1 /* 2 +----------------------------------------------------------------------+ 3 | Copyright (c) The PHP Group | 4 +----------------------------------------------------------------------+ 5 | This source file is subject to version 3.01 of the PHP license, | 6 | that is bundled with this package in the file LICENSE, and is | 7 | available through the world-wide-web at the following url: | 8 | https://www.php.net/license/3_01.txt | 9 | If you did not receive a copy of the PHP license and are unable to | 10 | obtain it through the world-wide-web, please send a note to | 11 | license@php.net so we can mail you a copy immediately. | 12 +----------------------------------------------------------------------+ 13 | Author: Sascha Schumann <sascha@schumann.cx> | 14 +----------------------------------------------------------------------+ 15 */ 16 17 #ifndef PHP_SESSION_H 18 #define PHP_SESSION_H 19 20 #include "ext/standard/php_var.h" 21 #include "ext/random/php_random.h" 22 23 #define PHP_SESSION_API 20161017 24 25 #include "php_version.h" 26 #define PHP_SESSION_VERSION PHP_VERSION 27 28 /* save handler macros */ 29 #define PS_OPEN_ARGS void **mod_data, const char *save_path, const char *session_name 30 #define PS_CLOSE_ARGS void **mod_data 31 #define PS_READ_ARGS void **mod_data, zend_string *key, zend_string **val, zend_long maxlifetime 32 #define PS_WRITE_ARGS void **mod_data, zend_string *key, zend_string *val, zend_long maxlifetime 33 #define PS_DESTROY_ARGS void **mod_data, zend_string *key 34 #define PS_GC_ARGS void **mod_data, zend_long maxlifetime, zend_long *nrdels 35 #define PS_CREATE_SID_ARGS void **mod_data 36 #define PS_VALIDATE_SID_ARGS void **mod_data, zend_string *key 37 #define PS_UPDATE_TIMESTAMP_ARGS void **mod_data, zend_string *key, zend_string *val, zend_long maxlifetime 38 39 typedef struct ps_module_struct { 40 const char *s_name; 41 zend_result (*s_open)(PS_OPEN_ARGS); 42 zend_result (*s_close)(PS_CLOSE_ARGS); 43 zend_result (*s_read)(PS_READ_ARGS); 44 zend_result (*s_write)(PS_WRITE_ARGS); 45 zend_result (*s_destroy)(PS_DESTROY_ARGS); 46 zend_long (*s_gc)(PS_GC_ARGS); 47 zend_string *(*s_create_sid)(PS_CREATE_SID_ARGS); 48 zend_result (*s_validate_sid)(PS_VALIDATE_SID_ARGS); 49 zend_result (*s_update_timestamp)(PS_UPDATE_TIMESTAMP_ARGS); 50 } ps_module; 51 52 #define PS_GET_MOD_DATA() *mod_data 53 #define PS_SET_MOD_DATA(a) *mod_data = (a) 54 55 #define PS_OPEN_FUNC(x) zend_result ps_open_##x(PS_OPEN_ARGS) 56 #define PS_CLOSE_FUNC(x) zend_result ps_close_##x(PS_CLOSE_ARGS) 57 #define PS_READ_FUNC(x) zend_result ps_read_##x(PS_READ_ARGS) 58 #define PS_WRITE_FUNC(x) zend_result ps_write_##x(PS_WRITE_ARGS) 59 #define PS_DESTROY_FUNC(x) zend_result ps_delete_##x(PS_DESTROY_ARGS) 60 #define PS_GC_FUNC(x) zend_long ps_gc_##x(PS_GC_ARGS) 61 #define PS_CREATE_SID_FUNC(x) zend_string *ps_create_sid_##x(PS_CREATE_SID_ARGS) 62 #define PS_VALIDATE_SID_FUNC(x) zend_result ps_validate_sid_##x(PS_VALIDATE_SID_ARGS) 63 #define PS_UPDATE_TIMESTAMP_FUNC(x) zend_result ps_update_timestamp_##x(PS_UPDATE_TIMESTAMP_ARGS) 64 65 /* Legacy save handler module definitions */ 66 #define PS_FUNCS(x) \ 67 PS_OPEN_FUNC(x); \ 68 PS_CLOSE_FUNC(x); \ 69 PS_READ_FUNC(x); \ 70 PS_WRITE_FUNC(x); \ 71 PS_DESTROY_FUNC(x); \ 72 PS_GC_FUNC(x); \ 73 PS_CREATE_SID_FUNC(x) 74 75 #define PS_MOD(x) \ 76 #x, ps_open_##x, ps_close_##x, ps_read_##x, ps_write_##x, \ 77 ps_delete_##x, ps_gc_##x, php_session_create_id, \ 78 php_session_validate_sid, php_session_update_timestamp 79 80 /* Legacy SID creation enabled save handler module definitions */ 81 #define PS_FUNCS_SID(x) \ 82 PS_OPEN_FUNC(x); \ 83 PS_CLOSE_FUNC(x); \ 84 PS_READ_FUNC(x); \ 85 PS_WRITE_FUNC(x); \ 86 PS_DESTROY_FUNC(x); \ 87 PS_GC_FUNC(x); \ 88 PS_CREATE_SID_FUNC(x); \ 89 PS_VALIDATE_SID_FUNC(x); \ 90 PS_UPDATE_TIMESTAMP_FUNC(x); 91 92 #define PS_MOD_SID(x) \ 93 #x, ps_open_##x, ps_close_##x, ps_read_##x, ps_write_##x, \ 94 ps_delete_##x, ps_gc_##x, ps_create_sid_##x, \ 95 php_session_validate_sid, php_session_update_timestamp 96 97 /* Update timestamp enabled save handler module definitions 98 New save handlers should use this API */ 99 #define PS_FUNCS_UPDATE_TIMESTAMP(x) \ 100 PS_OPEN_FUNC(x); \ 101 PS_CLOSE_FUNC(x); \ 102 PS_READ_FUNC(x); \ 103 PS_WRITE_FUNC(x); \ 104 PS_DESTROY_FUNC(x); \ 105 PS_GC_FUNC(x); \ 106 PS_CREATE_SID_FUNC(x); \ 107 PS_VALIDATE_SID_FUNC(x); \ 108 PS_UPDATE_TIMESTAMP_FUNC(x); 109 110 #define PS_MOD_UPDATE_TIMESTAMP(x) \ 111 #x, ps_open_##x, ps_close_##x, ps_read_##x, ps_write_##x, \ 112 ps_delete_##x, ps_gc_##x, ps_create_sid_##x, \ 113 ps_validate_sid_##x, ps_update_timestamp_##x 114 115 116 typedef enum { 117 php_session_disabled, 118 php_session_none, 119 php_session_active 120 } php_session_status; 121 122 typedef struct _php_session_rfc1867_progress { 123 size_t sname_len; 124 zval sid; 125 smart_str key; 126 127 zend_long update_step; 128 zend_long next_update; 129 double next_update_time; 130 bool cancel_upload; 131 bool apply_trans_sid; 132 size_t content_length; 133 134 zval data; /* the array exported to session data */ 135 zval files; /* data["files"] array */ 136 zval *post_bytes_processed; /* data["bytes_processed"] */ 137 zval *current_file_bytes_processed; 138 zval current_file; /* array of currently uploading file */ 139 } php_session_rfc1867_progress; 140 141 typedef struct _php_ps_globals { 142 char *save_path; 143 char *session_name; 144 zend_string *id; 145 char *extern_referer_chk; 146 char *cache_limiter; 147 zend_long cookie_lifetime; 148 char *cookie_path; 149 char *cookie_domain; 150 char *cookie_samesite; 151 bool cookie_secure; 152 bool cookie_httponly; 153 const ps_module *mod; 154 const ps_module *default_mod; 155 void *mod_data; 156 php_session_status session_status; 157 zend_string *session_started_filename; 158 uint32_t session_started_lineno; 159 int module_number; 160 php_random_status_state_pcgoneseq128xslrr64 random_state; 161 php_random_algo_with_state random; 162 zend_long gc_probability; 163 zend_long gc_divisor; 164 zend_long gc_maxlifetime; 165 zend_long cache_expire; 166 struct { 167 zval ps_open; 168 zval ps_close; 169 zval ps_read; 170 zval ps_write; 171 zval ps_destroy; 172 zval ps_gc; 173 zval ps_create_sid; 174 zval ps_validate_sid; 175 zval ps_update_timestamp; 176 } mod_user_names; 177 zend_string *mod_user_class_name; 178 bool mod_user_implemented; 179 bool mod_user_is_open; 180 bool auto_start; 181 bool use_cookies; 182 bool use_only_cookies; 183 bool use_trans_sid; /* contains the INI value of whether to use trans-sid */ 184 bool send_cookie; 185 bool define_sid; 186 187 const struct ps_serializer_struct *serializer; 188 zval http_session_vars; 189 190 zend_long sid_length; 191 zend_long sid_bits_per_character; 192 193 php_session_rfc1867_progress *rfc1867_progress; 194 char *rfc1867_prefix; /* session.upload_progress.prefix */ 195 char *rfc1867_name; /* session.upload_progress.name */ 196 zend_long rfc1867_freq; /* session.upload_progress.freq */ 197 double rfc1867_min_freq; /* session.upload_progress.min_freq */ 198 bool rfc1867_enabled; /* session.upload_progress.enabled */ 199 bool rfc1867_cleanup; /* session.upload_progress.cleanup */ 200 201 bool use_strict_mode; /* whether or not PHP accepts unknown session ids */ 202 bool lazy_write; /* omit session write when it is possible */ 203 bool in_save_handler; /* state if session is in save handler or not */ 204 bool set_handler; /* state if session module i setting handler or not */ 205 zend_string *session_vars; /* serialized original session data */ 206 } php_ps_globals; 207 208 typedef php_ps_globals zend_ps_globals; 209 210 extern zend_module_entry session_module_entry; 211 #define phpext_session_ptr &session_module_entry 212 213 #ifdef ZTS 214 #define PS(v) ZEND_TSRMG(ps_globals_id, php_ps_globals *, v) 215 #ifdef COMPILE_DL_SESSION 216 ZEND_TSRMLS_CACHE_EXTERN() 217 #endif 218 #else 219 #define PS(v) (ps_globals.v) 220 #endif 221 222 #define PS_SERIALIZER_ENCODE_ARGS void 223 #define PS_SERIALIZER_DECODE_ARGS const char *val, size_t vallen 224 225 typedef struct ps_serializer_struct { 226 const char *name; 227 zend_string *(*encode)(PS_SERIALIZER_ENCODE_ARGS); 228 zend_result (*decode)(PS_SERIALIZER_DECODE_ARGS); 229 } ps_serializer; 230 231 #define PS_SERIALIZER_ENCODE_NAME(x) ps_srlzr_encode_##x 232 #define PS_SERIALIZER_DECODE_NAME(x) ps_srlzr_decode_##x 233 234 #define PS_SERIALIZER_ENCODE_FUNC(x) \ 235 zend_string *PS_SERIALIZER_ENCODE_NAME(x)(PS_SERIALIZER_ENCODE_ARGS) 236 #define PS_SERIALIZER_DECODE_FUNC(x) \ 237 zend_result PS_SERIALIZER_DECODE_NAME(x)(PS_SERIALIZER_DECODE_ARGS) 238 239 #define PS_SERIALIZER_FUNCS(x) \ 240 PS_SERIALIZER_ENCODE_FUNC(x); \ 241 PS_SERIALIZER_DECODE_FUNC(x) 242 243 #define PS_SERIALIZER_ENTRY(x) \ 244 { #x, PS_SERIALIZER_ENCODE_NAME(x), PS_SERIALIZER_DECODE_NAME(x) } 245 246 /* default create id function */ 247 PHPAPI zend_string *php_session_create_id(PS_CREATE_SID_ARGS); 248 /* Dummy PS module functions */ 249 PHPAPI zend_result php_session_validate_sid(PS_VALIDATE_SID_ARGS); 250 PHPAPI zend_result php_session_update_timestamp(PS_UPDATE_TIMESTAMP_ARGS); 251 252 PHPAPI void session_adapt_url(const char *url, size_t url_len, char **new_url, size_t *new_len); 253 254 PHPAPI zend_result php_session_destroy(void); 255 PHPAPI void php_add_session_var(zend_string *name); 256 PHPAPI zval *php_set_session_var(zend_string *name, zval *state_val, php_unserialize_data_t *var_hash); 257 PHPAPI zval *php_get_session_var(zend_string *name); 258 PHPAPI zval* php_get_session_var_str(const char *name, size_t name_len); 259 260 PHPAPI zend_result php_session_register_module(const ps_module *); 261 262 PHPAPI zend_result php_session_register_serializer(const char *name, 263 zend_string *(*encode)(PS_SERIALIZER_ENCODE_ARGS), 264 zend_result (*decode)(PS_SERIALIZER_DECODE_ARGS)); 265 266 PHPAPI zend_result php_session_start(void); 267 PHPAPI zend_result php_session_flush(int write); 268 PHPAPI php_session_status php_get_session_status(void); 269 270 PHPAPI const ps_module *_php_find_ps_module(const char *name); 271 PHPAPI const ps_serializer *_php_find_ps_serializer(const char *name); 272 273 PHPAPI zend_result php_session_valid_key(const char *key); 274 PHPAPI zend_result php_session_reset_id(void); 275 276 #define PS_ADD_VARL(name) do { \ 277 php_add_session_var(name); \ 278 } while (0) 279 280 #define PS_ADD_VAR(name) PS_ADD_VARL(name) 281 282 #define PS_DEL_VARL(name) do { \ 283 if (!Z_ISNULL(PS(http_session_vars))) { \ 284 zend_hash_del(Z_ARRVAL(PS(http_session_vars)), name); \ 285 } \ 286 } while (0) 287 288 289 #define PS_ENCODE_VARS \ 290 zend_string *key; \ 291 zend_ulong num_key; \ 292 zval *struc; 293 294 #define PS_ENCODE_LOOP(code) do { \ 295 HashTable *_ht = Z_ARRVAL_P(Z_REFVAL(PS(http_session_vars))); \ 296 ZEND_HASH_FOREACH_KEY(_ht, num_key, key) { \ 297 if (key == NULL) { \ 298 php_error_docref(NULL, E_WARNING, \ 299 "Skipping numeric key " ZEND_LONG_FMT, num_key);\ 300 continue; \ 301 } \ 302 if ((struc = php_get_session_var(key))) { \ 303 code; \ 304 } \ 305 } ZEND_HASH_FOREACH_END(); \ 306 } while(0) 307 308 PHPAPI ZEND_EXTERN_MODULE_GLOBALS(ps) 309 310 void php_session_auto_start(void *data); 311 312 extern PHPAPI zend_class_entry *php_session_class_entry; 313 314 extern PHPAPI zend_class_entry *php_session_iface_entry; 315 316 extern PHPAPI zend_class_entry *php_session_id_iface_entry; 317 318 extern PHPAPI zend_class_entry *php_session_update_timestamp_iface_entry; 319 320 extern PHP_METHOD(SessionHandler, open); 321 extern PHP_METHOD(SessionHandler, close); 322 extern PHP_METHOD(SessionHandler, read); 323 extern PHP_METHOD(SessionHandler, write); 324 extern PHP_METHOD(SessionHandler, destroy); 325 extern PHP_METHOD(SessionHandler, gc); 326 extern PHP_METHOD(SessionHandler, create_sid); 327 328 #endif 329