+void php_http_url_dtor(php_http_url_t *url)
+{
+ STR_FREE(url->scheme.str);
+ STR_FREE(url->authority.userinfo.username.str);
+ STR_FREE(url->authority.userinfo.password.str);
+ STR_FREE(url->authority.host.str);
+ STR_FREE(url->path.str);
+ STR_FREE(url->query.str);
+ STR_FREE(url->fragment.str);
+}
+
+void php_http_url_free(php_http_url_t **url)
+{
+ if (*url) {
+ php_http_url_dtor(*url);
+ efree(*url);
+ *url = NULL;
+ }
+}
+
+static size_t parse_mb_utf8(php_http_url_t *url, const char *ptr, const char *end, zend_bool idn)
+{
+ unsigned wchar;
+ size_t consumed = utf8towc(&wchar, (const unsigned char *) ptr, end - ptr);
+
+ if (!consumed || consumed == (size_t) -1) {
+ return 0;
+ }
+ if (!idn && !isualnum(wchar)) {
+ return 0;
+ }
+
+ return consumed;
+}
+
+#ifdef PHP_HTTP_HAVE_WCHAR
+static size_t parse_mb_loc(php_http_url_t *url, const char *ptr, const char *end, zend_bool idn)
+{
+ wchar_t wchar;
+ size_t consumed = 0;
+#if defined(HAVE_MBRTOWC)
+ mbstate_t ps = {0};
+
+ consumed = mbrtowc(&wchar, ptr, end - ptr, &ps);
+#elif defined(HAVE_MBTOWC)
+ consumed = mbtowc(&wchar, ptr, end - ptr);
+#endif
+
+ if (!consumed || consumed == (size_t) -1) {
+ return 0;
+ }
+ if (!idn && !iswalnum(wchar)) {
+ return 0;
+ }
+
+ return consumed;
+}
+#endif
+
+typedef enum parse_mb_what {
+ PARSE_SCHEME,
+ PARSE_USERINFO,
+ PARSE_HOSTINFO,
+ PARSE_PATH,
+ PARSE_QUERY,
+ PARSE_FRAGMENT
+} parse_mb_what_t;
+
+static const char * const parse_what[] = {
+ "scheme",
+ "userinfo",
+ "hostinfo",
+ "path",
+ "query",
+ "fragment"
+};
+
+static size_t parse_mb(php_http_url_t *url, parse_mb_what_t what, const char *ptr, const char *end, const char *begin, zend_bool silent)
+{
+ size_t consumed = 0;
+ zend_bool idn = (what == PARSE_HOSTINFO) && (url->flags & PHP_HTTP_URL_PARSE_IDN);
+
+ if (url->flags & PHP_HTTP_URL_PARSE_MBUTF8) {
+ consumed = parse_mb_utf8(url, ptr, end, idn);
+ }
+#ifdef PHP_HTTP_HAVE_WCHAR
+ else if (url->flags & PHP_HTTP_URL_PARSE_MBLOC) {
+ consumed = parse_mb_loc(url, ptr, end, idn);
+ }
+#endif
+
+ if (!consumed && !silent) {
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse %s; unexpected byte 0x%02x at pos %u in '%s'",
+ parse_what[what], (unsigned char) *ptr, (unsigned) (ptr - begin), begin);
+ }
+
+ return consumed;
+}
+
+static STATUS parse_userinfo(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *password = NULL, *tmp = ptr;
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+
+ do {
+ switch (*ptr) {
+ case ':':
+ if (password) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse password; duplicate ':' at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ }
+ password = ptr + 1;
+ break;
+
+ case '%':
+ if (ptr[1] != '%' && (end - ptr <= 2 || !isxdigit(*(ptr+1)) || !isxdigit(*(ptr+2)))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse userinfo; invalid percent encoding at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ }
+ ptr += 2;
+ break;
+
+ case '!': case '$': case '&': case '\'': case '(': case ')': case '*':
+ case '+': case ',': case ';': case '=': /* sub-delims */
+ case '-': case '.': case '_': case '~': /* unreserved */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ /* allowed */
+ break;
+
+ default:
+ if (!(mb = parse_mb(url, PARSE_USERINFO, ptr, end, tmp, 0))) {
+ return FAILURE;
+ }
+ ptr += mb - 1;
+ }
+ } while(++ptr != end);
+
+ if (password) {
+ if ((url->authority.userinfo.username.len = password - tmp - 1)) {
+ url->authority.userinfo.username.str = estrndup(tmp,
+ url->authority.userinfo.username.len);
+ }
+ if ((url->authority.userinfo.password.len = end - password)) {
+ url->authority.userinfo.password.str = estrndup(password,
+ url->authority.userinfo.password.len);
+ }
+ } else {
+ if ((url->authority.userinfo.username.len = end - tmp)) {
+ url->authority.userinfo.username.str = estrndup(tmp,
+ url->authority.userinfo.username.len);
+ }
+ }
+
+ return SUCCESS;
+}
+
+static STATUS parse_hostinfo(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *tmp = ptr, *port = NULL;
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+
+ /* FIXME: IP(v6) addresses */
+ do {
+ switch (*ptr) {
+ case ':':
+ if (port) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse port; duplicate ':' at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ }
+ port = ptr + 1;
+ break;
+
+ case '%':
+ if (ptr[1] != '%' && (end - ptr <= 2 || !isxdigit(*(ptr+1)) || !isxdigit(*(ptr+2)))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse hostinfo; invalid percent encoding at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ }
+ ptr += 2;
+ break;
+
+ case '!': case '$': case '&': case '\'': case '(': case ')': case '*':
+ case '+': case ',': case ';': case '=': /* sub-delims */
+ case '-': case '.': case '_': case '~': /* unreserved */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ if (port) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse port; unexpected char '%c' at pos %u in '%s'",
+ (unsigned char) *ptr, (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ }
+ /* no break */
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ /* allowed */
+ if (port) {
+ url->authority.port *= 10;
+ url->authority.port += *ptr - '0';
+ }
+ break;
+
+ default:
+ if (port) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse port; unexpected byte 0x%02x at pos %u in '%s'",
+ (unsigned char) *ptr, (unsigned) (ptr - tmp), tmp);
+ return FAILURE;
+ } else if (!(mb = parse_mb(url, PARSE_HOSTINFO, ptr, end, tmp, 0))) {
+ return FAILURE;
+ }
+ ptr += mb - 1;
+ }
+ } while (++ptr != end);
+
+ if (port) {
+ url->authority.host.len = port - tmp - 1;
+ } else {
+ url->authority.host.len = end - tmp;
+ }
+
+ url->authority.host.str = estrndup(tmp, url->authority.host.len);
+
+#ifdef PHP_HTTP_HAVE_IDN
+ if (url->flags & PHP_HTTP_URL_PARSE_IDN) {
+ char *idn = NULL;
+ int rv = -1;
+
+ if (url->flags & PHP_HTTP_URL_PARSE_MBUTF8) {
+ rv = idna_to_ascii_8z(url->authority.host.str, &idn, IDNA_ALLOW_UNASSIGNED|IDNA_USE_STD3_ASCII_RULES);
+ }
+# ifdef PHP_HTTP_HAVE_WCHAR
+ else if (url->flags & PHP_HTTP_URL_PARSE_MBLOC) {
+ rv = idna_to_ascii_lz(url->authority.host.str, &idn, IDNA_ALLOW_UNASSIGNED|IDNA_USE_STD3_ASCII_RULES);
+ }
+# endif
+ if (rv != IDNA_SUCCESS) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Failed to parse IDN; %s", idna_strerror(rv));
+ return FAILURE;
+ } else {
+ STR_SET(url->authority.host.str, estrdup(idn));
+ url->authority.host.len = strlen(idn);
+ free(idn);
+ }
+ }
+#endif
+
+ return SUCCESS;
+}
+
+static const char *parse_authority(php_http_url_t *url, const char *ptr, const char *end)
+{
+ const char *tmp = ptr;
+
+ do {
+ switch (*ptr) {
+ case '@':
+ /* userinfo delimiter */
+ if (tmp != ptr && SUCCESS != parse_userinfo(url, tmp, ptr)) {
+ return NULL;
+ }
+ tmp = ptr + 1;
+ break;
+
+ case '/':
+ case '?':
+ case '#':
+ case '\0':
+ /* host delimiter */
+ if (tmp != ptr && SUCCESS != parse_hostinfo(url, tmp, ptr)) {
+ return NULL;
+ }
+ return ptr;
+ }
+ } while (++ptr <= end);
+
+ return NULL;
+}
+
+static const char *parse_path(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *tmp = ptr;
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+
+ do {
+ switch (*ptr) {
+ case '?':
+ case '\0':
+ if ((url->path.len = ptr - tmp)) {
+ url->path.str = estrndup(tmp, url->path.len);
+ }
+ return ptr;
+
+ case '%':
+ if (ptr[1] != '%' && (end - ptr <= 2 || !isxdigit(*(ptr+1)) || !isxdigit(*(ptr+2)))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse path; invalid percent encoding at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return NULL;
+ }
+ ptr += 2;
+ break;
+
+ case '/': /* yeah, well */
+ case '!': case '$': case '&': case '\'': case '(': case ')': case '*':
+ case '+': case ',': case ';': case '=': /* sub-delims */
+ case '-': case '.': case '_': case '~': /* unreserved */
+ case ':': case '@': /* pchar */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ /* allowed */
+ break;
+
+ default:
+ if (!(mb = parse_mb(url, PARSE_PATH, ptr, end, tmp, 0))) {
+ return NULL;
+ }
+ ptr += mb - 1;
+ }
+ } while (++ptr <= end);
+
+ return NULL;
+}
+
+static const char *parse_query(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *tmp = ptr + !!*ptr;
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+
+ do {
+ switch (*ptr) {
+ case '#':
+ case '\0':
+ if ((url->query.len = ptr - tmp)) {
+ url->query.str = estrndup(tmp, url->query.len);
+ }
+ return ptr;
+
+ case '%':
+ if (ptr[1] != '%' && (end - ptr <= 2 || !isxdigit(*(ptr+1)) || !isxdigit(*(ptr+2)))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse query; invalid percent encoding at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return NULL;
+ }
+ ptr += 2;
+ break;
+
+ case '?': case '/': /* yeah, well */
+ case '!': case '$': case '&': case '\'': case '(': case ')': case '*':
+ case '+': case ',': case ';': case '=': /* sub-delims */
+ case '-': case '.': case '_': case '~': /* unreserved */
+ case ':': case '@': /* pchar */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ /* allowed */
+ break;
+
+ default:
+ if (!(mb = parse_mb(url, PARSE_QUERY, ptr, end, tmp, 0))) {
+ return NULL;
+ }
+ ptr += mb - 1;
+ }
+ } while (++ptr <= end);
+
+ return NULL;
+}
+
+static const char *parse_fragment(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *tmp = ptr + !!*ptr;
+ TSRMLS_FETCH_FROM_CTX(url->ts);
+
+ do {
+ switch (*ptr) {
+ case '\0':
+ if ((url->fragment.len = ptr - tmp)) {
+ url->fragment.str = estrndup(tmp, url->fragment.len);
+ }
+ return ptr;
+
+ case '%':
+ if (ptr[1] != '%' && (end - ptr <= 2 || !isxdigit(*(ptr+1)) || !isxdigit(*(ptr+2)))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING,
+ "Failed to parse query; invalid percent encoding at pos %u in '%s'",
+ (unsigned) (ptr - tmp), tmp);
+ return NULL;
+ }
+ ptr += 2;
+ break;
+
+ case '?': case '/': /* yeah, well */
+ case '!': case '$': case '&': case '\'': case '(': case ')': case '*':
+ case '+': case ',': case ';': case '=': /* sub-delims */
+ case '-': case '.': case '_': case '~': /* unreserved */
+ case ':': case '@': /* pchar */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ /* allowed */
+ break;
+
+ default:
+ if (!(mb = parse_mb(url, PARSE_FRAGMENT, ptr, end, tmp, 0))) {
+ return NULL;
+ }
+ ptr += mb - 1;
+ }
+ } while (++ptr <= end);
+
+ return NULL;
+}
+
+static const char *parse_hier(php_http_url_t *url, const char *ptr, const char *end)
+{
+ if (*ptr == '/') {
+ if (end - ptr > 1) {
+ if (*(ptr + 1) == '/') {
+ if (!(ptr = parse_authority(url, ptr + 2, end))) {
+ return NULL;
+ }
+ }
+ }
+ }
+ return parse_path(url, ptr, end);
+}
+
+static const char *parse_scheme(php_http_url_t *url, const char *ptr, const char *end)
+{
+ size_t mb;
+ const char *tmp = ptr;
+
+ do {
+ switch (*ptr) {
+ case ':':
+ /* scheme delimiter */
+ url->scheme.len = ptr - tmp;
+ url->scheme.str = estrndup(tmp, url->scheme.len);
+ return ++ptr;
+
+ case '0': case '1': case '2': case '3': case '4': case '5': case '6':
+ case '7': case '8': case '9':
+ case '+': case '-': case '.':
+ if (ptr == tmp) {
+ return tmp;
+ }
+ /* no break */
+ case 'A': case 'B': case 'C': case 'D': case 'E': case 'F': case 'G':
+ case 'H': case 'I': case 'J': case 'K': case 'L': case 'M': case 'N':
+ case 'O': case 'P': case 'Q': case 'R': case 'S': case 'T': case 'U':
+ case 'V': case 'W': case 'X': case 'Y': case 'Z':
+ case 'a': case 'b': case 'c': case 'd': case 'e': case 'f': case 'g':
+ case 'h': case 'i': case 'j': case 'k': case 'l': case 'm': case 'n':
+ case 'o': case 'p': case 'q': case 'r': case 's': case 't': case 'u':
+ case 'v': case 'w': case 'x': case 'y': case 'z':
+ /* scheme part */
+ break;
+
+ default:
+ if (!(mb = parse_mb(url, PARSE_SCHEME, ptr, end, tmp, 1))) {
+ /* soft fail; parse path next */
+ return tmp;
+ }
+ ptr += mb - 1;
+ }
+ } while (++ptr != end);
+
+ return tmp;
+}
+
+php_http_url_t *php_http_url_init(php_http_url_t *url, const char *str, size_t len, unsigned flags TSRMLS_DC)
+{
+ const char *ptr, *end = str + len;
+ zend_bool free_url = !url;
+
+ if (url) {
+ memset(url, 0, sizeof(*url));
+ } else {
+ url = ecalloc(1, sizeof(*url));
+ }
+
+ url->flags = flags;
+ TSRMLS_SET_CTX(url->ts);
+
+ if ((ptr = str) && !(str = parse_scheme(url, ptr, end))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Failed to parse URL scheme: '%s'", ptr);
+ if (free_url) {
+ php_http_url_free(&url);
+ } else {
+ php_http_url_dtor(url);
+ }
+ return NULL;
+ }
+
+ if ((ptr = str) && !(str = parse_hier(url, ptr, end))) {
+ if (free_url) {
+ php_http_url_free(&url);
+ } else {
+ php_http_url_dtor(url);
+ }
+ return NULL;
+ }
+
+ if ((ptr = str) && !(str = parse_query(url, ptr, end))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Failed to parse URL query: '%s'", ptr);
+ if (free_url) {
+ php_http_url_free(&url);
+ } else {
+ php_http_url_dtor(url);
+ }
+ return NULL;
+ }
+
+ if ((ptr = str) && !(str = parse_fragment(url, ptr, end))) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, "Failed to parse URL fragment: '%s'", ptr);
+ if (free_url) {
+ php_http_url_free(&url);
+ } else {
+ php_http_url_dtor(url);
+ }
+ return NULL;
+ }
+
+ return url;
+}
+