<?php
-/////////////////////////////////////////////////
-// PukiWiki - Yet another WikiWikiWeb clone.
-//
-// $Id: proxy.php,v 1.1 2004/08/01 01:54:35 henoheno Exp $
+// PukiWiki - Yet another WikiWikiWeb clone
+// proxy.php
+// Copyright: 2003-2016 PukiWiki Development Team
+// License: GPL v2 or (at your option) any later version
//
+// HTTP-Proxy related functions
+
+// Max number of 'track' redirection message with 301 or 302 response
+define('PKWK_HTTP_REQUEST_URL_REDIRECT_MAX', 2);
+
+// We also define deprecated function 'http_request' for backward compatibility
+if (!function_exists('http_request')) {
+ // pecl_http extension also have the function named 'http_request'
+ function http_request($url, $method = 'GET', $headers = '',
+ $post = array(), $redirect_max = PKWK_HTTP_REQUEST_URL_REDIRECT_MAX,
+ $content_charset = '') {
+ return pkwk_http_request($url, $method, $headers, $post,
+ $redirect_max, $content_charset);
+ }
+}
/*
- * http_request($url)
- * HTTP¥ê¥¯¥¨¥¹¥È¤òȯ¹Ô¤·¡¢¥Ç¡¼¥¿¤ò¼èÆÀ¤¹¤ë
- * $url : http://¤«¤é»Ï¤Þ¤ëURL(http://user:pass@host:port/path?query)
- * $method : GET, POST, HEAD¤Î¤¤¤º¤ì¤«(¥Ç¥Õ¥©¥ë¥È¤ÏGET)
- * $headers : Ǥ°Õ¤ÎÄɲåإåÀ
- * $post : POST¤Î»þ¤ËÁ÷¿®¤¹¤ë¥Ç¡¼¥¿¤ò³ÊǼ¤·¤¿ÇÛÎó('ÊÑ¿ô̾'=>'ÃÍ')
- * $redirect_max : HTTP redirect¤Î²ó¿ôÀ©¸Â
+ * pkwk_http_request($url)
+ * Get / Send data via HTTP request
+ * $url : URI started with http:// (http://user:pass@host:port/path?query)
+ * $method : GET, POST, or HEAD
+ * $headers : Additional HTTP headers, ended with "\r\n"
+ * $post : An array of data to send via POST method ('key'=>'value')
+ * $redirect_max : Max number of HTTP redirect
+ * $content_charset : Content charset. Use '' or CONTENT_CHARSET
*/
-
-// ¥ê¥À¥¤¥ì¥¯¥È²ó¿ôÀ©¸Â¤Î½é´üÃÍ
-define('HTTP_REQUEST_URL_REDIRECT_MAX',10);
-
-function http_request($url,$method='GET',$headers='',$post=array(),
- $redirect_max=HTTP_REQUEST_URL_REDIRECT_MAX)
+function pkwk_http_request($url, $method = 'GET', $headers = '', $post = array(),
+ $redirect_max = PKWK_HTTP_REQUEST_URL_REDIRECT_MAX, $content_charset = '')
{
- global $proxy_host, $proxy_port;
+ global $use_proxy, $no_proxy, $proxy_host, $proxy_port;
global $need_proxy_auth, $proxy_auth_user, $proxy_auth_pass;
- $rc = array();
+ $rc = array();
$arr = parse_url($url);
- $via_proxy = via_proxy($arr['host']);
+ $via_proxy = $use_proxy ? ! in_the_net($no_proxy, $arr['host']) : FALSE;
// query
- $arr['query'] = isset($arr['query']) ? '?'.$arr['query'] : '';
+ $arr['query'] = isset($arr['query']) ? '?' . $arr['query'] : '';
// port
- $arr['port'] = isset($arr['port']) ? $arr['port'] : 80;
+ $arr['port'] = isset($arr['port']) ? $arr['port'] : 80;
- $url_base = $arr['scheme'].'://'.$arr['host'].':'.$arr['port'];
+ $url_base = $arr['scheme'] . '://' . $arr['host'] . ':' . $arr['port'];
$url_path = isset($arr['path']) ? $arr['path'] : '/';
- $url = ($via_proxy ? $url_base : '').$url_path.$arr['query'];
+ $url = ($via_proxy ? $url_base : '') . $url_path . $arr['query'];
- $query = $method.' '.$url." HTTP/1.0\r\n";
- $query .= "Host: ".$arr['host']."\r\n";
- $query .= "User-Agent: PukiWiki/".S_VERSION."\r\n";
+ $query = $method . ' ' . $url . ' HTTP/1.0' . "\r\n";
+ $query .= 'Host: ' . $arr['host'] . "\r\n";
+ $query .= 'User-Agent: PukiWiki/' . S_VERSION . "\r\n";
- // proxy¤ÎBasicǧ¾Ú
- if ($need_proxy_auth and isset($proxy_auth_user) and isset($proxy_auth_pass))
- {
+ // Basic-auth for HTTP proxy server
+ if ($need_proxy_auth && isset($proxy_auth_user) && isset($proxy_auth_pass))
$query .= 'Proxy-Authorization: Basic '.
- base64_encode($proxy_auth_user.':'.$proxy_auth_pass)."\r\n";
- }
- // Basic ǧ¾ÚÍÑ
- if (isset($arr['user']) and isset($arr['pass']))
- {
+ base64_encode($proxy_auth_user . ':' . $proxy_auth_pass) . "\r\n";
+
+ // (Normal) Basic-auth for remote host
+ if (isset($arr['user']) && isset($arr['pass']))
$query .= 'Authorization: Basic '.
- base64_encode($arr['user'].':'.$arr['pass'])."\r\n";
- }
+ base64_encode($arr['user'] . ':' . $arr['pass']) . "\r\n";
$query .= $headers;
- // POST »þ¤Ï¡¢urlencode ¤·¤¿¥Ç¡¼¥¿¤È¤¹¤ë
- if (strtoupper($method) == 'POST')
- {
+ if (strtoupper($method) == 'POST') {
+ // 'application/x-www-form-urlencoded', especially for TrackBack ping
$POST = array();
- foreach ($post as $name=>$val)
- {
- $POST[] = $name.'='.urlencode($val);
+ foreach ($post as $name=>$val) $POST[] = $name . '=' . urlencode($val);
+ $data = join('&', $POST);
+
+ if (preg_match('/^[a-zA-Z0-9_-]+$/', $content_charset)) {
+ // Legacy but simple
+ $query .= 'Content-Type: application/x-www-form-urlencoded' . "\r\n";
+ } else {
+ // With charset (NOTE: Some implementation may hate this)
+ $query .= 'Content-Type: application/x-www-form-urlencoded' .
+ '; charset=' . strtolower($content_charset) . "\r\n";
}
- $data = join('&',$POST);
- $query .= "Content-Type: application/x-www-form-urlencoded\r\n";
- $query .= 'Content-Length: '.strlen($data)."\r\n";
+
+ $query .= 'Content-Length: ' . strlen($data) . "\r\n";
$query .= "\r\n";
$query .= $data;
- }
- else
- {
+ } else {
$query .= "\r\n";
}
- $errno = 0; $errstr = '';
+ $errno = 0;
+ $errstr = '';
$fp = fsockopen(
$via_proxy ? $proxy_host : $arr['host'],
$via_proxy ? $proxy_port : $arr['port'],
- $errno,$errstr,30);
- if (!$fp)
- {
+ $errno, $errstr, 30);
+ if ($fp === FALSE) {
return array(
- 'query' => $query, // Query String
- 'rc' => $errno, // ¥¨¥é¡¼ÈÖ¹æ
+ 'query' => $query, // Query string
+ 'rc' => $errno, // Error number
'header' => '', // Header
- 'data' => $errstr // ¥¨¥é¡¼¥á¥Ã¥»¡¼¥¸
+ 'data' => $errstr // Error message
);
}
-
fputs($fp, $query);
-
$response = '';
- while (!feof($fp))
- {
- $response .= fread($fp,4096);
- }
+ while (! feof($fp)) $response .= fread($fp, 4096);
fclose($fp);
- $resp = explode("\r\n\r\n",$response,2);
- $rccd = explode(' ',$resp[0],3); // array('HTTP/1.1','200','OK\r\n...')
- $rc = (integer)$rccd[1];
+ $resp = explode("\r\n\r\n", $response, 2);
+ $rccd = explode(' ', $resp[0], 3); // array('HTTP/1.1', '200', 'OK\r\n...')
+ $rc = (integer)$rccd[1];
- // Redirect
- $matches = array();
- switch ($rc)
- {
- case 302: // Moved Temporarily
- case 301: // Moved Permanently
- if (preg_match('/^Location: (.+)$/m',$resp[0],$matches)
- and --$redirect_max > 0)
- {
- $url = trim($matches[1]);
- if (!preg_match('/^https?:\//',$url)) // no scheme
- {
- if ($url{0} != '/') // Relative path
- {
- // to Absolute path
- $url = substr($url_path,0,strrpos($url_path,'/')).'/'.$url;
- }
- // add sheme,host
- $url = $url_base.$url;
- }
- return http_request($url,$method,$headers,$post,$redirect_max);
+ switch ($rc) {
+ case 301: // Moved Permanently
+ case 302: // Moved Temporarily
+ $matches = array();
+ if (preg_match('/^Location: (.+)$/m', $resp[0], $matches)
+ && --$redirect_max > 0)
+ {
+ $url = trim($matches[1]);
+ if (! preg_match('/^https?:\//', $url)) {
+ // Relative path to Absolute
+ if ($url{0} != '/')
+ $url = substr($url_path, 0, strrpos($url_path, '/')) . '/' . $url;
+ $url = $url_base . $url; // Add sheme, host
}
+ // Redirect
+ return pkwk_http_request($url, $method, $headers, $post, $redirect_max);
+ }
}
-
return array(
'query' => $query, // Query String
'rc' => $rc, // Response Code
);
}
-// ¥×¥í¥¥·¤ò·Ðͳ¤¹¤ëɬÍפ¬¤¢¤ë¤«¤É¤¦¤«È½Äê
-function via_proxy($host)
+// Separate IPv4 network-address and its netmask
+define('PKWK_CIDR_NETWORK_REGEX', '/^(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})(?:\/([0-9.]+))?$/');
+
+// Check if the $host is in the specified network(s)
+function in_the_net($networks = array(), $host = '')
{
- global $use_proxy, $no_proxy;
- static $ip_pattern = '/^(\d{1,3}\.\d{1,3}\.\d{1,3}\.\d{1,3})(?:\/(.+))?$/';
+ if (empty($networks) || $host == '') return FALSE;
+ if (! is_array($networks)) $networks = array($networks);
+
+ $matches = array();
- if (!$use_proxy)
- {
- return FALSE;
+ if (preg_match(PKWK_CIDR_NETWORK_REGEX, $host, $matches)) {
+ $ip = $matches[1];
+ } else {
+ $ip = gethostbyname($host); // May heavy
}
- $ip = gethostbyname($host);
$l_ip = ip2long($ip);
- $valid = (is_long($l_ip) and long2ip($l_ip) == $ip); // valid ip address
- $matches = array();
- foreach ($no_proxy as $network)
- {
- if ($valid and preg_match($ip_pattern,$network,$matches))
- {
- $l_net = ip2long($matches[1]);
- $mask = array_key_exists(2,$matches) ? $matches[2] : 32;
- $mask = is_numeric($mask) ?
- pow(2,32) - pow(2,32 - $mask) : // "10.0.0.0/8"
- ip2long($mask); // "10.0.0.0/255.0.0.0"
- if (($l_ip & $mask) == $l_net)
- {
- return FALSE;
- }
- }
- else
- {
- if (preg_match('/'.preg_quote($network,'/').'/',$host))
- {
- return FALSE;
- }
+ foreach ($networks as $network) {
+ if (preg_match(PKWK_CIDR_NETWORK_REGEX, $network, $matches) &&
+ is_long($l_ip) && long2ip($l_ip) == $ip) {
+ // $host seems valid IPv4 address
+ // Sample: '10.0.0.0/8' or '10.0.0.0/255.0.0.0'
+ $l_net = ip2long($matches[1]); // '10.0.0.0'
+ $mask = isset($matches[2]) ? $matches[2] : 32; // '8' or '255.0.0.0'
+ $mask = is_numeric($mask) ?
+ pow(2, 32) - pow(2, 32 - $mask) : // '8' means '8-bit mask'
+ ip2long($mask); // '255.0.0.0' (the same)
+
+ if (($l_ip & $mask) == $l_net) return TRUE;
+ } else {
+ // $host seems not IPv4 address. May be a DNS name like 'foobar.example.com'?
+ foreach ($networks as $network)
+ if (preg_match('/\.?\b' . preg_quote($network, '/') . '$/', $host))
+ return TRUE;
}
}
- return TRUE;
+
+ return FALSE; // Not found
}
-?>