bug65633.phpt

Adam Harvey Mon, 09 Sep 2013 16:43:09 -0700

Commit:    3c3b2b5bdc8e2bcff4d0e7d09375ad7af760b32a
Author:    Adam Harvey <ahar...@php.net>         Mon, 9 Sep 2013 16:24:49 -0700
Parents:   7beef74a827f393753852f7239af75af236fb4f8
Branches:  PHP-5.4 PHP-5.5 master


Link:       
http://git.php.net/?p=php-src.git;a=commitdiff;h=3c3b2b5bdc8e2bcff4d0e7d09375ad7af760b32a

Log:
Handle CLI server request headers case insensitively.

Fixes bug #65633 (built-in server treat some http headers as case-sensitive).

Bugs:
https://bugs.php.net/65633

Changed paths:
  M  NEWS
  M  sapi/cli/php_cli_server.c
  A  sapi/cli/tests/bug65633.phpt


Diff:
diff --git a/NEWS b/NEWS
index 486ccb2..e05b240 100644
--- a/NEWS
+++ b/NEWS
@@ -2,6 +2,10 @@ PHP                                                            
            NEWS
 |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
 ?? ??? 2013, PHP 5.4.21
 
+- CLI server:
+  . Fixed bug #65633 (built-in server treat some http headers as
+    case-sensitive). (Adam)
+
 ?? ??? 2013, PHP 5.4.20
 
 - Core:
diff --git a/sapi/cli/php_cli_server.c b/sapi/cli/php_cli_server.c
index 5a12134..4da55ac 100644
--- a/sapi/cli/php_cli_server.c
+++ b/sapi/cli/php_cli_server.c
@@ -408,7 +408,7 @@ static void append_essential_headers(smart_str* buffer, 
php_cli_server_client *c
 {
        {
                char **val;
-               if (SUCCESS == zend_hash_find(&client->request.headers, "Host", 
sizeof("Host"), (void**)&val)) {
+               if (SUCCESS == zend_hash_find(&client->request.headers, "host", 
sizeof("host"), (void**)&val)) {
                        smart_str_appendl_ex(buffer, "Host", sizeof("Host") - 
1, persistent);
                        smart_str_appendl_ex(buffer, ": ", sizeof(": ") - 1, 
persistent);
                        smart_str_appends_ex(buffer, *val, persistent);
@@ -558,7 +558,7 @@ static char *sapi_cli_server_read_cookies(TSRMLS_D) /* {{{ 
*/
 {
        php_cli_server_client *client = SG(server_context);
        char **val;
-       if (FAILURE == zend_hash_find(&client->request.headers, "Cookie", 
sizeof("Cookie"), (void**)&val)) {
+       if (FAILURE == zend_hash_find(&client->request.headers, "cookie", 
sizeof("cookie"), (void**)&val)) {
                return NULL;
        }
        return *val;
@@ -1556,12 +1556,9 @@ static int 
php_cli_server_client_read_request_on_header_value(php_http_parser *p
                return 1;
        }
        {
-               char *header_name = client->current_header_name;
-               size_t header_name_len = client->current_header_name_len;
-               char c = header_name[header_name_len];
-               header_name[header_name_len] = '\0';
-               zend_hash_add(&client->request.headers, header_name, 
header_name_len + 1, &value, sizeof(char *), NULL);
-               header_name[header_name_len] = c;
+               char *header_name = 
zend_str_tolower_dup(client->current_header_name, 
client->current_header_name_len);
+               zend_hash_add(&client->request.headers, header_name, 
client->current_header_name_len + 1, &value, sizeof(char *), NULL);
+               efree(header_name);
        }
 
        if (client->current_header_name_allocated) {
@@ -1719,7 +1716,7 @@ static void 
php_cli_server_client_populate_request_info(const php_cli_server_cli
        request_info->post_data = client->request.content;
        request_info->content_length = request_info->post_data_length = 
client->request.content_len;
        request_info->auth_user = request_info->auth_password = 
request_info->auth_digest = NULL;
-       if (SUCCESS == zend_hash_find(&client->request.headers, "Content-Type", 
sizeof("Content-Type"), (void**)&val)) {
+       if (SUCCESS == zend_hash_find(&client->request.headers, "content-type", 
sizeof("content-type"), (void**)&val)) {
                request_info->content_type = *val;
        }
 } /* }}} */
@@ -1957,7 +1954,7 @@ static int 
php_cli_server_begin_send_static(php_cli_server *server, php_cli_serv
 static int php_cli_server_request_startup(php_cli_server *server, 
php_cli_server_client *client TSRMLS_DC) { /* {{{ */
        char **auth;
        php_cli_server_client_populate_request_info(client, &SG(request_info));
-       if (SUCCESS == zend_hash_find(&client->request.headers, 
"Authorization", sizeof("Authorization"), (void**)&auth)) {
+       if (SUCCESS == zend_hash_find(&client->request.headers, 
"authorization", sizeof("authorization"), (void**)&auth)) {
                php_handle_auth_data(*auth TSRMLS_CC);
        }
        SG(sapi_headers).http_response_code = 200;
diff --git a/sapi/cli/tests/bug65633.phpt b/sapi/cli/tests/bug65633.phpt
new file mode 100644
index 0000000..5583409
--- /dev/null
+++ b/sapi/cli/tests/bug65633.phpt
@@ -0,0 +1,48 @@
+--TEST--
+Bug #65633 (built-in server treat some http headers as case-sensitive)
+--SKIPIF--
+<?php
+include "skipif.inc";
+?>
+--FILE--
+<?php
+include "php_cli_server.inc";
+php_cli_server_start(<<<'PHP'
+var_dump($_COOKIE, $_SERVER['HTTP_FOO']);
+PHP
+);
+
+list($host, $port) = explode(':', PHP_CLI_SERVER_ADDRESS);
+$port = intval($port)?:80;
+
+$fp = fsockopen($host, $port, $errno, $errstr, 0.5);
+if (!$fp) {
+  die("connect failed");
+}
+
+if(fwrite($fp, <<<HEADER
+GET / HTTP/1.1
+cookie: foo=bar
+foo: bar
+
+
+HEADER
+)) {
+    while (!feof($fp)) {
+        echo fgets($fp);
+    }
+}
+
+fclose($fp);
+?>
+--EXPECTF--
+HTTP/1.1 200 OK
+Connection: close
+X-Powered-By: %s
+Content-type: text/html
+
+array(1) {
+  ["foo"]=>
+  string(3) "bar"
+}
+string(3) "bar"


--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php

[PHP-CVS] com php-src: Handle CLI server request headers case insensitively.: NEWS sapi/cli/php_cli_server.c sapi/cli/tests/bug65633.phpt

Reply via email to