PHP  
 PHP: Test and Code Coverage Analysis
downloads | QA | documentation | faq | getting help | mailing lists | reporting bugs | php.net sites | links | my php.net 
 

LCOV - code coverage report
Current view: top level - ext/phar - tar.c (source / functions) Hit Total Coverage
Test: PHP Code Coverage Lines: 532 744 71.5 %
Date: 2016-08-28 Functions: 12 12 100.0 %
Legend: Lines: hit not hit

          Line data    Source code
       1             : /*
       2             :   +----------------------------------------------------------------------+
       3             :   | TAR archive support for Phar                                         |
       4             :   +----------------------------------------------------------------------+
       5             :   | Copyright (c) 2005-2016 The PHP Group                                |
       6             :   +----------------------------------------------------------------------+
       7             :   | This source file is subject to version 3.01 of the PHP license,      |
       8             :   | that is bundled with this package in the file LICENSE, and is        |
       9             :   | available through the world-wide-web at the following url:           |
      10             :   | http://www.php.net/license/3_01.txt.                                 |
      11             :   | If you did not receive a copy of the PHP license and are unable to   |
      12             :   | obtain it through the world-wide-web, please send a note to          |
      13             :   | license@php.net so we can mail you a copy immediately.               |
      14             :   +----------------------------------------------------------------------+
      15             :   | Authors: Dmitry Stogov <dmitry@zend.com>                             |
      16             :   |          Gregory Beaver <cellog@php.net>                             |
      17             :   +----------------------------------------------------------------------+
      18             : */
      19             : 
      20             : #include "phar_internal.h"
      21             : 
      22        1685 : static uint32_t phar_tar_number(char *buf, int len) /* {{{ */
      23             : {
      24        1685 :         uint32_t num = 0;
      25        1685 :         int i = 0;
      26             : 
      27        4780 :         while (i < len && buf[i] == ' ') {
      28        1410 :                 ++i;
      29             :         }
      30             : 
      31       15222 :         while (i < len && buf[i] >= '0' && buf[i] <= '7') {
      32       11852 :                 num = num * 8 + (buf[i] - '0');
      33       11852 :                 ++i;
      34             :         }
      35             : 
      36        1685 :         return num;
      37             : }
      38             : /* }}} */
      39             : 
      40             : /* adapted from format_octal() in libarchive
      41             :  *
      42             :  * Copyright (c) 2003-2009 Tim Kientzle
      43             :  * All rights reserved.
      44             :  *
      45             :  * Redistribution and use in source and binary forms, with or without
      46             :  * modification, are permitted provided that the following conditions
      47             :  * are met:
      48             :  * 1. Redistributions of source code must retain the above copyright
      49             :  *    notice, this list of conditions and the following disclaimer.
      50             :  * 2. Redistributions in binary form must reproduce the above copyright
      51             :  *    notice, this list of conditions and the following disclaimer in the
      52             :  *    documentation and/or other materials provided with the distribution.
      53             :  *
      54             :  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR
      55             :  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
      56             :  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
      57             :  * IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT,
      58             :  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
      59             :  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
      60             :  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
      61             :  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
      62             :  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
      63             :  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
      64             :  */
      65        3520 : static int phar_tar_octal(char *buf, uint32_t val, int len) /* {{{ */
      66             : {
      67        3520 :         char *p = buf;
      68        3520 :         int s = len;
      69             : 
      70        3520 :         p += len;               /* Start at the end and work backwards. */
      71       38720 :         while (s-- > 0) {
      72       31680 :                 *--p = (char)('0' + (val & 7));
      73       31680 :                 val >>= 3;
      74             :         }
      75             : 
      76        3520 :         if (val == 0)
      77        3520 :                 return SUCCESS;
      78             : 
      79             :         /* If it overflowed, fill field with max value. */
      80           0 :         while (len-- > 0)
      81           0 :                 *p++ = '7';
      82             : 
      83           0 :         return FAILURE;
      84             : }
      85             : /* }}} */
      86             : 
      87        1418 : static uint32_t phar_tar_checksum(char *buf, int len) /* {{{ */
      88             : {
      89        1418 :         uint32_t sum = 0;
      90        1418 :         char *end = buf + len;
      91             : 
      92      712532 :         while (buf != end) {
      93      709696 :                 sum += (unsigned char)*buf;
      94      709696 :                 ++buf;
      95             :         }
      96        1418 :         return sum;
      97             : }
      98             : /* }}} */
      99             : 
     100         167 : int phar_is_tar(char *buf, char *fname) /* {{{ */
     101             : {
     102         167 :         tar_header *header = (tar_header *) buf;
     103         167 :         uint32_t checksum = phar_tar_number(header->checksum, sizeof(header->checksum));
     104             :         uint32_t ret;
     105             :         char save[sizeof(header->checksum)], *bname;
     106             : 
     107             :         /* assume that the first filename in a tar won't begin with <?php */
     108         167 :         if (!strncmp(buf, "<?php", sizeof("<?php")-1)) {
     109          82 :                 return 0;
     110             :         }
     111             : 
     112          85 :         memcpy(save, header->checksum, sizeof(header->checksum));
     113          85 :         memset(header->checksum, ' ', sizeof(header->checksum));
     114          85 :         ret = (checksum == phar_tar_checksum(buf, 512));
     115          85 :         memcpy(header->checksum, save, sizeof(header->checksum));
     116          85 :         if ((bname = strrchr(fname, PHP_DIR_SEPARATOR))) {
     117          85 :                 fname = bname;
     118             :         }
     119          85 :         if (!ret && (bname = strstr(fname, ".tar")) && (bname[4] == '\0' || bname[4] == '.')) {
     120             :                 /* probably a corrupted tar - so we will pretend it is one */
     121           4 :                 return 1;
     122             :         }
     123          81 :         return ret;
     124             : }
     125             : /* }}} */
     126             : 
     127          83 : int phar_open_or_create_tar(char *fname, int fname_len, char *alias, int alias_len, int is_data, int options, phar_archive_data** pphar, char **error) /* {{{ */
     128             : {
     129             :         phar_archive_data *phar;
     130          83 :         int ret = phar_create_or_parse_filename(fname, fname_len, alias, alias_len, is_data, options, &phar, error);
     131             : 
     132          83 :         if (FAILURE == ret) {
     133          14 :                 return FAILURE;
     134             :         }
     135             : 
     136          69 :         if (pphar) {
     137          69 :                 *pphar = phar;
     138             :         }
     139             : 
     140          69 :         phar->is_data = is_data;
     141             : 
     142          69 :         if (phar->is_tar) {
     143          34 :                 return ret;
     144             :         }
     145             : 
     146          35 :         if (phar->is_brandnew) {
     147          34 :                 phar->is_tar = 1;
     148          34 :                 phar->is_zip = 0;
     149          34 :                 phar->internal_file_start = 0;
     150          34 :                 return SUCCESS;
     151             :         }
     152             : 
     153             :         /* we've reached here - the phar exists and is a regular phar */
     154           1 :         if (error) {
     155           1 :                 spprintf(error, 4096, "phar tar error: \"%s\" already exists as a regular phar and must be deleted from disk prior to creating as a tar-based phar", fname);
     156             :         }
     157           1 :         return FAILURE;
     158             : }
     159             : /* }}} */
     160             : 
     161           7 : static int phar_tar_process_metadata(phar_entry_info *entry, php_stream *fp) /* {{{ */
     162             : {
     163             :         char *metadata;
     164           7 :         size_t save = php_stream_tell(fp), read;
     165             :         phar_entry_info *mentry;
     166             : 
     167           7 :         metadata = (char *) safe_emalloc(1, entry->uncompressed_filesize, 1);
     168             : 
     169           7 :         read = php_stream_read(fp, metadata, entry->uncompressed_filesize);
     170           7 :         if (read != entry->uncompressed_filesize) {
     171           0 :                 efree(metadata);
     172           0 :                 php_stream_seek(fp, save, SEEK_SET);
     173           0 :                 return FAILURE;
     174             :         }
     175             : 
     176           7 :         if (phar_parse_metadata(&metadata, &entry->metadata, entry->uncompressed_filesize) == FAILURE) {
     177             :                 /* if not valid serialized data, it is a regular string */
     178           0 :                 efree(metadata);
     179           0 :                 php_stream_seek(fp, save, SEEK_SET);
     180           0 :                 return FAILURE;
     181             :         }
     182             : 
     183          11 :         if (entry->filename_len == sizeof(".phar/.metadata.bin")-1 && !memcmp(entry->filename, ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1)) {
     184           4 :                 entry->phar->metadata = entry->metadata;
     185           4 :                 ZVAL_UNDEF(&entry->metadata);
     186           6 :         } else if (entry->filename_len >= sizeof(".phar/.metadata/") + sizeof("/.metadata.bin") - 1 && NULL != (mentry = zend_hash_str_find_ptr(&(entry->phar->manifest), entry->filename + sizeof(".phar/.metadata/") - 1, entry->filename_len - (sizeof("/.metadata.bin") - 1 + sizeof(".phar/.metadata/") - 1)))) {
     187             :                 /* transfer this metadata to the entry it refers */
     188           3 :                 mentry->metadata = entry->metadata;
     189           3 :                 ZVAL_UNDEF(&entry->metadata);
     190             :         }
     191             : 
     192           7 :         efree(metadata);
     193           7 :         php_stream_seek(fp, save, SEEK_SET);
     194           7 :         return SUCCESS;
     195             : }
     196             : /* }}} */
     197             : 
     198             : #if !HAVE_STRNLEN
     199             : static size_t strnlen(const char *s, size_t maxlen) {
     200             :         char *r = (char *)memchr(s, '\0', maxlen);
     201             :         return r ? r-s : maxlen;
     202             : }
     203             : #endif
     204             : 
     205          82 : int phar_parse_tarfile(php_stream* fp, char *fname, int fname_len, char *alias, int alias_len, phar_archive_data** pphar, int is_data, uint32_t compression, char **error) /* {{{ */
     206             : {
     207          82 :         char buf[512], *actual_alias = NULL, *p;
     208          82 :         phar_entry_info entry = {0};
     209          82 :         size_t pos = 0, read, totalsize;
     210             :         tar_header *hdr;
     211             :         uint32_t sum1, sum2, size, old;
     212             :         phar_archive_data *myphar, *actual;
     213          82 :         int last_was_longlink = 0;
     214             :         int linkname_len;
     215             : 
     216          82 :         if (error) {
     217          57 :                 *error = NULL;
     218             :         }
     219             : 
     220          82 :         php_stream_seek(fp, 0, SEEK_END);
     221          82 :         totalsize = php_stream_tell(fp);
     222          82 :         php_stream_seek(fp, 0, SEEK_SET);
     223          82 :         read = php_stream_read(fp, buf, sizeof(buf));
     224             : 
     225          82 :         if (read != sizeof(buf)) {
     226           0 :                 if (error) {
     227           0 :                         spprintf(error, 4096, "phar error: \"%s\" is not a tar file or is truncated", fname);
     228             :                 }
     229           0 :                 php_stream_close(fp);
     230           0 :                 return FAILURE;
     231             :         }
     232             : 
     233          82 :         hdr = (tar_header*)buf;
     234          82 :         old = (memcmp(hdr->magic, "ustar", sizeof("ustar")-1) != 0);
     235             : 
     236          82 :         myphar = (phar_archive_data *) pecalloc(1, sizeof(phar_archive_data), PHAR_G(persist));
     237          82 :         myphar->is_persistent = PHAR_G(persist);
     238             :         /* estimate number of entries, can't be certain with tar files */
     239          82 :         zend_hash_init(&myphar->manifest, 2 + (totalsize >> 12),
     240             :                 zend_get_hash_value, destroy_phar_manifest_entry, (zend_bool)myphar->is_persistent);
     241          82 :         zend_hash_init(&myphar->mounted_dirs, 5,
     242             :                 zend_get_hash_value, NULL, (zend_bool)myphar->is_persistent);
     243          82 :         zend_hash_init(&myphar->virtual_dirs, 4 + (totalsize >> 11),
     244             :                 zend_get_hash_value, NULL, (zend_bool)myphar->is_persistent);
     245          82 :         myphar->is_tar = 1;
     246             :         /* remember whether this entire phar was compressed with gz/bzip2 */
     247          82 :         myphar->flags = compression;
     248             : 
     249          82 :         entry.is_tar = 1;
     250          82 :         entry.is_crc_checked = 1;
     251          82 :         entry.phar = myphar;
     252          82 :         pos += sizeof(buf);
     253             : 
     254             :         do {
     255             :                 phar_entry_info *newentry;
     256             : 
     257         416 :                 pos = php_stream_tell(fp);
     258         416 :                 hdr = (tar_header*) buf;
     259         416 :                 sum1 = phar_tar_number(hdr->checksum, sizeof(hdr->checksum));
     260         416 :                 if (sum1 == 0 && phar_tar_checksum(buf, sizeof(buf)) == 0) {
     261          31 :                         break;
     262             :                 }
     263         385 :                 memset(hdr->checksum, ' ', sizeof(hdr->checksum));
     264         385 :                 sum2 = phar_tar_checksum(buf, old?sizeof(old_tar_header):sizeof(tar_header));
     265             : 
     266         385 :                 size = entry.uncompressed_filesize = entry.compressed_filesize =
     267         385 :                         phar_tar_number(hdr->size, sizeof(hdr->size));
     268             : 
     269             :                 /* skip global/file headers (pax) */
     270         385 :                 if (!old && (hdr->typeflag == TAR_GLOBAL_HDR || hdr->typeflag == TAR_FILE_HDR)) {
     271           2 :                         size = (size+511)&~511;
     272           2 :                         goto next;
     273             :                 }
     274             : 
     275         383 :                 if (((!old && hdr->prefix[0] == 0) || old) && strnlen(hdr->name, 100) == sizeof(".phar/signature.bin")-1 && !strncmp(hdr->name, ".phar/signature.bin", sizeof(".phar/signature.bin")-1)) {
     276             :                         zend_off_t curloc;
     277             : 
     278          37 :                         if (size > 511) {
     279           0 :                                 if (error) {
     280           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has signature that is larger than 511 bytes, cannot process", fname);
     281             :                                 }
     282             : bail:
     283           0 :                                 php_stream_close(fp);
     284           0 :                                 phar_destroy_phar_data(myphar);
     285           0 :                                 return FAILURE;
     286             :                         }
     287          37 :                         curloc = php_stream_tell(fp);
     288          37 :                         read = php_stream_read(fp, buf, size);
     289          37 :                         if (read != size) {
     290           0 :                                 if (error) {
     291           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" signature cannot be read", fname);
     292             :                                 }
     293           0 :                                 goto bail;
     294             :                         }
     295             : #ifdef WORDS_BIGENDIAN
     296             : # define PHAR_GET_32(buffer) \
     297             :         (((((unsigned char*)(buffer))[3]) << 24) \
     298             :                 | ((((unsigned char*)(buffer))[2]) << 16) \
     299             :                 | ((((unsigned char*)(buffer))[1]) <<  8) \
     300             :                 | (((unsigned char*)(buffer))[0]))
     301             : #else
     302             : # define PHAR_GET_32(buffer) (uint32_t) *(buffer)
     303             : #endif
     304          37 :                         myphar->sig_flags = PHAR_GET_32(buf);
     305          37 :                         if (FAILURE == phar_verify_signature(fp, php_stream_tell(fp) - size - 512, myphar->sig_flags, buf + 8, size - 8, fname, &myphar->signature, &myphar->sig_len, error)) {
     306           0 :                                 if (error) {
     307           0 :                                         char *save = *error;
     308           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" signature cannot be verified: %s", fname, save);
     309           0 :                                         efree(save);
     310             :                                 }
     311           0 :                                 goto bail;
     312             :                         }
     313          37 :                         php_stream_seek(fp, curloc + 512, SEEK_SET);
     314             :                         /* signature checked out, let's ensure this is the last file in the phar */
     315          37 :                         if (((hdr->typeflag == '\0') || (hdr->typeflag == TAR_FILE)) && size > 0) {
     316             :                                 /* this is not good enough - seek succeeds even on truncated tars */
     317          36 :                                 php_stream_seek(fp, 512, SEEK_CUR);
     318          36 :                                 if ((uint)php_stream_tell(fp) > totalsize) {
     319           0 :                                         if (error) {
     320           0 :                                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     321             :                                         }
     322           0 :                                         php_stream_close(fp);
     323           0 :                                         phar_destroy_phar_data(myphar);
     324           0 :                                         return FAILURE;
     325             :                                 }
     326             :                         }
     327             : 
     328          37 :                         read = php_stream_read(fp, buf, sizeof(buf));
     329             : 
     330          37 :                         if (read != sizeof(buf)) {
     331           0 :                                 if (error) {
     332           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     333             :                                 }
     334           0 :                                 php_stream_close(fp);
     335           0 :                                 phar_destroy_phar_data(myphar);
     336           0 :                                 return FAILURE;
     337             :                         }
     338             : 
     339          37 :                         hdr = (tar_header*) buf;
     340          37 :                         sum1 = phar_tar_number(hdr->checksum, sizeof(hdr->checksum));
     341             : 
     342          37 :                         if (sum1 == 0 && phar_tar_checksum(buf, sizeof(buf)) == 0) {
     343          37 :                                 break;
     344             :                         }
     345             : 
     346           0 :                         if (error) {
     347           0 :                                 spprintf(error, 4096, "phar error: \"%s\" has entries after signature, invalid phar", fname);
     348             :                         }
     349             : 
     350           0 :                         goto bail;
     351             :                 }
     352             : 
     353         346 :                 if (!last_was_longlink && hdr->typeflag == 'L') {
     354           4 :                         last_was_longlink = 1;
     355             :                         /* support the ././@LongLink system for storing long filenames */
     356           4 :                         entry.filename_len = entry.uncompressed_filesize;
     357             : 
     358             :                         /* Check for overflow - bug 61065 */
     359           4 :                         if (entry.filename_len == UINT_MAX || entry.filename_len == 0) {
     360           1 :                                 if (error) {
     361           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (invalid entry size)", fname);
     362             :                                 }
     363           1 :                                 php_stream_close(fp);
     364           1 :                                 phar_destroy_phar_data(myphar);
     365           1 :                                 return FAILURE;
     366             :                         }
     367           3 :                         entry.filename = pemalloc(entry.filename_len+1, myphar->is_persistent);
     368             : 
     369           3 :                         read = php_stream_read(fp, entry.filename, entry.filename_len);
     370           3 :                         if (read != entry.filename_len) {
     371           0 :                                 efree(entry.filename);
     372           0 :                                 if (error) {
     373           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     374             :                                 }
     375           0 :                                 php_stream_close(fp);
     376           0 :                                 phar_destroy_phar_data(myphar);
     377           0 :                                 return FAILURE;
     378             :                         }
     379           3 :                         entry.filename[entry.filename_len] = '\0';
     380             : 
     381             :                         /* skip blank stuff */
     382           3 :                         size = ((size+511)&~511) - size;
     383             : 
     384             :                         /* this is not good enough - seek succeeds even on truncated tars */
     385           3 :                         php_stream_seek(fp, size, SEEK_CUR);
     386           3 :                         if ((uint)php_stream_tell(fp) > totalsize) {
     387           0 :                                 efree(entry.filename);
     388           0 :                                 if (error) {
     389           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     390             :                                 }
     391           0 :                                 php_stream_close(fp);
     392           0 :                                 phar_destroy_phar_data(myphar);
     393           0 :                                 return FAILURE;
     394             :                         }
     395             : 
     396           3 :                         read = php_stream_read(fp, buf, sizeof(buf));
     397             : 
     398           3 :                         if (read != sizeof(buf)) {
     399           0 :                                 efree(entry.filename);
     400           0 :                                 if (error) {
     401           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     402             :                                 }
     403           0 :                                 php_stream_close(fp);
     404           0 :                                 phar_destroy_phar_data(myphar);
     405           0 :                                 return FAILURE;
     406             :                         }
     407           3 :                         continue;
     408         347 :                 } else if (!last_was_longlink && !old && hdr->prefix[0] != 0) {
     409             :                         char name[256];
     410             :                         int i, j;
     411             : 
     412         571 :                         for (i = 0; i < 155; i++) {
     413         568 :                                 name[i] = hdr->prefix[i];
     414         568 :                                 if (name[i] == '\0') {
     415           2 :                                         break;
     416             :                                 }
     417             :                         }
     418           5 :                         name[i++] = '/';
     419         406 :                         for (j = 0; j < 100; j++) {
     420         402 :                                 name[i+j] = hdr->name[j];
     421         402 :                                 if (name[i+j] == '\0') {
     422           1 :                                         break;
     423             :                                 }
     424             :                         }
     425             : 
     426           5 :                         entry.filename_len = i+j;
     427             : 
     428           5 :                         if (name[entry.filename_len - 1] == '/') {
     429             :                                 /* some tar programs store directories with trailing slash */
     430           0 :                                 entry.filename_len--;
     431             :                         }
     432           5 :                         entry.filename = pestrndup(name, entry.filename_len, myphar->is_persistent);
     433         337 :                 } else if (!last_was_longlink) {
     434             :                         int i;
     435             : 
     436             :                         /* calculate strlen, which can be no longer than 100 */
     437        6059 :                         for (i = 0; i < 100; i++) {
     438        6059 :                                 if (hdr->name[i] == '\0') {
     439         334 :                                         break;
     440             :                                 }
     441             :                         }
     442         334 :                         entry.filename_len = i;
     443         334 :                         entry.filename = pestrndup(hdr->name, i, myphar->is_persistent);
     444             : 
     445         334 :                         if (i > 0 && entry.filename[entry.filename_len - 1] == '/') {
     446             :                                 /* some tar programs store directories with trailing slash */
     447          23 :                                 entry.filename[entry.filename_len - 1] = '\0';
     448          23 :                                 entry.filename_len--;
     449             :                         }
     450             :                 }
     451         342 :                 last_was_longlink = 0;
     452             : 
     453         342 :                 phar_add_virtual_dirs(myphar, entry.filename, entry.filename_len);
     454             : 
     455         342 :                 if (sum1 != sum2) {
     456           2 :                         if (error) {
     457           2 :                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (checksum mismatch of file \"%s\")", fname, entry.filename);
     458             :                         }
     459           2 :                         pefree(entry.filename, myphar->is_persistent);
     460           2 :                         php_stream_close(fp);
     461           2 :                         phar_destroy_phar_data(myphar);
     462           2 :                         return FAILURE;
     463             :                 }
     464             : 
     465         340 :                 entry.tar_type = ((old & (hdr->typeflag == '\0')) ? TAR_FILE : hdr->typeflag);
     466         340 :                 entry.offset = entry.offset_abs = pos; /* header_offset unused in tar */
     467         340 :                 entry.fp_type = PHAR_FP;
     468         340 :                 entry.flags = phar_tar_number(hdr->mode, sizeof(hdr->mode)) & PHAR_ENT_PERM_MASK;
     469         340 :                 entry.timestamp = phar_tar_number(hdr->mtime, sizeof(hdr->mtime));
     470         340 :                 entry.is_persistent = myphar->is_persistent;
     471             : 
     472         340 :                 if (old && entry.tar_type == TAR_FILE && S_ISDIR(entry.flags)) {
     473           0 :                         entry.tar_type = TAR_DIR;
     474             :                 }
     475             : 
     476         340 :                 if (entry.tar_type == TAR_DIR) {
     477          40 :                         entry.is_dir = 1;
     478             :                 } else {
     479         300 :                         entry.is_dir = 0;
     480             :                 }
     481             : 
     482         340 :                 entry.link = NULL;
     483             :                 /* link field is null-terminated unless it has 100 non-null chars.
     484             :                  * Thus we can not use strlen. */
     485         340 :                 linkname_len = strnlen(hdr->linkname, 100);
     486         340 :                 if (entry.tar_type == TAR_LINK) {
     487           3 :                         if (!zend_hash_str_exists(&myphar->manifest, hdr->linkname, linkname_len)) {
     488           1 :                                 if (error) {
     489           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file - hard link to non-existent file \"%.*s\"", fname, linkname_len, hdr->linkname);
     490             :                                 }
     491           1 :                                 pefree(entry.filename, entry.is_persistent);
     492           1 :                                 php_stream_close(fp);
     493           1 :                                 phar_destroy_phar_data(myphar);
     494           1 :                                 return FAILURE;
     495             :                         }
     496           2 :                         entry.link = estrndup(hdr->linkname, linkname_len);
     497         337 :                 } else if (entry.tar_type == TAR_SYMLINK) {
     498           9 :                         entry.link = estrndup(hdr->linkname, linkname_len);
     499             :                 }
     500         339 :                 phar_set_inode(&entry);
     501             : 
     502         678 :                 newentry = zend_hash_str_update_mem(&myphar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info));
     503             :                 ZEND_ASSERT(newentry != NULL);
     504             : 
     505         339 :                 if (entry.is_persistent) {
     506           0 :                         ++entry.manifest_pos;
     507             :                 }
     508             : 
     509         339 :                 if (entry.filename_len >= sizeof(".phar/.metadata")-1 && !memcmp(entry.filename, ".phar/.metadata", sizeof(".phar/.metadata")-1)) {
     510           7 :                         if (FAILURE == phar_tar_process_metadata(newentry, fp)) {
     511           0 :                                 if (error) {
     512           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has invalid metadata in magic file \"%s\"", fname, entry.filename);
     513             :                                 }
     514           0 :                                 php_stream_close(fp);
     515           0 :                                 phar_destroy_phar_data(myphar);
     516           0 :                                 return FAILURE;
     517             :                         }
     518             :                 }
     519             : 
     520         339 :                 if (!actual_alias && entry.filename_len == sizeof(".phar/alias.txt")-1 && !strncmp(entry.filename, ".phar/alias.txt", sizeof(".phar/alias.txt")-1)) {
     521             :                         /* found explicit alias */
     522          10 :                         if (size > 511) {
     523           1 :                                 if (error) {
     524           1 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has alias that is larger than 511 bytes, cannot process", fname);
     525             :                                 }
     526           1 :                                 php_stream_close(fp);
     527           1 :                                 phar_destroy_phar_data(myphar);
     528           1 :                                 return FAILURE;
     529             :                         }
     530             : 
     531           9 :                         read = php_stream_read(fp, buf, size);
     532             : 
     533           9 :                         if (read == size) {
     534           9 :                                 buf[size] = '\0';
     535           9 :                                 if (!phar_validate_alias(buf, size)) {
     536           4 :                                         if (size > 50) {
     537           1 :                                                 buf[50] = '.';
     538           1 :                                                 buf[51] = '.';
     539           1 :                                                 buf[52] = '.';
     540           1 :                                                 buf[53] = '\0';
     541             :                                         }
     542             : 
     543           4 :                                         if (error) {
     544           4 :                                                 spprintf(error, 4096, "phar error: invalid alias \"%s\" in tar-based phar \"%s\"", buf, fname);
     545             :                                         }
     546             : 
     547           4 :                                         php_stream_close(fp);
     548           4 :                                         phar_destroy_phar_data(myphar);
     549           4 :                                         return FAILURE;
     550             :                                 }
     551             : 
     552           5 :                                 actual_alias = pestrndup(buf, size, myphar->is_persistent);
     553           5 :                                 myphar->alias = actual_alias;
     554           5 :                                 myphar->alias_len = size;
     555           5 :                                 php_stream_seek(fp, pos, SEEK_SET);
     556             :                         } else {
     557           0 :                                 if (error) {
     558           0 :                                         spprintf(error, 4096, "phar error: Unable to read alias from tar-based phar \"%s\"", fname);
     559             :                                 }
     560             : 
     561           0 :                                 php_stream_close(fp);
     562           0 :                                 phar_destroy_phar_data(myphar);
     563           0 :                                 return FAILURE;
     564             :                         }
     565             :                 }
     566             : 
     567         334 :                 size = (size+511)&~511;
     568             : 
     569         334 :                 if (((hdr->typeflag == '\0') || (hdr->typeflag == TAR_FILE)) && size > 0) {
     570             : next:
     571             :                         /* this is not good enough - seek succeeds even on truncated tars */
     572         279 :                         php_stream_seek(fp, size, SEEK_CUR);
     573         279 :                         if ((uint)php_stream_tell(fp) > totalsize) {
     574           1 :                                 if (error) {
     575           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     576             :                                 }
     577           1 :                                 php_stream_close(fp);
     578           1 :                                 phar_destroy_phar_data(myphar);
     579           1 :                                 return FAILURE;
     580             :                         }
     581             :                 }
     582             : 
     583         335 :                 read = php_stream_read(fp, buf, sizeof(buf));
     584             : 
     585         335 :                 if (read != sizeof(buf)) {
     586           4 :                         if (error) {
     587           4 :                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     588             :                         }
     589           4 :                         php_stream_close(fp);
     590           4 :                         phar_destroy_phar_data(myphar);
     591           4 :                         return FAILURE;
     592             :                 }
     593         334 :         } while (!php_stream_eof(fp));
     594             : 
     595          68 :         if (zend_hash_str_exists(&(myphar->manifest), ".phar/stub.php", sizeof(".phar/stub.php")-1)) {
     596          46 :                 myphar->is_data = 0;
     597             :         } else {
     598          22 :                 myphar->is_data = 1;
     599             :         }
     600             : 
     601             :         /* ensure signature set */
     602          68 :         if (!myphar->is_data && PHAR_G(require_hash) && !myphar->signature) {
     603           1 :                 php_stream_close(fp);
     604           1 :                 phar_destroy_phar_data(myphar);
     605           1 :                 if (error) {
     606           1 :                         spprintf(error, 0, "tar-based phar \"%s\" does not have a signature", fname);
     607             :                 }
     608           1 :                 return FAILURE;
     609             :         }
     610             : 
     611          67 :         myphar->fname = pestrndup(fname, fname_len, myphar->is_persistent);
     612             : #ifdef PHP_WIN32
     613             :         phar_unixify_path_separators(myphar->fname, fname_len);
     614             : #endif
     615          67 :         myphar->fname_len = fname_len;
     616          67 :         myphar->fp = fp;
     617          67 :         p = strrchr(myphar->fname, '/');
     618             : 
     619          67 :         if (p) {
     620          67 :                 myphar->ext = memchr(p, '.', (myphar->fname + fname_len) - p);
     621          67 :                 if (myphar->ext == p) {
     622           0 :                         myphar->ext = memchr(p + 1, '.', (myphar->fname + fname_len) - p - 1);
     623             :                 }
     624          67 :                 if (myphar->ext) {
     625          67 :                         myphar->ext_len = (myphar->fname + fname_len) - myphar->ext;
     626             :                 }
     627             :         }
     628             : 
     629          67 :         phar_request_initialize();
     630             : 
     631         134 :         if (NULL == (actual = zend_hash_str_add_ptr(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len, myphar))) {
     632           0 :                 if (error) {
     633           0 :                         spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\" to phar registry", fname);
     634             :                 }
     635           0 :                 php_stream_close(fp);
     636           0 :                 phar_destroy_phar_data(myphar);
     637           0 :                 return FAILURE;
     638             :         }
     639             : 
     640          67 :         myphar = actual;
     641             : 
     642          67 :         if (actual_alias) {
     643             :                 phar_archive_data *fd_ptr;
     644             : 
     645           5 :                 myphar->is_temporary_alias = 0;
     646             : 
     647          10 :                 if (NULL != (fd_ptr = zend_hash_str_find_ptr(&(PHAR_G(phar_alias_map)), actual_alias, myphar->alias_len))) {
     648           1 :                         if (SUCCESS != phar_free_alias(fd_ptr, actual_alias, myphar->alias_len)) {
     649           1 :                                 if (error) {
     650           1 :                                         spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\", alias is already in use", fname);
     651             :                                 }
     652           1 :                                 zend_hash_str_del(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len);
     653           1 :                                 return FAILURE;
     654             :                         }
     655             :                 }
     656             : 
     657           4 :                 zend_hash_str_add_ptr(&(PHAR_G(phar_alias_map)), actual_alias, myphar->alias_len, myphar);
     658             :         } else {
     659             :                 phar_archive_data *fd_ptr;
     660             : 
     661          62 :                 if (alias_len) {
     662           0 :                         if (NULL != (fd_ptr = zend_hash_str_find_ptr(&(PHAR_G(phar_alias_map)), alias, alias_len))) {
     663           0 :                                 if (SUCCESS != phar_free_alias(fd_ptr, alias, alias_len)) {
     664           0 :                                         if (error) {
     665           0 :                                                 spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\", alias is already in use", fname);
     666             :                                         }
     667           0 :                                         zend_hash_str_del(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len);
     668           0 :                                         return FAILURE;
     669             :                                 }
     670             :                         }
     671           0 :                         zend_hash_str_add_ptr(&(PHAR_G(phar_alias_map)), alias, alias_len, myphar);
     672           0 :                         myphar->alias = pestrndup(alias, alias_len, myphar->is_persistent);
     673           0 :                         myphar->alias_len = alias_len;
     674             :                 } else {
     675          62 :                         myphar->alias = pestrndup(myphar->fname, fname_len, myphar->is_persistent);
     676          62 :                         myphar->alias_len = fname_len;
     677             :                 }
     678             : 
     679          62 :                 myphar->is_temporary_alias = 1;
     680             :         }
     681             : 
     682          66 :         if (pphar) {
     683          61 :                 *pphar = myphar;
     684             :         }
     685             : 
     686          66 :         return SUCCESS;
     687             : }
     688             : /* }}} */
     689             : 
     690             : struct _phar_pass_tar_info {
     691             :         php_stream *old;
     692             :         php_stream *new;
     693             :         int free_fp;
     694             :         int free_ufp;
     695             :         char **error;
     696             : };
     697             : 
     698         891 : static int phar_tar_writeheaders_int(phar_entry_info *entry, void *argument) /* {{{ */
     699             : {
     700             :         tar_header header;
     701             :         size_t pos;
     702         891 :         struct _phar_pass_tar_info *fp = (struct _phar_pass_tar_info *)argument;
     703             :         char padding[512];
     704             : 
     705         891 :         if (entry->is_mounted) {
     706           4 :                 return ZEND_HASH_APPLY_KEEP;
     707             :         }
     708             : 
     709         887 :         if (entry->is_deleted) {
     710           4 :                 if (entry->fp_refcount <= 0) {
     711           4 :                         return ZEND_HASH_APPLY_REMOVE;
     712             :                 } else {
     713             :                         /* we can't delete this in-memory until it is closed */
     714           0 :                         return ZEND_HASH_APPLY_KEEP;
     715             :                 }
     716             :         }
     717             : 
     718         883 :         phar_add_virtual_dirs(entry->phar, entry->filename, entry->filename_len);
     719         883 :         memset((char *) &header, 0, sizeof(header));
     720             : 
     721         883 :         if (entry->filename_len > 100) {
     722             :                 char *boundary;
     723           9 :                 if (entry->filename_len > 256) {
     724           1 :                         if (fp->error) {
     725           1 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too long for tar file format", entry->phar->fname, entry->filename);
     726             :                         }
     727           1 :                         return ZEND_HASH_APPLY_STOP;
     728             :                 }
     729           8 :                 boundary = entry->filename + entry->filename_len - 101;
     730         424 :                 while (*boundary && *boundary != '/') {
     731         408 :                         ++boundary;
     732             :                 }
     733           8 :                 if (!*boundary || ((boundary - entry->filename) > 155)) {
     734           2 :                         if (fp->error) {
     735           2 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too long for tar file format", entry->phar->fname, entry->filename);
     736             :                         }
     737           2 :                         return ZEND_HASH_APPLY_STOP;
     738             :                 }
     739           6 :                 memcpy(header.prefix, entry->filename, boundary - entry->filename);
     740           6 :                 memcpy(header.name, boundary + 1, entry->filename_len - (boundary + 1 - entry->filename));
     741             :         } else {
     742         874 :                 memcpy(header.name, entry->filename, entry->filename_len);
     743             :         }
     744             : 
     745         880 :         phar_tar_octal(header.mode, entry->flags & PHAR_ENT_PERM_MASK, sizeof(header.mode)-1);
     746             : 
     747         880 :         if (FAILURE == phar_tar_octal(header.size, entry->uncompressed_filesize, sizeof(header.size)-1)) {
     748           0 :                 if (fp->error) {
     749           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     750             :                 }
     751           0 :                 return ZEND_HASH_APPLY_STOP;
     752             :         }
     753             : 
     754         880 :         if (FAILURE == phar_tar_octal(header.mtime, entry->timestamp, sizeof(header.mtime)-1)) {
     755           0 :                 if (fp->error) {
     756           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, file modification time of file \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     757             :                 }
     758           0 :                 return ZEND_HASH_APPLY_STOP;
     759             :         }
     760             : 
     761             :         /* calc checksum */
     762         880 :         header.typeflag = entry->tar_type;
     763             : 
     764         880 :         if (entry->link) {
     765          10 :                 strncpy(header.linkname, entry->link, strlen(entry->link));
     766             :         }
     767             : 
     768         880 :         strncpy(header.magic, "ustar", sizeof("ustar")-1);
     769         880 :         strncpy(header.version, "00", sizeof("00")-1);
     770         880 :         strncpy(header.checksum, "        ", sizeof("        ")-1);
     771         880 :         entry->crc32 = phar_tar_checksum((char *)&header, sizeof(header));
     772             : 
     773         880 :         if (FAILURE == phar_tar_octal(header.checksum, entry->crc32, sizeof(header.checksum)-1)) {
     774           0 :                 if (fp->error) {
     775           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, checksum of file \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     776             :                 }
     777           0 :                 return ZEND_HASH_APPLY_STOP;
     778             :         }
     779             : 
     780             :         /* write header */
     781         880 :         entry->header_offset = php_stream_tell(fp->new);
     782             : 
     783         880 :         if (sizeof(header) != php_stream_write(fp->new, (char *) &header, sizeof(header))) {
     784           0 :                 if (fp->error) {
     785           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, header for  file \"%s\" could not be written", entry->phar->fname, entry->filename);
     786             :                 }
     787           0 :                 return ZEND_HASH_APPLY_STOP;
     788             :         }
     789             : 
     790         880 :         pos = php_stream_tell(fp->new); /* save start of file within tar */
     791             : 
     792             :         /* write contents */
     793         880 :         if (entry->uncompressed_filesize) {
     794         782 :                 if (FAILURE == phar_open_entry_fp(entry, fp->error, 0)) {
     795           0 :                         return ZEND_HASH_APPLY_STOP;
     796             :                 }
     797             : 
     798         782 :                 if (-1 == phar_seek_efp(entry, 0, SEEK_SET, 0, 0)) {
     799           0 :                         if (fp->error) {
     800           0 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, contents of file \"%s\" could not be written, seek failed", entry->phar->fname, entry->filename);
     801             :                         }
     802           0 :                         return ZEND_HASH_APPLY_STOP;
     803             :                 }
     804             : 
     805         782 :                 if (SUCCESS != php_stream_copy_to_stream_ex(phar_get_efp(entry, 0), fp->new, entry->uncompressed_filesize, NULL)) {
     806           0 :                         if (fp->error) {
     807           0 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, contents of file \"%s\" could not be written", entry->phar->fname, entry->filename);
     808             :                         }
     809           0 :                         return ZEND_HASH_APPLY_STOP;
     810             :                 }
     811             : 
     812         782 :                 memset(padding, 0, 512);
     813         782 :                 php_stream_write(fp->new, padding, ((entry->uncompressed_filesize +511)&~511) - entry->uncompressed_filesize);
     814             :         }
     815             : 
     816         880 :         if (!entry->is_modified && entry->fp_refcount) {
     817             :                 /* open file pointers refer to this fp, do not free the stream */
     818           0 :                 switch (entry->fp_type) {
     819             :                         case PHAR_FP:
     820           0 :                                 fp->free_fp = 0;
     821           0 :                                 break;
     822             :                         case PHAR_UFP:
     823           0 :                                 fp->free_ufp = 0;
     824             :                         default:
     825             :                                 break;
     826             :                 }
     827             :         }
     828             : 
     829         880 :         entry->is_modified = 0;
     830             : 
     831         880 :         if (entry->fp_type == PHAR_MOD && entry->fp != entry->phar->fp && entry->fp != entry->phar->ufp) {
     832         374 :                 if (!entry->fp_refcount) {
     833         368 :                         php_stream_close(entry->fp);
     834             :                 }
     835         374 :                 entry->fp = NULL;
     836             :         }
     837             : 
     838         880 :         entry->fp_type = PHAR_FP;
     839             : 
     840             :         /* note new location within tar */
     841         880 :         entry->offset = entry->offset_abs = pos;
     842         880 :         return ZEND_HASH_APPLY_KEEP;
     843             : }
     844             : /* }}} */
     845             : 
     846         716 : static int phar_tar_writeheaders(zval *zv, void *argument) /* {{{ */
     847             : {
     848         716 :         return phar_tar_writeheaders_int(Z_PTR_P(zv), argument);
     849             : }
     850             : /* }}} */
     851             : 
     852          23 : int phar_tar_setmetadata(zval *metadata, phar_entry_info *entry, char **error) /* {{{ */
     853             : {
     854             :         php_serialize_data_t metadata_hash;
     855             : 
     856          23 :         if (entry->metadata_str.s) {
     857          16 :                 smart_str_free(&entry->metadata_str);
     858             :         }
     859             : 
     860          23 :         entry->metadata_str.s = NULL;
     861          23 :         PHP_VAR_SERIALIZE_INIT(metadata_hash);
     862          23 :         php_var_serialize(&entry->metadata_str, metadata, &metadata_hash);
     863          23 :         PHP_VAR_SERIALIZE_DESTROY(metadata_hash);
     864          23 :         entry->uncompressed_filesize = entry->compressed_filesize = entry->metadata_str.s ? ZSTR_LEN(entry->metadata_str.s) : 0;
     865             : 
     866          23 :         if (entry->fp && entry->fp_type == PHAR_MOD) {
     867           9 :                 php_stream_close(entry->fp);
     868             :         }
     869             : 
     870          23 :         entry->fp_type = PHAR_MOD;
     871          23 :         entry->is_modified = 1;
     872          23 :         entry->fp = php_stream_fopen_tmpfile();
     873          23 :         entry->offset = entry->offset_abs = 0;
     874          23 :         if (entry->fp == NULL) {
     875           0 :                 spprintf(error, 0, "phar error: unable to create temporary file");
     876           0 :                 return -1;
     877             :         }
     878          23 :         if (ZSTR_LEN(entry->metadata_str.s) != php_stream_write(entry->fp, ZSTR_VAL(entry->metadata_str.s), ZSTR_LEN(entry->metadata_str.s))) {
     879           0 :                 spprintf(error, 0, "phar tar error: unable to write metadata to magic metadata file \"%s\"", entry->filename);
     880           0 :                 zend_hash_str_del(&(entry->phar->manifest), entry->filename, entry->filename_len);
     881           0 :                 return ZEND_HASH_APPLY_STOP;
     882             :         }
     883             : 
     884          23 :         return ZEND_HASH_APPLY_KEEP;
     885             : }
     886             : /* }}} */
     887             : 
     888         716 : static int phar_tar_setupmetadata(zval *zv, void *argument) /* {{{ */
     889             : {
     890             :         int lookfor_len;
     891         716 :         struct _phar_pass_tar_info *i = (struct _phar_pass_tar_info *)argument;
     892         716 :         char *lookfor, **error = i->error;
     893         716 :         phar_entry_info *entry = (phar_entry_info *)Z_PTR_P(zv), *metadata, newentry = {0};
     894             : 
     895         716 :         if (entry->filename_len >= sizeof(".phar/.metadata") && !memcmp(entry->filename, ".phar/.metadata", sizeof(".phar/.metadata")-1)) {
     896          19 :                 if (entry->filename_len == sizeof(".phar/.metadata.bin")-1 && !memcmp(entry->filename, ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1)) {
     897          10 :                         return phar_tar_setmetadata(&entry->phar->metadata, entry, error);
     898             :                 }
     899             :                 /* search for the file this metadata entry references */
     900           9 :                 if (entry->filename_len >= sizeof(".phar/.metadata/") + sizeof("/.metadata.bin") - 1 && !zend_hash_str_exists(&(entry->phar->manifest), entry->filename + sizeof(".phar/.metadata/") - 1, entry->filename_len - (sizeof("/.metadata.bin") - 1 + sizeof(".phar/.metadata/") - 1))) {
     901             :                         /* this is orphaned metadata, erase it */
     902           0 :                         return ZEND_HASH_APPLY_REMOVE;
     903             :                 }
     904             :                 /* we can keep this entry, the file that refers to it exists */
     905           9 :                 return ZEND_HASH_APPLY_KEEP;
     906             :         }
     907             : 
     908         697 :         if (!entry->is_modified) {
     909         395 :                 return ZEND_HASH_APPLY_KEEP;
     910             :         }
     911             : 
     912             :         /* now we are dealing with regular files, so look for metadata */
     913         302 :         lookfor_len = spprintf(&lookfor, 0, ".phar/.metadata/%s/.metadata.bin", entry->filename);
     914             : 
     915         604 :         if (Z_TYPE(entry->metadata) == IS_UNDEF) {
     916         298 :                 zend_hash_str_del(&(entry->phar->manifest), lookfor, lookfor_len);
     917         298 :                 efree(lookfor);
     918         298 :                 return ZEND_HASH_APPLY_KEEP;
     919             :         }
     920             : 
     921           8 :         if (NULL != (metadata = zend_hash_str_find_ptr(&(entry->phar->manifest), lookfor, lookfor_len))) {
     922             :                 int ret;
     923           2 :                 ret = phar_tar_setmetadata(&entry->metadata, metadata, error);
     924           2 :                 efree(lookfor);
     925           2 :                 return ret;
     926             :         }
     927             : 
     928           2 :         newentry.filename = lookfor;
     929           2 :         newentry.filename_len = lookfor_len;
     930           2 :         newentry.phar = entry->phar;
     931           2 :         newentry.tar_type = TAR_FILE;
     932           2 :         newentry.is_tar = 1;
     933             : 
     934           4 :         if (NULL == (metadata = zend_hash_str_add_mem(&(entry->phar->manifest), lookfor, lookfor_len, (void *)&newentry, sizeof(phar_entry_info)))) {
     935           0 :                 efree(lookfor);
     936           0 :                 spprintf(error, 0, "phar tar error: unable to add magic metadata file to manifest for file \"%s\"", entry->filename);
     937           0 :                 return ZEND_HASH_APPLY_STOP;
     938             :         }
     939             : 
     940           2 :         return phar_tar_setmetadata(&entry->metadata, metadata, error);
     941             : }
     942             : /* }}} */
     943             : 
     944         195 : int phar_tar_flush(phar_archive_data *phar, char *user_stub, zend_long len, int defaultstub, char **error) /* {{{ */
     945             : {
     946         195 :         phar_entry_info entry = {0};
     947             :         static const char newstub[] = "<?php // tar-based phar archive stub file\n__HALT_COMPILER();";
     948             :         php_stream *oldfile, *newfile, *stubfile;
     949             :         int closeoldfile, free_user_stub, signature_length;
     950             :         struct _phar_pass_tar_info pass;
     951             :         char *buf, *signature, *tmp, sigbuf[8];
     952         195 :         char halt_stub[] = "__HALT_COMPILER();";
     953             : 
     954         195 :         entry.flags = PHAR_ENT_PERM_DEF_FILE;
     955         195 :         entry.timestamp = time(NULL);
     956         195 :         entry.is_modified = 1;
     957         195 :         entry.is_crc_checked = 1;
     958         195 :         entry.is_tar = 1;
     959         195 :         entry.tar_type = '0';
     960         195 :         entry.phar = phar;
     961         195 :         entry.fp_type = PHAR_MOD;
     962             : 
     963         195 :         if (phar->is_persistent) {
     964           0 :                 if (error) {
     965           0 :                         spprintf(error, 0, "internal error: attempt to flush cached tar-based phar \"%s\"", phar->fname);
     966             :                 }
     967           0 :                 return EOF;
     968             :         }
     969             : 
     970         195 :         if (phar->is_data) {
     971          20 :                 goto nostub;
     972             :         }
     973             : 
     974             :         /* set alias */
     975         215 :         if (!phar->is_temporary_alias && phar->alias_len) {
     976          40 :                 entry.filename = estrndup(".phar/alias.txt", sizeof(".phar/alias.txt")-1);
     977          40 :                 entry.filename_len = sizeof(".phar/alias.txt")-1;
     978          40 :                 entry.fp = php_stream_fopen_tmpfile();
     979          40 :                 if (entry.fp == NULL) {
     980           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
     981           0 :                         return -1;
     982             :                 }
     983          40 :                 if (phar->alias_len != (int)php_stream_write(entry.fp, phar->alias, phar->alias_len)) {
     984           0 :                         if (error) {
     985           0 :                                 spprintf(error, 0, "unable to set alias in tar-based phar \"%s\"", phar->fname);
     986             :                         }
     987           0 :                         return EOF;
     988             :                 }
     989             : 
     990          40 :                 entry.uncompressed_filesize = phar->alias_len;
     991             : 
     992          80 :                 if (NULL == zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
     993           0 :                         if (error) {
     994           0 :                                 spprintf(error, 0, "unable to set alias in tar-based phar \"%s\"", phar->fname);
     995             :                         }
     996           0 :                         return EOF;
     997             :                 }
     998             :         } else {
     999         135 :                 zend_hash_str_del(&phar->manifest, ".phar/alias.txt", sizeof(".phar/alias.txt")-1);
    1000             :         }
    1001             : 
    1002             :         /* set stub */
    1003         201 :         if (user_stub && !defaultstub) {
    1004             :                 char *pos;
    1005          27 :                 if (len < 0) {
    1006             :                         /* resource passed in */
    1007           2 :                         if (!(php_stream_from_zval_no_verify(stubfile, (zval *)user_stub))) {
    1008           0 :                                 if (error) {
    1009           0 :                                         spprintf(error, 0, "unable to access resource to copy stub to new tar-based phar \"%s\"", phar->fname);
    1010             :                                 }
    1011           0 :                                 return EOF;
    1012             :                         }
    1013           2 :                         if (len == -1) {
    1014           1 :                                 len = PHP_STREAM_COPY_ALL;
    1015             :                         } else {
    1016           1 :                                 len = -len;
    1017             :                         }
    1018           2 :                         user_stub = 0;
    1019             : 
    1020             :                         // TODO: refactor to avoid reallocation ???
    1021             : //???           len = php_stream_copy_to_mem(stubfile, &user_stub, len, 0)
    1022             :                         {
    1023           2 :                                 zend_string *str = php_stream_copy_to_mem(stubfile, len, 0);
    1024           2 :                                 if (str) {
    1025           2 :                                         len = ZSTR_LEN(str);
    1026           2 :                                         user_stub = estrndup(ZSTR_VAL(str), ZSTR_LEN(str));
    1027             :                                         zend_string_release(str);
    1028             :                                 } else {
    1029           0 :                                         user_stub = NULL;
    1030           0 :                                         len = 0;
    1031             :                                 }
    1032             :                         }
    1033             : 
    1034           2 :                         if (!len || !user_stub) {
    1035           0 :                                 if (error) {
    1036           0 :                                         spprintf(error, 0, "unable to read resource to copy stub to new tar-based phar \"%s\"", phar->fname);
    1037             :                                 }
    1038           0 :                                 return EOF;
    1039             :                         }
    1040           2 :                         free_user_stub = 1;
    1041             :                 } else {
    1042          25 :                         free_user_stub = 0;
    1043             :                 }
    1044             : 
    1045          27 :                 tmp = estrndup(user_stub, len);
    1046          27 :                 if ((pos = php_stristr(tmp, halt_stub, len, sizeof(halt_stub) - 1)) == NULL) {
    1047           1 :                         efree(tmp);
    1048           1 :                         if (error) {
    1049           1 :                                 spprintf(error, 0, "illegal stub for tar-based phar \"%s\"", phar->fname);
    1050             :                         }
    1051           1 :                         if (free_user_stub) {
    1052           0 :                                 efree(user_stub);
    1053             :                         }
    1054           1 :                         return EOF;
    1055             :                 }
    1056          26 :                 pos = user_stub + (pos - tmp);
    1057          26 :                 efree(tmp);
    1058             : 
    1059          26 :                 len = pos - user_stub + 18;
    1060          26 :                 entry.fp = php_stream_fopen_tmpfile();
    1061          26 :                 if (entry.fp == NULL) {
    1062           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1063           0 :                         return EOF;
    1064             :                 }
    1065          26 :                 entry.uncompressed_filesize = len + 5;
    1066             : 
    1067          52 :                 if ((size_t)len != php_stream_write(entry.fp, user_stub, len)
    1068          52 :                 ||            5 != php_stream_write(entry.fp, " ?>\r\n", 5)) {
    1069           0 :                         if (error) {
    1070           0 :                                 spprintf(error, 0, "unable to create stub from string in new tar-based phar \"%s\"", phar->fname);
    1071             :                         }
    1072           0 :                         if (free_user_stub) {
    1073           0 :                                 efree(user_stub);
    1074             :                         }
    1075           0 :                         php_stream_close(entry.fp);
    1076           0 :                         return EOF;
    1077             :                 }
    1078             : 
    1079          26 :                 entry.filename = estrndup(".phar/stub.php", sizeof(".phar/stub.php")-1);
    1080          26 :                 entry.filename_len = sizeof(".phar/stub.php")-1;
    1081          26 :                 zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info));
    1082             : 
    1083          26 :                 if (free_user_stub) {
    1084           2 :                         efree(user_stub);
    1085             :                 }
    1086             :         } else {
    1087             :                 /* Either this is a brand new phar (add the stub), or the default stub is required (overwrite the stub) */
    1088         148 :                 entry.fp = php_stream_fopen_tmpfile();
    1089         148 :                 if (entry.fp == NULL) {
    1090           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1091           0 :                         return EOF;
    1092             :                 }
    1093         148 :                 if (sizeof(newstub)-1 != php_stream_write(entry.fp, newstub, sizeof(newstub)-1)) {
    1094           0 :                         php_stream_close(entry.fp);
    1095           0 :                         if (error) {
    1096           0 :                                 spprintf(error, 0, "unable to %s stub in%star-based phar \"%s\", failed", user_stub ? "overwrite" : "create", user_stub ? " " : " new ", phar->fname);
    1097             :                         }
    1098           0 :                         return EOF;
    1099             :                 }
    1100             : 
    1101         148 :                 entry.uncompressed_filesize = entry.compressed_filesize = sizeof(newstub) - 1;
    1102         148 :                 entry.filename = estrndup(".phar/stub.php", sizeof(".phar/stub.php")-1);
    1103         148 :                 entry.filename_len = sizeof(".phar/stub.php")-1;
    1104             : 
    1105         148 :                 if (!defaultstub) {
    1106         131 :                         if (!zend_hash_str_exists(&phar->manifest, ".phar/stub.php", sizeof(".phar/stub.php")-1)) {
    1107          42 :                                 if (NULL == zend_hash_str_add_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
    1108           0 :                                         php_stream_close(entry.fp);
    1109           0 :                                         efree(entry.filename);
    1110           0 :                                         if (error) {
    1111           0 :                                                 spprintf(error, 0, "unable to create stub in tar-based phar \"%s\"", phar->fname);
    1112             :                                         }
    1113           0 :                                         return EOF;
    1114             :                                 }
    1115             :                         } else {
    1116         110 :                                 php_stream_close(entry.fp);
    1117         110 :                                 efree(entry.filename);
    1118             :                         }
    1119             :                 } else {
    1120          34 :                         if (NULL == zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
    1121           0 :                                 php_stream_close(entry.fp);
    1122           0 :                                 efree(entry.filename);
    1123           0 :                                 if (error) {
    1124           0 :                                         spprintf(error, 0, "unable to overwrite stub in tar-based phar \"%s\"", phar->fname);
    1125             :                                 }
    1126           0 :                                 return EOF;
    1127             :                         }
    1128             :                 }
    1129             :         }
    1130             : nostub:
    1131         351 :         if (phar->fp && !phar->is_brandnew) {
    1132         157 :                 oldfile = phar->fp;
    1133         157 :                 closeoldfile = 0;
    1134         157 :                 php_stream_rewind(oldfile);
    1135             :         } else {
    1136          37 :                 oldfile = php_stream_open_wrapper(phar->fname, "rb", 0, NULL);
    1137          37 :                 closeoldfile = oldfile != NULL;
    1138             :         }
    1139             : 
    1140         194 :         newfile = php_stream_fopen_tmpfile();
    1141         194 :         if (!newfile) {
    1142           0 :                 if (error) {
    1143           0 :                         spprintf(error, 0, "unable to create temporary file");
    1144             :                 }
    1145           0 :                 if (closeoldfile) {
    1146           0 :                         php_stream_close(oldfile);
    1147             :                 }
    1148           0 :                 return EOF;
    1149             :         }
    1150             : 
    1151         194 :         pass.old = oldfile;
    1152         194 :         pass.new = newfile;
    1153         194 :         pass.error = error;
    1154         194 :         pass.free_fp = 1;
    1155         194 :         pass.free_ufp = 1;
    1156             : 
    1157         388 :         if (Z_TYPE(phar->metadata) != IS_UNDEF) {
    1158             :                 phar_entry_info *mentry;
    1159          18 :                 if (NULL != (mentry = zend_hash_str_find_ptr(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1))) {
    1160           7 :                         if (ZEND_HASH_APPLY_KEEP != phar_tar_setmetadata(&phar->metadata, mentry, error)) {
    1161           0 :                                 if (closeoldfile) {
    1162           0 :                                         php_stream_close(oldfile);
    1163             :                                 }
    1164           0 :                                 return EOF;
    1165             :                         }
    1166             :                 } else {
    1167           2 :                         phar_entry_info newentry = {0};
    1168             : 
    1169           2 :                         newentry.filename = estrndup(".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1);
    1170           2 :                         newentry.filename_len = sizeof(".phar/.metadata.bin")-1;
    1171           2 :                         newentry.phar = phar;
    1172           2 :                         newentry.tar_type = TAR_FILE;
    1173           2 :                         newentry.is_tar = 1;
    1174             : 
    1175           4 :                         if (NULL == (mentry = zend_hash_str_add_mem(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1, (void *)&newentry, sizeof(phar_entry_info)))) {
    1176           0 :                                 spprintf(error, 0, "phar tar error: unable to add magic metadata file to manifest for phar archive \"%s\"", phar->fname);
    1177           0 :                                 if (closeoldfile) {
    1178           0 :                                         php_stream_close(oldfile);
    1179             :                                 }
    1180           0 :                                 return EOF;
    1181             :                         }
    1182             : 
    1183           2 :                         if (ZEND_HASH_APPLY_KEEP != phar_tar_setmetadata(&phar->metadata, mentry, error)) {
    1184           0 :                                 zend_hash_str_del(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1);
    1185           0 :                                 if (closeoldfile) {
    1186           0 :                                         php_stream_close(oldfile);
    1187             :                                 }
    1188           0 :                                 return EOF;
    1189             :                         }
    1190             :                 }
    1191             :         }
    1192             : 
    1193         194 :         zend_hash_apply_with_argument(&phar->manifest, phar_tar_setupmetadata, (void *) &pass);
    1194             : 
    1195         194 :         if (error && *error) {
    1196           0 :                 if (closeoldfile) {
    1197           0 :                         php_stream_close(oldfile);
    1198             :                 }
    1199             : 
    1200             :                 /* on error in the hash iterator above, error is set */
    1201           0 :                 php_stream_close(newfile);
    1202           0 :                 return EOF;
    1203             :         }
    1204             : 
    1205         194 :         zend_hash_apply_with_argument(&phar->manifest, phar_tar_writeheaders, (void *) &pass);
    1206             : 
    1207             :         /* add signature for executable tars or tars explicitly set with setSignatureAlgorithm */
    1208         194 :         if (!phar->is_data || phar->sig_flags) {
    1209         175 :                 if (FAILURE == phar_create_signature(phar, newfile, &signature, &signature_length, error)) {
    1210           0 :                         if (error) {
    1211           0 :                                 char *save = *error;
    1212           0 :                                 spprintf(error, 0, "phar error: unable to write signature to tar-based phar: %s", save);
    1213           0 :                                 efree(save);
    1214             :                         }
    1215             : 
    1216           0 :                         if (closeoldfile) {
    1217           0 :                                 php_stream_close(oldfile);
    1218             :                         }
    1219             : 
    1220           0 :                         php_stream_close(newfile);
    1221           0 :                         return EOF;
    1222             :                 }
    1223             : 
    1224         175 :                 entry.filename = ".phar/signature.bin";
    1225         175 :                 entry.filename_len = sizeof(".phar/signature.bin")-1;
    1226         175 :                 entry.fp = php_stream_fopen_tmpfile();
    1227         175 :                 if (entry.fp == NULL) {
    1228           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1229           0 :                         return EOF;
    1230             :                 }
    1231             : #ifdef WORDS_BIGENDIAN
    1232             : # define PHAR_SET_32(var, buffer) \
    1233             :         *(uint32_t *)(var) = (((((unsigned char*)&(buffer))[3]) << 24) \
    1234             :                 | ((((unsigned char*)&(buffer))[2]) << 16) \
    1235             :                 | ((((unsigned char*)&(buffer))[1]) << 8) \
    1236             :                 | (((unsigned char*)&(buffer))[0]))
    1237             : #else
    1238             : # define PHAR_SET_32(var, buffer) *(uint32_t *)(var) = (uint32_t) (buffer)
    1239             : #endif
    1240         175 :                 PHAR_SET_32(sigbuf, phar->sig_flags);
    1241         175 :                 PHAR_SET_32(sigbuf + 4, signature_length);
    1242             : 
    1243         175 :                 if (8 != (int)php_stream_write(entry.fp, sigbuf, 8) || signature_length != (int)php_stream_write(entry.fp, signature, signature_length)) {
    1244           0 :                         efree(signature);
    1245           0 :                         if (error) {
    1246           0 :                                 spprintf(error, 0, "phar error: unable to write signature to tar-based phar %s", phar->fname);
    1247             :                         }
    1248             : 
    1249           0 :                         if (closeoldfile) {
    1250           0 :                                 php_stream_close(oldfile);
    1251             :                         }
    1252           0 :                         php_stream_close(newfile);
    1253           0 :                         return EOF;
    1254             :                 }
    1255             : 
    1256         175 :                 efree(signature);
    1257         175 :                 entry.uncompressed_filesize = entry.compressed_filesize = signature_length + 8;
    1258             :                 /* throw out return value and write the signature */
    1259         175 :                 entry.filename_len = phar_tar_writeheaders_int(&entry, (void *)&pass);
    1260             : 
    1261         175 :                 if (error && *error) {
    1262           0 :                         if (closeoldfile) {
    1263           0 :                                 php_stream_close(oldfile);
    1264             :                         }
    1265             :                         /* error is set by writeheaders */
    1266           0 :                         php_stream_close(newfile);
    1267           0 :                         return EOF;
    1268             :                 }
    1269             :         } /* signature */
    1270             : 
    1271             :         /* add final zero blocks */
    1272         194 :         buf = (char *) ecalloc(1024, 1);
    1273         194 :         php_stream_write(newfile, buf, 1024);
    1274         194 :         efree(buf);
    1275             : 
    1276         194 :         if (closeoldfile) {
    1277           1 :                 php_stream_close(oldfile);
    1278             :         }
    1279             : 
    1280             :         /* on error in the hash iterator above, error is set */
    1281         194 :         if (error && *error) {
    1282           3 :                 php_stream_close(newfile);
    1283           3 :                 return EOF;
    1284             :         }
    1285             : 
    1286         191 :         if (phar->fp && pass.free_fp) {
    1287         157 :                 php_stream_close(phar->fp);
    1288             :         }
    1289             : 
    1290         191 :         if (phar->ufp) {
    1291           3 :                 if (pass.free_ufp) {
    1292           3 :                         php_stream_close(phar->ufp);
    1293             :                 }
    1294           3 :                 phar->ufp = NULL;
    1295             :         }
    1296             : 
    1297         191 :         phar->is_brandnew = 0;
    1298         191 :         php_stream_rewind(newfile);
    1299             : 
    1300         191 :         if (phar->donotflush) {
    1301             :                 /* deferred flush */
    1302           7 :                 phar->fp = newfile;
    1303             :         } else {
    1304         184 :                 phar->fp = php_stream_open_wrapper(phar->fname, "w+b", IGNORE_URL|STREAM_MUST_SEEK|REPORT_ERRORS, NULL);
    1305         184 :                 if (!phar->fp) {
    1306           0 :                         phar->fp = newfile;
    1307           0 :                         if (error) {
    1308           0 :                                 spprintf(error, 0, "unable to open new phar \"%s\" for writing", phar->fname);
    1309             :                         }
    1310           0 :                         return EOF;
    1311             :                 }
    1312             : 
    1313         184 :                 if (phar->flags & PHAR_FILE_COMPRESSED_GZ) {
    1314             :                         php_stream_filter *filter;
    1315             :                         /* to properly compress, we have to tell zlib to add a zlib header */
    1316             :                         zval filterparams;
    1317             : 
    1318           8 :                         array_init(&filterparams);
    1319             : /* this is defined in zlib's zconf.h */
    1320             : #ifndef MAX_WBITS
    1321             : #define MAX_WBITS 15
    1322             : #endif
    1323           8 :                         add_assoc_long(&filterparams, "window", MAX_WBITS + 16);
    1324           8 :                         filter = php_stream_filter_create("zlib.deflate", &filterparams, php_stream_is_persistent(phar->fp));
    1325             :                         zval_dtor(&filterparams);
    1326             : 
    1327           8 :                         if (!filter) {
    1328             :                                 /* copy contents uncompressed rather than lose them */
    1329           0 :                                 php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1330           0 :                                 php_stream_close(newfile);
    1331           0 :                                 if (error) {
    1332           0 :                                         spprintf(error, 4096, "unable to compress all contents of phar \"%s\" using zlib, PHP versions older than 5.2.6 have a buggy zlib", phar->fname);
    1333             :                                 }
    1334           0 :                                 return EOF;
    1335             :                         }
    1336             : 
    1337           8 :                         php_stream_filter_append(&phar->fp->writefilters, filter);
    1338           8 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1339           8 :                         php_stream_filter_flush(filter, 1);
    1340           8 :                         php_stream_filter_remove(filter, 1);
    1341           8 :                         php_stream_close(phar->fp);
    1342             :                         /* use the temp stream as our base */
    1343           8 :                         phar->fp = newfile;
    1344         176 :                 } else if (phar->flags & PHAR_FILE_COMPRESSED_BZ2) {
    1345             :                         php_stream_filter *filter;
    1346             : 
    1347           4 :                         filter = php_stream_filter_create("bzip2.compress", NULL, php_stream_is_persistent(phar->fp));
    1348           4 :                         php_stream_filter_append(&phar->fp->writefilters, filter);
    1349           4 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1350           4 :                         php_stream_filter_flush(filter, 1);
    1351           4 :                         php_stream_filter_remove(filter, 1);
    1352           4 :                         php_stream_close(phar->fp);
    1353             :                         /* use the temp stream as our base */
    1354           4 :                         phar->fp = newfile;
    1355             :                 } else {
    1356         172 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1357             :                         /* we could also reopen the file in "rb" mode but there is no need for that */
    1358         172 :                         php_stream_close(newfile);
    1359             :                 }
    1360             :         }
    1361         191 :         return EOF;
    1362             : }
    1363             : /* }}} */
    1364             : 
    1365             : /*
    1366             :  * Local variables:
    1367             :  * tab-width: 4
    1368             :  * c-basic-offset: 4
    1369             :  * End:
    1370             :  * vim600: noet sw=4 ts=4 fdm=marker
    1371             :  * vim<600: noet sw=4 ts=4
    1372             :  */

Generated by: LCOV version 1.10

Generated at Sun, 28 Aug 2016 17:10:09 +0000 (40 hours ago)

Copyright © 2005-2016 The PHP Group
All rights reserved.