ID: 36795 Comment by: gary dot malcolm at gmail dot com Reported By: john at carney dot id dot au Status: No Feedback Bug Type: DOM XML related Operating System: Windows/Linux PHP Version: 5.1.2 New Comment:
I'm running PHP 5.2.9 on Linux and this bug is still alive and well making SimpleXml absolutely inappropriate for XML communications between systems. <code> $safe_value = preg_replace('/&(?!\w+;)/', '&', $value); return $sxml->addChild($name, $safe_value); </code> Is just plain wrong. I'm communicating user input directly to a bank as I can't know how the third party will parse their xml. Previous Comments: ------------------------------------------------------------------------ [2008-04-03 23:15:04] rob at electronicinsight dot com A little hack to get around this bug: function &safe_add_child(&$sxml, $name, $value) { $safe_value = preg_replace('/&(?!\w+;)/', '&', $value); return $sxml->addChild($name, $safe_value); } ------------------------------------------------------------------------ [2008-02-08 20:09:37] moshe at varien dot com PHP 5.2.4 Looks like the problem appears when there's node already exists being overwritten // works ok, doesn't require encoding: $a = simplexml_load_string('<a/>'); $a->b = "& < ' "; // doesn't work, requires encoding: $a = simplexml_load_string('<a><b>test</b></a>'); $a->b = "& < ' "; // doesn't work, always requires encoding $a->addChild('b', "& < '"); $a->addAttribute('b', "& < '"); // works ok, never requires encoding $a['b'] = "& < '"; ------------------------------------------------------------------------ [2007-11-27 14:03:55] oscar at cdcovers dot to I tried the workaround below and it seems to work: $xml->addChild('element', ''); $xml->element = str_replace("&", "&", "value of the element"); ------------------------------------------------------------------------ [2007-09-28 06:40:20] ocus51 at gail dot com Hi, I'm still experiencing this problem : - PHP Version 5.2.0-8+etch7 - DOM/XML API Version 20031129 - libxml Version 2.6.27 ------------------------------------------------------------------------ [2006-12-06 11:49:37] philippe dot levan_nospam at kitpages dot fr Hi, I have the same problem. My config is : - PHP 5.2 - libxml Version 2.6.16 --------- <?php $xmlStr = "<?xml version='1.0' encoding='UTF-8'?><root></root>"; $xml = new SimpleXMLElement($xmlStr); $xml->addChild("foo",utf8_encode("start < > end")); echo "foo tag added ok"; $xml->addChild("bar",utf8_encode("start & end")); echo "error on bar tag because of &"; $result = $xml->asXML(); echo "<pre>".htmlentities($result)."</pre>"; ?> ------------- you can run this script at : http://www.kitpages.fr/test/bugSimpleXml.php ------------------------------------------------------------------------ The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/36795 -- Edit this bug report at http://bugs.php.net/?id=36795&edit=1