<?php
/**
 * PHPCompatibility, an external standard for PHP_CodeSniffer.
 *
 * @package   PHPCompatibility
 * @copyright 2012-2020 PHPCompatibility Contributors
 * @license   https://opensource.org/licenses/LGPL-3.0 LGPL3
 * @link      https://github.com/PHPCompatibility/PHPCompatibility
 */

namespace PHPCompatibility\Sniffs\TextStrings;

use PHPCompatibility\Helpers\ScannedCode;
use PHPCompatibility\Sniff;
use PHP_CodeSniffer\Files\File;
use PHPCSUtils\Utils\GetTokensAsString;
use PHPCSUtils\Utils\TextStrings;

/**
 * PHP 7.0 introduced a Unicode codepoint escape sequence.
 *
 * Strings containing a literal `\u{` followed by an invalid sequence will cause a
 * fatal error as of PHP 7.0.
 *
 * PHP version 7.0
 *
 * @link https://www.php.net/manual/en/migration70.new-features.php#migration70.new-features.unicode-codepoint-escape-syntax
 * @link https://www.php.net/manual/en/migration70.incompatible.php#migration70.incompatible.strings.unicode-escapes
 * @link https://wiki.php.net/rfc/unicode_escape
 * @link https://www.php.net/manual/en/language.types.string.php#language.types.string.syntax.double
 *
 * @since 9.3.0
 */
class NewUnicodeEscapeSequenceSniff extends Sniff
{

    /**
     * Returns an array of tokens this test wants to listen for.
     *
     * @since 9.3.0
     *
     * @return array<int|string>
     */
    public function register()
    {
        return [
            \T_CONSTANT_ENCAPSED_STRING,
            \T_DOUBLE_QUOTED_STRING,
            \T_START_HEREDOC,
        ];
    }


    /**
     * Processes this test, when one of its tokens is encountered.
     *
     * @since 9.3.0
     *
     * @param \PHP_CodeSniffer\Files\File $phpcsFile The file being scanned.
     * @param int                         $stackPtr  The position of the current token in
     *                                               the stack passed in $tokens.
     *
     * @return int Integer stack pointer to skip forward.
     */
    public function process(File $phpcsFile, $stackPtr)
    {
        $tokens = $phpcsFile->getTokens();

        // Always process a complete text string in one go for efficiency.
        $endOfString = TextStrings::getEndOfCompleteTextString($phpcsFile, $stackPtr);

        // Check whether this is a single quoted or double quoted string.
        if ($tokens[$stackPtr]['code'] === \T_CONSTANT_ENCAPSED_STRING) {
            $textString = GetTokensAsString::normal($phpcsFile, $stackPtr, $endOfString);

            $startQuote = $textString[0];
            $endQuote   = \substr($textString, -1);
            if (($startQuote === "'" && $endQuote === "'")
                || $startQuote !== $endQuote
            ) {
                // Single quoted string, not our concern.
                return ($endOfString + 1);
            }
        }

        $start = $stackPtr;
        if ($tokens[$stackPtr]['code'] === \T_START_HEREDOC) {
            ++$start;
        }

        for ($i = $start; $i <= $endOfString; $i++) {
            $content = TextStrings::stripQuotes($tokens[$i]['content']);
            $count   = \preg_match_all('`(?<!\\\\)\\\\u\{([^}\n\r]*)(\})?`', $content, $matches, \PREG_SET_ORDER);
            if ($count === false || $count === 0) {
                continue;
            }

            foreach ($matches as $match) {
                $valid = false; // If the close curly is missing, we have an incomplete escape sequence.
                if (isset($match[2])) {
                    $valid = $this->isValidUnicodeEscapeSequence($match[1]);
                }

                if (ScannedCode::shouldRunOnOrBelow('5.6') === true && $valid === true) {
                    $phpcsFile->addError(
                        'Unicode codepoint escape sequences are not supported in PHP 5.6 or earlier. Found: %s',
                        $i,
                        'Found',
                        [$match[0]]
                    );
                }

                if (ScannedCode::shouldRunOnOrAbove('7.0') === true && $valid === false) {
                    $phpcsFile->addError(
                        'Strings containing a literal \u{ followed by an invalid unicode codepoint escape sequence will cause a fatal error in PHP 7.0 and above. Escape the leading backslash to prevent this. Found: %s',
                        $i,
                        'Invalid',
                        [$match[0]]
                    );
                }
            }
        }

        return ($endOfString + 1);
    }


    /**
     * Verify if the codepoint in a unicode escape sequence is valid.
     *
     * @since 9.3.0
     *
     * @param string $codepoint The codepoint as a string.
     *
     * @return bool
     */
    protected function isValidUnicodeEscapeSequence($codepoint)
    {
        if (\trim($codepoint) === '') {
            return false;
        }

        // Check if it's a valid hex codepoint.
        if (\preg_match('`^[0-9A-F]+$`iD', $codepoint, $match) !== 1) {
            return false;
        }

        if (\hexdec($codepoint) > 1114111) {
            // Outside of the maximum permissable range.
            return false;
        }

        return true;
    }
}