Mirrors
/
php
mirror of https://github.com/php/php-src
3
0
Fork 0
Code Releases Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
14563 Commits
553 Branches
1471 Tags
791 MiB
Tree: f3bfe97520
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from 'f3bfe97520'
${ noResults }
php/main/SAPI.c

691 lines
20 KiB
Raw Normal View History

License update
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Update headers.
25 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Update headers.
25 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Update the license with the new clause 6
26 years ago
License update
27 years ago
Update the license with the new clause 6
26 years ago
License update
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
request_info.c is dead! long live SAPI @- Finished the server abstraction layer; All of the PHP code is now shared @ across different servers (Apache, CGI, IIS, etc.), except for thin @ interface modules (Zeev)
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Added missing CVS Id tag.
25 years ago
kill warning
27 years ago
More cleanup...
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
- Make dir functions compile in Win32 - Fix too early memory manager initialization (For you Thies)
27 years ago
Ah, these too
28 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
* Plenty of thread safety and Win32 work. * Changed PHP4 to compile as a DLL, both ISAPI and the the CGI run with the same DLL. * Switched to using the DLL runtime library under Win32. PHP will NOT work if compiled against the static library! * Removed yesterday's php4libts project (with php4dllts, it's obsolete). This *does* affect thread-unsafe Windows as well - the thread unsafe CGI is also dependant on the thread-unsafe DLL.
28 years ago
Ah, these too
28 years ago
* Plenty of thread safety and Win32 work. * Changed PHP4 to compile as a DLL, both ISAPI and the the CGI run with the same DLL. * Switched to using the DLL runtime library under Win32. PHP will NOT work if compiled against the static library! * Removed yesterday's php4libts project (with php4dllts, it's obsolete). This *does* affect thread-unsafe Windows as well - the thread unsafe CGI is also dependant on the thread-unsafe DLL.
28 years ago
Ah, these too
28 years ago
Add container for file-upload. It's not quite implemented yet.
27 years ago
Fine tune Andi's patch
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
- fixed handling of fdf data (application/vnd.fdf)
26 years ago
Ah, these too
28 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Ah, these too
28 years ago
* Plenty of thread safety and Win32 work. * Changed PHP4 to compile as a DLL, both ISAPI and the the CGI run with the same DLL. * Switched to using the DLL runtime library under Win32. PHP will NOT work if compiled against the static library! * Removed yesterday's php4libts project (with php4dllts, it's obsolete). This *does* affect thread-unsafe Windows as well - the thread unsafe CGI is also dependant on the thread-unsafe DLL.
28 years ago
* Get the Apache module to compile again * Get rid of php3_rqst, use SG(server_context) instead (there's still Apache-specific code, but it nuked a global)
28 years ago
Ah, these too
28 years ago
- Get rid of ELS_*(), and use TSRMLS_*() instead. - Move to the new ts_allocate_id() API This patch is *bound* to break some files, as I must have had typos somewhere. If you use any uncommon extension, please try to build it...
25 years ago
Fix traps due to sapi_global not being initialized when ZTS is set Don't trap if php.ini can't be read
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Fix traps due to sapi_global not being initialized when ZTS is set Don't trap if php.ini can't be read
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Many patches. I hope I remember them all: - Make sapi_module available to external modules (PHPAPI) - Make the php.ini path reported in phpinfo() always point to real full path of the php.ini file - Optimized the ISAPI module not to read unnecessary server variables and read necessary variables at most once.
26 years ago
Ah, these too
28 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
- Make ISAPI hook in as an extension too. - Some work on moving stuff to SAPI.
28 years ago
Ah, these too
28 years ago
- Make ISAPI hook in as an extension too. - Some work on moving stuff to SAPI.
28 years ago
Disable the hash_apply() protection on hashes that persist across requests - it's unsafe because we may be aborted at any point @- Fixed a possible data corruption in case of a huge amount of aborted requests (Zeev)
26 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Ah, these too
28 years ago
- Get rid of ELS_*(), and use TSRMLS_*() instead. - Move to the new ts_allocate_id() API This patch is *bound* to break some files, as I must have had typos somewhere. If you use any uncommon extension, please try to build it...
25 years ago
- Note quite sure why this wasn't done.
27 years ago
- Get rid of ELS_*(), and use TSRMLS_*() instead. - Move to the new ts_allocate_id() API This patch is *bound* to break some files, as I must have had typos somewhere. If you use any uncommon extension, please try to build it...
25 years ago
Ah, these too
28 years ago
- Note quite sure why this wasn't done.
27 years ago
- This shouldn't have been commited. There are quite a few modules which are using VIRTUAL_DIR. I don't think this should be happening.
26 years ago
- Virtual cwd compiles now (need to uncomment #define in php.h for it to be enbaled right now). It seems to work very basic stuff
27 years ago
get rid of MS's _popen/_pclose
25 years ago
Move reentrancy initialisation/destruction into SAPI. These calls only do something, if reentrancy emulation is required.
27 years ago
- add global startup/shutdown handlers - improve genif.sh to also consider all header files for inclusion (checks for phpext_) - use vsnprintf in main.c to avoid buffer overflows - improve sessions's mm module to cope better with OOM situations within the shared memory segment - fix typo wrt session.auto_start
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Fix some warnings
27 years ago
* Get Apache module to compile again with the regex stuff. * Get Apache to propertly work with POST, and some SAPI fixes
27 years ago
Move reentrancy initialisation/destruction into SAPI. These calls only do something, if reentrancy emulation is required.
27 years ago
- This shouldn't have been commited. There are quite a few modules which are using VIRTUAL_DIR. I don't think this should be happening.
26 years ago
- Create dtor function
27 years ago
get rid of MS's _popen/_pclose
25 years ago
* Get Apache module to compile again with the regex stuff. * Get Apache to propertly work with POST, and some SAPI fixes
27 years ago
Export sapi_free_header()
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
Fix possible crash if content-type is not set.
26 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Add container for file-upload. It's not quite implemented yet.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Add container for file-upload. It's not quite implemented yet.
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Add container for file-upload. It's not quite implemented yet.
27 years ago
First step for chunkifying the HTTP uploads.
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
First step for chunkifying the HTTP uploads.
25 years ago
Add always_populate_raw_post_data ini directive and default it to 0 to maintain current behaviour. If this is turned on then $HTTP_RAW_POST_DATA is always populated with a copy of the raw post data. @ - Add config option (always_populate_raw_post_data) which when enabled @ will always populate $HTTP_RAW_POST_DATA regardless of the post mime @ type (Rasmus)
25 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
fix SAPI_POST_* exports
25 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
@- Fix a problem when dealing with large POST blocks in CGI mode
27 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
@- Fix a problem when dealing with large POST blocks in CGI mode
27 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
@- Fix a problem when dealing with large POST blocks in CGI mode
27 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
@- Fix a problem when dealing with large POST blocks in CGI mode
27 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
@- The string None is now recognized as a keyword by the php.ini processor, and @ can be used to denote an empty string (Zeev) - Added None keyword support to the INI parser - Removed specialized "none" code
27 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
(sapi_send_headers) fix leak
27 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
started implementing directives for default mimetype/charset
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
@- The string None is now recognized as a keyword by the php.ini processor, and @ can be used to denote an empty string (Zeev) - Added None keyword support to the INI parser - Removed specialized "none" code
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
started implementing directives for default mimetype/charset
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Changing datatype to remove compiler warning
26 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
@- The string None is now recognized as a keyword by the php.ini processor, and @ can be used to denote an empty string (Zeev) - Added None keyword support to the INI parser - Removed specialized "none" code
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Implement move_uploaded_file() (untested)
26 years ago
newtype has a length of newlen+1, 'len' refers to the length of *mimetype here.
26 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
started implementing directives for default mimetype/charset
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Ok, now actually make it work - maybe...
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Finalizing the PHP version of SAPI. Support POST and cookies among other things. * Fully implement ISAPI support - POST and cookies among other things. * Almost completely rewrote phpinfo(). Allow modules to easily display their information in phpinfo() without modifying phpinfo() itself (prototype for the module info function was changed, thus the large amount of updated module files). * Initial extended SAPI support for Apache, completely untested. * CGI now uses SAPI fully as well.
27 years ago
started implementing directives for default mimetype/charset
27 years ago
Heads up! I have moved the headers_only and response_code checks out of SAPI and down into the individual SAPI modules. I have made the appropriate changes in all the SAPI modules, but please verify these. The reason for this change is that Apache sometimes will feed PHP a request_method of GET but have r->header_only set to true. This happens in an ErrorDocument redirect. In this same scenario we want to preserve the status code as well instead of just overwriting it with a 200 and losing this information. For now the other sapi modules act exactly as before since they probably do not make this distinction, and they may not even have a valid response code this early in the request. @ Fix HEAD request bug on an Apache ErrorDocument redirect and preserve @ the status code across the redirect as well. (Rasmus)
26 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Heads up! I have moved the headers_only and response_code checks out of SAPI and down into the individual SAPI modules. I have made the appropriate changes in all the SAPI modules, but please verify these. The reason for this change is that Apache sometimes will feed PHP a request_method of GET but have r->header_only set to true. This happens in an ErrorDocument redirect. In this same scenario we want to preserve the status code as well instead of just overwriting it with a 200 and losing this information. For now the other sapi modules act exactly as before since they probably do not make this distinction, and they may not even have a valid response code this early in the request. @ Fix HEAD request bug on an Apache ErrorDocument redirect and preserve @ the status code across the redirect as well. (Rasmus)
26 years ago
Leave this initialization in
26 years ago
ISAPI WORKS!
27 years ago
* Make read_post() read input by chunks instead of returning a single string. This will allow us to efficiently support file upload through SAPI in the future. * Fixes
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
request_info.c is dead! long live SAPI @- Finished the server abstraction layer; All of the PHP code is now shared @ across different servers (Apache, CGI, IIS, etc.), except for thin @ interface modules (Zeev)
27 years ago
- Import Jade Nicoletti's transparent gzip encoding support as an output handler. Works quite nicely! - Fix buglets in output buffering - Add output_handler INI directive
26 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Restore the headers_only test to the centralized SAPI startup. If necessary, it can be overriden in the activate() callback.
26 years ago
Heads up! I have moved the headers_only and response_code checks out of SAPI and down into the individual SAPI modules. I have made the appropriate changes in all the SAPI modules, but please verify these. The reason for this change is that Apache sometimes will feed PHP a request_method of GET but have r->header_only set to true. This happens in an ErrorDocument redirect. In this same scenario we want to preserve the status code as well instead of just overwriting it with a 200 and losing this information. For now the other sapi modules act exactly as before since they probably do not make this distinction, and they may not even have a valid response code this early in the request. @ Fix HEAD request bug on an Apache ErrorDocument redirect and preserve @ the status code across the redirect as well. (Rasmus)
26 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
* Finalizing the PHP version of SAPI. Support POST and cookies among other things. * Fully implement ISAPI support - POST and cookies among other things. * Almost completely rewrote phpinfo(). Allow modules to easily display their information in phpinfo() without modifying phpinfo() itself (prototype for the module info function was changed, thus the large amount of updated module files). * Initial extended SAPI support for Apache, completely untested. * CGI now uses SAPI fully as well.
27 years ago
Weed out all BoundsChecker-found bugs
27 years ago
Ok, now actually make it work - maybe...
25 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
Ok, now actually make it work - maybe...
25 years ago
Let's suppress this warning if always_populate is enabled
25 years ago
Ok, now actually make it work - maybe...
25 years ago
More security-related (control) patches: - Avoid displaying errors during startup, unless display_startup_errors is enabled. - Implemented post_size_max limit. Defaults to 8MB. - Implemented file_uploads on/off directive (defaults to on).
26 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
* Get Apache module to compile again with the regex stuff. * Get Apache to propertly work with POST, and some SAPI fixes
27 years ago
- Update .dsp's - Fix a possible crash bug in failed file open error message - Fix SAPI initialization issue that could lead to a crash
27 years ago
Only read POST info if the request method is POST.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Only activate if we're inside an actual request
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Only activate if we're inside an actual request
27 years ago
More abstraction
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
* Finalizing the PHP version of SAPI. Support POST and cookies among other things. * Fully implement ISAPI support - POST and cookies among other things. * Almost completely rewrote phpinfo(). Allow modules to easily display their information in phpinfo() without modifying phpinfo() itself (prototype for the module info function was changed, thus the large amount of updated module files). * Initial extended SAPI support for Apache, completely untested. * CGI now uses SAPI fully as well.
27 years ago
Fixes
27 years ago
@- Improved ISAPI module - it should no longer be necessary to set PHP as @ an ISAPI filter, only as an ISAPI extension, unless you wish to perform @ authentication using PHP. This didn't yet get enough testing, but it @ should work (Zeev) - Fixed auth_user/auth_password memory leak (I didn't have time to test it under Apache, feedback welcome!)
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
request_info.c is dead! long live SAPI @- Finished the server abstraction layer; All of the PHP code is now shared @ across different servers (Apache, CGI, IIS, etc.), except for thin @ interface modules (Zeev)
27 years ago
More abstraction
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
More abstraction
27 years ago
- Implemented is_upload_file()
26 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- Implemented is_upload_file()
26 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
More TSRMLS_FETCH work. Got it under 400 now.
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Handle the Location: header centrally for all SAPI modules.
27 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
- Import Jade Nicoletti's transparent gzip encoding support as an output handler. Works quite nicely! - Fix buglets in output buffering - Add output_handler INI directive
26 years ago
more tsrm cleanup
25 years ago
Use the new state functions @- If header information is sent after output has already been sent, the warning @ message will now state the filename and line number at which the first output @ was made (Zeev)
27 years ago
- Fix an invalid trick (it was valid when header() was using zend_get_parameters(), but it became invalid when someone switched it to zend_get_parameters_ex(), and I decided to remove it anyway). - Remove a redundant function call
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
- Fix an invalid trick (it was valid when header() was using zend_get_parameters(), but it became invalid when someone switched it to zend_get_parameters_ex(), and I decided to remove it anyway). - Remove a redundant function call
27 years ago
no more broken scripts by erroneously terminating header()'s argument with a CR-LF
27 years ago
* Get output buffering to work again * Warn about adding header information after headers are sent * Several fixes
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Add sapi_add_header_ex, which lets you specify whether you want to add or replace a header.
26 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
Fix HTTP/ header handling
27 years ago
This is documented to not be case sensitive and it is not case sensitive in PHP 3, so let's not make it case sensitive. @Make the special Header("http/...") response be case insensitive like 3.0 (Rasmus)
26 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
Fix HTTP/ header handling
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Fix strlcpy use at this place.
26 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
Added the capability to specify a different HTTP Redirection response code before the Location Header. Ex. header("HTTP/1.1 307 Temporary Redirect"); header("Location: URL");
26 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
fix for bug #14776
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
fixed: bufferoverflow in sapi_add_header_ex triggerable by header("WWW-Authenticate: Basic foobar");
25 years ago
# Butt-ugly looking code here, but I need regular expressions to do this. Re-instated safe-mode realm mangling as it was in php 2 and 3 albeit in a somewhat more robust way. @ Re-instated safe-mode realm mangling (Rasmus)
25 years ago
fixed: fix for my broken patch.
25 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
fixed: fix for my broken patch.
25 years ago
Check if PCRE support is compiled in and only use the pcre functions if it is. Otherwise just set the realm to the safe mode user id if it isn't.
25 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
fixed: fix for my broken patch.
25 years ago
Handle the Location: header centrally for all SAPI modules.
27 years ago
ISAPI WORKS!
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
ISAPI WORKS!
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
More TSRMLS_FETCH work. Got it under 400 now.
25 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
ISAPI WORKS!
27 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
- Import Jade Nicoletti's transparent gzip encoding support as an output handler. Works quite nicely! - Fix buglets in output buffering - Add output_handler INI directive
26 years ago
ISAPI WORKS!
27 years ago
Avoid an endless loop situation in case of an error situation while sending headers
26 years ago
ISAPI WORKS!
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
ISAPI WORKS!
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Fix logic.
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
More TSRMLS_FETCH work
25 years ago
* Finally commit that -q patch * Refine SAPI built in header support * Use DllMain() in ISAPI to clean after threads and initialize tsrm/sapi as soon as possible.
27 years ago
More TSRMLS_FETCH work
25 years ago
Fix for #2994
27 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
More TSRMLS_FETCH work
25 years ago
- From CODING_STANDARDS: [6] NEVER USE strncat(). If you're absolutely sure you know what you're doing, check its man page again, and only then, consider using it, and even then, try avoiding it. strncat() is your enemy! - Fix several SAPI services, get rid of the default_content_type (it's always composed of the mime type and charset now). - Win32 works again
27 years ago
Fix for #2994
27 years ago
More TSRMLS_FETCH work
25 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
Avoid an endless loop situation in case of an error situation while sending headers
26 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Fix header("HTTP/..") behaviour * Fix leak WRT http_status_line * Update sapi/README * Remove %PHP_OUTPUT_FILES sort
27 years ago
Added initial headers support in SAPI *untested* It definitely broke the thread-safe CGI, it may have broken other stuff as well.
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
* Add generic POST content-type support. Only application/x-www-form-urlencoded supported at this time, but the framework allows for any other types, including runtime addition of types.
27 years ago
Allow unregistering content types as well.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
Allow unregistering content types as well.
27 years ago
Make POST handling the way it should be. RFC1867, and any future POST handlers we might have in the future now obey to the variables_order directive, and there's a real way modular way to handle POST content. This is all untested, BEFORE_SAPI_POST_PATCH_17_FEB_2000 tagged before submission @- Made multipart/form-data content obey to the variables_order directive (Zeev)
27 years ago
* Get Apache module to compile again with the regex stuff. * Get Apache to propertly work with POST, and some SAPI fixes
27 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
post handler registration done right (never use emalloc in an extension MINIT function)
26 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
- Added support for unknown POST content types (Zeev) - Introduce the convert_to_*_ex() API in strlen()
27 years ago
- Added flush() support to SAPI - Got rid of the old flush() implemenetation in favour of the new one - Added implicit_flush() support to the output buffering layer. @- Added implicit_flush() to control whether flush() should be called @ implicitly after any output (Zeev)
27 years ago
More TSRMLS_FETCH work. Got it under 400 now.
25 years ago
- Added flush() support to SAPI - Got rid of the old flush() implemenetation in favour of the new one - Added implicit_flush() support to the output buffering layer. @- Added implicit_flush() to control whether flush() should be called @ implicitly after any output (Zeev)
27 years ago
The last patch wasn't that good, fix
27 years ago
- Added flush() support to SAPI - Got rid of the old flush() implemenetation in favour of the new one - Added implicit_flush() support to the output buffering layer. @- Added implicit_flush() to control whether flush() should be called @ implicitly after any output (Zeev)
27 years ago
More cleanup...
27 years ago
More TSRMLS_FETCH work. Got it under 400 now.
25 years ago
More cleanup...
27 years ago
More cleanup!
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
More cleanup...
27 years ago
- Change macros from V_ to VCWD_ because of AIX name clash
25 years ago
More cleanup!
27 years ago
More cleanup...
27 years ago
More cleanup!
27 years ago
More cleanup...
27 years ago
More cleanup - move getenv() to SAPI
27 years ago
More TSRMLS_FETCH work. Got it under 400 now.
25 years ago
More cleanup - move getenv() to SAPI
27 years ago
Redesigned thread safety mechanism - nua nua
25 years ago
More cleanup - move getenv() to SAPI
27 years ago
started implementing directives for default mimetype/charset
27 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
- Don't wrap lines... this is annoying while coding.
25 years ago
@- Implemented default_charset and default_mimetype config directives (Stig) Implemented default_charset and default_mimetype configuration directives. Started implementing ticks in PHP.
27 years ago
  1. /*
  2. +----------------------------------------------------------------------+
  3. | PHP Version 4 |
  4. +----------------------------------------------------------------------+
  5. | Copyright (c) 1997-2002 The PHP Group |
  6. +----------------------------------------------------------------------+
  7. | This source file is subject to version 2.02 of the PHP license, |
  8. | that is bundled with this package in the file LICENSE, and is |
  9. | available at through the world-wide-web at |
  10. | http://www.php.net/license/2_02.txt. |
  11. | If you did not receive a copy of the PHP license and are unable to |
  12. | obtain it through the world-wide-web, please send a note to |
  13. | license@php.net so we can mail you a copy immediately. |
  14. +----------------------------------------------------------------------+
  15. | Original design: Shane Caraveo <shane@caraveo.com> |
  16. | Authors: Andi Gutmans <andi@zend.com> |
  17. | Zeev Suraski <zeev@zend.com> |
  18. +----------------------------------------------------------------------+
  19. */
  21. /* $Id$ */
  23. #include <ctype.h>
  24. #include <sys/stat.h>
  26. #include "php.h"
  27. #include "SAPI.h"
  28. #include "ext/standard/php_string.h"
  29. #include "ext/standard/pageinfo.h"
  30. #if HAVE_PCRE || HAVE_BUNDLED_PCRE
  31. #include "ext/pcre/php_pcre.h"
  32. #endif
  33. #ifdef ZTS
  34. #include "TSRM.h"
  35. #endif
  37. #include "rfc1867.h"
  39. #ifdef PHP_WIN32
  40. #define STRCASECMP stricmp
  41. #else
  42. #define STRCASECMP strcasecmp
  43. #endif
  45. #include "php_content_types.h"
  47. static HashTable known_post_content_types;
  49. #ifdef ZTS
  50. SAPI_API int sapi_globals_id;
  51. #else
  52. sapi_globals_struct sapi_globals;
  53. #endif
  55. static void sapi_globals_ctor(sapi_globals_struct *sapi_globals TSRMLS_DC)
  56. {
  57. memset(sapi_globals, 0, sizeof(*sapi_globals));
  58. }
  60. /* True globals (no need for thread safety) */
  61. SAPI_API sapi_module_struct sapi_module;
  64. SAPI_API void sapi_startup(sapi_module_struct *sf)
  65. {
  66. sapi_module = *sf;
  67. zend_hash_init_ex(&known_post_content_types, 5, NULL, NULL, 1, 0);
  69. #ifdef ZTS
  70. ts_allocate_id(&sapi_globals_id, sizeof(sapi_globals_struct), (ts_allocate_ctor) sapi_globals_ctor, NULL);
  71. #else
  72. sapi_globals_ctor(&sapi_globals TSRMLS_CC);
  73. #endif
  75. #ifdef VIRTUAL_DIR
  76. virtual_cwd_startup(); /* Could use shutdown to free the main cwd but it would just slow it down for CGI */
  77. #endif
  79. #ifdef PHP_WIN32
  80. tsrm_win32_startup();
  81. #endif
  83. reentrancy_startup();
  84. }
  86. SAPI_API void sapi_shutdown(void)
  87. {
  88. reentrancy_shutdown();
  89. #ifdef VIRTUAL_DIR
  90. virtual_cwd_shutdown();
  91. #endif
  93. #ifdef PHP_WIN32
  94. tsrm_win32_shutdown();
  95. #endif
  97. zend_hash_destroy(&known_post_content_types);
  98. }
  101. SAPI_API void sapi_free_header(sapi_header_struct *sapi_header)
  102. {
  103. efree(sapi_header->header);
  104. }
  107. SAPI_API void sapi_handle_post(void *arg TSRMLS_DC)
  108. {
  109. if (SG(request_info).post_entry && SG(request_info).content_type_dup) {
  110. SG(request_info).post_entry->post_handler(SG(request_info).content_type_dup, arg TSRMLS_CC);
  111. if (SG(request_info).post_data) {
  112. efree(SG(request_info).post_data);
  113. SG(request_info).post_data = NULL;
  114. }
  115. efree(SG(request_info).content_type_dup);
  116. SG(request_info).content_type_dup = NULL;
  117. }
  118. }
  120. static void sapi_read_post_data(TSRMLS_D)
  121. {
  122. sapi_post_entry *post_entry;
  123. uint content_type_length = strlen(SG(request_info).content_type);
  124. char *content_type = estrndup(SG(request_info).content_type, content_type_length);
  125. char *p;
  126. char oldchar=0;
  127. void (*post_reader_func)(TSRMLS_D);
  130. /* dedicated implementation for increased performance:
  131. * - Make the content type lowercase
  132. * - Trim descriptive data, stay with the content-type only
  133. */
  134. for (p=content_type; p<content_type+content_type_length; p++) {
  135. switch (*p) {
  136. case ';':
  137. case ',':
  138. case ' ':
  139. content_type_length = p-content_type;
  140. oldchar = *p;
  141. *p = 0;
  142. break;
  143. default:
  144. *p = tolower(*p);
  145. break;
  146. }
  147. }
  149. if (zend_hash_find(&known_post_content_types, content_type, content_type_length+1, (void **) &post_entry)==SUCCESS) {
  150. SG(request_info).post_entry = post_entry;
  151. post_reader_func = post_entry->post_reader;
  152. } else {
  153. if (!sapi_module.default_post_reader) {
  154. sapi_module.sapi_error(E_WARNING, "Unsupported content type: '%s'", content_type);
  155. return;
  156. }
  157. SG(request_info).post_entry = NULL;
  158. post_reader_func = sapi_module.default_post_reader;
  159. }
  160. if (oldchar) {
  161. *(p-1) = oldchar;
  162. }
  164. SG(request_info).content_type_dup = content_type;
  166. if(post_reader_func) {
  167. post_reader_func(TSRMLS_C);
  169. if(PG(always_populate_raw_post_data) && sapi_module.default_post_reader) {
  170. sapi_module.default_post_reader(TSRMLS_C);
  171. }
  172. }
  173. }
  176. SAPI_API SAPI_POST_READER_FUNC(sapi_read_standard_form_data)
  177. {
  178. int read_bytes;
  179. int allocated_bytes=SAPI_POST_BLOCK_SIZE+1;
  181. if (SG(request_info).content_length > SG(post_max_size)) {
  182. php_error(E_WARNING, "POST Content-Length of %d bytes exceeds the limit of %d bytes",
  183. SG(request_info).content_length, SG(post_max_size));
  184. return;
  185. }
  186. SG(request_info).post_data = emalloc(allocated_bytes);
  188. for (;;) {
  189. read_bytes = sapi_module.read_post(SG(request_info).post_data+SG(read_post_bytes), SAPI_POST_BLOCK_SIZE TSRMLS_CC);
  190. if (read_bytes<=0) {
  191. break;
  192. }
  193. SG(read_post_bytes) += read_bytes;
  194. if (SG(read_post_bytes) > SG(post_max_size)) {
  195. php_error(E_WARNING, "Actual POST length does not match Content-Length, and exceeds %d bytes", SG(post_max_size));
  196. return;
  197. }
  198. if (read_bytes < SAPI_POST_BLOCK_SIZE) {
  199. break;
  200. }
  201. if (SG(read_post_bytes)+SAPI_POST_BLOCK_SIZE >= allocated_bytes) {
  202. allocated_bytes = SG(read_post_bytes)+SAPI_POST_BLOCK_SIZE+1;
  203. SG(request_info).post_data = erealloc(SG(request_info).post_data, allocated_bytes);
  204. }
  205. }
  206. SG(request_info).post_data[SG(read_post_bytes)] = 0; /* terminating NULL */
  207. SG(request_info).post_data_length = SG(read_post_bytes);
  208. }
  211. SAPI_API char *sapi_get_default_content_type(TSRMLS_D)
  212. {
  213. char *mimetype, *charset, *content_type;
  215. mimetype = SG(default_mimetype) ? SG(default_mimetype) : SAPI_DEFAULT_MIMETYPE;
  216. charset = SG(default_charset) ? SG(default_charset) : SAPI_DEFAULT_CHARSET;
  218. if (strncasecmp(mimetype, "text/", 5) == 0 && *charset) {
  219. int len = strlen(mimetype) + sizeof("; charset=") + strlen(charset);
  220. content_type = emalloc(len);
  221. snprintf(content_type, len, "%s; charset=%s", mimetype, charset);
  222. } else {
  223. content_type = estrdup(mimetype);
  224. }
  225. return content_type;
  226. }
  229. SAPI_API void sapi_get_default_content_type_header(sapi_header_struct *default_header TSRMLS_DC)
  230. {
  231. char *default_content_type = sapi_get_default_content_type(TSRMLS_C);
  232. int default_content_type_len = strlen(default_content_type);
  234. default_header->header_len = (sizeof("Content-type: ")-1) + default_content_type_len;
  235. default_header->header = emalloc(default_header->header_len+1);
  236. memcpy(default_header->header, "Content-type: ", sizeof("Content-type: "));
  237. memcpy(default_header->header+sizeof("Content-type: ")-1, default_content_type, default_content_type_len);
  238. default_header->header[default_header->header_len] = 0;
  239. efree(default_content_type);
  240. }
  242. /*
  243. * Add charset on content-type header if the MIME type starts with
  244. * "text/", the default_charset directive is not empty and
  245. * there is not already a charset option in there.
  246. *
  247. * If "mimetype" is non-NULL, it should point to a pointer allocated
  248. * with emalloc(). If a charset is added, the string will be
  249. * re-allocated and the new length is returned. If mimetype is
  250. * unchanged, 0 is returned.
  251. *
  252. */
  253. SAPI_API size_t sapi_apply_default_charset(char **mimetype, size_t len TSRMLS_DC)
  254. {
  255. char *charset, *newtype;
  256. size_t newlen;
  257. charset = SG(default_charset) ? SG(default_charset) : SAPI_DEFAULT_CHARSET;
  259. if (*charset && strncmp(*mimetype, "text/", 5) == 0 && strstr(*mimetype, "charset=") == NULL) {
  260. newlen = len + (sizeof(";charset=")-1) + strlen(charset);
  261. newtype = emalloc(newlen + 1);
  262. PHP_STRLCPY(newtype, *mimetype, newlen + 1, len);
  263. strlcat(newtype, ";charset=", newlen + 1);
  264. if (*mimetype != NULL) {
  265. efree(*mimetype);
  266. }
  267. *mimetype = newtype;
  268. return newlen;
  269. }
  270. return 0;
  271. }
  274. /*
  275. * Called from php_request_startup() for every request.
  276. */
  277. SAPI_API void sapi_activate(TSRMLS_D)
  278. {
  279. void (*post_reader_func)(TSRMLS_D);
  280. zend_llist_init(&SG(sapi_headers).headers, sizeof(sapi_header_struct), (void (*)(void *)) sapi_free_header, 0);
  281. SG(sapi_headers).send_default_content_type = 1;
  283. /*
  284. SG(sapi_headers).http_response_code = 200;
  285. */
  286. SG(sapi_headers).http_status_line = NULL;
  287. SG(headers_sent) = 0;
  288. SG(read_post_bytes) = 0;
  289. SG(request_info).post_data = NULL;
  290. SG(request_info).current_user = NULL;
  291. SG(request_info).current_user_length = 0;
  292. SG(request_info).no_headers = 0;
  294. /* It's possible to override this general case in the activate() callback, if
  295. * necessary.
  296. */
  297. if (SG(request_info).request_method && !strcmp(SG(request_info).request_method, "HEAD")) {
  298. SG(request_info).headers_only = 1;
  299. } else {
  300. SG(request_info).headers_only = 0;
  301. }
  302. SG(rfc1867_uploaded_files) = NULL;
  304. if (SG(server_context)) {
  305. if (SG(request_info).request_method
  306. && !strcmp(SG(request_info).request_method, "POST")) {
  307. if (!SG(request_info).content_type) {
  308. SG(request_info).content_type_dup = NULL;
  309. if(PG(always_populate_raw_post_data)) {
  310. SG(request_info).post_entry = NULL;
  311. post_reader_func = sapi_module.default_post_reader;
  313. if(post_reader_func) {
  314. post_reader_func(TSRMLS_C);
  316. if(PG(always_populate_raw_post_data) && sapi_module.default_post_reader) {
  317. sapi_module.default_post_reader(TSRMLS_C);
  318. }
  319. }
  320. } else {
  321. sapi_module.sapi_error(E_WARNING, "No content-type in POST request");
  322. }
  323. } else {
  324. sapi_read_post_data(TSRMLS_C);
  325. }
  326. } else {
  327. SG(request_info).content_type_dup = NULL;
  328. }
  329. SG(request_info).cookie_data = sapi_module.read_cookies(TSRMLS_C);
  330. if (sapi_module.activate) {
  331. sapi_module.activate(TSRMLS_C);
  332. }
  333. }
  334. }
  337. SAPI_API void sapi_deactivate(TSRMLS_D)
  338. {
  339. zend_llist_destroy(&SG(sapi_headers).headers);
  340. if (SG(request_info).post_data) {
  341. efree(SG(request_info).post_data);
  342. }
  343. if (SG(request_info).auth_user) {
  344. efree(SG(request_info).auth_user);
  345. }
  346. if (SG(request_info).auth_password) {
  347. efree(SG(request_info).auth_password);
  348. }
  349. if (SG(request_info).content_type_dup) {
  350. efree(SG(request_info).content_type_dup);
  351. }
  352. if (SG(request_info).current_user) {
  353. efree(SG(request_info).current_user);
  354. }
  355. if (sapi_module.deactivate) {
  356. sapi_module.deactivate(TSRMLS_C);
  357. }
  358. if (SG(rfc1867_uploaded_files)) {
  359. destroy_uploaded_files_hash(TSRMLS_C);
  360. }
  361. }
  364. SAPI_API void sapi_initialize_empty_request(TSRMLS_D)
  365. {
  366. SG(server_context) = NULL;
  367. SG(request_info).request_method = NULL;
  368. SG(request_info).auth_user = SG(request_info).auth_password = NULL;
  369. SG(request_info).content_type_dup = NULL;
  370. }
  373. static int sapi_extract_response_code(const char *header_line)
  374. {
  375. int code = 200;
  376. const char *ptr;
  378. for (ptr = header_line; *ptr; ptr++) {
  379. if (*ptr == ' ' && *(ptr + 1) != ' ') {
  380. code = atoi(ptr + 1);
  381. break;
  382. }
  383. }
  385. return code;
  386. }
  388. /* This function expects a *duplicated* string, that was previously emalloc()'d.
  389. * Pointers sent to this functions will be automatically freed by the framework.
  390. */
  391. SAPI_API int sapi_add_header_ex(char *header_line, uint header_line_len, zend_bool duplicate, zend_bool replace TSRMLS_DC)
  392. {
  393. int retval, free_header = 0;
  394. sapi_header_struct sapi_header;
  395. char *colon_offset;
  396. long myuid = 0L;
  398. if (SG(headers_sent) && !SG(request_info).no_headers) {
  399. char *output_start_filename = php_get_output_start_filename(TSRMLS_C);
  400. int output_start_lineno = php_get_output_start_lineno(TSRMLS_C);
  402. if (output_start_filename) {
  403. sapi_module.sapi_error(E_WARNING, "Cannot add header information - headers already sent by (output started at %s:%d)",
  404. output_start_filename, output_start_lineno);
  405. } else {
  406. sapi_module.sapi_error(E_WARNING, "Cannot add header information - headers already sent");
  407. }
  408. if (!duplicate) {
  409. efree(header_line);
  410. }
  411. return FAILURE;
  412. }
  414. if (duplicate) {
  415. header_line = estrndup(header_line, header_line_len);
  416. }
  418. /* cut of trailing spaces, linefeeds and carriage-returns */
  419. while(isspace(header_line[header_line_len-1]))
  420. header_line[--header_line_len]='\0';
  423. sapi_header.header = header_line;
  424. sapi_header.header_len = header_line_len;
  425. sapi_header.replace = replace;
  427. /* Check the header for a few cases that we have special support for in SAPI */
  428. if (header_line_len>=5
  429. && !strncasecmp(header_line, "HTTP/", 5)) {
  430. /* filter out the response code */
  431. SG(sapi_headers).http_response_code = sapi_extract_response_code(header_line);
  432. SG(sapi_headers).http_status_line = header_line;
  433. return SUCCESS;
  434. } else {
  435. colon_offset = strchr(header_line, ':');
  436. if (colon_offset) {
  437. *colon_offset = 0;
  438. if (!STRCASECMP(header_line, "Content-Type")) {
  439. char *ptr = colon_offset, *mimetype = NULL, *newheader;
  440. size_t len = header_line_len - (ptr - header_line), newlen;
  441. while (*ptr == ' ' && *ptr != '\0') {
  442. ptr++;
  443. }
  444. mimetype = estrdup(ptr);
  445. newlen = sapi_apply_default_charset(&mimetype, len TSRMLS_CC);
  446. if (newlen != 0) {
  447. newlen += sizeof("Content-type: ");
  448. newheader = emalloc(newlen);
  449. PHP_STRLCPY(newheader, "Content-type: ", newlen, sizeof("Content-type: ")-1);
  450. strlcat(newheader, mimetype, newlen);
  451. sapi_header.header = newheader;
  452. sapi_header.header_len = newlen - 1;
  453. colon_offset = strchr(newheader, ':');
  454. *colon_offset = '\0';
  455. free_header = 1;
  456. }
  457. efree(mimetype);
  458. SG(sapi_headers).send_default_content_type = 0;
  459. } else if (!STRCASECMP(header_line, "Location")) {
  460. if (SG(sapi_headers).http_response_code < 300 ||
  461. SG(sapi_headers).http_response_code > 307) {
  462. /* Return a Found Redirect if one is not already specified */
  463. SG(sapi_headers).http_response_code = 302;
  464. }
  465. } else if (!STRCASECMP(header_line, "WWW-Authenticate")) { /* HTTP Authentication */
  466. int newlen;
  467. char *result, *newheader;
  468. #if HAVE_PCRE || HAVE_BUNDLED_PCRE
  469. zval *repl_temp;
  470. char *ptr = colon_offset+1;
  471. int ptr_len=0, result_len = 0;
  472. #endif
  474. SG(sapi_headers).http_response_code = 401; /* authentication-required */
  475. #if HAVE_PCRE || HAVE_BUNDLED_PCRE
  476. if(PG(safe_mode)) {
  477. myuid = php_getuid();
  479. ptr_len = strlen(ptr);
  480. MAKE_STD_ZVAL(repl_temp);
  481. Z_TYPE_P(repl_temp) = IS_STRING;
  482. Z_STRVAL_P(repl_temp) = emalloc(32);
  483. Z_STRLEN_P(repl_temp) = sprintf(Z_STRVAL_P(repl_temp), "realm=\"\\1-%ld\"", myuid);
  484. /* Modify quoted realm value */
  485. result = php_pcre_replace("/realm=\"(.*?)\"/i", 16,
  486. ptr, ptr_len,
  487. repl_temp,
  488. 0, &result_len, -1 TSRMLS_CC);
  489. if(result_len==ptr_len) {
  490. efree(result);
  491. sprintf(Z_STRVAL_P(repl_temp), "realm=\\1-%ld\\2", myuid);
  492. /* modify unquoted realm value */
  493. result = php_pcre_replace("/realm=([^\\s]+)(.*)/i", 21,
  494. ptr, ptr_len,
  495. repl_temp,
  496. 0, &result_len, -1 TSRMLS_CC);
  497. if(result_len==ptr_len) {
  498. char *lower_temp = estrdup(ptr);
  499. char conv_temp[32];
  500. int conv_len;
  502. php_strtolower(lower_temp,strlen(lower_temp));
  503. /* If there is no realm string at all, append one */
  504. if(!strstr(lower_temp,"realm")) {
  505. efree(result);
  506. conv_len = sprintf(conv_temp," realm=\"%ld\"",myuid);
  507. result = emalloc(ptr_len+conv_len+1);
  508. result_len = ptr_len+conv_len;
  509. memcpy(result, ptr, ptr_len);
  510. memcpy(result+ptr_len, conv_temp, conv_len);
  511. *(result+ptr_len+conv_len) = '\0';
  512. }
  513. efree(lower_temp);
  514. }
  515. }
  516. newlen = sizeof("WWW-Authenticate: ") + result_len;
  517. newheader = emalloc(newlen+1);
  518. sprintf(newheader,"WWW-Authenticate: %s", result);
  519. efree(header_line);
  520. sapi_header.header = newheader;
  521. sapi_header.header_len = newlen;
  522. efree(result);
  523. efree(Z_STRVAL_P(repl_temp));
  524. efree(repl_temp);
  525. }
  526. #else
  527. if(PG(safe_mode)) {
  528. myuid = php_getuid();
  529. result = emalloc(32);
  530. newlen = sprintf(result, "WWW-Authenticate: %ld", myuid);
  531. newheader = estrndup(result,newlen);
  532. efree(header_line);
  533. sapi_header.header = newheader;
  534. sapi_header.header_len = newlen;
  535. efree(result);
  536. }
  537. #endif
  538. }
  539. if (sapi_header.header==header_line) {
  540. *colon_offset = ':';
  541. }
  542. }
  543. }
  545. if (sapi_module.header_handler) {
  546. retval = sapi_module.header_handler(&sapi_header, &SG(sapi_headers) TSRMLS_CC);
  547. } else {
  548. retval = SAPI_HEADER_ADD;
  549. }
  550. if (retval & SAPI_HEADER_DELETE_ALL) {
  551. zend_llist_clean(&SG(sapi_headers).headers);
  552. }
  553. if (retval & SAPI_HEADER_ADD) {
  554. zend_llist_add_element(&SG(sapi_headers).headers, (void *) &sapi_header);
  555. }
  556. if (free_header) {
  557. efree(sapi_header.header);
  558. }
  559. return SUCCESS;
  560. }
  563. SAPI_API int sapi_send_headers(TSRMLS_D)
  564. {
  565. int retval;
  566. int ret = FAILURE;
  568. if (SG(headers_sent) || SG(request_info).no_headers) {
  569. return SUCCESS;
  570. }
  572. /* Success-oriented. We set headers_sent to 1 here to avoid an infinite loop
  573. * in case of an error situation.
  574. */
  575. SG(headers_sent) = 1;
  577. if (sapi_module.send_headers) {
  578. retval = sapi_module.send_headers(&SG(sapi_headers) TSRMLS_CC);
  579. } else {
  580. retval = SAPI_HEADER_DO_SEND;
  581. }
  583. switch (retval) {
  584. case SAPI_HEADER_SENT_SUCCESSFULLY:
  585. ret = SUCCESS;
  586. break;
  587. case SAPI_HEADER_DO_SEND:
  588. if (SG(sapi_headers).http_status_line) {
  589. sapi_header_struct http_status_line;
  591. http_status_line.header = SG(sapi_headers).http_status_line;
  592. http_status_line.header_len = strlen(SG(sapi_headers).http_status_line);
  593. sapi_module.send_header(&http_status_line, SG(server_context) TSRMLS_CC);
  594. }
  595. zend_llist_apply_with_argument(&SG(sapi_headers).headers, (llist_apply_with_arg_func_t) sapi_module.send_header, SG(server_context) TSRMLS_CC);
  596. if(SG(sapi_headers).send_default_content_type) {
  597. sapi_header_struct default_header;
  599. sapi_get_default_content_type_header(&default_header TSRMLS_CC);
  600. sapi_module.send_header(&default_header, SG(server_context) TSRMLS_CC);
  601. sapi_free_header(&default_header);
  602. }
  603. sapi_module.send_header(NULL, SG(server_context) TSRMLS_CC);
  604. ret = SUCCESS;
  605. break;
  606. case SAPI_HEADER_SEND_FAILED:
  607. SG(headers_sent) = 0;
  608. ret = FAILURE;
  609. break;
  610. }
  612. if (SG(sapi_headers).http_status_line) {
  613. efree(SG(sapi_headers).http_status_line);
  614. }
  616. return ret;
  617. }
  620. SAPI_API int sapi_register_post_entries(sapi_post_entry *post_entries)
  621. {
  622. sapi_post_entry *p=post_entries;
  624. while (p->content_type) {
  625. if (sapi_register_post_entry(p)==FAILURE) {
  626. return FAILURE;
  627. }
  628. p++;
  629. }
  630. return SUCCESS;
  631. }
  634. SAPI_API int sapi_register_post_entry(sapi_post_entry *post_entry)
  635. {
  636. return zend_hash_add(&known_post_content_types, post_entry->content_type, post_entry->content_type_len+1, (void *) post_entry, sizeof(sapi_post_entry), NULL);
  637. }
  639. SAPI_API void sapi_unregister_post_entry(sapi_post_entry *post_entry)
  640. {
  641. zend_hash_del(&known_post_content_types, post_entry->content_type, post_entry->content_type_len+1);
  642. }
  645. SAPI_API int sapi_register_default_post_reader(void (*default_post_reader)(TSRMLS_D))
  646. {
  647. sapi_module.default_post_reader = default_post_reader;
  648. return SUCCESS;
  649. }
  652. SAPI_API int sapi_flush(TSRMLS_D)
  653. {
  654. if (sapi_module.flush) {
  655. sapi_module.flush(SG(server_context));
  656. return SUCCESS;
  657. } else {
  658. return FAILURE;
  659. }
  660. }
  662. SAPI_API struct stat *sapi_get_stat(TSRMLS_D)
  663. {
  664. if (sapi_module.get_stat) {
  665. return sapi_module.get_stat(TSRMLS_C);
  666. } else {
  667. if (!SG(request_info).path_translated || (VCWD_STAT(SG(request_info).path_translated, &SG(global_stat))==-1)) {
  668. return NULL;
  669. }
  670. return &SG(global_stat);
  671. }
  672. }
  675. SAPI_API char *sapi_getenv(char *name, size_t name_len TSRMLS_DC)
  676. {
  677. if (sapi_module.getenv) {
  678. return sapi_module.getenv(name, name_len TSRMLS_CC);
  679. } else {
  680. return NULL;
  681. }
  682. }
  684. /*
  685. * Local variables:
  686. * tab-width: 4
  687. * c-basic-offset: 4
  688. * End:
  689. * vim600: sw=4 ts=4 fdm=marker
  690. * vim<600: sw=4 ts=4
  691. */