📄 var_unserializer.c
字号:
/* Generated by re2c 0.10.4 on Thu Aug 10 00:27:22 2006 *//* +----------------------------------------------------------------------+ | PHP Version 4 | +----------------------------------------------------------------------+ | Copyright (c) 1997-2007 The PHP Group | +----------------------------------------------------------------------+ | This source file is subject to version 3.01 of the PHP license, | | that is bundled with this package in the file LICENSE, and is | | available through the world-wide-web at the following url: | | http://www.php.net/license/3_01.txt | | If you did not receive a copy of the PHP license and are unable to | | obtain it through the world-wide-web, please send a note to | | license@php.net so we can mail you a copy immediately. | +----------------------------------------------------------------------+ | Authors: Sascha Schumann <sascha@schumann.cx> | +----------------------------------------------------------------------+*//* $Id: var_unserializer.c,v 1.18.4.24.2.9 2007/01/01 09:46:49 sebastian Exp $ */#include "php.h"#include "ext/standard/php_var.h"#include "php_incomplete_class.h"/* {{{ reference-handling for unserializer: var_* */#define VAR_ENTRIES_MAX 1024typedef struct { zval *data[VAR_ENTRIES_MAX]; long used_slots; void *next;} var_entries;static inline void var_push(php_unserialize_data_t *var_hashx, zval **rval){ var_entries *var_hash = var_hashx->first, *prev = NULL; while (var_hash && var_hash->used_slots == VAR_ENTRIES_MAX) { prev = var_hash; var_hash = var_hash->next; } if (!var_hash) { var_hash = emalloc(sizeof(var_entries)); var_hash->used_slots = 0; var_hash->next = 0; if (!var_hashx->first) var_hashx->first = var_hash; else prev->next = var_hash; } var_hash->data[var_hash->used_slots++] = *rval;}static inline void var_push_dtor(php_unserialize_data_t *var_hashx, zval **rval){ var_entries *var_hash = var_hashx->first_dtor, *prev = NULL; while (var_hash && var_hash->used_slots == VAR_ENTRIES_MAX) { prev = var_hash; var_hash = var_hash->next; } if (!var_hash) { var_hash = emalloc(sizeof(var_entries)); var_hash->used_slots = 0; var_hash->next = 0; if (!var_hashx->first_dtor) var_hashx->first_dtor = var_hash; else prev->next = var_hash; } (*rval)->refcount++; var_hash->data[var_hash->used_slots++] = *rval;}PHPAPI void var_replace(php_unserialize_data_t *var_hashx, zval *ozval, zval **nzval){ long i; var_entries *var_hash = var_hashx->first; while (var_hash) { for (i = 0; i < var_hash->used_slots; i++) { if (var_hash->data[i] == ozval) { var_hash->data[i] = *nzval; return; } } var_hash = var_hash->next; }}static int var_access(php_unserialize_data_t *var_hashx, long id, zval ***store){ var_entries *var_hash = var_hashx->first; while (id >= VAR_ENTRIES_MAX && var_hash && var_hash->used_slots == VAR_ENTRIES_MAX) { var_hash = var_hash->next; id -= VAR_ENTRIES_MAX; } if (!var_hash) return !SUCCESS; if (id < 0 || id >= var_hash->used_slots) return !SUCCESS; *store = &var_hash->data[id]; return SUCCESS;}PHPAPI void var_destroy(php_unserialize_data_t *var_hashx){ void *next; long i; var_entries *var_hash = var_hashx->first; while (var_hash) { next = var_hash->next; efree(var_hash); var_hash = next; } var_hash = var_hashx->first_dtor; while (var_hash) { for (i = 0; i < var_hash->used_slots; i++) { zval_ptr_dtor(&var_hash->data[i]); } next = var_hash->next; efree(var_hash); var_hash = next; }}/* }}} */#define YYFILL(n) do { } while (0)#define YYCTYPE unsigned char#define YYCURSOR cursor#define YYLIMIT limit#define YYMARKER markerstatic inline long parse_iv2(const unsigned char *p, const unsigned char **q){ char cursor; long result = 0; int neg = 0; switch (*p) { case '-': neg++; /* fall-through */ case '+': p++; } while (1) { cursor = (char)*p; if (cursor >= '0' && cursor <= '9') { result = result * 10 + cursor - '0'; } else { break; } p++; } if (q) *q = p; if (neg) return -result; return result;}static inline long parse_iv(const unsigned char *p){ return parse_iv2(p, NULL);}/* no need to check for length - re2c already did */static inline size_t parse_uiv(const unsigned char *p){ unsigned char cursor; size_t result = 0; if (*p == '+') { p++; } while (1) { cursor = *p; if (cursor >= '0' && cursor <= '9') { result = result * 10 + (size_t)(cursor - (unsigned char)'0'); } else { break; } p++; } return result;}#define UNSERIALIZE_PARAMETER zval **rval, const unsigned char **p, const unsigned char *max, php_unserialize_data_t *var_hash TSRMLS_DC#define UNSERIALIZE_PASSTHRU rval, p, max, var_hash TSRMLS_CCstatic inline int process_nested_data(UNSERIALIZE_PARAMETER, HashTable *ht, long elements){ while (elements-- > 0) { zval *key, *data, **old_data; ALLOC_INIT_ZVAL(key); if (!php_var_unserialize(&key, p, max, NULL TSRMLS_CC)) { zval_dtor(key); FREE_ZVAL(key); return 0; } if (Z_TYPE_P(key) != IS_LONG && Z_TYPE_P(key) != IS_STRING) { zval_dtor(key); FREE_ZVAL(key); return 0; } ALLOC_INIT_ZVAL(data); if (!php_var_unserialize(&data, p, max, var_hash TSRMLS_CC)) { zval_dtor(key); FREE_ZVAL(key); zval_dtor(data); FREE_ZVAL(data); return 0; } switch (Z_TYPE_P(key)) { case IS_LONG: if (zend_hash_index_find(ht, Z_LVAL_P(key), (void **)&old_data)==SUCCESS) { var_push_dtor(var_hash, old_data); } zend_hash_index_update(ht, Z_LVAL_P(key), &data, sizeof(data), NULL); break; case IS_STRING: if (zend_hash_find(ht, Z_STRVAL_P(key), Z_STRLEN_P(key) + 1, (void **)&old_data)==SUCCESS) { var_push_dtor(var_hash, old_data); } zend_hash_update(ht, Z_STRVAL_P(key), Z_STRLEN_P(key) + 1, &data, sizeof(data), NULL); break; } zval_dtor(key); FREE_ZVAL(key); if (elements && *(*p-1) != ';' && *(*p-1) != '}') { (*p)--; return 0; } } return 1;}static inline int finish_nested_data(UNSERIALIZE_PARAMETER){ if (*((*p)++) == '}') return 1;#if SOMETHING_NEW_MIGHT_LEAD_TO_CRASH_ENABLE_IF_YOU_ARE_BRAVE zval_ptr_dtor(rval);#endif return 0;}static inline int object_common1(UNSERIALIZE_PARAMETER, zend_class_entry *ce){ long elements; elements = parse_iv2((*p) + 2, p); (*p) += 2; object_init_ex(*rval, ce); return elements;}static inline int object_common2(UNSERIALIZE_PARAMETER, long elements){ zval *retval_ptr = NULL; zval fname; if (!process_nested_data(UNSERIALIZE_PASSTHRU, Z_OBJPROP_PP(rval), elements)) { return 0; } INIT_PZVAL(&fname); ZVAL_STRINGL(&fname, "__wakeup", sizeof("__wakeup") - 1, 0); call_user_function_ex(CG(function_table), rval, &fname, &retval_ptr, 0, 0, 1, NULL TSRMLS_CC); if (retval_ptr) zval_ptr_dtor(&retval_ptr); return finish_nested_data(UNSERIALIZE_PASSTHRU);}static char *str_tolower_copy(char *dest, const char *source, unsigned int length){ register unsigned char *str = (unsigned char*)source; register unsigned char *result = (unsigned char*)dest; register unsigned char *end = str + length; while (str < end) { *result++ = tolower((int)*str++); } *result = *end; return dest;}PHPAPI int php_var_unserialize(UNSERIALIZE_PARAMETER){ const unsigned char *cursor, *limit, *marker, *start; zval **rval_ref; limit = cursor = *p; if (var_hash && cursor[0] != 'R') { var_push(var_hash, rval); } start = cursor; { static unsigned char yybm[] = { 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 128, 128, 128, 128, 128, 128, 128, 128, 128, 128, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, 0, }; { YYCTYPE yych; if((YYLIMIT - YYCURSOR) < 7) YYFILL(7); yych = *YYCURSOR; switch(yych) { case 'N': goto yy5; case 'O': goto yy12; case 'R': goto yy2; case 'a': goto yy10; case 'b': goto yy6; case 'd': goto yy8; case 'i': goto yy7; case 'o': goto yy11; case 'r': goto yy4; case 's': goto yy9; case '}': goto yy13; default: goto yy15; }yy2: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy87;yy3: { return 0; }yy4: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy81; goto yy3;yy5: yych = *++YYCURSOR; if(yych == ';') goto yy79; goto yy3;yy6: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy75; goto yy3;yy7: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy69; goto yy3;yy8: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy45; goto yy3;yy9: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy38; goto yy3;yy10: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy31; goto yy3;yy11: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy24; goto yy3;yy12: yych = *(YYMARKER = ++YYCURSOR); if(yych == ':') goto yy16; goto yy3;yy13: ++YYCURSOR; { /* this is the case where we have less data than planned */ php_error_docref(NULL TSRMLS_CC, E_NOTICE, "Unexpected end of serialized data"); return 0; /* not sure if it should be 0 or 1 here? */}yy15: yych = *++YYCURSOR; goto yy3;yy16: yych = *++YYCURSOR; if(yybm[0+yych] & 128) { goto yy19; } if(yych == '+') goto yy18;yy17: YYCURSOR = YYMARKER; goto yy3;yy18: yych = *++YYCURSOR; if(yybm[0+yych] & 128) { goto yy19; } goto yy17;yy19: ++YYCURSOR; if((YYLIMIT - YYCURSOR) < 2) YYFILL(2); yych = *YYCURSOR; if(yybm[0+yych] & 128) { goto yy19; } if(yych != ':') goto yy17; yych = *++YYCURSOR; if(yych != '"') goto yy17; ++YYCURSOR; { size_t len, len2, len3, maxlen; long elements; char *class_name; zend_class_entry *ce; int incomplete_class = 0; zval *user_func; zval *retval_ptr; zval **args[1]; zval *arg_func_name; INIT_PZVAL(*rval); len2 = len = parse_uiv(start + 2); maxlen = max - YYCURSOR; if (maxlen < len || len == 0) { *p = start + 2; return 0; } class_name = (char*)YYCURSOR; YYCURSOR += len; if (*(YYCURSOR) != '"') { *p = YYCURSOR; return 0; } if (*(YYCURSOR+1) != ':') { *p = YYCURSOR+1;⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -