Mirrors
/
php
mirror of https://github.com/php/php-src
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
61957 Commits
541 Branches
1471 Tags
814 MiB
Tree: 455bc9df4c
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '455bc9df4c'
${ noResults }
php/main/php_variables.c

852 lines
24 KiB
Raw Normal View History

last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
- A belated happy holidays and PHP 5
22 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
- Year++
15 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
bump year and license version
20 years ago
License update
27 years ago
updating license information in the headers.
23 years ago
bump year and license version
20 years ago
License update
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
- Seriously optimize and clean php_parse_gpc_data() - Added gpc_globals directive to turn global definitions of GPC variables on/off (untested)
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
ws fixes + missing $Id$ tags, headers added
23 years ago
fixed typo in CVS id
25 years ago
Remove tls.[ch]
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
post.c really had nothing to do with POST anymore, and it belongs to the top level directory
26 years ago
Fixed compiler warnings.
23 years ago
Tried to centralize global variable registration as much as possible: - Added $HTTP_ENV_VARS[] and $HTTP_SERVER_VARS[] support, which similarly to $HTTP_GET_VARS[], contain environment and server variables. Setting register_globals to Off will now also prevent registration of the environment and server variables into the global scope (Zeev) - Renamed gpc_globals to register_globals (Zeev) - Introduced variables_order that deprecates gpc_order, and allows control over the server and environment variables, in addition to GET/POST/Cookies (Zeev)
26 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Cleaning up some mess
26 years ago
* Get the Apache module to compile again * Get rid of php3_rqst, use SG(server_context) instead (there's still Apache-specific code, but it nuked a global)
27 years ago
Fixed compiler warnings.
23 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
make php_import_environment_variables overwritable so fastcgi can correctly set $_ENV.
24 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- Get rid of ELS_*(), and use TSRMLS_*() instead. - Move to the new ts_allocate_id() API This patch is *bound* to break some files, as I must have had typos somewhere. If you use any uncommon extension, please try to build it...
25 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Fix #7987: POST/GET: string with \0(%00) values not parsed correctly
25 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Add some assertion
24 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Back-substitute for Z_* macro's. If it breaks some extension (the script isn't optimal, it parses for example var->zval.value incorrect) please let me know.
25 years ago
- remove magic quotes support, functions are kept (see the NEWS entry for the details) for BC reasons but do not allow to set enable MQ
15 years ago
Back-substitute for Z_* macro's. If it breaks some extension (the script isn't optimal, it parses for example var->zval.value incorrect) please let me know.
25 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Fix for bugs 13961, 39927 and 45947
18 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Minor consistency cleanup
21 years ago
Fix for bugs 13961, 39927 and 45947
18 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Fixed bug #24007 (Problem with register_globals & arrays)
23 years ago
Optimization
20 years ago
ws, pval -> zval
21 years ago
Use stack instead of heap
16 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
Oops, fix the assert.
18 years ago
WS
18 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Fixed bug #20796. $_GET/$_POST/$_COOKIE data can get overwritten when register_globals are on and input contains arrays.
23 years ago
Removed register_globals
16 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Optimization
20 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Use stack instead of heap
16 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Use stack instead of heap
16 years ago
Optimization
20 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Worked on beautifying rfc1867.c a bit @- Introduced $HTTP_POST_FILES[], that contains information about files uploaded @ through HTTP upload (Zeev)
26 years ago
Use stack instead of heap
16 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
MFH: Fixed possible GLOBALS variable override when register_globals are ON. MFH: Fixed possible register_globals toggle via parse_str(). MFH: Fixed negative offset handling in substr_compare() function.
21 years ago
Optimization
20 years ago
MFH: Fixed possible GLOBALS variable override when register_globals are ON. MFH: Fixed possible register_globals toggle via parse_str(). MFH: Fixed negative offset handling in substr_compare() function.
21 years ago
Use stack instead of heap
16 years ago
MFH: Fixed possible GLOBALS variable override when register_globals are ON. MFH: Fixed possible register_globals toggle via parse_str(). MFH: Fixed negative offset handling in substr_compare() function.
21 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Optimization
20 years ago
limit nesting level of input variables
19 years ago
Optimization
20 years ago
Minor consistency cleanup
21 years ago
Fixed bug #21149 (fixed handling of unterminated '[').
23 years ago
fix variable name
19 years ago
Improved fix for MOPB-02-2007
19 years ago
limit nesting level of input variables
19 years ago
Improved fix for MOPB-02-2007
19 years ago
fix a few compiler warnings (mostly use of unitialized values)
19 years ago
Improved fix for MOPB-02-2007
19 years ago
MFH
19 years ago
Improved fix for MOPB-02-2007
19 years ago
MFH:- Improved the error message for exceeding max_input_nesting_level.
19 years ago
Improved fix for MOPB-02-2007
19 years ago
Use stack instead of heap
16 years ago
Improved fix for MOPB-02-2007
19 years ago
limit nesting level of input variables
19 years ago
Fixed bug #21149 (fixed handling of unterminated '[').
23 years ago
fix bug #30442 ( segmentation fault when parsing ?getvariable[][ )
22 years ago
Improved fix for MOPB-02-2007
19 years ago
fix bug #30442 ( segmentation fault when parsing ?getvariable[][ )
22 years ago
Improved fix for MOPB-02-2007
19 years ago
fix bug #30442 ( segmentation fault when parsing ?getvariable[][ )
22 years ago
Fixed bug #21149 (fixed handling of unterminated '[').
23 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
- remove magic quotes support, functions are kept (see the NEWS entry for the details) for BC reasons but do not allow to set enable MQ
15 years ago
ws, pval -> zval
21 years ago
Back-substitute for Z_* macro's. If it breaks some extension (the script isn't optimal, it parses for example var->zval.value incorrect) please let me know.
25 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
ws, pval -> zval
21 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
ws, pval -> zval
21 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Back-substitute for Z_* macro's. If it breaks some extension (the script isn't optimal, it parses for example var->zval.value incorrect) please let me know.
25 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Fixed bug #21149 (fixed handling of unterminated '[').
23 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
ws, pval -> zval
21 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Fixed bug #37276 (problems witch $_POST array)
20 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Optimization
20 years ago
Fixed bug #21149 (fixed handling of unterminated '[').
23 years ago
Optimization
20 years ago
- remove magic quotes support, functions are kept (see the NEWS entry for the details) for BC reasons but do not allow to set enable MQ
15 years ago
Optimization
20 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
ws, pval -> zval
21 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Optimization
20 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
Use stack instead of heap
16 years ago
- Rewrote the GET/POST/Cookie data reader to support multi-dimensional arrays! (Zeev) This still needs a lot of more testing, but it seems to work more or less.
27 years ago
fix SAPI_POST_* exports
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Fixed bug #38236 (Binary data gets corrupted on multipart/formdata POST).
20 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
ws, pval -> zval
21 years ago
break out if there is no data to work on.
24 years ago
Fixed bug #38236 (Binary data gets corrupted on multipart/formdata POST).
20 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Fixed bug #38236 (Binary data gets corrupted on multipart/formdata POST).
20 years ago
- Fix sapi_input_filter patch. Returning 1 from the filter handler should make PHP register the variable, returning 0 shouldn't. The new length of the variables being filtered is now returned in the new_val_len argument of the function.
22 years ago
Fix #7987: POST/GET: string with \0(%00) values not parsed correctly
25 years ago
Fixed bug #38236 (Binary data gets corrupted on multipart/formdata POST).
20 years ago
As long we pass values by reference this is needed. Ugly!
22 years ago
- Fix sapi_input_filter patch. Returning 1 from the filter handler should make PHP register the variable, returning 0 shouldn't. The new length of the variables being filtered is now returned in the new_val_len argument of the function.
22 years ago
- Prevent registration of the variable when a zero-length is returned from the sapi_input_filter.
22 years ago
As long we pass values by reference this is needed. Ugly!
22 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Fixed bug #38236 (Binary data gets corrupted on multipart/formdata POST).
20 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Input Filter support. See README.input_filter for details. @- Input Filter support added. See README.input_filter. (Rasmus)
23 years ago
I could have sworn I committed this a while ago. Just a tiny NULL safety check here.
21 years ago
- Fix the default SAPI filter too; all weird problems should be gone again.
22 years ago
Input Filter support. See README.input_filter for details. @- Input Filter support added. See README.input_filter. (Rasmus)
23 years ago
made sapi_register_treat_data() to support multibyte input encoding translation without MBSTR_ENC_TRANS and changed php_treat_data to php_default_treat_data.
24 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
ws, pval -> zval
21 years ago
Const'ify part of sapi_request_info. query_string, post_data, path_translated, request_uri, auth_user, auth_password and argv0 are modified, so they cannot become const.
26 years ago
ws, pval -> zval
21 years ago
Replace strtok with strtok_r
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
Fixed "refcount" counting for autoglobals
21 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
Fixed "refcount" counting for autoglobals
21 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
Fixed "refcount" counting for autoglobals
21 years ago
- Remove track_vars - it is now always on - Make the various $HTTP_*_VARS[] arrays be defined always, even if they're empty - Fix Win32 build and warnings
26 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
ws, pval -> zval
21 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
ws, pval -> zval
21 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Const'ify part of sapi_request_info. query_string, post_data, path_translated, request_uri, auth_user, auth_password and argv0 are modified, so they cannot become const.
26 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Const'ify part of sapi_request_info. query_string, post_data, path_translated, request_uri, auth_user, auth_password and argv0 are modified, so they cannot become const.
26 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Added new configuration directives: arg_separator.input and arg_separator.output
25 years ago
Revert cookie patch for BC reasons.
21 years ago
Added new configuration directives: arg_separator.input and arg_separator.output
25 years ago
Cookies use ; as argument separator. # And also the first step for the possible configure option
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Strip leading spaces from cookie names, that can come from multi-cookie headers where ; can be followed by any number of spaces.
19 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Fix #7987: POST/GET: string with \0(%00) values not parsed correctly
25 years ago
- Fix sapi_input_filter patch. Returning 1 from the filter handler should make PHP register the variable, returning 0 shouldn't. The new length of the variables being filtered is now returned in the new_val_len argument of the function.
22 years ago
Fix #7987: POST/GET: string with \0(%00) values not parsed correctly
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
26 years ago
Fix last commit. This line isn't supposed to be replaced.
24 years ago
As long we pass values by reference this is needed. Ugly!
22 years ago
Fixed: PARSE_TYPE parameter to input_filter Fixed: input_filter should also be able to filter empty variables by name
22 years ago
- Fix sapi_input_filter patch. Returning 1 from the filter handler should make PHP register the variable, returning 0 shouldn't. The new length of the variables being filtered is now returned in the new_val_len argument of the function.
22 years ago
- Prevent registration of the variable when a zero-length is returned from the sapi_input_filter.
22 years ago
As long we pass values by reference this is needed. Ugly!
22 years ago
Fix for non-mbstring builds. Bad Yasuo! :)
24 years ago
Ooups...
22 years ago
MFB
24 years ago
Fixed: PARSE_TYPE parameter to input_filter Fixed: input_filter should also be able to filter empty variables by name
22 years ago
Fixed some.php?a&b&c does not initilize $_GET['a'], $_GET['b'], $_GET['c'] when mbstr-enc-trans is disabled. # There is a bug in php_mbstr_encoding_handler() alo, I'll fix it later.
24 years ago
Strip leading spaces from cookie names, that can come from multi-cookie headers where ; can be followed by any number of spaces.
19 years ago
Cookies use ; as argument separator. # And also the first step for the possible configure option
25 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
Added new configuration directives: arg_separator.input and arg_separator.output
25 years ago
ws, pval -> zval
21 years ago
Added new configuration directives: arg_separator.input and arg_separator.output
25 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
make php_import_environment_variables overwritable so fastcgi can correctly set $_ENV.
24 years ago
Tried to centralize global variable registration as much as possible: - Added $HTTP_ENV_VARS[] and $HTTP_SERVER_VARS[] support, which similarly to $HTTP_GET_VARS[], contain environment and server variables. Setting register_globals to Off will now also prevent registration of the environment and server variables into the global scope (Zeev) - Renamed gpc_globals to register_globals (Zeev) - Introduced variables_order that deprecates gpc_order, and allows control over the server and environment variables, in addition to GET/POST/Cookies (Zeev)
26 years ago
Improved php_import_environment_variables: avoid emalloc()ing in most cases
23 years ago
On 64bit platforms, pointers are 64bit long..
23 years ago
Improved php_import_environment_variables: avoid emalloc()ing in most cases
23 years ago
Tried to centralize global variable registration as much as possible: - Added $HTTP_ENV_VARS[] and $HTTP_SERVER_VARS[] support, which similarly to $HTTP_GET_VARS[], contain environment and server variables. Setting register_globals to Off will now also prevent registration of the environment and server variables into the global scope (Zeev) - Renamed gpc_globals to register_globals (Zeev) - Introduced variables_order that deprecates gpc_order, and allows control over the server and environment variables, in addition to GET/POST/Cookies (Zeev)
26 years ago
Improved php_import_environment_variables: avoid emalloc()ing in most cases
23 years ago
ws, pval -> zval
21 years ago
Improved php_import_environment_variables: avoid emalloc()ing in most cases
23 years ago
Tried to centralize global variable registration as much as possible: - Added $HTTP_ENV_VARS[] and $HTTP_SERVER_VARS[] support, which similarly to $HTTP_GET_VARS[], contain environment and server variables. Setting register_globals to Off will now also prevent registration of the environment and server variables into the global scope (Zeev) - Renamed gpc_globals to register_globals (Zeev) - Introduced variables_order that deprecates gpc_order, and allows control over the server and environment variables, in addition to GET/POST/Cookies (Zeev)
26 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Removed register_globals
16 years ago
Made the $argc and $argv always available as globals in CLI, and not as $_SERVER vars which depended on variables_order anyway. No more silliness.
23 years ago
Fixed memory leaks
20 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed memory leaks
20 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Removed register_globals
16 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fix $_SERVER['argv'] and $_SERVER['argc']
23 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed memory leaks
20 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Eliminate some TSRMLS_FETCH() calls. Tested with Win32 build of SAPI/CGI and SAPI/CLI on Win32.
23 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed "refcount" counting for autoglobals
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
added a server variable PHP_AUTH_DIGEST to support HTTP Digest Authentication.
21 years ago
Make request start time be available via $_SERVER['REQUEST_TIME']. # As discussed on internals.
22 years ago
Updated _SERVER['REQUEST_TIME'] to include microsecond precision.
15 years ago
Make request start time be available via $_SERVER['REQUEST_TIME']. # As discussed on internals.
22 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fix register_globals
23 years ago
- Use the new infrastructure of zend_symtable_*() (fixes bug #24565) - Fix bogus use of get_current_key()
23 years ago
Removed register_globals
16 years ago
Fix register_globals
23 years ago
- Use the new infrastructure of zend_symtable_*() (fixes bug #24565) - Fix bogus use of get_current_key()
23 years ago
ws, pval -> zval
21 years ago
- ws
15 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Fix register_globals
23 years ago
Fixed bug #31440 ($GLOBALS can be overwritten via GPC when register_globals is enabled).
21 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Fixed bug #31440 ($GLOBALS can be overwritten via GPC when register_globals is enabled).
21 years ago
Fix register_globals
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Made the $argc and $argv always available as globals in CLI, and not as $_SERVER vars which depended on variables_order anyway. No more silliness.
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Made the $argc and $argv always available as globals in CLI, and not as $_SERVER vars which depended on variables_order anyway. No more silliness.
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
- ws
15 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
MFH: Fixed bug #34331 (php crashes when variables_order is empty).
21 years ago
Fixed bug #29971 (variables_order behaviour)
21 years ago
Fixed register_argc_argv behavior. Now it behave in the same way as before in all combinations with register_globals, register_long_arrays, variables_order and auto_globals_jit.
20 years ago
- ws
15 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Fixed register_argc_argv behavior. Now it behave in the same way as before in all combinations with register_globals, register_long_arrays, variables_order and auto_globals_jit.
20 years ago
Fixed bug #29971 (variables_order behaviour)
21 years ago
Fixed "refcount" counting for autoglobals
21 years ago
Fixed bug #29971 (variables_order behaviour)
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Fixed register_argc_argv behavior. Now it behave in the same way as before in all combinations with register_globals, register_long_arrays, variables_order and auto_globals_jit.
20 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
- Better stability during premature shutdown of request startup
22 years ago
Fixed "refcount" counting for autoglobals
21 years ago
- Better stability during premature shutdown of request startup
22 years ago
MFH: Fixed bug #34331 (php crashes when variables_order is empty).
21 years ago
Fixed bug #29971 (variables_order behaviour)
21 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
ws, pval -> zval
21 years ago
MFH: Added macros for managing zval refcounts and is_ref statuses
19 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
Fixed ZE specific compile warnings (Bug #55629)
15 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
Fixed bug #24883 (variables created through register_globals, ignore gpc_order and variables_order). Prevent multiple registration of ENV & SERVER variables when more then one is specified. Prevent multiple addition of GET/POST/COOKIE variables when building _REQUEST.
23 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
- Cleanup
15 years ago
[DOC] add request_order INI variable to control $_REQUEST content # if not set (default), variables_order still is used # request_order accepts G,P and C
18 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
Fixed bug #24883 (variables created through register_globals, ignore gpc_order and variables_order). Prevent multiple registration of ENV & SERVER variables when more then one is specified. Prevent multiple addition of GET/POST/COOKIE variables when building _REQUEST.
23 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
Fixed bug #24883 (variables created through register_globals, ignore gpc_order and variables_order). Prevent multiple registration of ENV & SERVER variables when more then one is specified. Prevent multiple addition of GET/POST/COOKIE variables when building _REQUEST.
23 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
Fixed bug #24883 (variables created through register_globals, ignore gpc_order and variables_order). Prevent multiple registration of ENV & SERVER variables when more then one is specified. Prevent multiple addition of GET/POST/COOKIE variables when building _REQUEST.
23 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
- use interned strings for auto globals - $GLOBALS became a JIT autoglobal, so it's initialized only if used (this may affect opcode caches)
16 years ago
- Optimize $_REQUEST - Fix phpinfo()
23 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
- Cleanup
15 years ago
Add JIT initialization for _SERVER and _ENV (it's less important for the others, even though it should be fairly easy now too)
23 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
- Don't wrap lines... this is annoying while coding.
25 years ago
last bunch of extensions moving to ext/ fhttpd module taken out of functions, functions is ready to go. The only extensions I have tested are gd+freetype and odbc(solid). Please try compiling in your favourite extensions and let me know how it works.
27 years ago
  1. /*
  2. +----------------------------------------------------------------------+
  3. | PHP Version 5 |
  4. +----------------------------------------------------------------------+
  5. | Copyright (c) 1997-2011 The PHP Group |
  6. +----------------------------------------------------------------------+
  7. | This source file is subject to version 3.01 of the PHP license, |
  8. | that is bundled with this package in the file LICENSE, and is |
  9. | available through the world-wide-web at the following url: |
  10. | http://www.php.net/license/3_01.txt |
  11. | If you did not receive a copy of the PHP license and are unable to |
  12. | obtain it through the world-wide-web, please send a note to |
  13. | license@php.net so we can mail you a copy immediately. |
  14. +----------------------------------------------------------------------+
  15. | Authors: Rasmus Lerdorf <rasmus@lerdorf.on.ca> |
  16. | Zeev Suraski <zeev@zend.com> |
  17. +----------------------------------------------------------------------+
  18. */
  20. /* $Id$ */
  22. #include <stdio.h>
  23. #include "php.h"
  24. #include "ext/standard/php_standard.h"
  25. #include "ext/standard/credits.h"
  26. #include "php_variables.h"
  27. #include "php_globals.h"
  28. #include "php_content_types.h"
  29. #include "SAPI.h"
  30. #include "php_logos.h"
  31. #include "zend_globals.h"
  33. /* for systems that need to override reading of environment variables */
  34. void _php_import_environment_variables(zval *array_ptr TSRMLS_DC);
  35. PHPAPI void (*php_import_environment_variables)(zval *array_ptr TSRMLS_DC) = _php_import_environment_variables;
  37. PHPAPI void php_register_variable(char *var, char *strval, zval *track_vars_array TSRMLS_DC)
  38. {
  39. php_register_variable_safe(var, strval, strlen(strval), track_vars_array TSRMLS_CC);
  40. }
  42. /* binary-safe version */
  43. PHPAPI void php_register_variable_safe(char *var, char *strval, int str_len, zval *track_vars_array TSRMLS_DC)
  44. {
  45. zval new_entry;
  46. assert(strval != NULL);
  48. /* Prepare value */
  49. Z_STRLEN(new_entry) = str_len;
  50. Z_STRVAL(new_entry) = estrndup(strval, Z_STRLEN(new_entry));
  51. Z_TYPE(new_entry) = IS_STRING;
  53. php_register_variable_ex(var, &new_entry, track_vars_array TSRMLS_CC);
  54. }
  56. PHPAPI void php_register_variable_ex(char *var_name, zval *val, zval *track_vars_array TSRMLS_DC)
  57. {
  58. char *p = NULL;
  59. char *ip; /* index pointer */
  60. char *index, *escaped_index = NULL;
  61. char *var, *var_orig;
  62. int var_len, index_len;
  63. zval *gpc_element, **gpc_element_p;
  64. zend_bool is_array = 0;
  65. HashTable *symtable1 = NULL;
  66. ALLOCA_FLAG(use_heap)
  68. assert(var_name != NULL);
  70. if (track_vars_array) {
  71. symtable1 = Z_ARRVAL_P(track_vars_array);
  72. }
  74. if (!symtable1) {
  75. /* Nothing to do */
  76. zval_dtor(val);
  77. return;
  78. }
  81. /* ignore leading spaces in the variable name */
  82. while (*var_name && *var_name==' ') {
  83. var_name++;
  84. }
  86. /*
  87. * Prepare variable name
  88. */
  89. var_len = strlen(var_name);
  90. var = var_orig = do_alloca(var_len + 1, use_heap);
  91. memcpy(var_orig, var_name, var_len + 1);
  93. /* ensure that we don't have spaces or dots in the variable name (not binary safe) */
  94. for (p = var; *p; p++) {
  95. if (*p == ' ' || *p == '.') {
  96. *p='_';
  97. } else if (*p == '[') {
  98. is_array = 1;
  99. ip = p;
  100. *p = 0;
  101. break;
  102. }
  103. }
  104. var_len = p - var;
  106. if (var_len==0) { /* empty variable name, or variable name with a space in it */
  107. zval_dtor(val);
  108. free_alloca(var_orig, use_heap);
  109. return;
  110. }
  112. /* GLOBALS hijack attempt, reject parameter */
  113. if (symtable1 == EG(active_symbol_table) &&
  114. var_len == sizeof("GLOBALS")-1 &&
  115. !memcmp(var, "GLOBALS", sizeof("GLOBALS")-1)) {
  116. zval_dtor(val);
  117. free_alloca(var_orig, use_heap);
  118. return;
  119. }
  121. index = var;
  122. index_len = var_len;
  124. if (is_array) {
  125. int nest_level = 0;
  126. while (1) {
  127. char *index_s;
  128. int new_idx_len = 0;
  130. if(++nest_level > PG(max_input_nesting_level)) {
  131. HashTable *ht;
  132. /* too many levels of nesting */
  134. if (track_vars_array) {
  135. ht = Z_ARRVAL_P(track_vars_array);
  136. zend_hash_del(ht, var, var_len + 1);
  137. }
  139. zval_dtor(val);
  141. /* do not output the error message to the screen,
  142. this helps us to to avoid "information disclosure" */
  143. if (!PG(display_errors)) {
  144. php_error_docref(NULL TSRMLS_CC, E_WARNING, "Input variable nesting level exceeded %ld. To increase the limit change max_input_nesting_level in php.ini.", PG(max_input_nesting_level));
  145. }
  146. free_alloca(var_orig, use_heap);
  147. return;
  148. }
  150. ip++;
  151. index_s = ip;
  152. if (isspace(*ip)) {
  153. ip++;
  154. }
  155. if (*ip==']') {
  156. index_s = NULL;
  157. } else {
  158. ip = strchr(ip, ']');
  159. if (!ip) {
  160. /* PHP variables cannot contain '[' in their names, so we replace the character with a '_' */
  161. *(index_s - 1) = '_';
  163. index_len = 0;
  164. if (index) {
  165. index_len = strlen(index);
  166. }
  167. goto plain_var;
  168. return;
  169. }
  170. *ip = 0;
  171. new_idx_len = strlen(index_s);
  172. }
  174. if (!index) {
  175. MAKE_STD_ZVAL(gpc_element);
  176. array_init(gpc_element);
  177. zend_hash_next_index_insert(symtable1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
  178. } else {
  179. escaped_index = index;
  180. if (zend_symtable_find(symtable1, escaped_index, index_len + 1, (void **) &gpc_element_p) == FAILURE
  181. || Z_TYPE_PP(gpc_element_p) != IS_ARRAY) {
  182. MAKE_STD_ZVAL(gpc_element);
  183. array_init(gpc_element);
  184. zend_symtable_update(symtable1, escaped_index, index_len + 1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
  185. }
  186. if (index != escaped_index) {
  187. efree(escaped_index);
  188. }
  189. }
  190. symtable1 = Z_ARRVAL_PP(gpc_element_p);
  191. /* ip pointed to the '[' character, now obtain the key */
  192. index = index_s;
  193. index_len = new_idx_len;
  195. ip++;
  196. if (*ip == '[') {
  197. is_array = 1;
  198. *ip = 0;
  199. } else {
  200. goto plain_var;
  201. }
  202. }
  203. } else {
  204. plain_var:
  205. MAKE_STD_ZVAL(gpc_element);
  206. gpc_element->value = val->value;
  207. Z_TYPE_P(gpc_element) = Z_TYPE_P(val);
  208. if (!index) {
  209. zend_hash_next_index_insert(symtable1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
  210. } else {
  211. escaped_index = index;
  212. /*
  213. * According to rfc2965, more specific paths are listed above the less specific ones.
  214. * If we encounter a duplicate cookie name, we should skip it, since it is not possible
  215. * to have the same (plain text) cookie name for the same path and we should not overwrite
  216. * more specific cookies with the less specific ones.
  217. */
  218. if (PG(http_globals)[TRACK_VARS_COOKIE] &&
  219. symtable1 == Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_COOKIE]) &&
  220. zend_symtable_exists(symtable1, escaped_index, index_len + 1)) {
  221. zval_ptr_dtor(&gpc_element);
  222. } else {
  223. zend_symtable_update(symtable1, escaped_index, index_len + 1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
  224. }
  225. if (escaped_index != index) {
  226. efree(escaped_index);
  227. }
  228. }
  229. }
  230. free_alloca(var_orig, use_heap);
  231. }
  233. SAPI_API SAPI_POST_HANDLER_FUNC(php_std_post_handler)
  234. {
  235. char *var, *val, *e, *s, *p;
  236. zval *array_ptr = (zval *) arg;
  238. if (SG(request_info).post_data == NULL) {
  239. return;
  240. }
  242. s = SG(request_info).post_data;
  243. e = s + SG(request_info).post_data_length;
  245. while (s < e && (p = memchr(s, '&', (e - s)))) {
  246. last_value:
  247. if ((val = memchr(s, '=', (p - s)))) { /* have a value */
  248. unsigned int val_len, new_val_len;
  250. var = s;
  252. php_url_decode(var, (val - s));
  253. val++;
  254. val_len = php_url_decode(val, (p - val));
  255. val = estrndup(val, val_len);
  256. if (sapi_module.input_filter(PARSE_POST, var, &val, val_len, &new_val_len TSRMLS_CC)) {
  257. php_register_variable_safe(var, val, new_val_len, array_ptr TSRMLS_CC);
  258. }
  259. efree(val);
  260. }
  261. s = p + 1;
  262. }
  263. if (s < e) {
  264. p = e;
  265. goto last_value;
  266. }
  267. }
  269. SAPI_API SAPI_INPUT_FILTER_FUNC(php_default_input_filter)
  270. {
  271. /* TODO: check .ini setting here and apply user-defined input filter */
  272. if(new_val_len) *new_val_len = val_len;
  273. return 1;
  274. }
  276. SAPI_API SAPI_TREAT_DATA_FUNC(php_default_treat_data)
  277. {
  278. char *res = NULL, *var, *val, *separator = NULL;
  279. const char *c_var;
  280. zval *array_ptr;
  281. int free_buffer = 0;
  282. char *strtok_buf = NULL;
  284. switch (arg) {
  285. case PARSE_POST:
  286. case PARSE_GET:
  287. case PARSE_COOKIE:
  288. ALLOC_ZVAL(array_ptr);
  289. array_init(array_ptr);
  290. INIT_PZVAL(array_ptr);
  291. switch (arg) {
  292. case PARSE_POST:
  293. if (PG(http_globals)[TRACK_VARS_POST]) {
  294. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_POST]);
  295. }
  296. PG(http_globals)[TRACK_VARS_POST] = array_ptr;
  297. break;
  298. case PARSE_GET:
  299. if (PG(http_globals)[TRACK_VARS_GET]) {
  300. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_GET]);
  301. }
  302. PG(http_globals)[TRACK_VARS_GET] = array_ptr;
  303. break;
  304. case PARSE_COOKIE:
  305. if (PG(http_globals)[TRACK_VARS_COOKIE]) {
  306. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_COOKIE]);
  307. }
  308. PG(http_globals)[TRACK_VARS_COOKIE] = array_ptr;
  309. break;
  310. }
  311. break;
  312. default:
  313. array_ptr = destArray;
  314. break;
  315. }
  317. if (arg == PARSE_POST) {
  318. sapi_handle_post(array_ptr TSRMLS_CC);
  319. return;
  320. }
  322. if (arg == PARSE_GET) { /* GET data */
  323. c_var = SG(request_info).query_string;
  324. if (c_var && *c_var) {
  325. res = (char *) estrdup(c_var);
  326. free_buffer = 1;
  327. } else {
  328. free_buffer = 0;
  329. }
  330. } else if (arg == PARSE_COOKIE) { /* Cookie data */
  331. c_var = SG(request_info).cookie_data;
  332. if (c_var && *c_var) {
  333. res = (char *) estrdup(c_var);
  334. free_buffer = 1;
  335. } else {
  336. free_buffer = 0;
  337. }
  338. } else if (arg == PARSE_STRING) { /* String data */
  339. res = str;
  340. free_buffer = 1;
  341. }
  343. if (!res) {
  344. return;
  345. }
  347. switch (arg) {
  348. case PARSE_GET:
  349. case PARSE_STRING:
  350. separator = (char *) estrdup(PG(arg_separator).input);
  351. break;
  352. case PARSE_COOKIE:
  353. separator = ";\0";
  354. break;
  355. }
  357. var = php_strtok_r(res, separator, &strtok_buf);
  359. while (var) {
  360. val = strchr(var, '=');
  362. if (arg == PARSE_COOKIE) {
  363. /* Remove leading spaces from cookie names, needed for multi-cookie header where ; can be followed by a space */
  364. while (isspace(*var)) {
  365. var++;
  366. }
  367. if (var == val || *var == '\0') {
  368. goto next_cookie;
  369. }
  370. }
  372. if (val) { /* have a value */
  373. int val_len;
  374. unsigned int new_val_len;
  376. *val++ = '\0';
  377. php_url_decode(var, strlen(var));
  378. val_len = php_url_decode(val, strlen(val));
  379. val = estrndup(val, val_len);
  380. if (sapi_module.input_filter(arg, var, &val, val_len, &new_val_len TSRMLS_CC)) {
  381. php_register_variable_safe(var, val, new_val_len, array_ptr TSRMLS_CC);
  382. }
  383. efree(val);
  384. } else {
  385. int val_len;
  386. unsigned int new_val_len;
  388. php_url_decode(var, strlen(var));
  389. val_len = 0;
  390. val = estrndup("", val_len);
  391. if (sapi_module.input_filter(arg, var, &val, val_len, &new_val_len TSRMLS_CC)) {
  392. php_register_variable_safe(var, val, new_val_len, array_ptr TSRMLS_CC);
  393. }
  394. efree(val);
  395. }
  396. next_cookie:
  397. var = php_strtok_r(NULL, separator, &strtok_buf);
  398. }
  400. if (arg != PARSE_COOKIE) {
  401. efree(separator);
  402. }
  404. if (free_buffer) {
  405. efree(res);
  406. }
  407. }
  409. void _php_import_environment_variables(zval *array_ptr TSRMLS_DC)
  410. {
  411. char buf[128];
  412. char **env, *p, *t = buf;
  413. size_t alloc_size = sizeof(buf);
  414. unsigned long nlen; /* ptrdiff_t is not portable */
  416. for (env = environ; env != NULL && *env != NULL; env++) {
  417. p = strchr(*env, '=');
  418. if (!p) { /* malformed entry? */
  419. continue;
  420. }
  421. nlen = p - *env;
  422. if (nlen >= alloc_size) {
  423. alloc_size = nlen + 64;
  424. t = (t == buf ? emalloc(alloc_size): erealloc(t, alloc_size));
  425. }
  426. memcpy(t, *env, nlen);
  427. t[nlen] = '\0';
  428. php_register_variable(t, p + 1, array_ptr TSRMLS_CC);
  429. }
  430. if (t != buf && t != NULL) {
  431. efree(t);
  432. }
  433. }
  435. zend_bool php_std_auto_global_callback(char *name, uint name_len TSRMLS_DC)
  436. {
  437. zend_printf("%s\n", name);
  438. return 0; /* don't rearm */
  439. }
  441. /* {{{ php_build_argv
  442. */
  443. static void php_build_argv(char *s, zval *track_vars_array TSRMLS_DC)
  444. {
  445. zval *arr, *argc, *tmp;
  446. int count = 0;
  447. char *ss, *space;
  449. if (!(SG(request_info).argc || track_vars_array)) {
  450. return;
  451. }
  453. ALLOC_INIT_ZVAL(arr);
  454. array_init(arr);
  456. /* Prepare argv */
  457. if (SG(request_info).argc) { /* are we in cli sapi? */
  458. int i;
  459. for (i = 0; i < SG(request_info).argc; i++) {
  460. ALLOC_ZVAL(tmp);
  461. Z_TYPE_P(tmp) = IS_STRING;
  462. Z_STRLEN_P(tmp) = strlen(SG(request_info).argv[i]);
  463. Z_STRVAL_P(tmp) = estrndup(SG(request_info).argv[i], Z_STRLEN_P(tmp));
  464. INIT_PZVAL(tmp);
  465. if (zend_hash_next_index_insert(Z_ARRVAL_P(arr), &tmp, sizeof(zval *), NULL) == FAILURE) {
  466. if (Z_TYPE_P(tmp) == IS_STRING) {
  467. efree(Z_STRVAL_P(tmp));
  468. }
  469. }
  470. }
  471. } else if (s && *s) {
  472. ss = s;
  473. while (ss) {
  474. space = strchr(ss, '+');
  475. if (space) {
  476. *space = '\0';
  477. }
  478. /* auto-type */
  479. ALLOC_ZVAL(tmp);
  480. Z_TYPE_P(tmp) = IS_STRING;
  481. Z_STRLEN_P(tmp) = strlen(ss);
  482. Z_STRVAL_P(tmp) = estrndup(ss, Z_STRLEN_P(tmp));
  483. INIT_PZVAL(tmp);
  484. count++;
  485. if (zend_hash_next_index_insert(Z_ARRVAL_P(arr), &tmp, sizeof(zval *), NULL) == FAILURE) {
  486. if (Z_TYPE_P(tmp) == IS_STRING) {
  487. efree(Z_STRVAL_P(tmp));
  488. }
  489. }
  490. if (space) {
  491. *space = '+';
  492. ss = space + 1;
  493. } else {
  494. ss = space;
  495. }
  496. }
  497. }
  499. /* prepare argc */
  500. ALLOC_INIT_ZVAL(argc);
  501. if (SG(request_info).argc) {
  502. Z_LVAL_P(argc) = SG(request_info).argc;
  503. } else {
  504. Z_LVAL_P(argc) = count;
  505. }
  506. Z_TYPE_P(argc) = IS_LONG;
  508. if (SG(request_info).argc) {
  509. Z_ADDREF_P(arr);
  510. Z_ADDREF_P(argc);
  511. zend_hash_update(&EG(symbol_table), "argv", sizeof("argv"), &arr, sizeof(zval *), NULL);
  512. zend_hash_add(&EG(symbol_table), "argc", sizeof("argc"), &argc, sizeof(zval *), NULL);
  513. }
  514. if (track_vars_array) {
  515. Z_ADDREF_P(arr);
  516. Z_ADDREF_P(argc);
  517. zend_hash_update(Z_ARRVAL_P(track_vars_array), "argv", sizeof("argv"), &arr, sizeof(zval *), NULL);
  518. zend_hash_update(Z_ARRVAL_P(track_vars_array), "argc", sizeof("argc"), &argc, sizeof(zval *), NULL);
  519. }
  520. zval_ptr_dtor(&arr);
  521. zval_ptr_dtor(&argc);
  522. }
  523. /* }}} */
  525. /* {{{ php_handle_special_queries
  526. */
  527. PHPAPI int php_handle_special_queries(TSRMLS_D)
  528. {
  529. if (PG(expose_php) && SG(request_info).query_string && SG(request_info).query_string[0] == '=') {
  530. if (php_info_logos(SG(request_info).query_string + 1 TSRMLS_CC)) {
  531. return 1;
  532. } else if (!strcmp(SG(request_info).query_string + 1, PHP_CREDITS_GUID)) {
  533. php_print_credits(PHP_CREDITS_ALL TSRMLS_CC);
  534. return 1;
  535. }
  536. }
  537. return 0;
  538. }
  539. /* }}} */
  541. /* {{{ php_register_server_variables
  542. */
  543. static inline void php_register_server_variables(TSRMLS_D)
  544. {
  545. zval *array_ptr = NULL;
  547. ALLOC_ZVAL(array_ptr);
  548. array_init(array_ptr);
  549. INIT_PZVAL(array_ptr);
  550. if (PG(http_globals)[TRACK_VARS_SERVER]) {
  551. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_SERVER]);
  552. }
  553. PG(http_globals)[TRACK_VARS_SERVER] = array_ptr;
  555. /* Server variables */
  556. if (sapi_module.register_server_variables) {
  557. sapi_module.register_server_variables(array_ptr TSRMLS_CC);
  558. }
  560. /* PHP Authentication support */
  561. if (SG(request_info).auth_user) {
  562. php_register_variable("PHP_AUTH_USER", SG(request_info).auth_user, array_ptr TSRMLS_CC);
  563. }
  564. if (SG(request_info).auth_password) {
  565. php_register_variable("PHP_AUTH_PW", SG(request_info).auth_password, array_ptr TSRMLS_CC);
  566. }
  567. if (SG(request_info).auth_digest) {
  568. php_register_variable("PHP_AUTH_DIGEST", SG(request_info).auth_digest, array_ptr TSRMLS_CC);
  569. }
  570. /* store request init time */
  571. {
  572. zval new_entry;
  573. Z_TYPE(new_entry) = IS_DOUBLE;
  574. Z_DVAL(new_entry) = sapi_get_request_time(TSRMLS_C);
  575. php_register_variable_ex("REQUEST_TIME", &new_entry, array_ptr TSRMLS_CC);
  576. }
  578. }
  579. /* }}} */
  581. /* {{{ php_autoglobal_merge
  582. */
  583. static void php_autoglobal_merge(HashTable *dest, HashTable *src TSRMLS_DC)
  584. {
  585. zval **src_entry, **dest_entry;
  586. char *string_key;
  587. uint string_key_len;
  588. ulong num_key;
  589. HashPosition pos;
  590. int key_type;
  591. int globals_check = (dest == (&EG(symbol_table)));
  593. zend_hash_internal_pointer_reset_ex(src, &pos);
  594. while (zend_hash_get_current_data_ex(src, (void **)&src_entry, &pos) == SUCCESS) {
  595. key_type = zend_hash_get_current_key_ex(src, &string_key, &string_key_len, &num_key, 0, &pos);
  596. if (Z_TYPE_PP(src_entry) != IS_ARRAY
  597. || (key_type == HASH_KEY_IS_STRING && zend_hash_find(dest, string_key, string_key_len, (void **) &dest_entry) != SUCCESS)
  598. || (key_type == HASH_KEY_IS_LONG && zend_hash_index_find(dest, num_key, (void **)&dest_entry) != SUCCESS)
  599. || Z_TYPE_PP(dest_entry) != IS_ARRAY
  600. ) {
  601. Z_ADDREF_PP(src_entry);
  602. if (key_type == HASH_KEY_IS_STRING) {
  603. if (!globals_check || string_key_len != sizeof("GLOBALS") || memcmp(string_key, "GLOBALS", sizeof("GLOBALS") - 1)) {
  604. zend_hash_update(dest, string_key, string_key_len, src_entry, sizeof(zval *), NULL);
  605. } else {
  606. Z_DELREF_PP(src_entry);
  607. }
  608. } else {
  609. zend_hash_index_update(dest, num_key, src_entry, sizeof(zval *), NULL);
  610. }
  611. } else {
  612. SEPARATE_ZVAL(dest_entry);
  613. php_autoglobal_merge(Z_ARRVAL_PP(dest_entry), Z_ARRVAL_PP(src_entry) TSRMLS_CC);
  614. }
  615. zend_hash_move_forward_ex(src, &pos);
  616. }
  617. }
  618. /* }}} */
  620. static zend_bool php_auto_globals_create_server(const char *name, uint name_len TSRMLS_DC);
  621. static zend_bool php_auto_globals_create_env(const char *name, uint name_len TSRMLS_DC);
  622. static zend_bool php_auto_globals_create_request(const char *name, uint name_len TSRMLS_DC);
  624. /* {{{ php_hash_environment
  625. */
  626. int php_hash_environment(TSRMLS_D)
  627. {
  628. memset(PG(http_globals), 0, sizeof(PG(http_globals)));
  629. zend_activate_auto_globals(TSRMLS_C);
  630. if (PG(register_argc_argv)) {
  631. php_build_argv(SG(request_info).query_string, PG(http_globals)[TRACK_VARS_SERVER] TSRMLS_CC);
  632. }
  633. return SUCCESS;
  634. }
  635. /* }}} */
  637. static zend_bool php_auto_globals_create_get(const char *name, uint name_len TSRMLS_DC)
  638. {
  639. zval *vars;
  641. if (PG(variables_order) && (strchr(PG(variables_order),'G') || strchr(PG(variables_order),'g'))) {
  642. sapi_module.treat_data(PARSE_GET, NULL, NULL TSRMLS_CC);
  643. vars = PG(http_globals)[TRACK_VARS_GET];
  644. } else {
  645. ALLOC_ZVAL(vars);
  646. array_init(vars);
  647. INIT_PZVAL(vars);
  648. if (PG(http_globals)[TRACK_VARS_GET]) {
  649. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_GET]);
  650. }
  651. PG(http_globals)[TRACK_VARS_GET] = vars;
  652. }
  654. zend_hash_update(&EG(symbol_table), name, name_len + 1, &vars, sizeof(zval *), NULL);
  655. Z_ADDREF_P(vars);
  657. return 0; /* don't rearm */
  658. }
  660. static zend_bool php_auto_globals_create_post(const char *name, uint name_len TSRMLS_DC)
  661. {
  662. zval *vars;
  664. if (PG(variables_order) &&
  665. (strchr(PG(variables_order),'P') || strchr(PG(variables_order),'p')) &&
  666. !SG(headers_sent) &&
  667. SG(request_info).request_method &&
  668. !strcasecmp(SG(request_info).request_method, "POST")) {
  669. sapi_module.treat_data(PARSE_POST, NULL, NULL TSRMLS_CC);
  670. vars = PG(http_globals)[TRACK_VARS_POST];
  671. } else {
  672. ALLOC_ZVAL(vars);
  673. array_init(vars);
  674. INIT_PZVAL(vars);
  675. if (PG(http_globals)[TRACK_VARS_POST]) {
  676. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_POST]);
  677. }
  678. PG(http_globals)[TRACK_VARS_POST] = vars;
  679. }
  681. zend_hash_update(&EG(symbol_table), name, name_len + 1, &vars, sizeof(zval *), NULL);
  682. Z_ADDREF_P(vars);
  684. return 0; /* don't rearm */
  685. }
  687. static zend_bool php_auto_globals_create_cookie(const char *name, uint name_len TSRMLS_DC)
  688. {
  689. zval *vars;
  691. if (PG(variables_order) && (strchr(PG(variables_order),'C') || strchr(PG(variables_order),'c'))) {
  692. sapi_module.treat_data(PARSE_COOKIE, NULL, NULL TSRMLS_CC);
  693. vars = PG(http_globals)[TRACK_VARS_COOKIE];
  694. } else {
  695. ALLOC_ZVAL(vars);
  696. array_init(vars);
  697. INIT_PZVAL(vars);
  698. if (PG(http_globals)[TRACK_VARS_COOKIE]) {
  699. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_COOKIE]);
  700. }
  701. PG(http_globals)[TRACK_VARS_COOKIE] = vars;
  702. }
  704. zend_hash_update(&EG(symbol_table), name, name_len + 1, &vars, sizeof(zval *), NULL);
  705. Z_ADDREF_P(vars);
  707. return 0; /* don't rearm */
  708. }
  710. static zend_bool php_auto_globals_create_files(const char *name, uint name_len TSRMLS_DC)
  711. {
  712. zval *vars;
  714. if (PG(http_globals)[TRACK_VARS_FILES]) {
  715. vars = PG(http_globals)[TRACK_VARS_FILES];
  716. } else {
  717. ALLOC_ZVAL(vars);
  718. array_init(vars);
  719. INIT_PZVAL(vars);
  720. PG(http_globals)[TRACK_VARS_FILES] = vars;
  721. }
  723. zend_hash_update(&EG(symbol_table), name, name_len + 1, &vars, sizeof(zval *), NULL);
  724. Z_ADDREF_P(vars);
  726. return 0; /* don't rearm */
  727. }
  729. static zend_bool php_auto_globals_create_server(const char *name, uint name_len TSRMLS_DC)
  730. {
  731. if (PG(variables_order) && (strchr(PG(variables_order),'S') || strchr(PG(variables_order),'s'))) {
  732. php_register_server_variables(TSRMLS_C);
  734. if (PG(register_argc_argv)) {
  735. if (SG(request_info).argc) {
  736. zval **argc, **argv;
  738. if (zend_hash_find(&EG(symbol_table), "argc", sizeof("argc"), (void**)&argc) == SUCCESS &&
  739. zend_hash_find(&EG(symbol_table), "argv", sizeof("argv"), (void**)&argv) == SUCCESS) {
  740. Z_ADDREF_PP(argc);
  741. Z_ADDREF_PP(argv);
  742. zend_hash_update(Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_SERVER]), "argv", sizeof("argv"), argv, sizeof(zval *), NULL);
  743. zend_hash_update(Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_SERVER]), "argc", sizeof("argc"), argc, sizeof(zval *), NULL);
  744. }
  745. } else {
  746. php_build_argv(SG(request_info).query_string, PG(http_globals)[TRACK_VARS_SERVER] TSRMLS_CC);
  747. }
  748. }
  750. } else {
  751. zval *server_vars=NULL;
  752. ALLOC_ZVAL(server_vars);
  753. array_init(server_vars);
  754. INIT_PZVAL(server_vars);
  755. if (PG(http_globals)[TRACK_VARS_SERVER]) {
  756. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_SERVER]);
  757. }
  758. PG(http_globals)[TRACK_VARS_SERVER] = server_vars;
  759. }
  761. zend_hash_update(&EG(symbol_table), name, name_len + 1, &PG(http_globals)[TRACK_VARS_SERVER], sizeof(zval *), NULL);
  762. Z_ADDREF_P(PG(http_globals)[TRACK_VARS_SERVER]);
  764. return 0; /* don't rearm */
  765. }
  767. static zend_bool php_auto_globals_create_env(const char *name, uint name_len TSRMLS_DC)
  768. {
  769. zval *env_vars = NULL;
  770. ALLOC_ZVAL(env_vars);
  771. array_init(env_vars);
  772. INIT_PZVAL(env_vars);
  773. if (PG(http_globals)[TRACK_VARS_ENV]) {
  774. zval_ptr_dtor(&PG(http_globals)[TRACK_VARS_ENV]);
  775. }
  776. PG(http_globals)[TRACK_VARS_ENV] = env_vars;
  778. if (PG(variables_order) && (strchr(PG(variables_order),'E') || strchr(PG(variables_order),'e'))) {
  779. php_import_environment_variables(PG(http_globals)[TRACK_VARS_ENV] TSRMLS_CC);
  780. }
  782. zend_hash_update(&EG(symbol_table), name, name_len + 1, &PG(http_globals)[TRACK_VARS_ENV], sizeof(zval *), NULL);
  783. Z_ADDREF_P(PG(http_globals)[TRACK_VARS_ENV]);
  785. return 0; /* don't rearm */
  786. }
  788. static zend_bool php_auto_globals_create_request(const char *name, uint name_len TSRMLS_DC)
  789. {
  790. zval *form_variables;
  791. unsigned char _gpc_flags[3] = {0, 0, 0};
  792. char *p;
  794. ALLOC_ZVAL(form_variables);
  795. array_init(form_variables);
  796. INIT_PZVAL(form_variables);
  798. if (PG(request_order) != NULL) {
  799. p = PG(request_order);
  800. } else {
  801. p = PG(variables_order);
  802. }
  804. for (; p && *p; p++) {
  805. switch (*p) {
  806. case 'g':
  807. case 'G':
  808. if (!_gpc_flags[0]) {
  809. php_autoglobal_merge(Z_ARRVAL_P(form_variables), Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_GET]) TSRMLS_CC);
  810. _gpc_flags[0] = 1;
  811. }
  812. break;
  813. case 'p':
  814. case 'P':
  815. if (!_gpc_flags[1]) {
  816. php_autoglobal_merge(Z_ARRVAL_P(form_variables), Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_POST]) TSRMLS_CC);
  817. _gpc_flags[1] = 1;
  818. }
  819. break;
  820. case 'c':
  821. case 'C':
  822. if (!_gpc_flags[2]) {
  823. php_autoglobal_merge(Z_ARRVAL_P(form_variables), Z_ARRVAL_P(PG(http_globals)[TRACK_VARS_COOKIE]) TSRMLS_CC);
  824. _gpc_flags[2] = 1;
  825. }
  826. break;
  827. }
  828. }
  830. zend_hash_update(&EG(symbol_table), name, name_len + 1, &form_variables, sizeof(zval *), NULL);
  831. return 0;
  832. }
  834. void php_startup_auto_globals(TSRMLS_D)
  835. {
  836. zend_register_auto_global(ZEND_STRL("_GET"), 0, php_auto_globals_create_get TSRMLS_CC);
  837. zend_register_auto_global(ZEND_STRL("_POST"), 0, php_auto_globals_create_post TSRMLS_CC);
  838. zend_register_auto_global(ZEND_STRL("_COOKIE"), 0, php_auto_globals_create_cookie TSRMLS_CC);
  839. zend_register_auto_global(ZEND_STRL("_SERVER"), PG(auto_globals_jit), php_auto_globals_create_server TSRMLS_CC);
  840. zend_register_auto_global(ZEND_STRL("_ENV"), PG(auto_globals_jit), php_auto_globals_create_env TSRMLS_CC);
  841. zend_register_auto_global(ZEND_STRL("_REQUEST"), PG(auto_globals_jit), php_auto_globals_create_request TSRMLS_CC);
  842. zend_register_auto_global(ZEND_STRL("_FILES"), 0, php_auto_globals_create_files TSRMLS_CC);
  843. }
  845. /*
  846. * Local variables:
  847. * tab-width: 4
  848. * c-basic-offset: 4
  849. * End:
  850. * vim600: sw=4 ts=4 fdm=marker
  851. * vim<600: sw=4 ts=4
  852. */