ansaurus

Question

PHP: fastest way to check for invalid characters (all but a-z, A-Z, 0-9, #, -, ., $)?

Answer 1

+1 A:

preg_match is both faster and more powerful than ereg:

if(preg_match('/^[^a-z0-9\.#\-\$]*$/i', $sString) > 0) //check if (doesn't contain illegal characters) is true
{
  //everything's fine: $sString does NOT contain any illegal characters
}

or turn it around:

if(preg_match('/[a-z0-9\.#\-\$]/i', $sString) === 0) //check if (contains illegal character) is false
{
  //everything's fine: $sString does NOT contain any illegal characters
}

Douwe Maan 2009-11-14 23:34:08

the string "0test1#test1#a1.0.000$" returns false for both your functions, should I inverse their returns?

Tom 2009-11-14 23:50:44

Your regular expressions are wrong. `/^[^a-z0-9\.#\-\$]*$/` means *only other characters than `[a-z0-9\.#\-\$]`* and `/[a-z0-9\.#\-\$]/` means *at least one character of `[a-z0-9\.#\-\$]`*.

Gumbo 2009-11-14 23:52:37

It wasn't completely clear to me if you wanted ONLY the specified characters, or anything BUT the specified characters.

Douwe Maan 2009-11-14 23:53:18

Gumbo;If the OP wanted everything BUT those characters, both my functions work correctly as far as I can see. It just wasn't entirely clear to me what he wanted...

Douwe Maan 2009-11-14 23:55:20

Tom; If you ONLY want the specified characters, you could use my first function, but remove the second ^ sign, after [

Douwe Maan 2009-11-14 23:56:32

I simply want a function which returns false when the given string contains any characters other than the given characters a-z, A-Z, 0-9, #, -, . and $

Tom 2009-11-15 00:03:58

Ok, then I misunderstood you at first. Just remove second ^ after the [ in the first function, and you should be ready to go.

Douwe Maan 2009-11-15 00:15:01

Answer 2

+1 A:

Use preg isntead, its faster, and ereg has been discontinued.

Galen 2009-11-14 23:34:40

Answer 3

+3 A:

The preg family of functions is quite a bit faster than ereg. To test for invalid characters, try something like:

if (preg_match('/[^a-z0-9.#$-]/i', $buffer)) print "Invalid characters found";

BipedalShark 2009-11-14 23:35:08

Your regular expression is missing the literal `-` since `#-$` is describing a range of characters.

Gumbo 2009-11-14 23:50:09

Aaaaaaand fixed.

BipedalShark 2009-11-14 23:52:28

Answer 4

+2 A:

You'll want to shift over to using preg instead of ereg. The ereg family of functions have been depreciated, and (since php 5.3) using them will throw up a PHP warning, and they'll be removed from teh language soon. Also, it's been anecdotal wisdom that the preg functions are, in general, faster than ereg.

As for speed, based on my experience and the codebases I've seen in my career, optimizing this kind of string performance would be premature at this point. Wrap the comparision in some logical function or method

//pseudo code based on OP 
function isValidForMyNeeds($buffer)
{
    if (ereg("[A-Za-z0-9]\.\#\-\$", $buffer) === false)
    {
        echo "buffer only contains valid characters: a-z, A-Z, 0-9, #, -, ., $";
    }
}

and then when/if you determine this is a performance problem you can apply any needed optimization in one place.

Alan Storm 2009-11-14 23:36:03

why wait for problems to arise when they can be addressed now without too much hassle? there's not that many functions to do it I believe so it shouldn't be too much of a hassle, right?

Tom 2009-11-14 23:43:38

Your regular expression is wrong and `ereg` does always return an integer.

Gumbo 2009-11-14 23:57:02

@gumbo: the code sample was meant to be more illustrative of the concept of a wrapper function than is was fixing the particular regular expression@tom true enough, and my post is just an optinion on the subject. but this kind of optimization is often endless. For example, right now you're waiting on an answer to this question when you could be moving on and solving another problem in your app. Also, performance of string comparisions in PHP is hugely dependent on the input variables.

Alan Storm 2009-11-15 00:15:02

Again, the point of the post wasn't the regular expression, which was simply copied from the OP.

Alan Storm 2009-11-15 08:16:48

Never mind me, I completely overlooked the fact you already mentioned the deprecation (and removal) of the ereg-functions! Sorry about that.

Bart Kiers 2009-11-15 09:04:47

Answer 5

+3 A:

Try this function:

function isValid($str) {
    return !preg_match('/[^A-Za-z0-9.#\\-$]/', $str);
}

[^A-Za-z0-9.#\-$] describes any character that is invalid. If preg_match finds a match (an invalid character), it will return 1 and 0 otherwise. Furthermore !1 is false and !0 is true. Thus isValid returns false if an invalid character is found and true otherwise.

Gumbo 2009-11-15 00:08:00

ansaurus

tags:

views:

answers:

PHP: fastest way to check for invalid characters (all but a-z, A-Z, 0-9, #, -, ., $)?

related questions