.html.model.Tag, org.owasp.validator.html.model.Tag, java.lang.String) { org.owasp.validator.html.scan.AntiSamyDOMScanner v; java.lang.String v, v; org.owasp.validator.html.model.Tag v, v; boolean v, v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: java.lang.String; if v != null goto label; v = v.; if v == 0 goto label; v = "param"; v = virtualinvoke v.(v); if v == 0 goto label; if v == null goto label; v = virtualinvoke v.("validate"); if v == 0 goto label; return 1; label: return 0; label: return 0; } private void encodeTag(int, org.w3c.dom.Element, java.lang.String, org.w3c.dom.NodeList) throws org.owasp.validator.html.ScanException { java.lang.Object[] v; org.w3c.dom.Element v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; int v; java.lang.String v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: int; v := @parameter: org.w3c.dom.Element; v := @parameter: java.lang.String; v := @parameter: org.w3c.dom.NodeList; v = newarray (java.lang.Object)[1]; v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.tag.encoded", v); specialinvoke v.(v, v); specialinvoke v.(v); return; } private void actionFilter(int, org.w3c.dom.Element, java.lang.String, org.owasp.validator.html.model.Tag, org.w3c.dom.NodeList) throws org.owasp.validator.html.ScanException { java.lang.Object[] v, v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Element v; int v; java.lang.String v, v, v; org.owasp.validator.html.model.Tag v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: int; v := @parameter: org.w3c.dom.Element; v := @parameter: java.lang.String; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: org.w3c.dom.NodeList; if v != null goto label; v = newarray (java.lang.Object)[1]; v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.tag.notfound", v); goto label; label: v = newarray (java.lang.Object)[1]; v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.tag.filtered", v); label: specialinvoke v.(v, v); specialinvoke v.(v); return; } private void actionValidate(int, org.w3c.dom.Element, org.w3c.dom.Node, java.lang.String, java.lang.String, org.owasp.validator.html.model.Tag, boolean, org.owasp.validator.html.model.Tag, org.w3c.dom.NodeList) throws org.owasp.validator.html.ScanException { org.owasp.validator.html.model.Tag v, v, v; boolean v, v, v, v, v, v, v, v, v, v, v, v, v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.owasp.validator.html.InternalPolicy v; org.w3c.dom.Node v, v, v; int v; org.w3c.dom.NamedNodeMap v, v; java.lang.String v, v, v, v, v, v, v, v, v, v, v, v, v; org.w3c.dom.NodeList v; org.w3c.dom.Element v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: int; v := @parameter: org.w3c.dom.Element; v := @parameter: org.w3c.dom.Node; v := @parameter: java.lang.String; v := @parameter: java.lang.String; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: boolean; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: org.w3c.dom.NodeList; v = null; if v == 0 goto label; v = interfaceinvoke v.("name"); if v == null goto label; v = ""; v = virtualinvoke v.(v); if v != 0 goto label; v = interfaceinvoke v.("value"); interfaceinvoke v.(v, v); interfaceinvoke v.("name"); interfaceinvoke v.("value"); v = v; label: v = "style"; v = virtualinvoke v.(v); if v == 0 goto label; v = v.; v = virtualinvoke v.(); if v == null goto label; v = specialinvoke v.(v, v); if v == 0 goto label; return; label: v = specialinvoke v.(v, v, v, v); if v == 0 goto label; return; label: v = "a"; v = virtualinvoke v.(v); if v == 0 goto label; v = v.; v = 0; v = v.; if v == 0 goto label; v = interfaceinvoke v.(); v = interfaceinvoke v.("target"); if v == null goto label; v = interfaceinvoke v.(); v = virtualinvoke v.("_blank"); if v == 0 goto label; v = 1; label: v = interfaceinvoke v.(); v = interfaceinvoke v.("rel"); v = v; if v != null goto label; v = ""; goto label; label: v = interfaceinvoke v.(); label: v = staticinvoke (v, v, v); v = virtualinvoke v.(); if v != 0 goto label; v = virtualinvoke v.(); interfaceinvoke v.("rel", v); label: specialinvoke v.(v, v); if v == 0 goto label; if v == null goto label; v = ""; v = virtualinvoke v.(v); if v != 0 goto label; v = interfaceinvoke v.(v); interfaceinvoke v.("name", v); interfaceinvoke v.("value", v); interfaceinvoke v.(v); label: return; } private boolean processStyleTag(org.w3c.dom.Element, org.w3c.dom.Node) { boolean v, v; org.owasp.validator.html.CleanResults v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; java.util.List v, v; java.lang.Throwable v; java.lang.Object[] v; org.owasp.validator.html.InternalPolicy v, v, v; java.util.ResourceBundle v; java.lang.StringBuffer v; org.w3c.dom.Node v, v, v, v, v; int v, v, v, v, v, v; java.lang.String v, v, v, v, v, v; org.w3c.dom.NodeList v, v, v, v; org.owasp.validator.css.CssScanner v; org.w3c.dom.Element v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v := @parameter: org.w3c.dom.Node; v = new org.owasp.validator.css.CssScanner; v = v.; v = ; v = v.; v = virtualinvoke v.(); specialinvoke v.(org.owasp.validator.html.InternalPolicy,java.util.ResourceBundle,boolean)>(v, v, v); label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); if v <= 0 goto label; v = new java.lang.StringBuffer; specialinvoke v.()>(); v = 0; goto label; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(v); v = virtualinvoke v.(); if v <= 0 goto label; virtualinvoke v.("\n"); label: v = interfaceinvoke v.(); virtualinvoke v.(v); v = v + 1; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(); if v < v goto label; v = virtualinvoke v.(); v = v.; v = virtualinvoke v.(); v = virtualinvoke v.(v, v); v = v.; v = virtualinvoke v.(); interfaceinvoke v.(v); v = virtualinvoke v.(); if v == null goto label; v = virtualinvoke v.(""); if v == 0 goto label; label: v = "/* */"; goto label; label: v = v; label: v = interfaceinvoke v.(); interfaceinvoke v.(v); v = v - 1; goto label; label: v = interfaceinvoke v.(); v = interfaceinvoke v.(v); interfaceinvoke v.(v); v = v - 1; label: if v >= 1 goto label; label: goto label; label: v := @caughtexception; v = newarray (java.lang.Object)[1]; v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.css.tag.malformed", v); interfaceinvoke v.(v); return 1; label: return 0; catch org.w3c.dom.DOMException from label to label with label; catch org.owasp.validator.html.ScanException from label to label with label; catch org.apache.batik.css.parser.ParseException from label to label with label; catch java.lang.NumberFormatException from label to label with label; } private void actionTruncate(org.w3c.dom.Element, java.lang.String, org.w3c.dom.NodeList) { java.lang.Object[] v; short v; org.w3c.dom.Node v, v, v; int v, v, v, v; org.w3c.dom.NamedNodeMap v; java.lang.String v, v, v, v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Element v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v := @parameter: java.lang.String; v := @parameter: org.w3c.dom.NodeList; v = interfaceinvoke v.(); goto label; label: v = newarray (java.lang.Object)[2]; v[0] = v; v = interfaceinvoke v.(0); v = interfaceinvoke v.(); v = staticinvoke (v); v[1] = v; virtualinvoke v.("error.attribute.notfound", v); v = interfaceinvoke v.(0); v = interfaceinvoke v.(); interfaceinvoke v.(v); label: v = interfaceinvoke v.(); if v > 0 goto label; v = 0; v = 0; v = interfaceinvoke v.(); goto label; label: v = interfaceinvoke v.(v); v = interfaceinvoke v.(); if v == 3 goto label; interfaceinvoke v.(v); goto label; label: v = v + 1; label: v = v + 1; label: if v < v goto label; return; } private boolean processAttributes(org.w3c.dom.Element, java.lang.String, org.owasp.validator.html.model.Tag, int) throws org.owasp.validator.html.ScanException { org.owasp.validator.html.model.Tag v; boolean v, v, v, v, v, v, v; org.owasp.validator.html.CleanResults v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; java.lang.Exception v; java.util.List v, v; org.owasp.validator.html.model.Attribute v; java.lang.Object[] v, v, v, v, v, v; org.owasp.validator.html.InternalPolicy v, v, v, v, v; java.util.ResourceBundle v; org.w3c.dom.Node v; int v, v, v, v; org.w3c.dom.NamedNodeMap v; java.lang.String v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v, v; org.owasp.validator.css.CssScanner v; org.w3c.dom.Element v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v := @parameter: java.lang.String; v := @parameter: org.owasp.validator.html.model.Tag; v := @parameter: int; v = interfaceinvoke v.(); v = 0; goto label; label: v = interfaceinvoke v.(v); v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = virtualinvoke v.(); v = virtualinvoke v.(v); if v != null goto label; v = v.; v = virtualinvoke v.(v); if v != null goto label; v = v.; v = virtualinvoke v.(); if v == 0 goto label; v = v.; v = virtualinvoke v.(v); label: v = "style"; v = virtualinvoke v.(); v = virtualinvoke v.(v); if v == 0 goto label; if v == null goto label; v = new org.owasp.validator.css.CssScanner; v = v.; v = ; specialinvoke v.(org.owasp.validator.html.InternalPolicy,java.util.ResourceBundle,boolean)>(v, v, 0); label: v = v.; v = virtualinvoke v.(); v = virtualinvoke v.(v, v, v); v = virtualinvoke v.(); interfaceinvoke v.(v); v = virtualinvoke v.(); v = v.; interfaceinvoke v.(v); label: goto label; label: v := @caughtexception; v = newarray (java.lang.Object)[2]; v[0] = v; v = interfaceinvoke v.(); v = staticinvoke (v); v[1] = v; virtualinvoke v.("error.css.attribute.malformed", v); v = interfaceinvoke v.(); interfaceinvoke v.(v); v = v - 1; goto label; label: if v == null goto label; v = virtualinvoke v.(); v = virtualinvoke v.(v); if v != 0 goto label; v = virtualinvoke v.(v); if v != 0 goto label; v = virtualinvoke v.(); v = "removeTag"; v = virtualinvoke v.(v); if v == 0 goto label; specialinvoke v.(v); v = newarray (java.lang.Object)[3]; v[0] = v; v = staticinvoke (v); v[1] = v; v = staticinvoke (v); v[2] = v; virtualinvoke v.("error.attribute.invalid.removed", v); return 1; label: v = "filterTag"; v = virtualinvoke v.(v); if v == 0 goto label; specialinvoke v.(v, v); specialinvoke v.(v); v = newarray (java.lang.Object)[3]; v[0] = v; v = staticinvoke (v); v[1] = v; v = staticinvoke (v); v[2] = v; virtualinvoke v.("error.attribute.invalid.filtered", v); return 1; label: v = "encodeTag"; v = virtualinvoke v.(v); if v == 0 goto label; specialinvoke v.(v, v); specialinvoke v.(v); v = newarray (java.lang.Object)[3]; v[0] = v; v = staticinvoke (v); v[1] = v; v = staticinvoke (v); v[2] = v; virtualinvoke v.("error.attribute.invalid.encoded", v); return 1; label: v = interfaceinvoke v.(); interfaceinvoke v.(v); v = v - 1; v = newarray (java.lang.Object)[3]; v[0] = v; v = staticinvoke (v); v[1] = v; v = staticinvoke (v); v[2] = v; virtualinvoke v.("error.attribute.invalid", v); goto label; label: v = newarray (java.lang.Object)[3]; v[0] = v; v = staticinvoke (v); v[1] = v; v = staticinvoke (v); v[2] = v; virtualinvoke v.("error.attribute.notfound", v); v = interfaceinvoke v.(); interfaceinvoke v.(v); v = v - 1; label: v = v + 1; label: v = interfaceinvoke v.(); if v < v goto label; return 0; catch org.w3c.dom.DOMException from label to label with label; catch org.owasp.validator.html.ScanException from label to label with label; } private void processChildren(org.w3c.dom.Node, int) throws org.owasp.validator.html.ScanException { org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v; int v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v := @parameter: int; v = interfaceinvoke v.(); specialinvoke v.(v, v); return; } private void processChildren(org.w3c.dom.NodeList, int) throws org.owasp.validator.html.ScanException { org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v, v; int v, v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.NodeList; v := @parameter: int; v = 0; goto label; label: v = interfaceinvoke v.(v); specialinvoke v.(v, v); v = interfaceinvoke v.(); if v != null goto label; v = v - 1; label: v = v + 1; label: v = interfaceinvoke v.(); if v < v goto label; return; } private void removePI(org.w3c.dom.Node) { java.lang.Object[] v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v; java.lang.String v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v = newarray (java.lang.Object)[1]; v = interfaceinvoke v.(); v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.pi.found", v); specialinvoke v.(v); return; } private void stripCData(org.w3c.dom.Node) { org.w3c.dom.Text v; java.lang.Object[] v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Document v; org.w3c.dom.Node v, v, v; java.lang.String v, v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v = newarray (java.lang.Object)[1]; v = interfaceinvoke v.(); v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.cdata.found", v); v = v.; v = interfaceinvoke v.(); v = interfaceinvoke v.(v); v = interfaceinvoke v.(); interfaceinvoke v.(v, v); v = interfaceinvoke v.(); interfaceinvoke v.(v); return; } private void processCommentNode(org.w3c.dom.Node) { org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.owasp.validator.html.InternalPolicy v; java.util.regex.Matcher v; org.w3c.dom.Node v, v; java.lang.String v, v; java.util.regex.Pattern v; boolean v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v = v.; v = virtualinvoke v.(); if v != 0 goto label; v = interfaceinvoke v.(); interfaceinvoke v.(v); goto label; label: v = interfaceinvoke v.(); if v == null goto label; v = ; v = virtualinvoke v.(v); v = virtualinvoke v.(""); interfaceinvoke v.(v); label: return; } private boolean removeDisallowedEmpty(org.w3c.dom.Node) { java.lang.Object[] v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v; java.lang.String v, v, v; boolean v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v = interfaceinvoke v.(); v = specialinvoke v.(v); if v != 0 goto label; v = newarray (java.lang.Object)[1]; v = interfaceinvoke v.(); v = staticinvoke (v); v[0] = v; virtualinvoke v.("error.tag.empty", v); specialinvoke v.(v); return 1; label: return 0; } private void removeNode(org.w3c.dom.Node) { org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v, v; int v; java.lang.String v; boolean v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Node; v = interfaceinvoke v.(); interfaceinvoke v.(v); v = interfaceinvoke v.(); v = v instanceof org.w3c.dom.Element; if v == 0 goto label; v = interfaceinvoke v.(); v = interfaceinvoke v.(); if v != 0 goto label; v = specialinvoke v.(v); if v != 0 goto label; specialinvoke v.(v); label: return; } private boolean isAllowedEmptyTag(java.lang.String) { org.owasp.validator.html.TagMatcher v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.owasp.validator.html.InternalPolicy v; java.lang.String v, v; boolean v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: java.lang.String; v = "head"; v = virtualinvoke v.(v); if v != 0 goto label; v = v.; v = virtualinvoke v.(); v = virtualinvoke v.(v); if v != 0 goto label; return 0; label: return 1; } private void promoteChildren(org.w3c.dom.Element) { org.w3c.dom.Element v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v = interfaceinvoke v.(); specialinvoke v.(v, v); return; } private void promoteChildren(org.w3c.dom.Element, org.w3c.dom.NodeList) { org.w3c.dom.Element v; org.w3c.dom.NodeList v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Node v, v, v; int v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v := @parameter: org.w3c.dom.NodeList; v = interfaceinvoke v.(); goto label; label: v = interfaceinvoke v.(0); v = interfaceinvoke v.(v); interfaceinvoke v.(v, v); label: v = interfaceinvoke v.(); if v > 0 goto label; if v == null goto label; specialinvoke v.(v); label: return; } private java.lang.String stripNonValidXMLCharacters(java.lang.String, java.util.regex.Matcher) { java.util.regex.Matcher v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; java.lang.String v, v, v; boolean v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: java.lang.String; v := @parameter: java.util.regex.Matcher; if v == null goto label; v = ""; v = virtualinvoke v.(v); if v == 0 goto label; label: return ""; label: virtualinvoke v.(v); v = virtualinvoke v.(); if v == 0 goto label; v = virtualinvoke v.(""); goto label; label: v = v; label: return v; } private void encodeAndPromoteChildren(org.w3c.dom.Element) { org.w3c.dom.Text v, v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Element v; org.w3c.dom.Document v, v; org.w3c.dom.Node v, v; java.lang.StringBuilder v; java.lang.String v, v, v; boolean v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = interfaceinvoke v.(); v = specialinvoke v.(v); v = interfaceinvoke v.(v); interfaceinvoke v.(v, v); v = interfaceinvoke v.(); if v == 0 goto label; v = interfaceinvoke v.(); specialinvoke v.(java.lang.String)>("(v) ("\u0001>"); v = interfaceinvoke v.(v); v = interfaceinvoke v.(); interfaceinvoke v.(v, v); label: specialinvoke v.(v); return; } private java.lang.String toString(org.w3c.dom.Element) { org.w3c.dom.Node v; int v, v; org.w3c.dom.NamedNodeMap v; java.lang.String v, v, v, v, v, v, v; boolean v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; org.w3c.dom.Element v; java.lang.StringBuilder v, v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v := @parameter: org.w3c.dom.Element; v = new java.lang.StringBuilder; specialinvoke v.(java.lang.String)>("<"); v = interfaceinvoke v.(); v = dynamicinvoke "makeConcatWithConstants" (v) ("\u0001"); specialinvoke v.(java.lang.String)>(v); v = interfaceinvoke v.(); v = 0; goto label; label: v = interfaceinvoke v.(v); v = interfaceinvoke v.(); v = interfaceinvoke v.(); virtualinvoke v.(" "); v = staticinvoke (v); virtualinvoke v.(v); virtualinvoke v.("=\""); v = staticinvoke (v); virtualinvoke v.(v); virtualinvoke v.("\""); v = v + 1; label: v = interfaceinvoke v.(); if v < v goto label; v = interfaceinvoke v.(); if v == 0 goto label; virtualinvoke v.(">"); goto label; label: virtualinvoke v.("/>"); label: v = virtualinvoke v.(); return v; } public org.owasp.validator.html.CleanResults getResults() { org.owasp.validator.html.CleanResults v; org.owasp.validator.html.scan.AntiSamyDOMScanner v; v := @this: org.owasp.validator.html.scan.AntiSamyDOMScanner; v = v.; return v; } }