diff options
Diffstat (limited to 'src/plugins/webinterface/php_handler.cpp')
| -rw-r--r-- | src/plugins/webinterface/php_handler.cpp | 128 |
1 files changed, 128 insertions, 0 deletions
diff --git a/src/plugins/webinterface/php_handler.cpp b/src/plugins/webinterface/php_handler.cpp new file mode 100644 index 0000000..6586f7e --- /dev/null +++ b/src/plugins/webinterface/php_handler.cpp @@ -0,0 +1,128 @@ + /*************************************************************************** + * Copyright (C) 2006 by Diego R. Brogna * + * [email protected] * + * * + * This program is free software; you can redistribute it and/or modify * + * it under the terms of the GNU General Public License as published by * + * the Free Software Foundation; either version 2 of the License, or * + * (at your option) any later version. * + * * + * This program is distributed in the hope that it will be useful, * + * but WITHOUT ANY WARRANTY; without even the implied warranty of * + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * + * GNU General Public License for more details. * + * * + * You should have received a copy of the GNU General Public License * + * along with this program; if not, write to the * + * Free Software Foundation, Inc., * + * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. * + ***************************************************************************/ +#include "php_handler.h" + +#include <errno.h> +#include <stdio.h> +#include <sys/types.h> +#include <sys/wait.h> +#include <unistd.h> +#include <util/log.h> +#include "php_interface.h" + + +using namespace kt; +using namespace bt; + +namespace kt +{ + TQMap<TQString,TQByteArray> PhpHandler::scripts; + + PhpHandler::PhpHandler(const TQString & php_exe,PhpInterface *php) : TQProcess(php_exe),php_i(php) + { + connect(this,TQ_SIGNAL(readyReadStdout()),this,TQ_SLOT(onReadyReadStdout())); + connect(this,TQ_SIGNAL(processExited()),this,TQ_SLOT(onExited())); + } + + PhpHandler::~PhpHandler() + { + } + + bool PhpHandler::executeScript(const TQString & path,const TQMap<TQString,TQString> & args) + { + TQByteArray php_s; + if (!scripts.contains(path)) + { + TQFile fptr(path); + if (!fptr.open(IO_ReadOnly)) + { + Out(SYS_WEB|LOG_DEBUG) << "Failed to open " << path << endl; + return false; + } + php_s = fptr.readAll(); + scripts.insert(path,php_s); + } + else + { + php_s = scripts[path]; + } + + output.resize(0); + + int firstphptag = TQCString(php_s).find("<?php"); + if (firstphptag == -1) + return false; + + int off = firstphptag + 6; + TQByteArray data; + TQTextStream ts(data,IO_WriteOnly); + ts.setEncoding( TQTextStream::UnicodeUTF8 ); + ts.writeRawBytes(php_s.data(),off); // first write the opening tag from the script + php_i->globalInfo(ts); + php_i->downloadStatus(ts); + + TQMap<TQString,TQString>::const_iterator it; + + for ( it = args.begin(); it != args.end(); ++it ) + { + // Check for string delimiters, don't want PHP injection attacks + if (!containsDelimiters(it.key()) && !containsDelimiters(it.data())) + ts << TQString("$_REQUEST['%1']=\"%2\";\n").arg(it.key()).arg(it.data()); + } + ts.writeRawBytes(php_s.data() + off,php_s.size() - off); // the rest of the script + ts << flush; + +#if 0 + TQFile dinges("output.php"); + if (dinges.open(IO_WriteOnly)) + { + TQTextStream out(&dinges); + out.writeRawBytes(data.data(),data.size()); + dinges.close(); + } +#endif + return launch(data); + } + + bool PhpHandler::containsDelimiters(const TQString & str) + { + return str.contains("\"") || str.contains("'"); + } + + void PhpHandler::onExited() + { + // read remaining data + onReadyReadStdout(); + finished(); + } + + void PhpHandler::onReadyReadStdout() + { + TQTextStream out(output,IO_WriteOnly|IO_Append); + while (canReadLineStdout()) + { + TQByteArray d = readStdout(); + out.writeRawBytes(d.data(),d.size()); + } + } + +} + +#include "php_handler.moc" |