Skip to content

Fix #80114: parse_url does not accept URLs with port 0#6152

Closed
cmb69 wants to merge 4 commits intophp:PHP-7.3from
cmb69:cmb/80114
Closed

Fix #80114: parse_url does not accept URLs with port 0#6152
cmb69 wants to merge 4 commits intophp:PHP-7.3from
cmb69:cmb/80114

Conversation

@cmb69
Copy link
Member

@cmb69 cmb69 commented Sep 17, 2020

URIs with a 0 port are generally valid, so parse_url() should
recognize such URIs, but still report the port as missing.

@cmb69
Fix #80114: parse_url does not accept URLs with port 0
0b32baf 
URIs with a 0 port are generally valid, so `parse_url()` should
recognize such URIs, but still report the port as missing.
nikic
nikic reviewed Sep 17, 2020
View reviewed changes
ext/standard/url.c Outdated
port_buf[e - p] = '\0';
port = ZEND_STRTOL(port_buf, NULL, 10);
if (port > 0 && port <= 65535) {
if ((port > 0 && port <= 65535) || (port == 0 && *port_buf == '0' && e - p == 1)) {
Copy link
Member

@nikic nikic Sep 17, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Why the additional checks here? If we accept :001 for other port numbers, I don't think zero should get different treatment than that.

Copy link
Member Author

@cmb69 cmb69 Sep 17, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

The problem is that port==0 also if there is no digit (e.g. http://example.com:foo/). We could drop the e-p==1 check to be more liberal, though.

Copy link

@adirkuhn adirkuhn Sep 17, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Hi, I was just checking how the contributing process with PHP works and found this bug quite interesting for a beginner like me.

Just one question, why not just check if the port >= 0 in this case? In the case that the port is ":foo" I believe it's invalid no? Since the RFC says that the port number should be a decimal number

Copy link
Member Author

@cmb69 cmb69 Sep 17, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

I suggest that you try that change (checking for port >= 0) and run the test in ext/standard/tests/url/ – there'll be several failures; check the *.diff files. :) (Hint: ZEND_STROL() is similar to the (int) cast in PHP: both ignore any trailing garbage.

Copy link

@adirkuhn adirkuhn Sep 18, 2020

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Nice I will try to play a bit with the source code, tks man

@twose
Another way
d081a74 
How about this way, and it also needs to be applied to `//example.com:0`
@cmb69 cmb69 added the Bug label Sep 19, 2020
nikic
nikic approved these changes Sep 20, 2020
View reviewed changes
Copy link
Member

@nikic nikic left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

It might make more sense to add the test to url.inc instead.

@cmb69
Copy link
Member Author

cmb69 commented Sep 20, 2020

Oh, that makes sense. Thanks!

@php-pulls php-pulls closed this in 81b2f3e Sep 20, 2020
@cmb69 cmb69 deleted the cmb/80114 branch September 20, 2020 13:39
@deguif deguif mentioned this pull request Oct 20, 2020
Merged
8 tasks
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Reviewers

@nikic nikic nikic approved these changes

+1 more reviewer

@adirkuhn adirkuhn adirkuhn left review comments

Reviewers whose approvals may not affect merge requirements

Assignees

No one assigned

Labels

Bug

Projects

None yet

Milestone

No milestone

Development

Successfully merging this pull request may close these issues.

4 participants

@cmb69 @nikic @adirkuhn @twose