Boost boost_print_r() doesn't support UTF-8

Will provide a patch shortly.

Version #1

Version #2 (I like it more)

This function is being used only for watchdog entries. So, could be rewritten in the following way.

Boost fails on debug. And the issue is related to debugging. I'm not sure if the file is being written to the filesystem. But, it's not the case.

If you would like, I can provide screenshot and backtrace log.

Drupal crashes trying write debug message to a watchdog; result is:

See attached image.

Why ?

Because when debug is on, boost writes a watchdog entry after main page has been delivered:

boost.module, lines 1422-1428

  // Call original function
  drupal_deliver_html_page($page_callback_result);

  // Last possible place to send a watchdog message without a shutdown function.
  if (variable_get('boost_message_debug', BOOST_MESSAGE_DEBUG) && $_boost['args'][0] != 'admin') {
    watchdog('boost', boost_print_r($_boost), array(), WATCHDOG_DEBUG);
  }

And boost_print_r() has an error (see original code):

function boost_print_r($data) {
  return str_replace('    ', '    ', nl2br(htmlentities(print_r($data, TRUE))));
}

htmlentities() isn't binary safe (doesn't work with utf-8 characters). It fails, because my url contains trademark

Attached patch fixes this.

So, I've done some testing. Discard patch #4. It's could be exploited.

However, patch #3 fixes the problem.

Patch uses check_plain() Drupal built-in filtering function, which uses PHP htmlspecialchars().

Basically speaking htmspecialchars() is a more strict version of the htmlentities().

Patch #3 doesn't allow any tags/special characters/etc

How to reproduce:

1. Enable & configure boost
2. Enable boost debug
3. Create a page with an alias page™
4. Go to this page as an anonymous user. Scroll to the bottom of the page to see an error
5. Apply patch in #3 and fix it

Patch #3 has check_plain(), which is what we need in this case I believe. What tags you want to see in the output of print_r()