PHP  
 PHP: Test and Code Coverage Analysis
downloads | QA | documentation | faq | getting help | mailing lists | reporting bugs | php.net sites | links | my php.net 
 

LCOV - code coverage report
Current view: top level - ext/phar - tar.c (source / functions) Hit Total Coverage
Test: PHP Code Coverage Lines: 532 749 71.0 %
Date: 2016-05-26 Functions: 12 12 100.0 %
Legend: Lines: hit not hit

          Line data    Source code
       1             : /*
       2             :   +----------------------------------------------------------------------+
       3             :   | TAR archive support for Phar                                         |
       4             :   +----------------------------------------------------------------------+
       5             :   | Copyright (c) 2005-2016 The PHP Group                                |
       6             :   +----------------------------------------------------------------------+
       7             :   | This source file is subject to version 3.01 of the PHP license,      |
       8             :   | that is bundled with this package in the file LICENSE, and is        |
       9             :   | available through the world-wide-web at the following url:           |
      10             :   | http://www.php.net/license/3_01.txt.                                 |
      11             :   | If you did not receive a copy of the PHP license and are unable to   |
      12             :   | obtain it through the world-wide-web, please send a note to          |
      13             :   | license@php.net so we can mail you a copy immediately.               |
      14             :   +----------------------------------------------------------------------+
      15             :   | Authors: Dmitry Stogov <dmitry@zend.com>                             |
      16             :   |          Gregory Beaver <cellog@php.net>                             |
      17             :   +----------------------------------------------------------------------+
      18             : */
      19             : 
      20             : #include "phar_internal.h"
      21             : 
      22        1545 : static uint32_t phar_tar_number(char *buf, int len) /* {{{ */
      23             : {
      24        1545 :         uint32_t num = 0;
      25        1545 :         int i = 0;
      26             : 
      27        4079 :         while (i < len && buf[i] == ' ') {
      28         989 :                 ++i;
      29             :         }
      30             : 
      31       14195 :         while (i < len && buf[i] >= '0' && buf[i] <= '7') {
      32       11105 :                 num = num * 8 + (buf[i] - '0');
      33       11105 :                 ++i;
      34             :         }
      35             : 
      36        1545 :         return num;
      37             : }
      38             : /* }}} */
      39             : 
      40             : /* adapted from format_octal() in libarchive
      41             :  *
      42             :  * Copyright (c) 2003-2009 Tim Kientzle
      43             :  * All rights reserved.
      44             :  *
      45             :  * Redistribution and use in source and binary forms, with or without
      46             :  * modification, are permitted provided that the following conditions
      47             :  * are met:
      48             :  * 1. Redistributions of source code must retain the above copyright
      49             :  *    notice, this list of conditions and the following disclaimer.
      50             :  * 2. Redistributions in binary form must reproduce the above copyright
      51             :  *    notice, this list of conditions and the following disclaimer in the
      52             :  *    documentation and/or other materials provided with the distribution.
      53             :  *
      54             :  * THIS SOFTWARE IS PROVIDED BY THE AUTHOR(S) ``AS IS'' AND ANY EXPRESS OR
      55             :  * IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES
      56             :  * OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
      57             :  * IN NO EVENT SHALL THE AUTHOR(S) BE LIABLE FOR ANY DIRECT, INDIRECT,
      58             :  * INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
      59             :  * NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
      60             :  * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
      61             :  * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
      62             :  * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
      63             :  * THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
      64             :  */
      65        3520 : static int phar_tar_octal(char *buf, uint32_t val, int len) /* {{{ */
      66             : {
      67        3520 :         char *p = buf;
      68        3520 :         int s = len;
      69             : 
      70        3520 :         p += len;               /* Start at the end and work backwards. */
      71       38720 :         while (s-- > 0) {
      72       31680 :                 *--p = (char)('0' + (val & 7));
      73       31680 :                 val >>= 3;
      74             :         }
      75             : 
      76        3520 :         if (val == 0)
      77        3520 :                 return SUCCESS;
      78             : 
      79             :         /* If it overflowed, fill field with max value. */
      80           0 :         while (len-- > 0)
      81           0 :                 *p++ = '7';
      82             : 
      83           0 :         return FAILURE;
      84             : }
      85             : /* }}} */
      86             : 
      87        1380 : static uint32_t phar_tar_checksum(char *buf, int len) /* {{{ */
      88             : {
      89        1380 :         uint32_t sum = 0;
      90        1380 :         char *end = buf + len;
      91             : 
      92      700140 :         while (buf != end) {
      93      697380 :                 sum += (unsigned char)*buf;
      94      697380 :                 ++buf;
      95             :         }
      96        1380 :         return sum;
      97             : }
      98             : /* }}} */
      99             : 
     100         165 : int phar_is_tar(char *buf, char *fname) /* {{{ */
     101             : {
     102         165 :         tar_header *header = (tar_header *) buf;
     103         165 :         uint32_t checksum = phar_tar_number(header->checksum, sizeof(header->checksum));
     104             :         uint32_t ret;
     105             :         char save[sizeof(header->checksum)], *bname;
     106             : 
     107             :         /* assume that the first filename in a tar won't begin with <?php */
     108         165 :         if (!strncmp(buf, "<?php", sizeof("<?php")-1)) {
     109          82 :                 return 0;
     110             :         }
     111             : 
     112          83 :         memcpy(save, header->checksum, sizeof(header->checksum));
     113          83 :         memset(header->checksum, ' ', sizeof(header->checksum));
     114          83 :         ret = (checksum == phar_tar_checksum(buf, 512));
     115          83 :         memcpy(header->checksum, save, sizeof(header->checksum));
     116          83 :         if ((bname = strrchr(fname, PHP_DIR_SEPARATOR))) {
     117          83 :                 fname = bname;
     118             :         }
     119          83 :         if (!ret && (bname = strstr(fname, ".tar")) && (bname[4] == '\0' || bname[4] == '.')) {
     120             :                 /* probably a corrupted tar - so we will pretend it is one */
     121           4 :                 return 1;
     122             :         }
     123          79 :         return ret;
     124             : }
     125             : /* }}} */
     126             : 
     127          82 : int phar_open_or_create_tar(char *fname, int fname_len, char *alias, int alias_len, int is_data, int options, phar_archive_data** pphar, char **error) /* {{{ */
     128             : {
     129             :         phar_archive_data *phar;
     130          82 :         int ret = phar_create_or_parse_filename(fname, fname_len, alias, alias_len, is_data, options, &phar, error);
     131             : 
     132          82 :         if (FAILURE == ret) {
     133          14 :                 return FAILURE;
     134             :         }
     135             : 
     136          68 :         if (pphar) {
     137          68 :                 *pphar = phar;
     138             :         }
     139             : 
     140          68 :         phar->is_data = is_data;
     141             : 
     142          68 :         if (phar->is_tar) {
     143          33 :                 return ret;
     144             :         }
     145             : 
     146          35 :         if (phar->is_brandnew) {
     147          34 :                 phar->is_tar = 1;
     148          34 :                 phar->is_zip = 0;
     149          34 :                 phar->internal_file_start = 0;
     150          34 :                 return SUCCESS;
     151             :         }
     152             : 
     153             :         /* we've reached here - the phar exists and is a regular phar */
     154           1 :         if (error) {
     155           1 :                 spprintf(error, 4096, "phar tar error: \"%s\" already exists as a regular phar and must be deleted from disk prior to creating as a tar-based phar", fname);
     156             :         }
     157           1 :         return FAILURE;
     158             : }
     159             : /* }}} */
     160             : 
     161           7 : static int phar_tar_process_metadata(phar_entry_info *entry, php_stream *fp) /* {{{ */
     162             : {
     163             :         char *metadata;
     164           7 :         size_t save = php_stream_tell(fp), read;
     165             :         phar_entry_info *mentry;
     166             : 
     167           7 :         metadata = (char *) safe_emalloc(1, entry->uncompressed_filesize, 1);
     168             : 
     169           7 :         read = php_stream_read(fp, metadata, entry->uncompressed_filesize);
     170           7 :         if (read != entry->uncompressed_filesize) {
     171           0 :                 efree(metadata);
     172           0 :                 php_stream_seek(fp, save, SEEK_SET);
     173           0 :                 return FAILURE;
     174             :         }
     175             : 
     176           7 :         if (phar_parse_metadata(&metadata, &entry->metadata, entry->uncompressed_filesize) == FAILURE) {
     177             :                 /* if not valid serialized data, it is a regular string */
     178           0 :                 efree(metadata);
     179           0 :                 php_stream_seek(fp, save, SEEK_SET);
     180           0 :                 return FAILURE;
     181             :         }
     182             : 
     183          11 :         if (entry->filename_len == sizeof(".phar/.metadata.bin")-1 && !memcmp(entry->filename, ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1)) {
     184           4 :                 entry->phar->metadata = entry->metadata;
     185           4 :                 ZVAL_UNDEF(&entry->metadata);
     186           6 :         } else if (entry->filename_len >= sizeof(".phar/.metadata/") + sizeof("/.metadata.bin") - 1 && NULL != (mentry = zend_hash_str_find_ptr(&(entry->phar->manifest), entry->filename + sizeof(".phar/.metadata/") - 1, entry->filename_len - (sizeof("/.metadata.bin") - 1 + sizeof(".phar/.metadata/") - 1)))) {
     187             :                 /* transfer this metadata to the entry it refers */
     188           3 :                 mentry->metadata = entry->metadata;
     189           3 :                 ZVAL_UNDEF(&entry->metadata);
     190             :         }
     191             : 
     192           7 :         efree(metadata);
     193           7 :         php_stream_seek(fp, save, SEEK_SET);
     194           7 :         return SUCCESS;
     195             : }
     196             : /* }}} */
     197             : 
     198             : #if !HAVE_STRNLEN
     199             : static size_t strnlen(const char *s, size_t maxlen) {
     200             :         char *r = (char *)memchr(s, '\0', maxlen);
     201             :         return r ? r-s : maxlen;
     202             : }
     203             : #endif
     204             : 
     205          80 : int phar_parse_tarfile(php_stream* fp, char *fname, int fname_len, char *alias, int alias_len, phar_archive_data** pphar, int is_data, uint32_t compression, char **error) /* {{{ */
     206             : {
     207          80 :         char buf[512], *actual_alias = NULL, *p;
     208          80 :         phar_entry_info entry = {0};
     209          80 :         size_t pos = 0, read, totalsize;
     210             :         tar_header *hdr;
     211             :         uint32_t sum1, sum2, size, old;
     212             :         phar_archive_data *myphar, *actual;
     213          80 :         int last_was_longlink = 0;
     214             :         int linkname_len;
     215             : 
     216          80 :         if (error) {
     217          55 :                 *error = NULL;
     218             :         }
     219             : 
     220          80 :         php_stream_seek(fp, 0, SEEK_END);
     221          80 :         totalsize = php_stream_tell(fp);
     222          80 :         php_stream_seek(fp, 0, SEEK_SET);
     223          80 :         read = php_stream_read(fp, buf, sizeof(buf));
     224             : 
     225          80 :         if (read != sizeof(buf)) {
     226           0 :                 if (error) {
     227           0 :                         spprintf(error, 4096, "phar error: \"%s\" is not a tar file or is truncated", fname);
     228             :                 }
     229           0 :                 php_stream_close(fp);
     230           0 :                 return FAILURE;
     231             :         }
     232             : 
     233          80 :         hdr = (tar_header*)buf;
     234          80 :         old = (memcmp(hdr->magic, "ustar", sizeof("ustar")-1) != 0);
     235             : 
     236          80 :         myphar = (phar_archive_data *) pecalloc(1, sizeof(phar_archive_data), PHAR_G(persist));
     237          80 :         myphar->is_persistent = PHAR_G(persist);
     238             :         /* estimate number of entries, can't be certain with tar files */
     239          80 :         zend_hash_init(&myphar->manifest, 2 + (totalsize >> 12),
     240             :                 zend_get_hash_value, destroy_phar_manifest_entry, (zend_bool)myphar->is_persistent);
     241          80 :         zend_hash_init(&myphar->mounted_dirs, 5,
     242             :                 zend_get_hash_value, NULL, (zend_bool)myphar->is_persistent);
     243          80 :         zend_hash_init(&myphar->virtual_dirs, 4 + (totalsize >> 11),
     244             :                 zend_get_hash_value, NULL, (zend_bool)myphar->is_persistent);
     245          80 :         myphar->is_tar = 1;
     246             :         /* remember whether this entire phar was compressed with gz/bzip2 */
     247          80 :         myphar->flags = compression;
     248             : 
     249          80 :         entry.is_tar = 1;
     250          80 :         entry.is_crc_checked = 1;
     251          80 :         entry.phar = myphar;
     252          80 :         pos += sizeof(buf);
     253             : 
     254             :         do {
     255             :                 phar_entry_info *newentry;
     256             : 
     257         380 :                 pos = php_stream_tell(fp);
     258         380 :                 hdr = (tar_header*) buf;
     259         380 :                 sum1 = phar_tar_number(hdr->checksum, sizeof(hdr->checksum));
     260         380 :                 if (sum1 == 0 && phar_tar_checksum(buf, sizeof(buf)) == 0) {
     261          29 :                         break;
     262             :                 }
     263         351 :                 memset(hdr->checksum, ' ', sizeof(hdr->checksum));
     264         351 :                 sum2 = phar_tar_checksum(buf, old?sizeof(old_tar_header):sizeof(tar_header));
     265             : 
     266         351 :                 size = entry.uncompressed_filesize = entry.compressed_filesize =
     267         351 :                         phar_tar_number(hdr->size, sizeof(hdr->size));
     268             : 
     269             :                 /* skip global/file headers (pax) */
     270         351 :                 if (!old && (hdr->typeflag == TAR_GLOBAL_HDR || hdr->typeflag == TAR_FILE_HDR)) {
     271           2 :                         size = (size+511)&~511;
     272           2 :                         goto next;
     273             :                 }
     274             : 
     275         349 :                 if (((!old && hdr->prefix[0] == 0) || old) && strnlen(hdr->name, 100) == sizeof(".phar/signature.bin")-1 && !strncmp(hdr->name, ".phar/signature.bin", sizeof(".phar/signature.bin")-1)) {
     276             :                         zend_off_t curloc;
     277             : 
     278          37 :                         if (size > 511) {
     279           0 :                                 if (error) {
     280           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has signature that is larger than 511 bytes, cannot process", fname);
     281             :                                 }
     282             : bail:
     283           0 :                                 php_stream_close(fp);
     284           0 :                                 phar_destroy_phar_data(myphar);
     285           0 :                                 return FAILURE;
     286             :                         }
     287          37 :                         curloc = php_stream_tell(fp);
     288          37 :                         read = php_stream_read(fp, buf, size);
     289          37 :                         if (read != size) {
     290           0 :                                 if (error) {
     291           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" signature cannot be read", fname);
     292             :                                 }
     293           0 :                                 goto bail;
     294             :                         }
     295             : #ifdef WORDS_BIGENDIAN
     296             : # define PHAR_GET_32(buffer) \
     297             :         (((((unsigned char*)(buffer))[3]) << 24) \
     298             :                 | ((((unsigned char*)(buffer))[2]) << 16) \
     299             :                 | ((((unsigned char*)(buffer))[1]) <<  8) \
     300             :                 | (((unsigned char*)(buffer))[0]))
     301             : #else
     302             : # define PHAR_GET_32(buffer) (uint32_t) *(buffer)
     303             : #endif
     304          37 :                         myphar->sig_flags = PHAR_GET_32(buf);
     305          37 :                         if (FAILURE == phar_verify_signature(fp, php_stream_tell(fp) - size - 512, myphar->sig_flags, buf + 8, size - 8, fname, &myphar->signature, &myphar->sig_len, error)) {
     306           0 :                                 if (error) {
     307           0 :                                         char *save = *error;
     308           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" signature cannot be verified: %s", fname, save);
     309           0 :                                         efree(save);
     310             :                                 }
     311           0 :                                 goto bail;
     312             :                         }
     313          37 :                         php_stream_seek(fp, curloc + 512, SEEK_SET);
     314             :                         /* signature checked out, let's ensure this is the last file in the phar */
     315          37 :                         if (((hdr->typeflag == '\0') || (hdr->typeflag == TAR_FILE)) && size > 0) {
     316             :                                 /* this is not good enough - seek succeeds even on truncated tars */
     317          36 :                                 php_stream_seek(fp, 512, SEEK_CUR);
     318          36 :                                 if ((uint)php_stream_tell(fp) > totalsize) {
     319           0 :                                         if (error) {
     320           0 :                                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     321             :                                         }
     322           0 :                                         php_stream_close(fp);
     323           0 :                                         phar_destroy_phar_data(myphar);
     324           0 :                                         return FAILURE;
     325             :                                 }
     326             :                         }
     327             : 
     328          37 :                         read = php_stream_read(fp, buf, sizeof(buf));
     329             : 
     330          37 :                         if (read != sizeof(buf)) {
     331           0 :                                 if (error) {
     332           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     333             :                                 }
     334           0 :                                 php_stream_close(fp);
     335           0 :                                 phar_destroy_phar_data(myphar);
     336           0 :                                 return FAILURE;
     337             :                         }
     338             : 
     339          37 :                         hdr = (tar_header*) buf;
     340          37 :                         sum1 = phar_tar_number(hdr->checksum, sizeof(hdr->checksum));
     341             : 
     342          37 :                         if (sum1 == 0 && phar_tar_checksum(buf, sizeof(buf)) == 0) {
     343          37 :                                 break;
     344             :                         }
     345             : 
     346           0 :                         if (error) {
     347           0 :                                 spprintf(error, 4096, "phar error: \"%s\" has entries after signature, invalid phar", fname);
     348             :                         }
     349             : 
     350           0 :                         goto bail;
     351             :                 }
     352             : 
     353         312 :                 if (!last_was_longlink && hdr->typeflag == 'L') {
     354           4 :                         last_was_longlink = 1;
     355             :                         /* support the ././@LongLink system for storing long filenames */
     356           4 :                         entry.filename_len = entry.uncompressed_filesize;
     357             : 
     358             :                         /* Check for overflow - bug 61065 */
     359           4 :                         if (entry.filename_len == UINT_MAX || entry.filename_len == 0) {
     360           1 :                                 if (error) {
     361           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (invalid entry size)", fname);
     362             :                                 }
     363           1 :                                 php_stream_close(fp);
     364           1 :                                 phar_destroy_phar_data(myphar);
     365           1 :                                 return FAILURE;
     366             :                         }
     367           3 :                         entry.filename = pemalloc(entry.filename_len+1, myphar->is_persistent);
     368             : 
     369           3 :                         read = php_stream_read(fp, entry.filename, entry.filename_len);
     370           3 :                         if (read != entry.filename_len) {
     371           0 :                                 efree(entry.filename);
     372           0 :                                 if (error) {
     373           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     374             :                                 }
     375           0 :                                 php_stream_close(fp);
     376           0 :                                 phar_destroy_phar_data(myphar);
     377           0 :                                 return FAILURE;
     378             :                         }
     379           3 :                         entry.filename[entry.filename_len] = '\0';
     380             : 
     381             :                         /* skip blank stuff */
     382           3 :                         size = ((size+511)&~511) - size;
     383             : 
     384             :                         /* this is not good enough - seek succeeds even on truncated tars */
     385           3 :                         php_stream_seek(fp, size, SEEK_CUR);
     386           3 :                         if ((uint)php_stream_tell(fp) > totalsize) {
     387           0 :                                 efree(entry.filename);
     388           0 :                                 if (error) {
     389           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     390             :                                 }
     391           0 :                                 php_stream_close(fp);
     392           0 :                                 phar_destroy_phar_data(myphar);
     393           0 :                                 return FAILURE;
     394             :                         }
     395             : 
     396           3 :                         read = php_stream_read(fp, buf, sizeof(buf));
     397             : 
     398           3 :                         if (read != sizeof(buf)) {
     399           0 :                                 efree(entry.filename);
     400           0 :                                 if (error) {
     401           0 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     402             :                                 }
     403           0 :                                 php_stream_close(fp);
     404           0 :                                 phar_destroy_phar_data(myphar);
     405           0 :                                 return FAILURE;
     406             :                         }
     407           3 :                         continue;
     408         313 :                 } else if (!last_was_longlink && !old && hdr->prefix[0] != 0) {
     409             :                         char name[256];
     410             :                         int i, j;
     411             : 
     412         571 :                         for (i = 0; i < 155; i++) {
     413         568 :                                 name[i] = hdr->prefix[i];
     414         568 :                                 if (name[i] == '\0') {
     415           2 :                                         break;
     416             :                                 }
     417             :                         }
     418           5 :                         name[i++] = '/';
     419         406 :                         for (j = 0; j < 100; j++) {
     420         402 :                                 name[i+j] = hdr->name[j];
     421         402 :                                 if (name[i+j] == '\0') {
     422           1 :                                         break;
     423             :                                 }
     424             :                         }
     425             : 
     426           5 :                         entry.filename_len = i+j;
     427             : 
     428           5 :                         if (name[entry.filename_len - 1] == '/') {
     429             :                                 /* some tar programs store directories with trailing slash */
     430           0 :                                 entry.filename_len--;
     431             :                         }
     432           5 :                         entry.filename = pestrndup(name, entry.filename_len, myphar->is_persistent);
     433         303 :                 } else if (!last_was_longlink) {
     434             :                         int i;
     435             : 
     436             :                         /* calculate strlen, which can be no longer than 100 */
     437        4861 :                         for (i = 0; i < 100; i++) {
     438        4861 :                                 if (hdr->name[i] == '\0') {
     439         300 :                                         break;
     440             :                                 }
     441             :                         }
     442         300 :                         entry.filename_len = i;
     443         300 :                         entry.filename = pestrndup(hdr->name, i, myphar->is_persistent);
     444             : 
     445         300 :                         if (i > 0 && entry.filename[entry.filename_len - 1] == '/') {
     446             :                                 /* some tar programs store directories with trailing slash */
     447          23 :                                 entry.filename[entry.filename_len - 1] = '\0';
     448          23 :                                 entry.filename_len--;
     449             :                         }
     450             :                 }
     451         308 :                 last_was_longlink = 0;
     452             : 
     453         308 :                 phar_add_virtual_dirs(myphar, entry.filename, entry.filename_len);
     454             : 
     455         308 :                 if (sum1 != sum2) {
     456           2 :                         if (error) {
     457           2 :                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (checksum mismatch of file \"%s\")", fname, entry.filename);
     458             :                         }
     459           2 :                         pefree(entry.filename, myphar->is_persistent);
     460           2 :                         php_stream_close(fp);
     461           2 :                         phar_destroy_phar_data(myphar);
     462           2 :                         return FAILURE;
     463             :                 }
     464             : 
     465         306 :                 entry.tar_type = ((old & (hdr->typeflag == '\0')) ? TAR_FILE : hdr->typeflag);
     466         306 :                 entry.offset = entry.offset_abs = pos; /* header_offset unused in tar */
     467         306 :                 entry.fp_type = PHAR_FP;
     468         306 :                 entry.flags = phar_tar_number(hdr->mode, sizeof(hdr->mode)) & PHAR_ENT_PERM_MASK;
     469         306 :                 entry.timestamp = phar_tar_number(hdr->mtime, sizeof(hdr->mtime));
     470         306 :                 entry.is_persistent = myphar->is_persistent;
     471             : 
     472         306 :                 if (old && entry.tar_type == TAR_FILE && S_ISDIR(entry.flags)) {
     473           0 :                         entry.tar_type = TAR_DIR;
     474             :                 }
     475             : 
     476         306 :                 if (entry.tar_type == TAR_DIR) {
     477          40 :                         entry.is_dir = 1;
     478             :                 } else {
     479         266 :                         entry.is_dir = 0;
     480             :                 }
     481             : 
     482         306 :                 entry.link = NULL;
     483             :                 /* link field is null-terminated unless it has 100 non-null chars.
     484             :                  * Thus we can not use strlen. */
     485         306 :                 linkname_len = strnlen(hdr->linkname, 100);
     486         306 :                 if (entry.tar_type == TAR_LINK) {
     487           3 :                         if (!zend_hash_str_exists(&myphar->manifest, hdr->linkname, linkname_len)) {
     488           1 :                                 if (error) {
     489           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file - hard link to non-existent file \"%.*s\"", fname, linkname_len, hdr->linkname);
     490             :                                 }
     491           1 :                                 pefree(entry.filename, entry.is_persistent);
     492           1 :                                 php_stream_close(fp);
     493           1 :                                 phar_destroy_phar_data(myphar);
     494           1 :                                 return FAILURE;
     495             :                         }
     496           2 :                         entry.link = estrndup(hdr->linkname, linkname_len);
     497         303 :                 } else if (entry.tar_type == TAR_SYMLINK) {
     498           9 :                         entry.link = estrndup(hdr->linkname, linkname_len);
     499             :                 }
     500         305 :                 phar_set_inode(&entry);
     501         610 :                 if ((newentry = zend_hash_str_add_mem(&myphar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) == NULL) {
     502           0 :                         if (error) {
     503           0 :                                 spprintf(error, 4096, "phar error: tar-based phar \"%s\" cannot be registered", entry.filename);
     504             :                         }
     505           0 :                         php_stream_close(fp);
     506           0 :                         phar_destroy_phar_data(myphar);
     507           0 :                         return FAILURE;
     508             :                 }
     509             : 
     510         305 :                 if (entry.is_persistent) {
     511           0 :                         ++entry.manifest_pos;
     512             :                 }
     513             : 
     514         305 :                 if (entry.filename_len >= sizeof(".phar/.metadata")-1 && !memcmp(entry.filename, ".phar/.metadata", sizeof(".phar/.metadata")-1)) {
     515           7 :                         if (FAILURE == phar_tar_process_metadata(newentry, fp)) {
     516           0 :                                 if (error) {
     517           0 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has invalid metadata in magic file \"%s\"", fname, entry.filename);
     518             :                                 }
     519           0 :                                 php_stream_close(fp);
     520           0 :                                 phar_destroy_phar_data(myphar);
     521           0 :                                 return FAILURE;
     522             :                         }
     523             :                 }
     524             : 
     525         305 :                 if (!actual_alias && entry.filename_len == sizeof(".phar/alias.txt")-1 && !strncmp(entry.filename, ".phar/alias.txt", sizeof(".phar/alias.txt")-1)) {
     526             :                         /* found explicit alias */
     527          10 :                         if (size > 511) {
     528           1 :                                 if (error) {
     529           1 :                                         spprintf(error, 4096, "phar error: tar-based phar \"%s\" has alias that is larger than 511 bytes, cannot process", fname);
     530             :                                 }
     531           1 :                                 php_stream_close(fp);
     532           1 :                                 phar_destroy_phar_data(myphar);
     533           1 :                                 return FAILURE;
     534             :                         }
     535             : 
     536           9 :                         read = php_stream_read(fp, buf, size);
     537             : 
     538           9 :                         if (read == size) {
     539           9 :                                 buf[size] = '\0';
     540           9 :                                 if (!phar_validate_alias(buf, size)) {
     541           4 :                                         if (size > 50) {
     542           1 :                                                 buf[50] = '.';
     543           1 :                                                 buf[51] = '.';
     544           1 :                                                 buf[52] = '.';
     545           1 :                                                 buf[53] = '\0';
     546             :                                         }
     547             : 
     548           4 :                                         if (error) {
     549           4 :                                                 spprintf(error, 4096, "phar error: invalid alias \"%s\" in tar-based phar \"%s\"", buf, fname);
     550             :                                         }
     551             : 
     552           4 :                                         php_stream_close(fp);
     553           4 :                                         phar_destroy_phar_data(myphar);
     554           4 :                                         return FAILURE;
     555             :                                 }
     556             : 
     557           5 :                                 actual_alias = pestrndup(buf, size, myphar->is_persistent);
     558           5 :                                 myphar->alias = actual_alias;
     559           5 :                                 myphar->alias_len = size;
     560           5 :                                 php_stream_seek(fp, pos, SEEK_SET);
     561             :                         } else {
     562           0 :                                 if (error) {
     563           0 :                                         spprintf(error, 4096, "phar error: Unable to read alias from tar-based phar \"%s\"", fname);
     564             :                                 }
     565             : 
     566           0 :                                 php_stream_close(fp);
     567           0 :                                 phar_destroy_phar_data(myphar);
     568           0 :                                 return FAILURE;
     569             :                         }
     570             :                 }
     571             : 
     572         300 :                 size = (size+511)&~511;
     573             : 
     574         300 :                 if (((hdr->typeflag == '\0') || (hdr->typeflag == TAR_FILE)) && size > 0) {
     575             : next:
     576             :                         /* this is not good enough - seek succeeds even on truncated tars */
     577         245 :                         php_stream_seek(fp, size, SEEK_CUR);
     578         245 :                         if ((uint)php_stream_tell(fp) > totalsize) {
     579           1 :                                 if (error) {
     580           1 :                                         spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     581             :                                 }
     582           1 :                                 php_stream_close(fp);
     583           1 :                                 phar_destroy_phar_data(myphar);
     584           1 :                                 return FAILURE;
     585             :                         }
     586             :                 }
     587             : 
     588         301 :                 read = php_stream_read(fp, buf, sizeof(buf));
     589             : 
     590         301 :                 if (read != sizeof(buf)) {
     591           4 :                         if (error) {
     592           4 :                                 spprintf(error, 4096, "phar error: \"%s\" is a corrupted tar file (truncated)", fname);
     593             :                         }
     594           4 :                         php_stream_close(fp);
     595           4 :                         phar_destroy_phar_data(myphar);
     596           4 :                         return FAILURE;
     597             :                 }
     598         300 :         } while (!php_stream_eof(fp));
     599             : 
     600          66 :         if (zend_hash_str_exists(&(myphar->manifest), ".phar/stub.php", sizeof(".phar/stub.php")-1)) {
     601          46 :                 myphar->is_data = 0;
     602             :         } else {
     603          20 :                 myphar->is_data = 1;
     604             :         }
     605             : 
     606             :         /* ensure signature set */
     607          66 :         if (!myphar->is_data && PHAR_G(require_hash) && !myphar->signature) {
     608           1 :                 php_stream_close(fp);
     609           1 :                 phar_destroy_phar_data(myphar);
     610           1 :                 if (error) {
     611           1 :                         spprintf(error, 0, "tar-based phar \"%s\" does not have a signature", fname);
     612             :                 }
     613           1 :                 return FAILURE;
     614             :         }
     615             : 
     616          65 :         myphar->fname = pestrndup(fname, fname_len, myphar->is_persistent);
     617             : #ifdef PHP_WIN32
     618             :         phar_unixify_path_separators(myphar->fname, fname_len);
     619             : #endif
     620          65 :         myphar->fname_len = fname_len;
     621          65 :         myphar->fp = fp;
     622          65 :         p = strrchr(myphar->fname, '/');
     623             : 
     624          65 :         if (p) {
     625          65 :                 myphar->ext = memchr(p, '.', (myphar->fname + fname_len) - p);
     626          65 :                 if (myphar->ext == p) {
     627           0 :                         myphar->ext = memchr(p + 1, '.', (myphar->fname + fname_len) - p - 1);
     628             :                 }
     629          65 :                 if (myphar->ext) {
     630          65 :                         myphar->ext_len = (myphar->fname + fname_len) - myphar->ext;
     631             :                 }
     632             :         }
     633             : 
     634          65 :         phar_request_initialize();
     635             : 
     636         130 :         if (NULL == (actual = zend_hash_str_add_ptr(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len, myphar))) {
     637           0 :                 if (error) {
     638           0 :                         spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\" to phar registry", fname);
     639             :                 }
     640           0 :                 php_stream_close(fp);
     641           0 :                 phar_destroy_phar_data(myphar);
     642           0 :                 return FAILURE;
     643             :         }
     644             : 
     645          65 :         myphar = actual;
     646             : 
     647          65 :         if (actual_alias) {
     648             :                 phar_archive_data *fd_ptr;
     649             : 
     650           5 :                 myphar->is_temporary_alias = 0;
     651             : 
     652          10 :                 if (NULL != (fd_ptr = zend_hash_str_find_ptr(&(PHAR_G(phar_alias_map)), actual_alias, myphar->alias_len))) {
     653           1 :                         if (SUCCESS != phar_free_alias(fd_ptr, actual_alias, myphar->alias_len)) {
     654           1 :                                 if (error) {
     655           1 :                                         spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\", alias is already in use", fname);
     656             :                                 }
     657           1 :                                 zend_hash_str_del(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len);
     658           1 :                                 return FAILURE;
     659             :                         }
     660             :                 }
     661             : 
     662           4 :                 zend_hash_str_add_ptr(&(PHAR_G(phar_alias_map)), actual_alias, myphar->alias_len, myphar);
     663             :         } else {
     664             :                 phar_archive_data *fd_ptr;
     665             : 
     666          60 :                 if (alias_len) {
     667           0 :                         if (NULL != (fd_ptr = zend_hash_str_find_ptr(&(PHAR_G(phar_alias_map)), alias, alias_len))) {
     668           0 :                                 if (SUCCESS != phar_free_alias(fd_ptr, alias, alias_len)) {
     669           0 :                                         if (error) {
     670           0 :                                                 spprintf(error, 4096, "phar error: Unable to add tar-based phar \"%s\", alias is already in use", fname);
     671             :                                         }
     672           0 :                                         zend_hash_str_del(&(PHAR_G(phar_fname_map)), myphar->fname, fname_len);
     673           0 :                                         return FAILURE;
     674             :                                 }
     675             :                         }
     676           0 :                         zend_hash_str_add_ptr(&(PHAR_G(phar_alias_map)), alias, alias_len, myphar);
     677           0 :                         myphar->alias = pestrndup(alias, alias_len, myphar->is_persistent);
     678           0 :                         myphar->alias_len = alias_len;
     679             :                 } else {
     680          60 :                         myphar->alias = pestrndup(myphar->fname, fname_len, myphar->is_persistent);
     681          60 :                         myphar->alias_len = fname_len;
     682             :                 }
     683             : 
     684          60 :                 myphar->is_temporary_alias = 1;
     685             :         }
     686             : 
     687          64 :         if (pphar) {
     688          59 :                 *pphar = myphar;
     689             :         }
     690             : 
     691          64 :         return SUCCESS;
     692             : }
     693             : /* }}} */
     694             : 
     695             : struct _phar_pass_tar_info {
     696             :         php_stream *old;
     697             :         php_stream *new;
     698             :         int free_fp;
     699             :         int free_ufp;
     700             :         char **error;
     701             : };
     702             : 
     703         891 : static int phar_tar_writeheaders_int(phar_entry_info *entry, void *argument) /* {{{ */
     704             : {
     705             :         tar_header header;
     706             :         size_t pos;
     707         891 :         struct _phar_pass_tar_info *fp = (struct _phar_pass_tar_info *)argument;
     708             :         char padding[512];
     709             : 
     710         891 :         if (entry->is_mounted) {
     711           4 :                 return ZEND_HASH_APPLY_KEEP;
     712             :         }
     713             : 
     714         887 :         if (entry->is_deleted) {
     715           4 :                 if (entry->fp_refcount <= 0) {
     716           4 :                         return ZEND_HASH_APPLY_REMOVE;
     717             :                 } else {
     718             :                         /* we can't delete this in-memory until it is closed */
     719           0 :                         return ZEND_HASH_APPLY_KEEP;
     720             :                 }
     721             :         }
     722             : 
     723         883 :         phar_add_virtual_dirs(entry->phar, entry->filename, entry->filename_len);
     724         883 :         memset((char *) &header, 0, sizeof(header));
     725             : 
     726         883 :         if (entry->filename_len > 100) {
     727             :                 char *boundary;
     728           9 :                 if (entry->filename_len > 256) {
     729           1 :                         if (fp->error) {
     730           1 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too long for tar file format", entry->phar->fname, entry->filename);
     731             :                         }
     732           1 :                         return ZEND_HASH_APPLY_STOP;
     733             :                 }
     734           8 :                 boundary = entry->filename + entry->filename_len - 101;
     735         424 :                 while (*boundary && *boundary != '/') {
     736         408 :                         ++boundary;
     737             :                 }
     738           8 :                 if (!*boundary || ((boundary - entry->filename) > 155)) {
     739           2 :                         if (fp->error) {
     740           2 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too long for tar file format", entry->phar->fname, entry->filename);
     741             :                         }
     742           2 :                         return ZEND_HASH_APPLY_STOP;
     743             :                 }
     744           6 :                 memcpy(header.prefix, entry->filename, boundary - entry->filename);
     745           6 :                 memcpy(header.name, boundary + 1, entry->filename_len - (boundary + 1 - entry->filename));
     746             :         } else {
     747         874 :                 memcpy(header.name, entry->filename, entry->filename_len);
     748             :         }
     749             : 
     750         880 :         phar_tar_octal(header.mode, entry->flags & PHAR_ENT_PERM_MASK, sizeof(header.mode)-1);
     751             : 
     752         880 :         if (FAILURE == phar_tar_octal(header.size, entry->uncompressed_filesize, sizeof(header.size)-1)) {
     753           0 :                 if (fp->error) {
     754           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, filename \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     755             :                 }
     756           0 :                 return ZEND_HASH_APPLY_STOP;
     757             :         }
     758             : 
     759         880 :         if (FAILURE == phar_tar_octal(header.mtime, entry->timestamp, sizeof(header.mtime)-1)) {
     760           0 :                 if (fp->error) {
     761           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, file modification time of file \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     762             :                 }
     763           0 :                 return ZEND_HASH_APPLY_STOP;
     764             :         }
     765             : 
     766             :         /* calc checksum */
     767         880 :         header.typeflag = entry->tar_type;
     768             : 
     769         880 :         if (entry->link) {
     770          10 :                 strncpy(header.linkname, entry->link, strlen(entry->link));
     771             :         }
     772             : 
     773         880 :         strncpy(header.magic, "ustar", sizeof("ustar")-1);
     774         880 :         strncpy(header.version, "00", sizeof("00")-1);
     775         880 :         strncpy(header.checksum, "        ", sizeof("        ")-1);
     776         880 :         entry->crc32 = phar_tar_checksum((char *)&header, sizeof(header));
     777             : 
     778         880 :         if (FAILURE == phar_tar_octal(header.checksum, entry->crc32, sizeof(header.checksum)-1)) {
     779           0 :                 if (fp->error) {
     780           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, checksum of file \"%s\" is too large for tar file format", entry->phar->fname, entry->filename);
     781             :                 }
     782           0 :                 return ZEND_HASH_APPLY_STOP;
     783             :         }
     784             : 
     785             :         /* write header */
     786         880 :         entry->header_offset = php_stream_tell(fp->new);
     787             : 
     788         880 :         if (sizeof(header) != php_stream_write(fp->new, (char *) &header, sizeof(header))) {
     789           0 :                 if (fp->error) {
     790           0 :                         spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, header for  file \"%s\" could not be written", entry->phar->fname, entry->filename);
     791             :                 }
     792           0 :                 return ZEND_HASH_APPLY_STOP;
     793             :         }
     794             : 
     795         880 :         pos = php_stream_tell(fp->new); /* save start of file within tar */
     796             : 
     797             :         /* write contents */
     798         880 :         if (entry->uncompressed_filesize) {
     799         782 :                 if (FAILURE == phar_open_entry_fp(entry, fp->error, 0)) {
     800           0 :                         return ZEND_HASH_APPLY_STOP;
     801             :                 }
     802             : 
     803         782 :                 if (-1 == phar_seek_efp(entry, 0, SEEK_SET, 0, 0)) {
     804           0 :                         if (fp->error) {
     805           0 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, contents of file \"%s\" could not be written, seek failed", entry->phar->fname, entry->filename);
     806             :                         }
     807           0 :                         return ZEND_HASH_APPLY_STOP;
     808             :                 }
     809             : 
     810         782 :                 if (SUCCESS != php_stream_copy_to_stream_ex(phar_get_efp(entry, 0), fp->new, entry->uncompressed_filesize, NULL)) {
     811           0 :                         if (fp->error) {
     812           0 :                                 spprintf(fp->error, 4096, "tar-based phar \"%s\" cannot be created, contents of file \"%s\" could not be written", entry->phar->fname, entry->filename);
     813             :                         }
     814           0 :                         return ZEND_HASH_APPLY_STOP;
     815             :                 }
     816             : 
     817         782 :                 memset(padding, 0, 512);
     818         782 :                 php_stream_write(fp->new, padding, ((entry->uncompressed_filesize +511)&~511) - entry->uncompressed_filesize);
     819             :         }
     820             : 
     821         880 :         if (!entry->is_modified && entry->fp_refcount) {
     822             :                 /* open file pointers refer to this fp, do not free the stream */
     823           0 :                 switch (entry->fp_type) {
     824             :                         case PHAR_FP:
     825           0 :                                 fp->free_fp = 0;
     826           0 :                                 break;
     827             :                         case PHAR_UFP:
     828           0 :                                 fp->free_ufp = 0;
     829             :                         default:
     830             :                                 break;
     831             :                 }
     832             :         }
     833             : 
     834         880 :         entry->is_modified = 0;
     835             : 
     836         880 :         if (entry->fp_type == PHAR_MOD && entry->fp != entry->phar->fp && entry->fp != entry->phar->ufp) {
     837         374 :                 if (!entry->fp_refcount) {
     838         368 :                         php_stream_close(entry->fp);
     839             :                 }
     840         374 :                 entry->fp = NULL;
     841             :         }
     842             : 
     843         880 :         entry->fp_type = PHAR_FP;
     844             : 
     845             :         /* note new location within tar */
     846         880 :         entry->offset = entry->offset_abs = pos;
     847         880 :         return ZEND_HASH_APPLY_KEEP;
     848             : }
     849             : /* }}} */
     850             : 
     851         716 : static int phar_tar_writeheaders(zval *zv, void *argument) /* {{{ */
     852             : {
     853         716 :         return phar_tar_writeheaders_int(Z_PTR_P(zv), argument);
     854             : }
     855             : /* }}} */
     856             : 
     857          23 : int phar_tar_setmetadata(zval *metadata, phar_entry_info *entry, char **error) /* {{{ */
     858             : {
     859             :         php_serialize_data_t metadata_hash;
     860             : 
     861          23 :         if (entry->metadata_str.s) {
     862          16 :                 smart_str_free(&entry->metadata_str);
     863             :         }
     864             : 
     865          23 :         entry->metadata_str.s = NULL;
     866          23 :         PHP_VAR_SERIALIZE_INIT(metadata_hash);
     867          23 :         php_var_serialize(&entry->metadata_str, metadata, &metadata_hash);
     868          23 :         PHP_VAR_SERIALIZE_DESTROY(metadata_hash);
     869          23 :         entry->uncompressed_filesize = entry->compressed_filesize = entry->metadata_str.s ? ZSTR_LEN(entry->metadata_str.s) : 0;
     870             : 
     871          23 :         if (entry->fp && entry->fp_type == PHAR_MOD) {
     872           9 :                 php_stream_close(entry->fp);
     873             :         }
     874             : 
     875          23 :         entry->fp_type = PHAR_MOD;
     876          23 :         entry->is_modified = 1;
     877          23 :         entry->fp = php_stream_fopen_tmpfile();
     878          23 :         entry->offset = entry->offset_abs = 0;
     879          23 :         if (entry->fp == NULL) {
     880           0 :                 spprintf(error, 0, "phar error: unable to create temporary file");
     881           0 :                 return -1;
     882             :         }
     883          23 :         if (ZSTR_LEN(entry->metadata_str.s) != php_stream_write(entry->fp, ZSTR_VAL(entry->metadata_str.s), ZSTR_LEN(entry->metadata_str.s))) {
     884           0 :                 spprintf(error, 0, "phar tar error: unable to write metadata to magic metadata file \"%s\"", entry->filename);
     885           0 :                 zend_hash_str_del(&(entry->phar->manifest), entry->filename, entry->filename_len);
     886           0 :                 return ZEND_HASH_APPLY_STOP;
     887             :         }
     888             : 
     889          23 :         return ZEND_HASH_APPLY_KEEP;
     890             : }
     891             : /* }}} */
     892             : 
     893         716 : static int phar_tar_setupmetadata(zval *zv, void *argument) /* {{{ */
     894             : {
     895             :         int lookfor_len;
     896         716 :         struct _phar_pass_tar_info *i = (struct _phar_pass_tar_info *)argument;
     897         716 :         char *lookfor, **error = i->error;
     898         716 :         phar_entry_info *entry = (phar_entry_info *)Z_PTR_P(zv), *metadata, newentry = {0};
     899             : 
     900         716 :         if (entry->filename_len >= sizeof(".phar/.metadata") && !memcmp(entry->filename, ".phar/.metadata", sizeof(".phar/.metadata")-1)) {
     901          19 :                 if (entry->filename_len == sizeof(".phar/.metadata.bin")-1 && !memcmp(entry->filename, ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1)) {
     902          10 :                         return phar_tar_setmetadata(&entry->phar->metadata, entry, error);
     903             :                 }
     904             :                 /* search for the file this metadata entry references */
     905           9 :                 if (entry->filename_len >= sizeof(".phar/.metadata/") + sizeof("/.metadata.bin") - 1 && !zend_hash_str_exists(&(entry->phar->manifest), entry->filename + sizeof(".phar/.metadata/") - 1, entry->filename_len - (sizeof("/.metadata.bin") - 1 + sizeof(".phar/.metadata/") - 1))) {
     906             :                         /* this is orphaned metadata, erase it */
     907           0 :                         return ZEND_HASH_APPLY_REMOVE;
     908             :                 }
     909             :                 /* we can keep this entry, the file that refers to it exists */
     910           9 :                 return ZEND_HASH_APPLY_KEEP;
     911             :         }
     912             : 
     913         697 :         if (!entry->is_modified) {
     914         395 :                 return ZEND_HASH_APPLY_KEEP;
     915             :         }
     916             : 
     917             :         /* now we are dealing with regular files, so look for metadata */
     918         302 :         lookfor_len = spprintf(&lookfor, 0, ".phar/.metadata/%s/.metadata.bin", entry->filename);
     919             : 
     920         604 :         if (Z_TYPE(entry->metadata) == IS_UNDEF) {
     921         298 :                 zend_hash_str_del(&(entry->phar->manifest), lookfor, lookfor_len);
     922         298 :                 efree(lookfor);
     923         298 :                 return ZEND_HASH_APPLY_KEEP;
     924             :         }
     925             : 
     926           8 :         if (NULL != (metadata = zend_hash_str_find_ptr(&(entry->phar->manifest), lookfor, lookfor_len))) {
     927             :                 int ret;
     928           2 :                 ret = phar_tar_setmetadata(&entry->metadata, metadata, error);
     929           2 :                 efree(lookfor);
     930           2 :                 return ret;
     931             :         }
     932             : 
     933           2 :         newentry.filename = lookfor;
     934           2 :         newentry.filename_len = lookfor_len;
     935           2 :         newentry.phar = entry->phar;
     936           2 :         newentry.tar_type = TAR_FILE;
     937           2 :         newentry.is_tar = 1;
     938             : 
     939           4 :         if (NULL == (metadata = zend_hash_str_add_mem(&(entry->phar->manifest), lookfor, lookfor_len, (void *)&newentry, sizeof(phar_entry_info)))) {
     940           0 :                 efree(lookfor);
     941           0 :                 spprintf(error, 0, "phar tar error: unable to add magic metadata file to manifest for file \"%s\"", entry->filename);
     942           0 :                 return ZEND_HASH_APPLY_STOP;
     943             :         }
     944             : 
     945           2 :         return phar_tar_setmetadata(&entry->metadata, metadata, error);
     946             : }
     947             : /* }}} */
     948             : 
     949         195 : int phar_tar_flush(phar_archive_data *phar, char *user_stub, zend_long len, int defaultstub, char **error) /* {{{ */
     950             : {
     951         195 :         phar_entry_info entry = {0};
     952             :         static const char newstub[] = "<?php // tar-based phar archive stub file\n__HALT_COMPILER();";
     953             :         php_stream *oldfile, *newfile, *stubfile;
     954             :         int closeoldfile, free_user_stub, signature_length;
     955             :         struct _phar_pass_tar_info pass;
     956             :         char *buf, *signature, *tmp, sigbuf[8];
     957         195 :         char halt_stub[] = "__HALT_COMPILER();";
     958             : 
     959         195 :         entry.flags = PHAR_ENT_PERM_DEF_FILE;
     960         195 :         entry.timestamp = time(NULL);
     961         195 :         entry.is_modified = 1;
     962         195 :         entry.is_crc_checked = 1;
     963         195 :         entry.is_tar = 1;
     964         195 :         entry.tar_type = '0';
     965         195 :         entry.phar = phar;
     966         195 :         entry.fp_type = PHAR_MOD;
     967             : 
     968         195 :         if (phar->is_persistent) {
     969           0 :                 if (error) {
     970           0 :                         spprintf(error, 0, "internal error: attempt to flush cached tar-based phar \"%s\"", phar->fname);
     971             :                 }
     972           0 :                 return EOF;
     973             :         }
     974             : 
     975         195 :         if (phar->is_data) {
     976          20 :                 goto nostub;
     977             :         }
     978             : 
     979             :         /* set alias */
     980         215 :         if (!phar->is_temporary_alias && phar->alias_len) {
     981          40 :                 entry.filename = estrndup(".phar/alias.txt", sizeof(".phar/alias.txt")-1);
     982          40 :                 entry.filename_len = sizeof(".phar/alias.txt")-1;
     983          40 :                 entry.fp = php_stream_fopen_tmpfile();
     984          40 :                 if (entry.fp == NULL) {
     985           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
     986           0 :                         return -1;
     987             :                 }
     988          40 :                 if (phar->alias_len != (int)php_stream_write(entry.fp, phar->alias, phar->alias_len)) {
     989           0 :                         if (error) {
     990           0 :                                 spprintf(error, 0, "unable to set alias in tar-based phar \"%s\"", phar->fname);
     991             :                         }
     992           0 :                         return EOF;
     993             :                 }
     994             : 
     995          40 :                 entry.uncompressed_filesize = phar->alias_len;
     996             : 
     997          80 :                 if (NULL == zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
     998           0 :                         if (error) {
     999           0 :                                 spprintf(error, 0, "unable to set alias in tar-based phar \"%s\"", phar->fname);
    1000             :                         }
    1001           0 :                         return EOF;
    1002             :                 }
    1003             :         } else {
    1004         135 :                 zend_hash_str_del(&phar->manifest, ".phar/alias.txt", sizeof(".phar/alias.txt")-1);
    1005             :         }
    1006             : 
    1007             :         /* set stub */
    1008         201 :         if (user_stub && !defaultstub) {
    1009             :                 char *pos;
    1010          27 :                 if (len < 0) {
    1011             :                         /* resource passed in */
    1012           2 :                         if (!(php_stream_from_zval_no_verify(stubfile, (zval *)user_stub))) {
    1013           0 :                                 if (error) {
    1014           0 :                                         spprintf(error, 0, "unable to access resource to copy stub to new tar-based phar \"%s\"", phar->fname);
    1015             :                                 }
    1016           0 :                                 return EOF;
    1017             :                         }
    1018           2 :                         if (len == -1) {
    1019           1 :                                 len = PHP_STREAM_COPY_ALL;
    1020             :                         } else {
    1021           1 :                                 len = -len;
    1022             :                         }
    1023           2 :                         user_stub = 0;
    1024             : 
    1025             :                         // TODO: refactor to avoid reallocation ???
    1026             : //???           len = php_stream_copy_to_mem(stubfile, &user_stub, len, 0)
    1027             :                         {
    1028           2 :                                 zend_string *str = php_stream_copy_to_mem(stubfile, len, 0);
    1029           2 :                                 if (str) {
    1030           2 :                                         len = ZSTR_LEN(str);
    1031           2 :                                         user_stub = estrndup(ZSTR_VAL(str), ZSTR_LEN(str));
    1032             :                                         zend_string_release(str);
    1033             :                                 } else {
    1034           0 :                                         user_stub = NULL;
    1035           0 :                                         len = 0;
    1036             :                                 }
    1037             :                         }
    1038             : 
    1039           2 :                         if (!len || !user_stub) {
    1040           0 :                                 if (error) {
    1041           0 :                                         spprintf(error, 0, "unable to read resource to copy stub to new tar-based phar \"%s\"", phar->fname);
    1042             :                                 }
    1043           0 :                                 return EOF;
    1044             :                         }
    1045           2 :                         free_user_stub = 1;
    1046             :                 } else {
    1047          25 :                         free_user_stub = 0;
    1048             :                 }
    1049             : 
    1050          27 :                 tmp = estrndup(user_stub, len);
    1051          27 :                 if ((pos = php_stristr(tmp, halt_stub, len, sizeof(halt_stub) - 1)) == NULL) {
    1052           1 :                         efree(tmp);
    1053           1 :                         if (error) {
    1054           1 :                                 spprintf(error, 0, "illegal stub for tar-based phar \"%s\"", phar->fname);
    1055             :                         }
    1056           1 :                         if (free_user_stub) {
    1057           0 :                                 efree(user_stub);
    1058             :                         }
    1059           1 :                         return EOF;
    1060             :                 }
    1061          26 :                 pos = user_stub + (pos - tmp);
    1062          26 :                 efree(tmp);
    1063             : 
    1064          26 :                 len = pos - user_stub + 18;
    1065          26 :                 entry.fp = php_stream_fopen_tmpfile();
    1066          26 :                 if (entry.fp == NULL) {
    1067           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1068           0 :                         return EOF;
    1069             :                 }
    1070          26 :                 entry.uncompressed_filesize = len + 5;
    1071             : 
    1072          52 :                 if ((size_t)len != php_stream_write(entry.fp, user_stub, len)
    1073          52 :                 ||            5 != php_stream_write(entry.fp, " ?>\r\n", 5)) {
    1074           0 :                         if (error) {
    1075           0 :                                 spprintf(error, 0, "unable to create stub from string in new tar-based phar \"%s\"", phar->fname);
    1076             :                         }
    1077           0 :                         if (free_user_stub) {
    1078           0 :                                 efree(user_stub);
    1079             :                         }
    1080           0 :                         php_stream_close(entry.fp);
    1081           0 :                         return EOF;
    1082             :                 }
    1083             : 
    1084          26 :                 entry.filename = estrndup(".phar/stub.php", sizeof(".phar/stub.php")-1);
    1085          26 :                 entry.filename_len = sizeof(".phar/stub.php")-1;
    1086          26 :                 zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info));
    1087             : 
    1088          26 :                 if (free_user_stub) {
    1089           2 :                         efree(user_stub);
    1090             :                 }
    1091             :         } else {
    1092             :                 /* Either this is a brand new phar (add the stub), or the default stub is required (overwrite the stub) */
    1093         148 :                 entry.fp = php_stream_fopen_tmpfile();
    1094         148 :                 if (entry.fp == NULL) {
    1095           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1096           0 :                         return EOF;
    1097             :                 }
    1098         148 :                 if (sizeof(newstub)-1 != php_stream_write(entry.fp, newstub, sizeof(newstub)-1)) {
    1099           0 :                         php_stream_close(entry.fp);
    1100           0 :                         if (error) {
    1101           0 :                                 spprintf(error, 0, "unable to %s stub in%star-based phar \"%s\", failed", user_stub ? "overwrite" : "create", user_stub ? " " : " new ", phar->fname);
    1102             :                         }
    1103           0 :                         return EOF;
    1104             :                 }
    1105             : 
    1106         148 :                 entry.uncompressed_filesize = entry.compressed_filesize = sizeof(newstub) - 1;
    1107         148 :                 entry.filename = estrndup(".phar/stub.php", sizeof(".phar/stub.php")-1);
    1108         148 :                 entry.filename_len = sizeof(".phar/stub.php")-1;
    1109             : 
    1110         148 :                 if (!defaultstub) {
    1111         131 :                         if (!zend_hash_str_exists(&phar->manifest, ".phar/stub.php", sizeof(".phar/stub.php")-1)) {
    1112          42 :                                 if (NULL == zend_hash_str_add_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
    1113           0 :                                         php_stream_close(entry.fp);
    1114           0 :                                         efree(entry.filename);
    1115           0 :                                         if (error) {
    1116           0 :                                                 spprintf(error, 0, "unable to create stub in tar-based phar \"%s\"", phar->fname);
    1117             :                                         }
    1118           0 :                                         return EOF;
    1119             :                                 }
    1120             :                         } else {
    1121         110 :                                 php_stream_close(entry.fp);
    1122         110 :                                 efree(entry.filename);
    1123             :                         }
    1124             :                 } else {
    1125          34 :                         if (NULL == zend_hash_str_update_mem(&phar->manifest, entry.filename, entry.filename_len, (void*)&entry, sizeof(phar_entry_info))) {
    1126           0 :                                 php_stream_close(entry.fp);
    1127           0 :                                 efree(entry.filename);
    1128           0 :                                 if (error) {
    1129           0 :                                         spprintf(error, 0, "unable to overwrite stub in tar-based phar \"%s\"", phar->fname);
    1130             :                                 }
    1131           0 :                                 return EOF;
    1132             :                         }
    1133             :                 }
    1134             :         }
    1135             : nostub:
    1136         351 :         if (phar->fp && !phar->is_brandnew) {
    1137         157 :                 oldfile = phar->fp;
    1138         157 :                 closeoldfile = 0;
    1139         157 :                 php_stream_rewind(oldfile);
    1140             :         } else {
    1141          37 :                 oldfile = php_stream_open_wrapper(phar->fname, "rb", 0, NULL);
    1142          37 :                 closeoldfile = oldfile != NULL;
    1143             :         }
    1144             : 
    1145         194 :         newfile = php_stream_fopen_tmpfile();
    1146         194 :         if (!newfile) {
    1147           0 :                 if (error) {
    1148           0 :                         spprintf(error, 0, "unable to create temporary file");
    1149             :                 }
    1150           0 :                 if (closeoldfile) {
    1151           0 :                         php_stream_close(oldfile);
    1152             :                 }
    1153           0 :                 return EOF;
    1154             :         }
    1155             : 
    1156         194 :         pass.old = oldfile;
    1157         194 :         pass.new = newfile;
    1158         194 :         pass.error = error;
    1159         194 :         pass.free_fp = 1;
    1160         194 :         pass.free_ufp = 1;
    1161             : 
    1162         388 :         if (Z_TYPE(phar->metadata) != IS_UNDEF) {
    1163             :                 phar_entry_info *mentry;
    1164          18 :                 if (NULL != (mentry = zend_hash_str_find_ptr(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1))) {
    1165           7 :                         if (ZEND_HASH_APPLY_KEEP != phar_tar_setmetadata(&phar->metadata, mentry, error)) {
    1166           0 :                                 if (closeoldfile) {
    1167           0 :                                         php_stream_close(oldfile);
    1168             :                                 }
    1169           0 :                                 return EOF;
    1170             :                         }
    1171             :                 } else {
    1172           2 :                         phar_entry_info newentry = {0};
    1173             : 
    1174           2 :                         newentry.filename = estrndup(".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1);
    1175           2 :                         newentry.filename_len = sizeof(".phar/.metadata.bin")-1;
    1176           2 :                         newentry.phar = phar;
    1177           2 :                         newentry.tar_type = TAR_FILE;
    1178           2 :                         newentry.is_tar = 1;
    1179             : 
    1180           4 :                         if (NULL == (mentry = zend_hash_str_add_mem(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1, (void *)&newentry, sizeof(phar_entry_info)))) {
    1181           0 :                                 spprintf(error, 0, "phar tar error: unable to add magic metadata file to manifest for phar archive \"%s\"", phar->fname);
    1182           0 :                                 if (closeoldfile) {
    1183           0 :                                         php_stream_close(oldfile);
    1184             :                                 }
    1185           0 :                                 return EOF;
    1186             :                         }
    1187             : 
    1188           2 :                         if (ZEND_HASH_APPLY_KEEP != phar_tar_setmetadata(&phar->metadata, mentry, error)) {
    1189           0 :                                 zend_hash_str_del(&(phar->manifest), ".phar/.metadata.bin", sizeof(".phar/.metadata.bin")-1);
    1190           0 :                                 if (closeoldfile) {
    1191           0 :                                         php_stream_close(oldfile);
    1192             :                                 }
    1193           0 :                                 return EOF;
    1194             :                         }
    1195             :                 }
    1196             :         }
    1197             : 
    1198         194 :         zend_hash_apply_with_argument(&phar->manifest, phar_tar_setupmetadata, (void *) &pass);
    1199             : 
    1200         194 :         if (error && *error) {
    1201           0 :                 if (closeoldfile) {
    1202           0 :                         php_stream_close(oldfile);
    1203             :                 }
    1204             : 
    1205             :                 /* on error in the hash iterator above, error is set */
    1206           0 :                 php_stream_close(newfile);
    1207           0 :                 return EOF;
    1208             :         }
    1209             : 
    1210         194 :         zend_hash_apply_with_argument(&phar->manifest, phar_tar_writeheaders, (void *) &pass);
    1211             : 
    1212             :         /* add signature for executable tars or tars explicitly set with setSignatureAlgorithm */
    1213         194 :         if (!phar->is_data || phar->sig_flags) {
    1214         175 :                 if (FAILURE == phar_create_signature(phar, newfile, &signature, &signature_length, error)) {
    1215           0 :                         if (error) {
    1216           0 :                                 char *save = *error;
    1217           0 :                                 spprintf(error, 0, "phar error: unable to write signature to tar-based phar: %s", save);
    1218           0 :                                 efree(save);
    1219             :                         }
    1220             : 
    1221           0 :                         if (closeoldfile) {
    1222           0 :                                 php_stream_close(oldfile);
    1223             :                         }
    1224             : 
    1225           0 :                         php_stream_close(newfile);
    1226           0 :                         return EOF;
    1227             :                 }
    1228             : 
    1229         175 :                 entry.filename = ".phar/signature.bin";
    1230         175 :                 entry.filename_len = sizeof(".phar/signature.bin")-1;
    1231         175 :                 entry.fp = php_stream_fopen_tmpfile();
    1232         175 :                 if (entry.fp == NULL) {
    1233           0 :                         spprintf(error, 0, "phar error: unable to create temporary file");
    1234           0 :                         return EOF;
    1235             :                 }
    1236             : #ifdef WORDS_BIGENDIAN
    1237             : # define PHAR_SET_32(var, buffer) \
    1238             :         *(uint32_t *)(var) = (((((unsigned char*)&(buffer))[3]) << 24) \
    1239             :                 | ((((unsigned char*)&(buffer))[2]) << 16) \
    1240             :                 | ((((unsigned char*)&(buffer))[1]) << 8) \
    1241             :                 | (((unsigned char*)&(buffer))[0]))
    1242             : #else
    1243             : # define PHAR_SET_32(var, buffer) *(uint32_t *)(var) = (uint32_t) (buffer)
    1244             : #endif
    1245         175 :                 PHAR_SET_32(sigbuf, phar->sig_flags);
    1246         175 :                 PHAR_SET_32(sigbuf + 4, signature_length);
    1247             : 
    1248         175 :                 if (8 != (int)php_stream_write(entry.fp, sigbuf, 8) || signature_length != (int)php_stream_write(entry.fp, signature, signature_length)) {
    1249           0 :                         efree(signature);
    1250           0 :                         if (error) {
    1251           0 :                                 spprintf(error, 0, "phar error: unable to write signature to tar-based phar %s", phar->fname);
    1252             :                         }
    1253             : 
    1254           0 :                         if (closeoldfile) {
    1255           0 :                                 php_stream_close(oldfile);
    1256             :                         }
    1257           0 :                         php_stream_close(newfile);
    1258           0 :                         return EOF;
    1259             :                 }
    1260             : 
    1261         175 :                 efree(signature);
    1262         175 :                 entry.uncompressed_filesize = entry.compressed_filesize = signature_length + 8;
    1263             :                 /* throw out return value and write the signature */
    1264         175 :                 entry.filename_len = phar_tar_writeheaders_int(&entry, (void *)&pass);
    1265             : 
    1266         175 :                 if (error && *error) {
    1267           0 :                         if (closeoldfile) {
    1268           0 :                                 php_stream_close(oldfile);
    1269             :                         }
    1270             :                         /* error is set by writeheaders */
    1271           0 :                         php_stream_close(newfile);
    1272           0 :                         return EOF;
    1273             :                 }
    1274             :         } /* signature */
    1275             : 
    1276             :         /* add final zero blocks */
    1277         194 :         buf = (char *) ecalloc(1024, 1);
    1278         194 :         php_stream_write(newfile, buf, 1024);
    1279         194 :         efree(buf);
    1280             : 
    1281         194 :         if (closeoldfile) {
    1282           1 :                 php_stream_close(oldfile);
    1283             :         }
    1284             : 
    1285             :         /* on error in the hash iterator above, error is set */
    1286         194 :         if (error && *error) {
    1287           3 :                 php_stream_close(newfile);
    1288           3 :                 return EOF;
    1289             :         }
    1290             : 
    1291         191 :         if (phar->fp && pass.free_fp) {
    1292         157 :                 php_stream_close(phar->fp);
    1293             :         }
    1294             : 
    1295         191 :         if (phar->ufp) {
    1296           3 :                 if (pass.free_ufp) {
    1297           3 :                         php_stream_close(phar->ufp);
    1298             :                 }
    1299           3 :                 phar->ufp = NULL;
    1300             :         }
    1301             : 
    1302         191 :         phar->is_brandnew = 0;
    1303         191 :         php_stream_rewind(newfile);
    1304             : 
    1305         191 :         if (phar->donotflush) {
    1306             :                 /* deferred flush */
    1307           7 :                 phar->fp = newfile;
    1308             :         } else {
    1309         184 :                 phar->fp = php_stream_open_wrapper(phar->fname, "w+b", IGNORE_URL|STREAM_MUST_SEEK|REPORT_ERRORS, NULL);
    1310         184 :                 if (!phar->fp) {
    1311           0 :                         phar->fp = newfile;
    1312           0 :                         if (error) {
    1313           0 :                                 spprintf(error, 0, "unable to open new phar \"%s\" for writing", phar->fname);
    1314             :                         }
    1315           0 :                         return EOF;
    1316             :                 }
    1317             : 
    1318         184 :                 if (phar->flags & PHAR_FILE_COMPRESSED_GZ) {
    1319             :                         php_stream_filter *filter;
    1320             :                         /* to properly compress, we have to tell zlib to add a zlib header */
    1321             :                         zval filterparams;
    1322             : 
    1323           8 :                         array_init(&filterparams);
    1324             : /* this is defined in zlib's zconf.h */
    1325             : #ifndef MAX_WBITS
    1326             : #define MAX_WBITS 15
    1327             : #endif
    1328           8 :                         add_assoc_long(&filterparams, "window", MAX_WBITS + 16);
    1329           8 :                         filter = php_stream_filter_create("zlib.deflate", &filterparams, php_stream_is_persistent(phar->fp));
    1330             :                         zval_dtor(&filterparams);
    1331             : 
    1332           8 :                         if (!filter) {
    1333             :                                 /* copy contents uncompressed rather than lose them */
    1334           0 :                                 php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1335           0 :                                 php_stream_close(newfile);
    1336           0 :                                 if (error) {
    1337           0 :                                         spprintf(error, 4096, "unable to compress all contents of phar \"%s\" using zlib, PHP versions older than 5.2.6 have a buggy zlib", phar->fname);
    1338             :                                 }
    1339           0 :                                 return EOF;
    1340             :                         }
    1341             : 
    1342           8 :                         php_stream_filter_append(&phar->fp->writefilters, filter);
    1343           8 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1344           8 :                         php_stream_filter_flush(filter, 1);
    1345           8 :                         php_stream_filter_remove(filter, 1);
    1346           8 :                         php_stream_close(phar->fp);
    1347             :                         /* use the temp stream as our base */
    1348           8 :                         phar->fp = newfile;
    1349         176 :                 } else if (phar->flags & PHAR_FILE_COMPRESSED_BZ2) {
    1350             :                         php_stream_filter *filter;
    1351             : 
    1352           4 :                         filter = php_stream_filter_create("bzip2.compress", NULL, php_stream_is_persistent(phar->fp));
    1353           4 :                         php_stream_filter_append(&phar->fp->writefilters, filter);
    1354           4 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1355           4 :                         php_stream_filter_flush(filter, 1);
    1356           4 :                         php_stream_filter_remove(filter, 1);
    1357           4 :                         php_stream_close(phar->fp);
    1358             :                         /* use the temp stream as our base */
    1359           4 :                         phar->fp = newfile;
    1360             :                 } else {
    1361         172 :                         php_stream_copy_to_stream_ex(newfile, phar->fp, PHP_STREAM_COPY_ALL, NULL);
    1362             :                         /* we could also reopen the file in "rb" mode but there is no need for that */
    1363         172 :                         php_stream_close(newfile);
    1364             :                 }
    1365             :         }
    1366         191 :         return EOF;
    1367             : }
    1368             : /* }}} */
    1369             : 
    1370             : /*
    1371             :  * Local variables:
    1372             :  * tab-width: 4
    1373             :  * c-basic-offset: 4
    1374             :  * End:
    1375             :  * vim600: noet sw=4 ts=4 fdm=marker
    1376             :  * vim<600: noet sw=4 ts=4
    1377             :  */

Generated by: LCOV version 1.10

Generated at Thu, 26 May 2016 12:48:04 +0000 (2 days ago)

Copyright © 2005-2016 The PHP Group
All rights reserved.