mirror of
https://github.com/php/php-src.git
synced 2024-10-04 00:06:16 +00:00
117f5e2639
out of the box regardless of server configuration with phar file format split up stub.h strings into 2046 byte chunks because MS VC 6 is friggin stupid
893 lines
25 KiB
PHP
893 lines
25 KiB
PHP
--TEST--
|
|
Phar: Phar::createDefaultStub() with and without arg
|
|
--SKIPIF--
|
|
<?php if (!extension_loaded("phar")) die("skip"); ?>
|
|
--FILE--
|
|
<?php
|
|
try {
|
|
var_dump(Phar::createDefaultStub());
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
var_dump(Phar::createDefaultStub('my/custom/thingy.php'));
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
var_dump(strlen(Phar::createDefaultStub(str_repeat('a', 400))));
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
var_dump(Phar::createDefaultStub(str_repeat('a', 401)));
|
|
} catch(Exception $e) {
|
|
echo $e->getMessage() . "\n";
|
|
}
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
try {
|
|
var_dump(Phar::createDefaultStub('my/custom/thingy.php', 'the/web.php'));
|
|
echo "============================================================================\n";
|
|
echo "============================================================================\n";
|
|
var_dump(strlen(Phar::createDefaultStub('index.php', str_repeat('a', 400))));
|
|
var_dump(Phar::createDefaultStub('hio', str_repeat('a', 401)));
|
|
} catch (Exception $e) {
|
|
echo $e->getMessage() . "\n";
|
|
}
|
|
?>
|
|
===DONE===
|
|
--EXPECT--
|
|
string(7416) "<?php
|
|
$web = '0';
|
|
if ($web && in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
Phar::webPhar(null, $web);
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
if ($web && isset($_SERVER['REQUEST_URI']) && isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == 'GET' || $_SERVER['REQUEST_METHOD'] == 'POST') {
|
|
Extract_Phar::go(true);
|
|
$mimes = array(
|
|
'phps' => 2,
|
|
'c' => 'text/plain',
|
|
'cc' => 'text/plain',
|
|
'cpp' => 'text/plain',
|
|
'c++' => 'text/plain',
|
|
'dtd' => 'text/plain',
|
|
'h' => 'text/plain',
|
|
'log' => 'text/plain',
|
|
'rng' => 'text/plain',
|
|
'txt' => 'text/plain',
|
|
'xsd' => 'text/plain',
|
|
'php' => 1,
|
|
'inc' => 1,
|
|
'avi' => 'video/avi',
|
|
'bmp' => 'image/bmp',
|
|
'css' => 'text/css',
|
|
'gif' => 'image/gif',
|
|
'htm' => 'text/html',
|
|
'html' => 'text/html',
|
|
'htmls' => 'text/html',
|
|
'ico' => 'image/x-ico',
|
|
'jpe' => 'image/jpeg',
|
|
'jpg' => 'image/jpeg',
|
|
'jpeg' => 'image/jpeg',
|
|
'js' => 'application/x-javascript',
|
|
'midi' => 'audio/midi',
|
|
'mid' => 'audio/midi',
|
|
'mod' => 'audio/mod',
|
|
'mov' => 'movie/quicktime',
|
|
'mp3' => 'audio/mp3',
|
|
'mpg' => 'video/mpeg',
|
|
'mpeg' => 'video/mpeg',
|
|
'pdf' => 'application/pdf',
|
|
'png' => 'image/png',
|
|
'swf' => 'application/shockwave-flash',
|
|
'tif' => 'image/tiff',
|
|
'tiff' => 'image/tiff',
|
|
'wav' => 'audio/wav',
|
|
'xbm' => 'image/xbm',
|
|
'xml' => 'text/xml',
|
|
);
|
|
$basename = basename(__FILE__);
|
|
if (!strpos($_SERVER['REQUEST_URI'], $basename)) {
|
|
chdir(Extract_Phar::$temp);
|
|
include Extract_Phar::START;
|
|
}
|
|
$pt = substr($_SERVER['REQUEST_URI'], strpos($_SERVER['REQUEST_URI'], $basename) + strlen($basename));
|
|
if (!$pt || $pt == '/') {
|
|
$pt = $web;
|
|
header('HTTP/1.1 301 Moved Permanently');
|
|
header('Location: ' . $_SERVER['REQUEST_URI'] . '/' . $pt);
|
|
}
|
|
$a = realpath(Extract_Phar::$temp . DIRECTORY_SEPARATOR . $pt);
|
|
if (!$a || strlen(dirname($a)) < strlen(Extract_Phar::$temp)) {
|
|
header('HTTP/1.0 404 Not Found');
|
|
echo "<html>\n <head>\n <title>File Not Found<title>\n </head>\n <body>\n <h1>404 - File ", $pt, " Not Found</h1>\n </body>\n</html>";
|
|
exit;
|
|
}
|
|
$b = pathinfo($a);
|
|
if (!isset($b['extension'])) {
|
|
header('Content-Type: text/plain');
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
if (isset($mimes[$b['extension']])) {
|
|
if ($mimes[$b['extension']] === 1) {
|
|
$_SERVER['PHAR_PATH_INFO'] = $_SERVER['PATH_INFO'];
|
|
$_SERVER['PATH_INFO'] = substr($_SERVER['PATH_INFO'], strpos($_SERVER['PATH_INFO'], $basename) + strlen($basename));
|
|
if (isset($_SERVER['PATH_TRANSLATED'])) {
|
|
$_SERVER['PHAR_PATH_TRANSLATED'] = $_SERVER['PATH_TRANSLATED'];
|
|
$_SERVER['PATH_TRANSLATED'] = $a;
|
|
}
|
|
include $a;
|
|
exit;
|
|
}
|
|
if ($mimes[$b['extension']] === 2) {
|
|
highlight_file($a);
|
|
exit;
|
|
}
|
|
header('Content-Type: ' .$mimes[$b['extension']]);
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
}
|
|
if (in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
class Extract_Phar
|
|
{
|
|
static $temp;
|
|
static $tmp = array();
|
|
static $origdir;
|
|
const GZ = 0x1000;
|
|
const BZ2 = 0x2000;
|
|
const MASK = 0x3000;
|
|
const START = 'index.php';
|
|
const LEN = 7416;
|
|
static function go($return = false)
|
|
{
|
|
register_shutdown_function(array('Extract_Phar', '_removeTmpFiles'));
|
|
$fp = fopen(__FILE__, 'rb');
|
|
fseek($fp, self::LEN);
|
|
$L = unpack('V', $a = fread($fp, 4));
|
|
$m = '';
|
|
do {
|
|
$read = 8192;
|
|
if ($L[1] - strlen($m) < 8192) {
|
|
$read = $L[1] - strlen($m);
|
|
}
|
|
$last = fread($fp, $read);
|
|
$m .= $last;
|
|
} while (strlen($last) && strlen($m) < $L[1]);
|
|
if (strlen($m) < $L[1]) {
|
|
die('ERROR: manifest length read was "' .
|
|
strlen($m) .'" should be "' .
|
|
$L[1] . '"');
|
|
}
|
|
$info = self::_unpack($m);
|
|
$f = $info['c'];
|
|
if ($f & self::GZ) {
|
|
if (!function_exists('gzinflate')) {
|
|
die('Error: zlib extension is not enabled - gzinflate() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
if ($f & self::BZ2) {
|
|
if (!function_exists('bzdecompress')) {
|
|
die('Error: bzip2 extension is not enabled - bzdecompress() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
$temp = self::tmpdir();
|
|
if (!$temp) {
|
|
$sessionpath = session_save_path();
|
|
if (strpos ($sessionpath, ";") !== FALSE)
|
|
$sessionpath = substr ($sessionpath, strpos ($sessionpath, ";")+1);
|
|
if (!file_exists($sessionpath) && !is_dir($sessionpath)) {
|
|
die('Could not locate temporary directory to extract phar');
|
|
}
|
|
$temp = $sessionpath;
|
|
}
|
|
$temp .= '/pharextract';
|
|
self::$temp = $temp;
|
|
while (file_exists($temp)) {
|
|
$temp .= 1;
|
|
}
|
|
@mkdir($temp);
|
|
@chmod($temp, 0777);
|
|
$temp = realpath($temp);
|
|
self::$tmp[] = $temp;
|
|
self::$origdir = getcwd();
|
|
foreach ($info['m'] as $path => $file) {
|
|
$a = !file_exists(dirname($temp . '/' . $path));
|
|
@mkdir(dirname($temp . '/' . $path), 0777, true);
|
|
clearstatcache();
|
|
if ($a) self::$tmp[] = realpath(dirname($temp . '/' . $path));
|
|
if ($path[strlen($path) - 1] == '/') {
|
|
mkdir($temp . '/' . $path);
|
|
@chmod($temp . '/' . $path, 0777);
|
|
} else {
|
|
file_put_contents($temp . '/' . $path, self::extractFile($path, $file, $fp));
|
|
@chmod($temp . '/' . $path, 0666);
|
|
}
|
|
self::$tmp[] = realpath($temp . '/' . $path);
|
|
}
|
|
chdir($temp);
|
|
if (!$return) include self::START;
|
|
}
|
|
|
|
static function tmpdir()
|
|
{
|
|
if (strpos(PHP_OS, 'WIN') !== false) {
|
|
if ($var = isset($_ENV['TMP']) ? $_ENV['TMP'] : getenv('TMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['TEMP']) ? $_ENV['TEMP'] : getenv('TEMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['USERPROFILE']) ? $_ENV['USERPROFILE'] : @getenv('USERPROFILE')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['windir']) ? $_ENV['windir'] : getenv('windir')) {
|
|
return $var;
|
|
}
|
|
return @getenv('SystemRoot') . '\temp';
|
|
}
|
|
if ($var = isset($_ENV['TMPDIR']) ? $_ENV['TMPDIR'] : getenv('TMPDIR')) {
|
|
return $var;
|
|
}
|
|
return realpath('/tmp');
|
|
}
|
|
|
|
static function _unpack($m)
|
|
{
|
|
$info = unpack('V', substr($m, 0, 4));
|
|
// skip API version, phar flags, alias, metadata
|
|
$l = unpack('V', substr($m, 10, 4));
|
|
$m = substr($m, 14 + $l[1]);
|
|
$s = unpack('V', substr($m, 0, 4));
|
|
$o = 0;
|
|
$start = 4 + $s[1];
|
|
$ret['c'] = 0;
|
|
for ($i = 0; $i < $info[1]; $i++) {
|
|
// length of the file name
|
|
$len = unpack('V', substr($m, $start, 4));
|
|
$start += 4;
|
|
// file name
|
|
$savepath = substr($m, $start, $len[1]);
|
|
$start += $len[1];
|
|
// retrieve manifest data:
|
|
// 0 = size, 1 = timestamp, 2 = compressed size, 3 = crc32, 4 = flags
|
|
// 5 = metadata length
|
|
$ret['m'][$savepath] = array_values(unpack('Va/Vb/Vc/Vd/Ve/Vf', substr($m, $start, 24)));
|
|
$ret['m'][$savepath][3] = sprintf('%u', $ret['m'][$savepath][3]
|
|
& 0xffffffff);
|
|
$ret['m'][$savepath][7] = $o;
|
|
$o += $ret['m'][$savepath][2];
|
|
$start += 24 + $ret['m'][$savepath][5];
|
|
$ret['c'] |= $ret['m'][$savepath][4] & self::MASK;
|
|
}
|
|
return $ret;
|
|
}
|
|
|
|
static function extractFile($path, $entry, $fp)
|
|
{
|
|
$data = '';
|
|
$c = $entry[2];
|
|
while ($c) {
|
|
if ($c < 8192) {
|
|
$data .= @fread($fp, $c);
|
|
$c = 0;
|
|
} else {
|
|
$c -= 8192;
|
|
$data .= @fread($fp, 8192);
|
|
}
|
|
}
|
|
if ($entry[4] & self::GZ) {
|
|
$data = gzinflate($data);
|
|
} elseif ($entry[4] & self::BZ2) {
|
|
$data = bzdecompress($data);
|
|
}
|
|
if (strlen($data) != $entry[0]) {
|
|
die("Not valid internal .phar file (size error " . strlen($data) . " != " .
|
|
$stat[7] . ")");
|
|
}
|
|
if ($entry[3] != sprintf("%u", crc32($data) & 0xffffffff)) {
|
|
die("Not valid internal .phar file (checksum error)");
|
|
}
|
|
return $data;
|
|
}
|
|
|
|
static function _removeTmpFiles()
|
|
{
|
|
// for removal of temp files
|
|
if (count(self::$tmp)) {
|
|
foreach (array_reverse(self::$tmp) as $f) {
|
|
if (file_exists($f)) is_dir($f) ? @rmdir($f) : @unlink($f);
|
|
}
|
|
|
|
}
|
|
chdir(self::$origdir);
|
|
}
|
|
}
|
|
Extract_Phar::go();
|
|
__HALT_COMPILER(); ?>"
|
|
============================================================================
|
|
============================================================================
|
|
string(7427) "<?php
|
|
$web = '0';
|
|
if ($web && in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
Phar::webPhar(null, $web);
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
if ($web && isset($_SERVER['REQUEST_URI']) && isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == 'GET' || $_SERVER['REQUEST_METHOD'] == 'POST') {
|
|
Extract_Phar::go(true);
|
|
$mimes = array(
|
|
'phps' => 2,
|
|
'c' => 'text/plain',
|
|
'cc' => 'text/plain',
|
|
'cpp' => 'text/plain',
|
|
'c++' => 'text/plain',
|
|
'dtd' => 'text/plain',
|
|
'h' => 'text/plain',
|
|
'log' => 'text/plain',
|
|
'rng' => 'text/plain',
|
|
'txt' => 'text/plain',
|
|
'xsd' => 'text/plain',
|
|
'php' => 1,
|
|
'inc' => 1,
|
|
'avi' => 'video/avi',
|
|
'bmp' => 'image/bmp',
|
|
'css' => 'text/css',
|
|
'gif' => 'image/gif',
|
|
'htm' => 'text/html',
|
|
'html' => 'text/html',
|
|
'htmls' => 'text/html',
|
|
'ico' => 'image/x-ico',
|
|
'jpe' => 'image/jpeg',
|
|
'jpg' => 'image/jpeg',
|
|
'jpeg' => 'image/jpeg',
|
|
'js' => 'application/x-javascript',
|
|
'midi' => 'audio/midi',
|
|
'mid' => 'audio/midi',
|
|
'mod' => 'audio/mod',
|
|
'mov' => 'movie/quicktime',
|
|
'mp3' => 'audio/mp3',
|
|
'mpg' => 'video/mpeg',
|
|
'mpeg' => 'video/mpeg',
|
|
'pdf' => 'application/pdf',
|
|
'png' => 'image/png',
|
|
'swf' => 'application/shockwave-flash',
|
|
'tif' => 'image/tiff',
|
|
'tiff' => 'image/tiff',
|
|
'wav' => 'audio/wav',
|
|
'xbm' => 'image/xbm',
|
|
'xml' => 'text/xml',
|
|
);
|
|
$basename = basename(__FILE__);
|
|
if (!strpos($_SERVER['REQUEST_URI'], $basename)) {
|
|
chdir(Extract_Phar::$temp);
|
|
include Extract_Phar::START;
|
|
}
|
|
$pt = substr($_SERVER['REQUEST_URI'], strpos($_SERVER['REQUEST_URI'], $basename) + strlen($basename));
|
|
if (!$pt || $pt == '/') {
|
|
$pt = $web;
|
|
header('HTTP/1.1 301 Moved Permanently');
|
|
header('Location: ' . $_SERVER['REQUEST_URI'] . '/' . $pt);
|
|
}
|
|
$a = realpath(Extract_Phar::$temp . DIRECTORY_SEPARATOR . $pt);
|
|
if (!$a || strlen(dirname($a)) < strlen(Extract_Phar::$temp)) {
|
|
header('HTTP/1.0 404 Not Found');
|
|
echo "<html>\n <head>\n <title>File Not Found<title>\n </head>\n <body>\n <h1>404 - File ", $pt, " Not Found</h1>\n </body>\n</html>";
|
|
exit;
|
|
}
|
|
$b = pathinfo($a);
|
|
if (!isset($b['extension'])) {
|
|
header('Content-Type: text/plain');
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
if (isset($mimes[$b['extension']])) {
|
|
if ($mimes[$b['extension']] === 1) {
|
|
$_SERVER['PHAR_PATH_INFO'] = $_SERVER['PATH_INFO'];
|
|
$_SERVER['PATH_INFO'] = substr($_SERVER['PATH_INFO'], strpos($_SERVER['PATH_INFO'], $basename) + strlen($basename));
|
|
if (isset($_SERVER['PATH_TRANSLATED'])) {
|
|
$_SERVER['PHAR_PATH_TRANSLATED'] = $_SERVER['PATH_TRANSLATED'];
|
|
$_SERVER['PATH_TRANSLATED'] = $a;
|
|
}
|
|
include $a;
|
|
exit;
|
|
}
|
|
if ($mimes[$b['extension']] === 2) {
|
|
highlight_file($a);
|
|
exit;
|
|
}
|
|
header('Content-Type: ' .$mimes[$b['extension']]);
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
}
|
|
if (in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
class Extract_Phar
|
|
{
|
|
static $temp;
|
|
static $tmp = array();
|
|
static $origdir;
|
|
const GZ = 0x1000;
|
|
const BZ2 = 0x2000;
|
|
const MASK = 0x3000;
|
|
const START = 'my/custom/thingy.php';
|
|
const LEN = 7428;
|
|
static function go($return = false)
|
|
{
|
|
register_shutdown_function(array('Extract_Phar', '_removeTmpFiles'));
|
|
$fp = fopen(__FILE__, 'rb');
|
|
fseek($fp, self::LEN);
|
|
$L = unpack('V', $a = fread($fp, 4));
|
|
$m = '';
|
|
do {
|
|
$read = 8192;
|
|
if ($L[1] - strlen($m) < 8192) {
|
|
$read = $L[1] - strlen($m);
|
|
}
|
|
$last = fread($fp, $read);
|
|
$m .= $last;
|
|
} while (strlen($last) && strlen($m) < $L[1]);
|
|
if (strlen($m) < $L[1]) {
|
|
die('ERROR: manifest length read was "' .
|
|
strlen($m) .'" should be "' .
|
|
$L[1] . '"');
|
|
}
|
|
$info = self::_unpack($m);
|
|
$f = $info['c'];
|
|
if ($f & self::GZ) {
|
|
if (!function_exists('gzinflate')) {
|
|
die('Error: zlib extension is not enabled - gzinflate() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
if ($f & self::BZ2) {
|
|
if (!function_exists('bzdecompress')) {
|
|
die('Error: bzip2 extension is not enabled - bzdecompress() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
$temp = self::tmpdir();
|
|
if (!$temp) {
|
|
$sessionpath = session_save_path();
|
|
if (strpos ($sessionpath, ";") !== FALSE)
|
|
$sessionpath = substr ($sessionpath, strpos ($sessionpath, ";")+1);
|
|
if (!file_exists($sessionpath) && !is_dir($sessionpath)) {
|
|
die('Could not locate temporary directory to extract phar');
|
|
}
|
|
$temp = $sessionpath;
|
|
}
|
|
$temp .= '/pharextract';
|
|
self::$temp = $temp;
|
|
while (file_exists($temp)) {
|
|
$temp .= 1;
|
|
}
|
|
@mkdir($temp);
|
|
@chmod($temp, 0777);
|
|
$temp = realpath($temp);
|
|
self::$tmp[] = $temp;
|
|
self::$origdir = getcwd();
|
|
foreach ($info['m'] as $path => $file) {
|
|
$a = !file_exists(dirname($temp . '/' . $path));
|
|
@mkdir(dirname($temp . '/' . $path), 0777, true);
|
|
clearstatcache();
|
|
if ($a) self::$tmp[] = realpath(dirname($temp . '/' . $path));
|
|
if ($path[strlen($path) - 1] == '/') {
|
|
mkdir($temp . '/' . $path);
|
|
@chmod($temp . '/' . $path, 0777);
|
|
} else {
|
|
file_put_contents($temp . '/' . $path, self::extractFile($path, $file, $fp));
|
|
@chmod($temp . '/' . $path, 0666);
|
|
}
|
|
self::$tmp[] = realpath($temp . '/' . $path);
|
|
}
|
|
chdir($temp);
|
|
if (!$return) include self::START;
|
|
}
|
|
|
|
static function tmpdir()
|
|
{
|
|
if (strpos(PHP_OS, 'WIN') !== false) {
|
|
if ($var = isset($_ENV['TMP']) ? $_ENV['TMP'] : getenv('TMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['TEMP']) ? $_ENV['TEMP'] : getenv('TEMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['USERPROFILE']) ? $_ENV['USERPROFILE'] : @getenv('USERPROFILE')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['windir']) ? $_ENV['windir'] : getenv('windir')) {
|
|
return $var;
|
|
}
|
|
return @getenv('SystemRoot') . '\temp';
|
|
}
|
|
if ($var = isset($_ENV['TMPDIR']) ? $_ENV['TMPDIR'] : getenv('TMPDIR')) {
|
|
return $var;
|
|
}
|
|
return realpath('/tmp');
|
|
}
|
|
|
|
static function _unpack($m)
|
|
{
|
|
$info = unpack('V', substr($m, 0, 4));
|
|
// skip API version, phar flags, alias, metadata
|
|
$l = unpack('V', substr($m, 10, 4));
|
|
$m = substr($m, 14 + $l[1]);
|
|
$s = unpack('V', substr($m, 0, 4));
|
|
$o = 0;
|
|
$start = 4 + $s[1];
|
|
$ret['c'] = 0;
|
|
for ($i = 0; $i < $info[1]; $i++) {
|
|
// length of the file name
|
|
$len = unpack('V', substr($m, $start, 4));
|
|
$start += 4;
|
|
// file name
|
|
$savepath = substr($m, $start, $len[1]);
|
|
$start += $len[1];
|
|
// retrieve manifest data:
|
|
// 0 = size, 1 = timestamp, 2 = compressed size, 3 = crc32, 4 = flags
|
|
// 5 = metadata length
|
|
$ret['m'][$savepath] = array_values(unpack('Va/Vb/Vc/Vd/Ve/Vf', substr($m, $start, 24)));
|
|
$ret['m'][$savepath][3] = sprintf('%u', $ret['m'][$savepath][3]
|
|
& 0xffffffff);
|
|
$ret['m'][$savepath][7] = $o;
|
|
$o += $ret['m'][$savepath][2];
|
|
$start += 24 + $ret['m'][$savepath][5];
|
|
$ret['c'] |= $ret['m'][$savepath][4] & self::MASK;
|
|
}
|
|
return $ret;
|
|
}
|
|
|
|
static function extractFile($path, $entry, $fp)
|
|
{
|
|
$data = '';
|
|
$c = $entry[2];
|
|
while ($c) {
|
|
if ($c < 8192) {
|
|
$data .= @fread($fp, $c);
|
|
$c = 0;
|
|
} else {
|
|
$c -= 8192;
|
|
$data .= @fread($fp, 8192);
|
|
}
|
|
}
|
|
if ($entry[4] & self::GZ) {
|
|
$data = gzinflate($data);
|
|
} elseif ($entry[4] & self::BZ2) {
|
|
$data = bzdecompress($data);
|
|
}
|
|
if (strlen($data) != $entry[0]) {
|
|
die("Not valid internal .phar file (size error " . strlen($data) . " != " .
|
|
$stat[7] . ")");
|
|
}
|
|
if ($entry[3] != sprintf("%u", crc32($data) & 0xffffffff)) {
|
|
die("Not valid internal .phar file (checksum error)");
|
|
}
|
|
return $data;
|
|
}
|
|
|
|
static function _removeTmpFiles()
|
|
{
|
|
// for removal of temp files
|
|
if (count(self::$tmp)) {
|
|
foreach (array_reverse(self::$tmp) as $f) {
|
|
if (file_exists($f)) is_dir($f) ? @rmdir($f) : @unlink($f);
|
|
}
|
|
|
|
}
|
|
chdir(self::$origdir);
|
|
}
|
|
}
|
|
Extract_Phar::go();
|
|
__HALT_COMPILER(); ?>"
|
|
============================================================================
|
|
============================================================================
|
|
int(7807)
|
|
============================================================================
|
|
============================================================================
|
|
Illegal filename passed in for stub creation, was 401 characters long, and only 400 or less is allowed
|
|
============================================================================
|
|
============================================================================
|
|
============================================================================
|
|
============================================================================
|
|
string(7437) "<?php
|
|
$web = 'the/web.php';
|
|
if ($web && in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
Phar::webPhar(null, $web);
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
if ($web && isset($_SERVER['REQUEST_URI']) && isset($_SERVER['REQUEST_METHOD']) && $_SERVER['REQUEST_METHOD'] == 'GET' || $_SERVER['REQUEST_METHOD'] == 'POST') {
|
|
Extract_Phar::go(true);
|
|
$mimes = array(
|
|
'phps' => 2,
|
|
'c' => 'text/plain',
|
|
'cc' => 'text/plain',
|
|
'cpp' => 'text/plain',
|
|
'c++' => 'text/plain',
|
|
'dtd' => 'text/plain',
|
|
'h' => 'text/plain',
|
|
'log' => 'text/plain',
|
|
'rng' => 'text/plain',
|
|
'txt' => 'text/plain',
|
|
'xsd' => 'text/plain',
|
|
'php' => 1,
|
|
'inc' => 1,
|
|
'avi' => 'video/avi',
|
|
'bmp' => 'image/bmp',
|
|
'css' => 'text/css',
|
|
'gif' => 'image/gif',
|
|
'htm' => 'text/html',
|
|
'html' => 'text/html',
|
|
'htmls' => 'text/html',
|
|
'ico' => 'image/x-ico',
|
|
'jpe' => 'image/jpeg',
|
|
'jpg' => 'image/jpeg',
|
|
'jpeg' => 'image/jpeg',
|
|
'js' => 'application/x-javascript',
|
|
'midi' => 'audio/midi',
|
|
'mid' => 'audio/midi',
|
|
'mod' => 'audio/mod',
|
|
'mov' => 'movie/quicktime',
|
|
'mp3' => 'audio/mp3',
|
|
'mpg' => 'video/mpeg',
|
|
'mpeg' => 'video/mpeg',
|
|
'pdf' => 'application/pdf',
|
|
'png' => 'image/png',
|
|
'swf' => 'application/shockwave-flash',
|
|
'tif' => 'image/tiff',
|
|
'tiff' => 'image/tiff',
|
|
'wav' => 'audio/wav',
|
|
'xbm' => 'image/xbm',
|
|
'xml' => 'text/xml',
|
|
);
|
|
$basename = basename(__FILE__);
|
|
if (!strpos($_SERVER['REQUEST_URI'], $basename)) {
|
|
chdir(Extract_Phar::$temp);
|
|
include Extract_Phar::START;
|
|
}
|
|
$pt = substr($_SERVER['REQUEST_URI'], strpos($_SERVER['REQUEST_URI'], $basename) + strlen($basename));
|
|
if (!$pt || $pt == '/') {
|
|
$pt = $web;
|
|
header('HTTP/1.1 301 Moved Permanently');
|
|
header('Location: ' . $_SERVER['REQUEST_URI'] . '/' . $pt);
|
|
}
|
|
$a = realpath(Extract_Phar::$temp . DIRECTORY_SEPARATOR . $pt);
|
|
if (!$a || strlen(dirname($a)) < strlen(Extract_Phar::$temp)) {
|
|
header('HTTP/1.0 404 Not Found');
|
|
echo "<html>\n <head>\n <title>File Not Found<title>\n </head>\n <body>\n <h1>404 - File ", $pt, " Not Found</h1>\n </body>\n</html>";
|
|
exit;
|
|
}
|
|
$b = pathinfo($a);
|
|
if (!isset($b['extension'])) {
|
|
header('Content-Type: text/plain');
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
if (isset($mimes[$b['extension']])) {
|
|
if ($mimes[$b['extension']] === 1) {
|
|
$_SERVER['PHAR_PATH_INFO'] = $_SERVER['PATH_INFO'];
|
|
$_SERVER['PATH_INFO'] = substr($_SERVER['PATH_INFO'], strpos($_SERVER['PATH_INFO'], $basename) + strlen($basename));
|
|
if (isset($_SERVER['PATH_TRANSLATED'])) {
|
|
$_SERVER['PHAR_PATH_TRANSLATED'] = $_SERVER['PATH_TRANSLATED'];
|
|
$_SERVER['PATH_TRANSLATED'] = $a;
|
|
}
|
|
include $a;
|
|
exit;
|
|
}
|
|
if ($mimes[$b['extension']] === 2) {
|
|
highlight_file($a);
|
|
exit;
|
|
}
|
|
header('Content-Type: ' .$mimes[$b['extension']]);
|
|
header('Content-Length: ' . filesize($a));
|
|
readfile($a);
|
|
exit;
|
|
}
|
|
}
|
|
if (in_array('phar', stream_get_wrappers()) && class_exists('Phar', 0)) {
|
|
Phar::interceptFileFuncs();
|
|
include 'phar://' . __FILE__ . '/' . Extract_Phar::START;
|
|
return;
|
|
}
|
|
class Extract_Phar
|
|
{
|
|
static $temp;
|
|
static $tmp = array();
|
|
static $origdir;
|
|
const GZ = 0x1000;
|
|
const BZ2 = 0x2000;
|
|
const MASK = 0x3000;
|
|
const START = 'my/custom/thingy.php';
|
|
const LEN = 7439;
|
|
static function go($return = false)
|
|
{
|
|
register_shutdown_function(array('Extract_Phar', '_removeTmpFiles'));
|
|
$fp = fopen(__FILE__, 'rb');
|
|
fseek($fp, self::LEN);
|
|
$L = unpack('V', $a = fread($fp, 4));
|
|
$m = '';
|
|
do {
|
|
$read = 8192;
|
|
if ($L[1] - strlen($m) < 8192) {
|
|
$read = $L[1] - strlen($m);
|
|
}
|
|
$last = fread($fp, $read);
|
|
$m .= $last;
|
|
} while (strlen($last) && strlen($m) < $L[1]);
|
|
if (strlen($m) < $L[1]) {
|
|
die('ERROR: manifest length read was "' .
|
|
strlen($m) .'" should be "' .
|
|
$L[1] . '"');
|
|
}
|
|
$info = self::_unpack($m);
|
|
$f = $info['c'];
|
|
if ($f & self::GZ) {
|
|
if (!function_exists('gzinflate')) {
|
|
die('Error: zlib extension is not enabled - gzinflate() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
if ($f & self::BZ2) {
|
|
if (!function_exists('bzdecompress')) {
|
|
die('Error: bzip2 extension is not enabled - bzdecompress() function needed' .
|
|
' for compressed .phars');
|
|
}
|
|
}
|
|
$temp = self::tmpdir();
|
|
if (!$temp) {
|
|
$sessionpath = session_save_path();
|
|
if (strpos ($sessionpath, ";") !== FALSE)
|
|
$sessionpath = substr ($sessionpath, strpos ($sessionpath, ";")+1);
|
|
if (!file_exists($sessionpath) && !is_dir($sessionpath)) {
|
|
die('Could not locate temporary directory to extract phar');
|
|
}
|
|
$temp = $sessionpath;
|
|
}
|
|
$temp .= '/pharextract';
|
|
self::$temp = $temp;
|
|
while (file_exists($temp)) {
|
|
$temp .= 1;
|
|
}
|
|
@mkdir($temp);
|
|
@chmod($temp, 0777);
|
|
$temp = realpath($temp);
|
|
self::$tmp[] = $temp;
|
|
self::$origdir = getcwd();
|
|
foreach ($info['m'] as $path => $file) {
|
|
$a = !file_exists(dirname($temp . '/' . $path));
|
|
@mkdir(dirname($temp . '/' . $path), 0777, true);
|
|
clearstatcache();
|
|
if ($a) self::$tmp[] = realpath(dirname($temp . '/' . $path));
|
|
if ($path[strlen($path) - 1] == '/') {
|
|
mkdir($temp . '/' . $path);
|
|
@chmod($temp . '/' . $path, 0777);
|
|
} else {
|
|
file_put_contents($temp . '/' . $path, self::extractFile($path, $file, $fp));
|
|
@chmod($temp . '/' . $path, 0666);
|
|
}
|
|
self::$tmp[] = realpath($temp . '/' . $path);
|
|
}
|
|
chdir($temp);
|
|
if (!$return) include self::START;
|
|
}
|
|
|
|
static function tmpdir()
|
|
{
|
|
if (strpos(PHP_OS, 'WIN') !== false) {
|
|
if ($var = isset($_ENV['TMP']) ? $_ENV['TMP'] : getenv('TMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['TEMP']) ? $_ENV['TEMP'] : getenv('TEMP')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['USERPROFILE']) ? $_ENV['USERPROFILE'] : @getenv('USERPROFILE')) {
|
|
return $var;
|
|
}
|
|
if ($var = isset($_ENV['windir']) ? $_ENV['windir'] : getenv('windir')) {
|
|
return $var;
|
|
}
|
|
return @getenv('SystemRoot') . '\temp';
|
|
}
|
|
if ($var = isset($_ENV['TMPDIR']) ? $_ENV['TMPDIR'] : getenv('TMPDIR')) {
|
|
return $var;
|
|
}
|
|
return realpath('/tmp');
|
|
}
|
|
|
|
static function _unpack($m)
|
|
{
|
|
$info = unpack('V', substr($m, 0, 4));
|
|
// skip API version, phar flags, alias, metadata
|
|
$l = unpack('V', substr($m, 10, 4));
|
|
$m = substr($m, 14 + $l[1]);
|
|
$s = unpack('V', substr($m, 0, 4));
|
|
$o = 0;
|
|
$start = 4 + $s[1];
|
|
$ret['c'] = 0;
|
|
for ($i = 0; $i < $info[1]; $i++) {
|
|
// length of the file name
|
|
$len = unpack('V', substr($m, $start, 4));
|
|
$start += 4;
|
|
// file name
|
|
$savepath = substr($m, $start, $len[1]);
|
|
$start += $len[1];
|
|
// retrieve manifest data:
|
|
// 0 = size, 1 = timestamp, 2 = compressed size, 3 = crc32, 4 = flags
|
|
// 5 = metadata length
|
|
$ret['m'][$savepath] = array_values(unpack('Va/Vb/Vc/Vd/Ve/Vf', substr($m, $start, 24)));
|
|
$ret['m'][$savepath][3] = sprintf('%u', $ret['m'][$savepath][3]
|
|
& 0xffffffff);
|
|
$ret['m'][$savepath][7] = $o;
|
|
$o += $ret['m'][$savepath][2];
|
|
$start += 24 + $ret['m'][$savepath][5];
|
|
$ret['c'] |= $ret['m'][$savepath][4] & self::MASK;
|
|
}
|
|
return $ret;
|
|
}
|
|
|
|
static function extractFile($path, $entry, $fp)
|
|
{
|
|
$data = '';
|
|
$c = $entry[2];
|
|
while ($c) {
|
|
if ($c < 8192) {
|
|
$data .= @fread($fp, $c);
|
|
$c = 0;
|
|
} else {
|
|
$c -= 8192;
|
|
$data .= @fread($fp, 8192);
|
|
}
|
|
}
|
|
if ($entry[4] & self::GZ) {
|
|
$data = gzinflate($data);
|
|
} elseif ($entry[4] & self::BZ2) {
|
|
$data = bzdecompress($data);
|
|
}
|
|
if (strlen($data) != $entry[0]) {
|
|
die("Not valid internal .phar file (size error " . strlen($data) . " != " .
|
|
$stat[7] . ")");
|
|
}
|
|
if ($entry[3] != sprintf("%u", crc32($data) & 0xffffffff)) {
|
|
die("Not valid internal .phar file (checksum error)");
|
|
}
|
|
return $data;
|
|
}
|
|
|
|
static function _removeTmpFiles()
|
|
{
|
|
// for removal of temp files
|
|
if (count(self::$tmp)) {
|
|
foreach (array_reverse(self::$tmp) as $f) {
|
|
if (file_exists($f)) is_dir($f) ? @rmdir($f) : @unlink($f);
|
|
}
|
|
|
|
}
|
|
chdir(self::$origdir);
|
|
}
|
|
}
|
|
Extract_Phar::go();
|
|
__HALT_COMPILER(); ?>"
|
|
============================================================================
|
|
============================================================================
|
|
int(7815)
|
|
Illegal web filename passed in for stub creation, was 401 characters long, and only 400 or less is allowed
|
|
===DONE===
|