forked from SimpleMachines/SMF
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathSession.php
245 lines (207 loc) · 7.33 KB
/
Session.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
<?php
/**
* Implementation of PHP's session API.
* What it does:
* - it handles the session data in the database (more scalable.)
* - it uses the databaseSession_lifetime setting for garbage collection.
* - the custom session handler is set by loadSession().
*
* Simple Machines Forum (SMF)
*
* @package SMF
* @author Simple Machines https://www.simplemachines.org
* @copyright 2022 Simple Machines and individual contributors
* @license https://www.simplemachines.org/about/smf/license.php BSD
*
* @version 2.1.0
*/
if (!defined('SMF'))
die('No direct access...');
/**
* Attempt to start the session, unless it already has been.
*/
function loadSession()
{
global $modSettings, $boardurl, $sc, $smcFunc, $cache_enable;
// Attempt to change a few PHP settings.
@ini_set('session.use_cookies', true);
@ini_set('session.use_only_cookies', false);
@ini_set('url_rewriter.tags', '');
@ini_set('session.use_trans_sid', false);
@ini_set('arg_separator.output', '&');
// Allows mods to change/add PHP settings
call_integration_hook('integrate_load_session');
if (!empty($modSettings['globalCookies']))
{
$parsed_url = parse_iri($boardurl);
if (preg_match('~^\d{1,3}(\.\d{1,3}){3}$~', $parsed_url['host']) == 0 && preg_match('~(?:[^\.]+\.)?([^\.]{2,}\..+)\z~i', $parsed_url['host'], $parts) == 1)
@ini_set('session.cookie_domain', '.' . $parts[1]);
}
// @todo Set the session cookie path?
// If it's already been started... probably best to skip this.
if ((ini_get('session.auto_start') == 1 && !empty($modSettings['databaseSession_enable'])) || session_id() == '')
{
// Attempt to end the already-started session.
if (ini_get('session.auto_start') == 1)
session_write_close();
// This is here to stop people from using bad junky PHPSESSIDs.
if (isset($_REQUEST[session_name()]) && preg_match('~^[A-Za-z0-9,-]{16,64}$~', $_REQUEST[session_name()]) == 0 && !isset($_COOKIE[session_name()]))
{
$session_id = md5(md5('smf_sess_' . time()) . $smcFunc['random_int']());
$_REQUEST[session_name()] = $session_id;
$_GET[session_name()] = $session_id;
$_POST[session_name()] = $session_id;
}
// Use database sessions? (they don't work in 4.1.x!)
if (!empty($modSettings['databaseSession_enable']))
{
@ini_set('session.serialize_handler', 'php_serialize');
if (ini_get('session.serialize_handler') != 'php_serialize')
@ini_set('session.serialize_handler', 'php');
session_set_save_handler('sessionOpen', 'sessionClose', 'sessionRead', 'sessionWrite', 'sessionDestroy', 'sessionGC');
@ini_set('session.gc_probability', '1');
}
elseif (ini_get('session.gc_maxlifetime') <= 1440 && !empty($modSettings['databaseSession_lifetime']))
@ini_set('session.gc_maxlifetime', max($modSettings['databaseSession_lifetime'], 60));
// Use cache setting sessions?
if (empty($modSettings['databaseSession_enable']) && !empty($cache_enable) && php_sapi_name() != 'cli')
call_integration_hook('integrate_session_handlers');
session_start();
// Change it so the cache settings are a little looser than default.
if (!empty($modSettings['databaseSession_loose']))
header('cache-control: private');
}
// Set the randomly generated code.
if (!isset($_SESSION['session_var']))
{
$_SESSION['session_value'] = md5(session_id() . $smcFunc['random_int']());
$_SESSION['session_var'] = substr(preg_replace('~^\d+~', '', sha1($smcFunc['random_int']() . session_id() . $smcFunc['random_int']())), 0, $smcFunc['random_int'](7, 12));
}
$sc = $_SESSION['session_value'];
}
/**
* Implementation of sessionOpen() replacing the standard open handler.
* It simply returns true.
*
* @param string $save_path The path to save the session to
* @param string $session_name The name of the session
* @return boolean Always returns true
*/
function sessionOpen($save_path, $session_name)
{
return true;
}
/**
* Implementation of sessionClose() replacing the standard close handler.
* It simply returns true.
*
* @return boolean Always returns true
*/
function sessionClose()
{
return true;
}
/**
* Implementation of sessionRead() replacing the standard read handler.
*
* @param string $session_id The session ID
* @return string The session data
*/
function sessionRead($session_id)
{
global $smcFunc;
if (preg_match('~^[A-Za-z0-9,-]{16,64}$~', $session_id) == 0)
return '';
// Look for it in the database.
$result = $smcFunc['db_query']('', '
SELECT data
FROM {db_prefix}sessions
WHERE session_id = {string:session_id}
LIMIT 1',
array(
'session_id' => $session_id,
)
);
list ($sess_data) = $smcFunc['db_fetch_row']($result);
$smcFunc['db_free_result']($result);
return $sess_data != null ? $sess_data : '';
}
/**
* Implementation of sessionWrite() replacing the standard write handler.
*
* @param string $session_id The session ID
* @param string $data The data to write to the session
* @return boolean Whether the info was successfully written
*/
function sessionWrite($session_id, $data)
{
global $smcFunc, $db_connection, $db_server, $db_name, $db_user, $db_passwd;
global $db_prefix, $db_persist, $db_port, $db_mb4;
if (preg_match('~^[A-Za-z0-9,-]{16,64}$~', $session_id) == 0)
return false;
// php < 7.0 need this
if (empty($db_connection))
{
$db_options = array();
// Add in the port if needed
if (!empty($db_port))
$db_options['port'] = $db_port;
if (!empty($db_mb4))
$db_options['db_mb4'] = $db_mb4;
$options = array_merge($db_options, array('persist' => $db_persist, 'dont_select_db' => SMF == 'SSI'));
$db_connection = smf_db_initiate($db_server, $db_name, $db_user, $db_passwd, $db_prefix, $options);
}
// If an insert fails due to a dupe, replace the existing session...
$session_update = $smcFunc['db_insert']('replace',
'{db_prefix}sessions',
array('session_id' => 'string', 'data' => 'string', 'last_update' => 'int'),
array($session_id, $data, time()),
array('session_id')
);
return ($smcFunc['db_affected_rows']() == 0 ? false : true);
}
/**
* Implementation of sessionDestroy() replacing the standard destroy handler.
*
* @param string $session_id The session ID
* @return boolean Whether the session was successfully destroyed
*/
function sessionDestroy($session_id)
{
global $smcFunc;
if (preg_match('~^[A-Za-z0-9,-]{16,64}$~', $session_id) == 0)
return false;
// Just delete the row...
$smcFunc['db_query']('', '
DELETE FROM {db_prefix}sessions
WHERE session_id = {string:session_id}',
array(
'session_id' => $session_id,
)
);
return true;
}
/**
* Implementation of sessionGC() replacing the standard gc handler.
* Callback for garbage collection.
*
* @param int $max_lifetime The maximum lifetime (in seconds) - prevents deleting of sessions older than this
* @return boolean Whether the option was successful
*/
function sessionGC($max_lifetime)
{
global $modSettings, $smcFunc;
// Just set to the default or lower? Ignore it for a higher value. (hopefully)
if (!empty($modSettings['databaseSession_lifetime']) && ($max_lifetime <= 1440 || $modSettings['databaseSession_lifetime'] > $max_lifetime))
$max_lifetime = max($modSettings['databaseSession_lifetime'], 60);
// Clean up after yerself ;).
$session_update = $smcFunc['db_query']('', '
DELETE FROM {db_prefix}sessions
WHERE last_update < {int:last_update}',
array(
'last_update' => time() - $max_lifetime,
)
);
return ($smcFunc['db_affected_rows']() == 0 ? false : true);
}
?>