mirror of
https://github.com/php/php-src.git
synced 2024-11-28 04:14:26 +08:00
1170 lines
28 KiB
C
1170 lines
28 KiB
C
/*
|
|
+----------------------------------------------------------------------+
|
|
| PHP version 4.0 |
|
|
+----------------------------------------------------------------------+
|
|
| Copyright (c) 1997, 1998, 1999, 2000 The PHP Group |
|
|
+----------------------------------------------------------------------+
|
|
| This source file is subject to version 2.02 of the PHP license, |
|
|
| that is bundled with this package in the file LICENSE, and is |
|
|
| available at through the world-wide-web at |
|
|
| http://www.php.net/license/2_02.txt. |
|
|
| If you did not receive a copy of the PHP license and are unable to |
|
|
| obtain it through the world-wide-web, please send a note to |
|
|
| license@php.net so we can mail you a copy immediately. |
|
|
+----------------------------------------------------------------------+
|
|
| Authors: Rasmus Lerdorf <rasmus@lerdorf.on.ca> |
|
|
| Jim Winstead <jimw@php.net> |
|
|
+----------------------------------------------------------------------+
|
|
*/
|
|
/* $Id$ */
|
|
|
|
#include "php.h"
|
|
#include "php_globals.h"
|
|
#include "SAPI.h"
|
|
|
|
#include <stdio.h>
|
|
#include <stdlib.h>
|
|
#include <errno.h>
|
|
#include <sys/types.h>
|
|
#include <sys/stat.h>
|
|
#include <fcntl.h>
|
|
|
|
#ifdef PHP_WIN32
|
|
#include <windows.h>
|
|
#include <winsock.h>
|
|
#define O_RDONLY _O_RDONLY
|
|
#include "win32/param.h"
|
|
#else
|
|
#include <sys/param.h>
|
|
#endif
|
|
|
|
#include "safe_mode.h"
|
|
#include "php_realpath.h"
|
|
#include "ext/standard/head.h"
|
|
#include "ext/standard/php_standard.h"
|
|
#include "zend_compile.h"
|
|
|
|
#if HAVE_PWD_H
|
|
#ifdef PHP_WIN32
|
|
#include "win32/pwd.h"
|
|
#else
|
|
#include <pwd.h>
|
|
#endif
|
|
#endif
|
|
|
|
#include <sys/types.h>
|
|
#if HAVE_SYS_SOCKET_H
|
|
#include <sys/socket.h>
|
|
#endif
|
|
|
|
#ifndef S_ISREG
|
|
#define S_ISREG(mode) (((mode)&S_IFMT) & S_IFREG)
|
|
#endif
|
|
|
|
#ifdef PHP_WIN32
|
|
#include <winsock.h>
|
|
#else
|
|
#include <netinet/in.h>
|
|
#include <netdb.h>
|
|
#include <arpa/inet.h>
|
|
#endif
|
|
|
|
#ifdef PHP_WIN32
|
|
#undef AF_UNIX
|
|
#endif
|
|
|
|
#if defined(AF_UNIX)
|
|
#include <sys/un.h>
|
|
#endif
|
|
|
|
|
|
typedef FILE * (*php_fopen_url_wrapper_t) (const char *, char *, int, int *, int *, char **) ;
|
|
|
|
static FILE *php_fopen_url_wrapper(const char *, char *, int, int *, int *, char **);
|
|
static FILE *php_fopen_url_wrap_http(const char *, char *, int, int *, int *, char **);
|
|
static FILE *php_fopen_url_wrap_ftp(const char *, char *, int, int *, int *, char **);
|
|
static FILE *php_fopen_url_wrap_php(const char *, char *, int, int *, int *, char **);
|
|
|
|
int php_get_ftp_result(int socketd);
|
|
|
|
|
|
|
|
HashTable fopen_url_wrappers_hash;
|
|
|
|
PHPAPI int php_register_url_wrapper(char *protocol, FILE * (*wrapper)(const char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)) {
|
|
#if PHP_URL_FOPEN
|
|
return zend_hash_add(&fopen_url_wrappers_hash, protocol, strlen(protocol)+1, &wrapper, sizeof(wrapper), NULL);
|
|
#else
|
|
return FAILURE;
|
|
#endif
|
|
}
|
|
|
|
PHPAPI int php_unregister_url_wrapper(char *protocol) {
|
|
#if PHP_URL_FOPEN
|
|
return zend_hash_del(&fopen_url_wrappers_hash, protocol, strlen(protocol)+1);
|
|
#else
|
|
return SUCCESS;
|
|
#endif
|
|
}
|
|
|
|
int php_init_fopen_wrappers(void)
|
|
{
|
|
int status = SUCCESS;
|
|
#if PHP_URL_FOPEN
|
|
if (zend_hash_init(&fopen_url_wrappers_hash, 0, NULL, NULL, 1)==FAILURE) {
|
|
return FAILURE;
|
|
}
|
|
|
|
if(FAILURE==php_register_url_wrapper("http",php_fopen_url_wrap_http)) {
|
|
status = FAILURE;
|
|
} else
|
|
if(FAILURE==php_register_url_wrapper("ftp",php_fopen_url_wrap_ftp)) {
|
|
status = FAILURE;
|
|
} else
|
|
if(FAILURE==php_register_url_wrapper("php",php_fopen_url_wrap_php)) {
|
|
status = FAILURE;
|
|
}
|
|
|
|
if(FAILURE==status) {
|
|
zend_hash_destroy(&fopen_url_wrappers_hash);
|
|
}
|
|
#endif
|
|
return status;
|
|
}
|
|
|
|
int php_shutdown_fopen_wrappers(void)
|
|
{
|
|
#if PHP_URL_FOPEN
|
|
zend_hash_destroy(&fopen_url_wrappers_hash);
|
|
#endif
|
|
|
|
return SUCCESS;
|
|
}
|
|
|
|
|
|
/*
|
|
When open_basedir is not NULL, check if the given filename is located in
|
|
open_basedir. Returns -1 if error or not in the open_basedir, else 0
|
|
|
|
When open_basedir is NULL, always return 0
|
|
*/
|
|
PHPAPI int php_check_specific_open_basedir(char *basedir, char *path PLS_DC)
|
|
{
|
|
char resolved_name[MAXPATHLEN];
|
|
char resolved_basedir[MAXPATHLEN];
|
|
char local_open_basedir[MAXPATHLEN];
|
|
int local_open_basedir_pos;
|
|
SLS_FETCH();
|
|
|
|
/* Special case basedir==".": Use script-directory */
|
|
if ((strcmp(PG(open_basedir), ".") == 0) &&
|
|
SG(request_info).path_translated &&
|
|
*SG(request_info).path_translated
|
|
) {
|
|
strlcpy(local_open_basedir, SG(request_info).path_translated, sizeof(local_open_basedir));
|
|
local_open_basedir_pos = strlen(local_open_basedir) - 1;
|
|
|
|
/* Strip filename */
|
|
while ((
|
|
#ifdef PHP_WIN32
|
|
(local_open_basedir[local_open_basedir_pos] != '\\') ||
|
|
#endif
|
|
(local_open_basedir[local_open_basedir_pos] != '/')
|
|
) &&
|
|
(local_open_basedir_pos >= 0)
|
|
) {
|
|
local_open_basedir[local_open_basedir_pos--] = 0;
|
|
}
|
|
} else {
|
|
/* Else use the unmodified path */
|
|
strlcpy(local_open_basedir, basedir, sizeof(local_open_basedir));
|
|
}
|
|
|
|
/* Resolve the real path into resolved_name */
|
|
if ((php_realpath(path, resolved_name) != NULL) && (php_realpath(local_open_basedir, resolved_basedir) != NULL)) {
|
|
/* Check the path */
|
|
#ifdef PHP_WIN32
|
|
if (strncasecmp(resolved_basedir, resolved_name, strlen(resolved_basedir)) == 0) {
|
|
#else
|
|
if (strncmp(resolved_basedir, resolved_name, strlen(resolved_basedir)) == 0) {
|
|
#endif
|
|
/* File is in the right directory */
|
|
return 0;
|
|
} else {
|
|
return -1;
|
|
}
|
|
} else {
|
|
/* Unable to resolve the real path, return -1 */
|
|
return -1;
|
|
}
|
|
}
|
|
|
|
PHPAPI int php_check_open_basedir(char *path)
|
|
{
|
|
PLS_FETCH();
|
|
|
|
/* Only check when open_basedir is available */
|
|
if (PG(open_basedir) && *PG(open_basedir)) {
|
|
char *pathbuf;
|
|
char *ptr;
|
|
char *end;
|
|
|
|
pathbuf = estrdup(PG(open_basedir));
|
|
|
|
ptr = pathbuf;
|
|
|
|
while (ptr && *ptr) {
|
|
#ifdef PHP_WIN32
|
|
end = strchr(ptr, ';');
|
|
#else
|
|
end = strchr(ptr, ':');
|
|
#endif
|
|
if (end != NULL) {
|
|
*end = '\0';
|
|
end++;
|
|
}
|
|
|
|
if (php_check_specific_open_basedir(ptr, path PLS_CC) == 0) {
|
|
efree(pathbuf);
|
|
return 0;
|
|
}
|
|
|
|
ptr = end;
|
|
}
|
|
php_error(E_WARNING, "open_basedir restriction in effect. File is in wrong directory.");
|
|
efree(pathbuf);
|
|
return -1;
|
|
}
|
|
|
|
/* Nothing to check... */
|
|
return 0;
|
|
}
|
|
|
|
PHPAPI FILE *php_fopen_wrapper(char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)
|
|
{
|
|
int cm=2; /* checkuid mode: 2 = if file does not exist, check directory */
|
|
PLS_FETCH();
|
|
|
|
if (opened_path) {
|
|
*opened_path = NULL;
|
|
}
|
|
|
|
/* FIXME Lets not get in the habit of doing stuff like this. This should
|
|
be runtime enabled, NOT compile time. */
|
|
#if PHP_URL_FOPEN
|
|
if (!(options & IGNORE_URL)) {
|
|
return php_fopen_url_wrapper(path, mode, options, issock, socketd, opened_path);
|
|
}
|
|
#endif
|
|
|
|
if (options & USE_PATH && PG(include_path) != NULL) {
|
|
return php_fopen_with_path(path, mode, PG(include_path), opened_path);
|
|
} else {
|
|
FILE *fp;
|
|
|
|
if (!strcmp(mode,"r") || !strcmp(mode,"r+")) {
|
|
cm=0;
|
|
}
|
|
if (options & ENFORCE_SAFE_MODE && PG(safe_mode) && (!php_checkuid(path, cm))) {
|
|
return NULL;
|
|
}
|
|
if (php_check_open_basedir(path)) {
|
|
return NULL;
|
|
}
|
|
fp = V_FOPEN(path, mode);
|
|
if (fp && opened_path) {
|
|
*opened_path = expand_filepath(path);
|
|
}
|
|
return fp;
|
|
}
|
|
}
|
|
|
|
|
|
PHPAPI FILE *php_fopen_primary_script(void)
|
|
{
|
|
FILE *fp;
|
|
struct stat st;
|
|
char *temp, *path_info, *fn;
|
|
int l;
|
|
PLS_FETCH();
|
|
SLS_FETCH();
|
|
|
|
fn = SG(request_info).path_translated;
|
|
path_info = SG(request_info).request_uri;
|
|
#if HAVE_PWD_H
|
|
if (PG(user_dir) && *PG(user_dir)
|
|
&& path_info && '/' == path_info[0] && '~' == path_info[1]) {
|
|
|
|
char user[32];
|
|
struct passwd *pw;
|
|
char *s = strchr(path_info + 2, '/');
|
|
|
|
fn = NULL; /* discard the original filename, it must not be used */
|
|
if (s) { /* if there is no path name after the file, do not bother
|
|
to try open the directory */
|
|
l = s - (path_info + 2);
|
|
if (l > sizeof(user) - 1)
|
|
l = sizeof(user) - 1;
|
|
memcpy(user, path_info + 2, l);
|
|
user[l] = '\0';
|
|
|
|
pw = getpwnam(user);
|
|
if (pw && pw->pw_dir) {
|
|
fn = emalloc(strlen(PG(user_dir)) + strlen(path_info) + strlen(pw->pw_dir) + 4);
|
|
if (fn) {
|
|
strcpy(fn, pw->pw_dir); /* safe */
|
|
strcat(fn, "/"); /* safe */
|
|
strcat(fn, PG(user_dir)); /* safe */
|
|
strcat(fn, "/"); /* safe */
|
|
strcat(fn, s + 1); /* safe (shorter than path_info) */
|
|
STR_FREE(SG(request_info).path_translated);
|
|
SG(request_info).path_translated = fn;
|
|
}
|
|
}
|
|
}
|
|
} else
|
|
#endif
|
|
#ifdef PHP_WIN32
|
|
if (PG(doc_root) && path_info && ('/' == *PG(doc_root) ||
|
|
'\\' == *PG(doc_root) || strstr(PG(doc_root),":\\") ||
|
|
strstr(PG(doc_root),":/"))) {
|
|
#else
|
|
if (PG(doc_root) && '/' == *PG(doc_root) && path_info) {
|
|
#endif
|
|
l = strlen(PG(doc_root));
|
|
fn = emalloc(l + strlen(path_info) + 2);
|
|
if (fn) {
|
|
memcpy(fn, PG(doc_root), l);
|
|
if ('/' != fn[l - 1] || '\\' != fn[l - 1]) /* l is never 0 */
|
|
fn[l++] = '/';
|
|
if ('/' == path_info[0])
|
|
l--;
|
|
strcpy(fn + l, path_info);
|
|
STR_FREE(SG(request_info).path_translated);
|
|
SG(request_info).path_translated = fn;
|
|
}
|
|
} /* if doc_root && path_info */
|
|
if (!fn) {
|
|
/* we have to free SG(request_info).path_translated here because
|
|
php_destroy_request_info assumes that it will get
|
|
freed when the include_names hash is emptied, but
|
|
we're not adding it in this case */
|
|
STR_FREE(SG(request_info).path_translated);
|
|
SG(request_info).path_translated = NULL;
|
|
return NULL;
|
|
}
|
|
fp = V_FOPEN(fn, "r");
|
|
|
|
/* refuse to open anything that is not a regular file */
|
|
if (fp && (0 > fstat(fileno(fp), &st) || !S_ISREG(st.st_mode))) {
|
|
fclose(fp);
|
|
fp = NULL;
|
|
}
|
|
if (!fp) {
|
|
php_error(E_ERROR, "Unable to open %s", fn);
|
|
STR_FREE(SG(request_info).path_translated); /* for same reason as above */
|
|
return NULL;
|
|
}
|
|
|
|
temp = estrdup(fn);
|
|
php_dirname(temp, strlen(temp));
|
|
if (*temp) {
|
|
V_CHDIR(temp);
|
|
}
|
|
efree(temp);
|
|
SG(request_info).path_translated = fn;
|
|
|
|
return fp;
|
|
}
|
|
|
|
|
|
/*
|
|
* Tries to open a file with a PATH-style list of directories.
|
|
* If the filename starts with "." or "/", the path is ignored.
|
|
*/
|
|
PHPAPI FILE *php_fopen_with_path(char *filename, char *mode, char *path, char **opened_path)
|
|
{
|
|
char *pathbuf, *ptr, *end;
|
|
char trypath[MAXPATHLEN + 1];
|
|
struct stat sb;
|
|
FILE *fp;
|
|
int cm=2;
|
|
PLS_FETCH();
|
|
|
|
if (opened_path) {
|
|
*opened_path = NULL;
|
|
}
|
|
|
|
if(!strcmp(mode,"r") || !strcmp(mode,"r+")) cm=0;
|
|
/* Relative path open */
|
|
if (*filename == '.') {
|
|
if (PG(safe_mode) && (!php_checkuid(filename, cm))) {
|
|
return NULL;
|
|
}
|
|
if (php_check_open_basedir(filename)) return NULL;
|
|
fp = V_FOPEN(filename, mode);
|
|
if (fp && opened_path) {
|
|
*opened_path = expand_filepath(filename);
|
|
}
|
|
return fp;
|
|
}
|
|
/* Absolute path open - prepend document_root in safe mode */
|
|
#ifdef PHP_WIN32
|
|
if ((*filename == '\\') || (*filename == '/') || (filename[1] == ':')) {
|
|
#else
|
|
if (*filename == '/') {
|
|
#endif
|
|
if (PG(safe_mode)) {
|
|
if(PG(doc_root)) {
|
|
snprintf(trypath, MAXPATHLEN, "%s%s", PG(doc_root), filename);
|
|
} else {
|
|
strlcpy(trypath,filename,sizeof(trypath));
|
|
}
|
|
if (!php_checkuid(trypath, cm)) {
|
|
return NULL;
|
|
}
|
|
if (php_check_open_basedir(trypath)) return NULL;
|
|
fp = V_FOPEN(trypath, mode);
|
|
if (fp && opened_path) {
|
|
*opened_path = expand_filepath(trypath);
|
|
}
|
|
return fp;
|
|
} else {
|
|
if (php_check_open_basedir(filename)) {
|
|
return NULL;
|
|
}
|
|
fp = V_FOPEN(filename, mode);
|
|
if (fp && opened_path) {
|
|
*opened_path = expand_filepath(filename);
|
|
}
|
|
return fp;
|
|
}
|
|
}
|
|
if (!path || (path && !*path)) {
|
|
if (PG(safe_mode) && (!php_checkuid(filename, cm))) {
|
|
return NULL;
|
|
}
|
|
if (php_check_open_basedir(filename)) {
|
|
return NULL;
|
|
}
|
|
fp = V_FOPEN(filename, mode);
|
|
if (fp && opened_path) {
|
|
*opened_path = strdup(filename);
|
|
}
|
|
return fp;
|
|
}
|
|
pathbuf = estrdup(path);
|
|
|
|
ptr = pathbuf;
|
|
|
|
while (ptr && *ptr) {
|
|
#ifdef PHP_WIN32
|
|
end = strchr(ptr, ';');
|
|
#else
|
|
end = strchr(ptr, ':');
|
|
#endif
|
|
if (end != NULL) {
|
|
*end = '\0';
|
|
end++;
|
|
}
|
|
snprintf(trypath, MAXPATHLEN, "%s/%s", ptr, filename);
|
|
if (PG(safe_mode)) {
|
|
if (V_STAT(trypath, &sb) == 0 && (!php_checkuid(trypath, cm))) {
|
|
efree(pathbuf);
|
|
return NULL;
|
|
}
|
|
}
|
|
if ((fp = V_FOPEN(trypath, mode)) != NULL) {
|
|
if (php_check_open_basedir(trypath)) {
|
|
fclose(fp);
|
|
efree(pathbuf);
|
|
return NULL;
|
|
}
|
|
if (opened_path) {
|
|
*opened_path = expand_filepath(trypath);
|
|
}
|
|
efree(pathbuf);
|
|
return fp;
|
|
}
|
|
ptr = end;
|
|
}
|
|
efree(pathbuf);
|
|
return NULL;
|
|
}
|
|
|
|
/*
|
|
* If the specified path starts with "http://" (insensitive to case),
|
|
* a socket is opened to the specified web server and a file pointer is
|
|
* position at the start of the body of the response (past any headers).
|
|
* This makes a HTTP/1.0 request, and knows how to pass on the username
|
|
* and password for basic authentication.
|
|
*
|
|
* If the specified path starts with "ftp://" (insensitive to case),
|
|
* a pair of sockets are used to request the specified file and a file
|
|
* pointer to the requested file is returned. Passive mode ftp is used,
|
|
* so if the server doesn't support this, it will fail!
|
|
*
|
|
* Otherwise, fopen is called as usual and the file pointer is returned.
|
|
*/
|
|
|
|
|
|
static FILE *php_fopen_url_wrap_http(const char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)
|
|
{
|
|
FILE *fp=NULL;
|
|
url *resource=NULL;
|
|
struct sockaddr_in server;
|
|
char tmp_line[512];
|
|
char location[512];
|
|
char hdr_line[8192];
|
|
int body = 0;
|
|
char *scratch;
|
|
unsigned char *tmp;
|
|
int len;
|
|
int reqok = 0;
|
|
|
|
resource = url_parse((char *) path);
|
|
if (resource == NULL) {
|
|
php_error(E_WARNING, "Invalid URL specified, %s", path);
|
|
*issock = BAD_URL;
|
|
return NULL;
|
|
}
|
|
/* use port 80 if one wasn't specified */
|
|
if (resource->port == 0)
|
|
resource->port = 80;
|
|
|
|
*socketd = socket(AF_INET, SOCK_STREAM, 0);
|
|
if (*socketd == SOCK_ERR) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
server.sin_family = AF_INET;
|
|
|
|
if (lookup_hostname(resource->host, &server.sin_addr)) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
server.sin_port = htons(resource->port);
|
|
|
|
if (connect(*socketd, (struct sockaddr *) &server, sizeof(server)) == SOCK_CONN_ERR) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
#if 0
|
|
if ((fp = fdopen(*socketd, "r+")) == NULL) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
#ifdef HAVE_SETVBUF
|
|
if ((setvbuf(fp, NULL, _IONBF, 0)) != 0) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
#endif
|
|
#endif /*win32 */
|
|
|
|
strcpy(hdr_line, "GET ");
|
|
|
|
/* tell remote http which file to get */
|
|
if (resource->path != NULL) {
|
|
strlcat(hdr_line, resource->path, sizeof(hdr_line));
|
|
} else {
|
|
strlcat(hdr_line, "/", sizeof(hdr_line));
|
|
}
|
|
/* append the query string, if any */
|
|
if (resource->query != NULL) {
|
|
strlcat(hdr_line, "?", sizeof(hdr_line));
|
|
strlcat(hdr_line, resource->query, sizeof(hdr_line));
|
|
}
|
|
strlcat(hdr_line, " HTTP/1.0\r\n", sizeof(hdr_line));
|
|
SOCK_WRITE(hdr_line, *socketd);
|
|
|
|
/* send authorization header if we have user/pass */
|
|
if (resource->user != NULL && resource->pass != NULL) {
|
|
scratch = (char *) emalloc(strlen(resource->user) + strlen(resource->pass) + 2);
|
|
if (!scratch) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
strcpy(scratch, resource->user);
|
|
strcat(scratch, ":");
|
|
strcat(scratch, resource->pass);
|
|
tmp = php_base64_encode((unsigned char *)scratch, strlen(scratch), NULL);
|
|
|
|
if (snprintf(hdr_line, sizeof(hdr_line),
|
|
"Authorization: Basic %s\r\n", tmp) > 0) {
|
|
SOCK_WRITE(hdr_line, *socketd);
|
|
}
|
|
|
|
efree(scratch);
|
|
efree(tmp);
|
|
}
|
|
/* if the user has configured who they are, send a From: line */
|
|
if (cfg_get_string("from", &scratch) == SUCCESS) {
|
|
if (snprintf(hdr_line, sizeof(hdr_line),
|
|
"From: %s\r\n", scratch) > 0) {
|
|
SOCK_WRITE(hdr_line, *socketd);
|
|
}
|
|
|
|
}
|
|
/* send a Host: header so name-based virtual hosts work */
|
|
if (resource->port != 80) {
|
|
len = snprintf(hdr_line, sizeof(hdr_line),
|
|
"Host: %s:%i\r\n", resource->host, resource->port);
|
|
} else {
|
|
len = snprintf(hdr_line, sizeof(hdr_line),
|
|
"Host: %s\r\n", resource->host);
|
|
}
|
|
if (len > 0) {
|
|
SOCK_WRITE(hdr_line, *socketd);
|
|
}
|
|
|
|
/* identify ourselves and end the headers */
|
|
SOCK_WRITE("User-Agent: PHP/" PHP_VERSION "\r\n\r\n", *socketd);
|
|
|
|
body = 0;
|
|
location[0] = '\0';
|
|
if (!SOCK_FEOF(*socketd)) {
|
|
/* get response header */
|
|
if (SOCK_FGETS(tmp_line, sizeof(tmp_line)-1, *socketd) != NULL) {
|
|
if (strncmp(tmp_line + 8, " 200 ", 5) == 0) {
|
|
reqok = 1;
|
|
}
|
|
}
|
|
}
|
|
/* Read past HTTP headers */
|
|
while (!body && !SOCK_FEOF(*socketd)) {
|
|
if (SOCK_FGETS(tmp_line, sizeof(tmp_line)-1, *socketd) != NULL) {
|
|
char *p = tmp_line;
|
|
|
|
tmp_line[sizeof(tmp_line)-1] = '\0';
|
|
|
|
while (*p) {
|
|
if (*p == '\n' || *p == '\r') {
|
|
*p = '\0';
|
|
}
|
|
p++;
|
|
}
|
|
|
|
if (!strncasecmp(tmp_line, "Location: ", 10)) {
|
|
strlcpy(location, tmp_line + 10, sizeof(location));
|
|
}
|
|
|
|
if (tmp_line[0] == '\0') {
|
|
body = 1;
|
|
}
|
|
}
|
|
}
|
|
if (!reqok) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
if (location[0] != '\0') {
|
|
return php_fopen_url_wrapper(location, mode, options, issock, socketd, opened_path);
|
|
} else {
|
|
return NULL;
|
|
}
|
|
}
|
|
free_url(resource);
|
|
*issock = 1;
|
|
return (fp);
|
|
}
|
|
|
|
static FILE *php_fopen_url_wrap_ftp(const char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)
|
|
{
|
|
FILE *fp=NULL;
|
|
url *resource=NULL;
|
|
struct sockaddr_in server;
|
|
char tmp_line[512];
|
|
unsigned short portno;
|
|
char *scratch;
|
|
int result;
|
|
int i;
|
|
char *tpath, *ttpath;
|
|
|
|
resource = url_parse((char *) path);
|
|
if (resource == NULL) {
|
|
php_error(E_WARNING, "Invalid URL specified, %s", path);
|
|
*issock = BAD_URL;
|
|
return NULL;
|
|
} else if (resource->path == NULL) {
|
|
php_error(E_WARNING, "No file-path specified");
|
|
free_url(resource);
|
|
*issock = BAD_URL;
|
|
return NULL;
|
|
}
|
|
/* use port 21 if one wasn't specified */
|
|
if (resource->port == 0)
|
|
resource->port = 21;
|
|
|
|
*socketd = socket(AF_INET, SOCK_STREAM, 0);
|
|
if (*socketd == SOCK_ERR) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
server.sin_family = AF_INET;
|
|
|
|
if (lookup_hostname(resource->host, &server.sin_addr)) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
server.sin_port = htons(resource->port);
|
|
|
|
if (connect(*socketd, (struct sockaddr *) &server, sizeof(server)) == SOCK_CONN_ERR) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
#if 0
|
|
if ((fpc = fdopen(*socketd, "r+")) == NULL) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
#ifdef HAVE_SETVBUF
|
|
if ((setvbuf(fpc, NULL, _IONBF, 0)) != 0) {
|
|
free_url(resource);
|
|
fclose(fpc);
|
|
return NULL;
|
|
}
|
|
#endif
|
|
#endif
|
|
|
|
/* Start talking to ftp server */
|
|
result = php_get_ftp_result(*socketd);
|
|
if (result > 299 || result < 200) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
/* send the user name */
|
|
SOCK_WRITE("USER ", *socketd);
|
|
if (resource->user != NULL) {
|
|
php_raw_url_decode(resource->user, strlen(resource->user));
|
|
SOCK_WRITE(resource->user, *socketd);
|
|
} else {
|
|
SOCK_WRITE("anonymous", *socketd);
|
|
}
|
|
SOCK_WRITE("\r\n", *socketd);
|
|
|
|
/* get the response */
|
|
result = php_get_ftp_result(*socketd);
|
|
|
|
/* if a password is required, send it */
|
|
if (result >= 300 && result <= 399) {
|
|
SOCK_WRITE("PASS ", *socketd);
|
|
if (resource->pass != NULL) {
|
|
php_raw_url_decode(resource->pass, strlen(resource->pass));
|
|
SOCK_WRITE(resource->pass, *socketd);
|
|
} else {
|
|
/* if the user has configured who they are,
|
|
send that as the password */
|
|
if (cfg_get_string("from", &scratch) == SUCCESS) {
|
|
SOCK_WRITE(scratch, *socketd);
|
|
} else {
|
|
SOCK_WRITE("anonymous", *socketd);
|
|
}
|
|
}
|
|
SOCK_WRITE("\r\n", *socketd);
|
|
|
|
/* read the response */
|
|
result = php_get_ftp_result(*socketd);
|
|
if (result > 299 || result < 200) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
} else if (result > 299 || result < 200) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
|
|
/* set the connection to be binary */
|
|
SOCK_WRITE("TYPE I\r\n", *socketd);
|
|
result = php_get_ftp_result(*socketd);
|
|
if (result > 299 || result < 200) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
|
|
/* find out the size of the file (verifying it exists) */
|
|
SOCK_WRITE("SIZE ", *socketd);
|
|
SOCK_WRITE(resource->path, *socketd);
|
|
SOCK_WRITE("\r\n", *socketd);
|
|
|
|
/* read the response */
|
|
result = php_get_ftp_result(*socketd);
|
|
if (mode[0] == 'r') {
|
|
/* when reading file, it must exist */
|
|
if (result > 299 || result < 200) {
|
|
php_error(E_WARNING, "File not found");
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
errno = ENOENT;
|
|
return NULL;
|
|
}
|
|
} else {
|
|
/* when writing file, it must NOT exist */
|
|
if (result <= 299 && result >= 200) {
|
|
php_error(E_WARNING, "File already exists");
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
errno = EEXIST;
|
|
return NULL;
|
|
}
|
|
}
|
|
|
|
/* set up the passive connection */
|
|
SOCK_WRITE("PASV\r\n", *socketd);
|
|
while (SOCK_FGETS(tmp_line, sizeof(tmp_line)-1, *socketd) &&
|
|
!(isdigit((int) tmp_line[0]) && isdigit((int) tmp_line[1]) &&
|
|
isdigit((int) tmp_line[2]) && tmp_line[3] == ' '));
|
|
|
|
/* make sure we got a 227 response */
|
|
if (strncmp(tmp_line, "227", 3)) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
/* parse pasv command (129,80,95,25,13,221) */
|
|
tpath = tmp_line;
|
|
|
|
/* skip over the "227 Some message " part */
|
|
for (tpath += 4; *tpath && !isdigit((int) *tpath); tpath++);
|
|
if (!*tpath) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
/* skip over the host ip, we just assume it's the same */
|
|
for (i = 0; i < 4; i++) {
|
|
for (; isdigit((int) *tpath); tpath++);
|
|
if (*tpath == ',') {
|
|
tpath++;
|
|
} else {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
}
|
|
|
|
/* pull out the MSB of the port */
|
|
portno = (unsigned short) strtol(tpath, &ttpath, 10) * 256;
|
|
if (ttpath == NULL) {
|
|
/* didn't get correct response from PASV */
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
tpath = ttpath;
|
|
if (*tpath == ',') {
|
|
tpath++;
|
|
} else {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
|
|
/* pull out the LSB of the port */
|
|
portno += (unsigned short) strtol(tpath, &ttpath, 10);
|
|
|
|
if (ttpath == NULL) {
|
|
/* didn't get correct response from PASV */
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
|
|
if (mode[0] == 'r') {
|
|
/* retrieve file */
|
|
SOCK_WRITE("RETR ", *socketd);
|
|
} else {
|
|
/* store file */
|
|
SOCK_WRITE("STOR ", *socketd);
|
|
}
|
|
if (resource->path != NULL) {
|
|
SOCK_WRITE(resource->path, *socketd);
|
|
} else {
|
|
SOCK_WRITE("/", *socketd);
|
|
}
|
|
|
|
/* close control connection */
|
|
SOCK_WRITE("\r\nQUIT\r\n", *socketd);
|
|
SOCK_FCLOSE(*socketd);
|
|
|
|
/* open the data channel */
|
|
*socketd = socket(AF_INET, SOCK_STREAM, 0);
|
|
if (*socketd == SOCK_ERR) {
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
server.sin_family = AF_INET;
|
|
|
|
if (lookup_hostname(resource->host, &server.sin_addr)) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
server.sin_port = htons(portno);
|
|
|
|
if (connect(*socketd, (struct sockaddr *) &server, sizeof(server)) == SOCK_CONN_ERR) {
|
|
free_url(resource);
|
|
SOCK_FCLOSE(*socketd);
|
|
*socketd = 0;
|
|
return NULL;
|
|
}
|
|
#if 0
|
|
if (mode[0] == 'r') {
|
|
if ((fp = fdopen(*socketd, "r+")) == NULL) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
} else {
|
|
if ((fp = fdopen(*socketd, "w+")) == NULL) {
|
|
free_url(resource);
|
|
return NULL;
|
|
}
|
|
}
|
|
#ifdef HAVE_SETVBUF
|
|
if ((setvbuf(fp, NULL, _IONBF, 0)) != 0) {
|
|
free_url(resource);
|
|
fclose(fp);
|
|
return NULL;
|
|
}
|
|
#endif
|
|
#endif
|
|
free_url(resource);
|
|
*issock = 1;
|
|
return (fp);
|
|
}
|
|
|
|
static FILE *php_fopen_url_wrap_php(const char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)
|
|
{
|
|
const char *res = path + 6;
|
|
|
|
*issock = 0;
|
|
|
|
if (!strcasecmp(res, "stdin")) {
|
|
return fdopen(STDIN_FILENO, mode);
|
|
} else if (!strcasecmp(res, "stdout")) {
|
|
return fdopen(STDOUT_FILENO, mode);
|
|
} else if (!strcasecmp(res, "stderr")) {
|
|
return fdopen(STDERR_FILENO, mode);
|
|
}
|
|
|
|
return NULL;
|
|
}
|
|
|
|
static FILE *php_fopen_url_wrapper(const char *path, char *mode, int options, int *issock, int *socketd, char **opened_path)
|
|
{
|
|
FILE *fp = NULL;
|
|
const char *p;
|
|
const char *protocol=NULL;
|
|
int n=0;
|
|
|
|
for(p=path;isalnum((int)*p);p++)
|
|
n++;
|
|
if((*p==':')&&(n>1)) {
|
|
protocol=path;
|
|
}
|
|
|
|
if(protocol) {
|
|
php_fopen_url_wrapper_t *wrapper=NULL;
|
|
char *protocopy = emalloc(n+1);
|
|
|
|
if(protocopy) {
|
|
strncpy(protocopy,protocol,n);
|
|
protocopy[n]='\0';
|
|
if(FAILURE==zend_hash_find(&fopen_url_wrappers_hash, protocopy, n+1,(void **)&wrapper)) {
|
|
wrapper=NULL;
|
|
}
|
|
efree(protocopy);
|
|
}
|
|
if(wrapper)
|
|
return (*wrapper)(path, mode, options, issock, socketd, opened_path);
|
|
}
|
|
|
|
if( !protocol || !strncasecmp(protocol, "file",n)){
|
|
PLS_FETCH();
|
|
|
|
*issock = 0;
|
|
|
|
if(protocol) {
|
|
if(path[n+1]=='/') {
|
|
if(path[n+2]=='/') {
|
|
php_error(E_WARNING, "remote host file access not supported, %s", path);
|
|
return NULL;
|
|
}
|
|
}
|
|
path+= n+1;
|
|
}
|
|
|
|
if (options & USE_PATH) {
|
|
fp = php_fopen_with_path((char *) path, mode, PG(include_path), opened_path);
|
|
} else {
|
|
int cm=2;
|
|
if(!strcmp(mode,"r") || !strcmp(mode,"r+")) cm=0;
|
|
if (options & ENFORCE_SAFE_MODE && PG(safe_mode) && (!php_checkuid(path, cm))) {
|
|
fp = NULL;
|
|
} else {
|
|
if (php_check_open_basedir((char *) path)) {
|
|
fp = NULL;
|
|
} else {
|
|
fp = V_FOPEN(path, mode);
|
|
}
|
|
}
|
|
}
|
|
|
|
|
|
return (fp);
|
|
}
|
|
|
|
php_error(E_WARNING, "Invalid URL specified, %s", path);
|
|
return NULL;
|
|
}
|
|
|
|
int php_get_ftp_result(int socketd)
|
|
{
|
|
char tmp_line[513];
|
|
|
|
while (SOCK_FGETS(tmp_line, sizeof(tmp_line)-1, socketd) &&
|
|
!(isdigit((int) tmp_line[0]) && isdigit((int) tmp_line[1]) &&
|
|
isdigit((int) tmp_line[2]) && tmp_line[3] == ' '));
|
|
|
|
return strtol(tmp_line, NULL, 10);
|
|
}
|
|
|
|
PHPAPI int php_is_url(char *path)
|
|
{
|
|
return (!strncasecmp(path, "http://", 7) || !strncasecmp(path, "ftp://", 6));
|
|
}
|
|
|
|
|
|
PHPAPI char *php_strip_url_passwd(char *url)
|
|
{
|
|
register char *p = url, *url_start;
|
|
|
|
while (*p) {
|
|
if (*p==':' && *(p+1)=='/' && *(p+2)=='/') {
|
|
/* found protocol */
|
|
url_start = p = p+3;
|
|
|
|
while (*p) {
|
|
if (*p=='@') {
|
|
int i;
|
|
|
|
for (i=0; i<3 && url_start<p; i++, url_start++) {
|
|
*url_start = '.';
|
|
}
|
|
for (; *p; p++) {
|
|
*url_start++ = *p;
|
|
}
|
|
*url_start=0;
|
|
break;
|
|
}
|
|
p++;
|
|
}
|
|
return url;
|
|
}
|
|
p++;
|
|
}
|
|
return url;
|
|
}
|
|
|
|
|
|
#if 1
|
|
|
|
PHPAPI char *expand_filepath(char *filepath)
|
|
{
|
|
cwd_state new_state;
|
|
char cwd[MAXPATHLEN+1];
|
|
char *result;
|
|
|
|
result = V_GETCWD(cwd, MAXPATHLEN);
|
|
if (!result) {
|
|
cwd[0] = '\0';
|
|
}
|
|
|
|
new_state.cwd = strdup(cwd);
|
|
new_state.cwd_length = strlen(cwd);
|
|
|
|
virtual_file_ex(&new_state, filepath, NULL);
|
|
return new_state.cwd;
|
|
}
|
|
|
|
#else
|
|
|
|
PHPAPI char *expand_filepath(char *filepath)
|
|
{
|
|
char *retval = NULL;
|
|
|
|
if (filepath[0] == '.') {
|
|
char *cwd = malloc(MAXPATHLEN + 1);
|
|
|
|
if (V_GETCWD(cwd, MAXPATHLEN)) {
|
|
char *cwd_end = cwd + strlen(cwd);
|
|
|
|
if (filepath[1] == '.') { /* parent directory - .. */
|
|
/* erase the last directory name from the path */
|
|
#ifdef PHP_WIN32
|
|
while (*cwd_end != '/' || *cwd_end != '\\') {
|
|
#else
|
|
while (*cwd_end != '/') {
|
|
#endif
|
|
*cwd_end-- = 0;
|
|
}
|
|
filepath++; /* make filepath appear as a current directory path */
|
|
}
|
|
#ifdef PHP_WIN32
|
|
if (cwd_end > cwd && (*cwd_end == '/' || *cwd_end == '\\')) { /* remove trailing slashes */
|
|
#else
|
|
if (cwd_end > cwd && *cwd_end == '/') { /* remove trailing slashes */
|
|
#endif
|
|
*cwd_end-- = 0;
|
|
}
|
|
retval = (char *) malloc(strlen(cwd) + strlen(filepath) - 1 + 1);
|
|
strcpy(retval, cwd);
|
|
strcat(retval, filepath + 1);
|
|
free(cwd);
|
|
}
|
|
}
|
|
if (!retval) {
|
|
retval = strdup(filepath);
|
|
}
|
|
return retval;
|
|
}
|
|
|
|
#endif
|
|
|
|
/*
|
|
* Local variables:
|
|
* tab-width: 4
|
|
* c-basic-offset: 4
|
|
* End:
|
|
*/
|