PageRenderTime 26ms CodeModel.GetById 21ms RepoModel.GetById 0ms app.codeStats 0ms

/ext/opcache/zend_accelerator_blacklist.c

http://github.com/php/php-src
C | 378 lines | 308 code | 42 blank | 28 comment | 65 complexity | 7a83e13784834dcdbb24ba54bec18d0a MD5 | raw file
Possible License(s): BSD-2-Clause, BSD-3-Clause, MPL-2.0-no-copyleft-exception, LGPL-2.1 
    

  1. /*
    2. 

  2.    +----------------------------------------------------------------------+
    3. 

  3.    | Zend OPcache                                                         |
    4. 

  4.    +----------------------------------------------------------------------+
    5. 

  5.    | Copyright (c) The PHP Group                                          |
    6. 

  6.    +----------------------------------------------------------------------+
    7. 

  7.    | This source file is subject to version 3.01 of the PHP license,      |
    8. 

  8.    | that is bundled with this package in the file LICENSE, and is        |
    9. 

  9.    | available through the world-wide-web at the following url:           |
    10. 

  10.    | http://www.php.net/license/3_01.txt                                  |
    11. 

  11.    | If you did not receive a copy of the PHP license and are unable to   |
    12. 

  12.    | obtain it through the world-wide-web, please send a note to          |
    13. 

  13.    | license@php.net so we can mail you a copy immediately.               |
    14. 

  14.    +----------------------------------------------------------------------+
    15. 

  15.    | Authors: Andi Gutmans <andi@php.net>                                 |
    16. 

  16.    |          Zeev Suraski <zeev@php.net>                                 |
    17. 

  17.    |          Stanislav Malyshev <stas@zend.com>                          |
    18. 

  18.    |          Dmitry Stogov <dmitry@php.net>                              |
    19. 

  19.    +----------------------------------------------------------------------+
    20. 

  20. */
    21. 

  21. 

  22. #include "main/php.h"
    23. 

  23. #include "main/fopen_wrappers.h"
    24. 

  24. #include "ZendAccelerator.h"
    25. 

  25. #include "zend_accelerator_blacklist.h"
    26. 

  26. 

  27. #ifdef ZEND_WIN32
    28. 

  28. # define REGEX_MODE (REG_EXTENDED|REG_NOSUB|REG_ICASE)
    29. 

  29. #else
    30. 

  30. # define REGEX_MODE (REG_EXTENDED|REG_NOSUB)
    31. 

  31. #endif
    32. 

  32. 

  33. #ifdef HAVE_GLOB
    34. 

  34. #ifdef PHP_WIN32
    35. 

  35. #include "win32/glob.h"
    36. 

  36. #else
    37. 

  37. #include <glob.h>
    38. 

  38. #endif
    39. 

  39. #endif
    40. 

  40. 

  41. #include "ext/pcre/php_pcre.h"
    42. 

  42. 

  43. #define ZEND_BLACKLIST_BLOCK_SIZE	32
    44. 

  44. 

  45. struct _zend_regexp_list {
    46. 

  46. 	pcre2_code       *re;
    47. 

  47. 	zend_regexp_list *next;
    48. 

  48. };
    49. 

  49. 

  50. zend_blacklist accel_blacklist;
    51. 

  51. 

  52. void zend_accel_blacklist_init(zend_blacklist *blacklist)
    53. 

  53. {
    54. 

  54. 	blacklist->pos = 0;
    55. 

  55. 	blacklist->size = ZEND_BLACKLIST_BLOCK_SIZE;
    56. 

  56. 

  57. 	if (blacklist->entries != NULL) {
    58. 

  58. 		zend_accel_blacklist_shutdown(blacklist);
    59. 

  59. 	}
    60. 

  60. 

  61. 	blacklist->entries = (zend_blacklist_entry *) calloc(sizeof(zend_blacklist_entry), blacklist->size);
    62. 

  62. 	if (!blacklist->entries) {
    63. 

  63. 		zend_accel_error(ACCEL_LOG_FATAL, "Blacklist initialization: no memory\n");
    64. 

  64. 		return;
    65. 

  65. 	}
    66. 

  66. 	blacklist->regexp_list = NULL;
    67. 

  67. }
    68. 

  68. 

  69. static void blacklist_report_regexp_error(const char *pcre_error, int pcre_error_offset)
    70. 

  70. {
    71. 

  71. 	zend_accel_error(ACCEL_LOG_ERROR, "Blacklist compilation failed (offset: %d), %s\n", pcre_error_offset, pcre_error);
    72. 

  72. }
    73. 

  73. 

  74. static void zend_accel_blacklist_update_regexp(zend_blacklist *blacklist)
    75. 

  75. {
    76. 

  76. 	PCRE2_UCHAR pcre_error[128];
    77. 

  77. 	int i, errnumber;
    78. 

  78. 	PCRE2_SIZE pcre_error_offset;
    79. 

  79. 	zend_regexp_list **regexp_list_it, *it;
    80. 

  80. 	char regexp[12*1024], *p, *end, *c, *backtrack = NULL;
    81. 

  81. 	pcre2_compile_context *cctx = php_pcre_cctx();
    82. 

  82. 

  83. 	if (blacklist->pos == 0) {
    84. 

  84. 		/* we have no blacklist to talk about */
    85. 

  85. 		return;
    86. 

  86. 	}
    87. 

  87. 

  88. 	regexp_list_it = &(blacklist->regexp_list);
    89. 

  89. 

  90. 	regexp[0] = '^';
    91. 

  91. 	regexp[1] = '(';
    92. 

  92. 	p = regexp + 2;
    93. 

  93. 	end = regexp + sizeof(regexp) - sizeof("[^\\\\]*)\0");
    94. 

  94. 

  95. 	for (i = 0; i < blacklist->pos; ) {
    96. 

  96. 		c = blacklist->entries[i].path;
    97. 

  97. 		if (p + blacklist->entries[i].path_length < end) {
    98. 

  98. 			while (*c && p < end) {
    99. 

  99. 				switch (*c) {
    100. 

  100. 					case '?':
    101. 

  101. 						c++;
    102. 

  102. #ifdef ZEND_WIN32
    103. 

  103. 				 		p[0] = '[';			/* * => [^\\] on Win32 */
    104. 

  104. 					 	p[1] = '^';
    105. 

  105. 					 	p[2] = '\\';
    106. 

  106. 					 	p[3] = '\\';
    107. 

  107. 					 	p[4] = ']';
    108. 

  108. 						p += 5;
    109. 

  109. #else
    110. 

  110. 					 	p[0] = '[';			/* * => [^/] on *nix */
    111. 

  111. 					 	p[1] = '^';
    112. 

  112. 					 	p[2] = '/';
    113. 

  113. 					 	p[3] = ']';
    114. 

  114. 						p += 4;
    115. 

  115. #endif
    116. 

  116. 						break;
    117. 

  117. 					case '*':
    118. 

  118. 						c++;
    119. 

  119. 						if (*c == '*') {
    120. 

  120. 							c++;
    121. 

  121. 						 	p[0] = '.';			/* ** => .* */
    122. 

  122. 							p[1] = '*';
    123. 

  123. 							p += 2;
    124. 

  124. 						} else {
    125. 

  125. #ifdef ZEND_WIN32
    126. 

  126. 						 	p[0] = '[';			/* * => [^\\]* on Win32 */
    127. 

  127. 						 	p[1] = '^';
    128. 

  128. 						 	p[2] = '\\';
    129. 

  129. 						 	p[3] = '\\';
    130. 

  130. 						 	p[4] = ']';
    131. 

  131. 						 	p[5] = '*';
    132. 

  132. 							p += 6;
    133. 

  133. #else
    134. 

  134. 						 	p[0] = '[';			/* * => [^/]* on *nix */
    135. 

  135. 						 	p[1] = '^';
    136. 

  136. 						 	p[2] = '/';
    137. 

  137. 						 	p[3] = ']';
    138. 

  138. 						 	p[4] = '*';
    139. 

  139. 							p += 5;
    140. 

  140. #endif
    141. 

  141. 						}
    142. 

  142. 						break;
    143. 

  143. 					case '^':
    144. 

  144. 					case '.':
    145. 

  145. 					case '[':
    146. 

  146. 					case ']':
    147. 

  147. 					case '$':
    148. 

  148. 					case '(':
    149. 

  149. 					case ')':
    150. 

  150. 					case '|':
    151. 

  151. 					case '+':
    152. 

  152. 					case '{':
    153. 

  153. 					case '}':
    154. 

  154. 					case '\\':
    155. 

  155. 						*p++ = '\\';
    156. 

  156. 						/* break missing intentionally */
    157. 

  157. 					default:
    158. 

  158. 						*p++ = *c++;
    159. 

  159. 				}
    160. 

  160. 			}
    161. 

  161. 		}
    162. 

  162. 

  163. 		if (*c || i == blacklist->pos - 1) {
    164. 

  164. 			if (*c) {
    165. 

  165. 				if (!backtrack) {
    166. 

  166. 					zend_accel_error(ACCEL_LOG_ERROR, "Too long blacklist entry\n");
    167. 

  167. 				}
    168. 

  168. 				p = backtrack;
    169. 

  169. 			} else {
    170. 

  170. 				i++;
    171. 

  171. 			}
    172. 

  172. 			*p++ = ')';
    173. 

  173. 

  174. 			it = (zend_regexp_list*)malloc(sizeof(zend_regexp_list));
    175. 

  175. 			if (!it) {
    176. 

  176. 				zend_accel_error(ACCEL_LOG_ERROR, "malloc() failed\n");
    177. 

  177. 				return;
    178. 

  178. 			}
    179. 

  179. 			it->next = NULL;
    180. 

  180. 

  181. 			if ((it->re = pcre2_compile((PCRE2_SPTR)regexp, p - regexp, PCRE2_NO_AUTO_CAPTURE, &errnumber, &pcre_error_offset, cctx)) == NULL) {
    182. 

  182. 				free(it);
    183. 

  183. 				pcre2_get_error_message(errnumber, pcre_error, sizeof(pcre_error));
    184. 

  184. 				blacklist_report_regexp_error((char *)pcre_error, pcre_error_offset);
    185. 

  185. 				return;
    186. 

  186. 			}
    187. 

  187. #ifdef HAVE_PCRE_JIT_SUPPORT
    188. 

  188. 			if (0 > pcre2_jit_compile(it->re, PCRE2_JIT_COMPLETE)) {
    189. 

  189. 				/* Don't return here, even JIT could fail to compile, the pattern is still usable. */
    190. 

  190. 				pcre2_get_error_message(errnumber, pcre_error, sizeof(pcre_error));
    191. 

  191. 				zend_accel_error(ACCEL_LOG_WARNING, "Blacklist JIT compilation failed, %s\n", pcre_error);
    192. 

  192. 			}
    193. 

  193. #endif
    194. 

  194. 			/* prepare for the next iteration */
    195. 

  195. 			p = regexp + 2;
    196. 

  196. 			*regexp_list_it = it;
    197. 

  197. 			regexp_list_it = &it->next;
    198. 

  198. 		} else {
    199. 

  199. 			backtrack = p;
    200. 

  200. 			*p++ = '|';
    201. 

  201. 			i++;
    202. 

  202. 		}
    203. 

  203. 	}
    204. 

  204. }
    205. 

  205. 

  206. void zend_accel_blacklist_shutdown(zend_blacklist *blacklist)
    207. 

  207. {
    208. 

  208. 	zend_blacklist_entry *p = blacklist->entries, *end = blacklist->entries + blacklist->pos;
    209. 

  209. 

  210. 	while (p<end) {
    211. 

  211. 		free(p->path);
    212. 

  212. 		p++;
    213. 

  213. 	}
    214. 

  214. 	free(blacklist->entries);
    215. 

  215. 	blacklist->entries = NULL;
    216. 

  216. 	if (blacklist->regexp_list) {
    217. 

  217. 		zend_regexp_list *temp, *it = blacklist->regexp_list;
    218. 

  218. 		while (it) {
    219. 

  219. 			pcre2_code_free(it->re);
    220. 

  220. 			temp = it;
    221. 

  221. 			it = it->next;
    222. 

  222. 			free(temp);
    223. 

  223. 		}
    224. 

  224. 	}
    225. 

  225. }
    226. 

  226. 

  227. static inline void zend_accel_blacklist_allocate(zend_blacklist *blacklist)
    228. 

  228. {
    229. 

  229. 	if (blacklist->pos == blacklist->size) {
    230. 

  230. 		blacklist->size += ZEND_BLACKLIST_BLOCK_SIZE;
    231. 

  231. 		blacklist->entries = (zend_blacklist_entry *) realloc(blacklist->entries, sizeof(zend_blacklist_entry)*blacklist->size);
    232. 

  232. 	}
    233. 

  233. }
    234. 

  234. 

  235. static void zend_accel_blacklist_loadone(zend_blacklist *blacklist, char *filename)
    236. 

  236. {
    237. 

  237. 	char buf[MAXPATHLEN + 1], real_path[MAXPATHLEN + 1], *blacklist_path = NULL;
    238. 

  238. 	FILE *fp;
    239. 

  239. 	int path_length, blacklist_path_length;
    240. 

  240. 

  241. 	if ((fp = fopen(filename, "r")) == NULL) {
    242. 

  242. 		zend_accel_error(ACCEL_LOG_WARNING, "Cannot load blacklist file: %s\n", filename);
    243. 

  243. 		return;
    244. 

  244. 	}
    245. 

  245. 

  246. 	zend_accel_error(ACCEL_LOG_DEBUG,"Loading blacklist file:  '%s'", filename);
    247. 

  247. 

  248. 	if (VCWD_REALPATH(filename, buf)) {
    249. 

  249. 		blacklist_path_length = zend_dirname(buf, strlen(buf));
    250. 

  250. 		blacklist_path = zend_strndup(buf, blacklist_path_length);
    251. 

  251. 	}
    252. 

  252. 

  253. 	memset(buf, 0, sizeof(buf));
    254. 

  254. 	memset(real_path, 0, sizeof(real_path));
    255. 

  255. 

  256. 	while (fgets(buf, MAXPATHLEN, fp) != NULL) {
    257. 

  257. 		char *path_dup, *pbuf;
    258. 

  258. 		path_length = strlen(buf);
    259. 

  259. 		if (path_length > 0 && buf[path_length - 1] == '\n') {
    260. 

  260. 			buf[--path_length] = 0;
    261. 

  261. 			if (path_length > 0 && buf[path_length - 1] == '\r') {
    262. 

  262. 				buf[--path_length] = 0;
    263. 

  263. 			}
    264. 

  264. 		}
    265. 

  265. 

  266. 		/* Strip ctrl-m prefix */
    267. 

  267. 		pbuf = &buf[0];
    268. 

  268. 		while (*pbuf == '\r') {
    269. 

  269. 			*pbuf++ = 0;
    270. 

  270. 			path_length--;
    271. 

  271. 		}
    272. 

  272. 

  273. 		/* strip \" */
    274. 

  274. 		if (pbuf[0] == '\"' && pbuf[path_length - 1]== '\"') {
    275. 

  275. 			*pbuf++ = 0;
    276. 

  276. 			path_length -= 2;
    277. 

  277. 		}
    278. 

  278. 

  279. 		if (path_length == 0) {
    280. 

  280. 			continue;
    281. 

  281. 		}
    282. 

  282. 

  283. 		/* skip comments */
    284. 

  284. 		if (pbuf[0]==';') {
    285. 

  285. 			continue;
    286. 

  286. 		}
    287. 

  287. 

  288. 		path_dup = zend_strndup(pbuf, path_length);
    289. 

  289. 		if (blacklist_path) {
    290. 

  290. 			expand_filepath_ex(path_dup, real_path, blacklist_path, blacklist_path_length);
    291. 

  291. 		} else {
    292. 

  292. 			expand_filepath(path_dup, real_path);
    293. 

  293. 		}
    294. 

  294. 		path_length = strlen(real_path);
    295. 

  295. 

  296. 		free(path_dup);
    297. 

  297. 

  298. 		zend_accel_blacklist_allocate(blacklist);
    299. 

  299. 		blacklist->entries[blacklist->pos].path_length = path_length;
    300. 

  300. 		blacklist->entries[blacklist->pos].path = (char *)malloc(path_length + 1);
    301. 

  301. 		if (!blacklist->entries[blacklist->pos].path) {
    302. 

  302. 			zend_accel_error(ACCEL_LOG_ERROR, "malloc() failed\n");
    303. 

  303. 			fclose(fp);
    304. 

  304. 			return;
    305. 

  305. 		}
    306. 

  306. 		blacklist->entries[blacklist->pos].id = blacklist->pos;
    307. 

  307. 		memcpy(blacklist->entries[blacklist->pos].path, real_path, path_length + 1);
    308. 

  308. 		blacklist->pos++;
    309. 

  309. 	}
    310. 

  310. 	fclose(fp);
    311. 

  311. 	if (blacklist_path) {
    312. 

  312. 		free(blacklist_path);
    313. 

  313. 	}
    314. 

  314. }
    315. 

  315. 

  316. void zend_accel_blacklist_load(zend_blacklist *blacklist, char *filename)
    317. 

  317. {
    318. 

  318. #ifdef HAVE_GLOB
    319. 

  319. 	glob_t globbuf;
    320. 

  320. 	int    ret;
    321. 

  321. 	unsigned int i;
    322. 

  322. 

  323. 	memset(&globbuf, 0, sizeof(glob_t));
    324. 

  324. 

  325. 	ret = glob(filename, 0, NULL, &globbuf);
    326. 

  326. #ifdef GLOB_NOMATCH
    327. 

  327. 	if (ret == GLOB_NOMATCH || !globbuf.gl_pathc) {
    328. 

  328. #else
    329. 

  329. 	if (!globbuf.gl_pathc) {
    330. 

  330. #endif
    331. 

  331. 		zend_accel_error(ACCEL_LOG_WARNING, "No blacklist file found matching: %s\n", filename);
    332. 

  332. 	} else {
    333. 

  333. 		for(i=0 ; i<globbuf.gl_pathc; i++) {
    334. 

  334. 			zend_accel_blacklist_loadone(blacklist, globbuf.gl_pathv[i]);
    335. 

  335. 		}
    336. 

  336. 		globfree(&globbuf);
    337. 

  337. 	}
    338. 

  338. #else
    339. 

  339. 	zend_accel_blacklist_loadone(blacklist, filename);
    340. 

  340. #endif
    341. 

  341. 	zend_accel_blacklist_update_regexp(blacklist);
    342. 

  342. }
    343. 

  343. 

  344. zend_bool zend_accel_blacklist_is_blacklisted(zend_blacklist *blacklist, char *verify_path, size_t verify_path_len)
    345. 

  345. {
    346. 

  346. 	int ret = 0;
    347. 

  347. 	zend_regexp_list *regexp_list_it = blacklist->regexp_list;
    348. 

  348. 	pcre2_match_context *mctx = php_pcre_mctx();
    349. 

  349. 

  350. 	if (regexp_list_it == NULL) {
    351. 

  351. 		return 0;
    352. 

  352. 	}
    353. 

  353. 	while (regexp_list_it != NULL) {
    354. 

  354. 		pcre2_match_data *match_data = php_pcre_create_match_data(0, regexp_list_it->re);
    355. 

  355. 		if (!match_data) {
    356. 

  356. 			/* Alloc failed, but next one could still come through and match. */
    357. 

  357. 			continue;
    358. 

  358. 		}
    359. 

  359. 		int rc = pcre2_match(regexp_list_it->re, (PCRE2_SPTR)verify_path, verify_path_len, 0, 0, match_data, mctx);
    360. 

  360. 		if (rc >= 0) {
    361. 

  361. 			ret = 1;
    362. 

  362. 			php_pcre_free_match_data(match_data);
    363. 

  363. 			break;
    364. 

  364. 		}
    365. 

  365. 		php_pcre_free_match_data(match_data);
    366. 

  366. 		regexp_list_it = regexp_list_it->next;
    367. 

  367. 	}
    368. 

  368. 	return ret;
    369. 

  369. }
    370. 

  370. 

  371. void zend_accel_blacklist_apply(zend_blacklist *blacklist, blacklist_apply_func_arg_t func, void *argument)
    372. 

  372. {
    373. 

  373. 	int i;
    374. 

  374. 

  375. 	for (i = 0; i < blacklist->pos; i++) {
    376. 

  376. 		func(&blacklist->entries[i], argument);
    377. 

  377. 	}
    378. 

  378. }
    379. 

  379.