1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
|
# Copyright 1999-2005 Gentoo Foundation
# Distributed under the terms of the GNU General Public License v2
# $Header: /var/cvsroot/gentoo-x86/dev-lang/php/php-4.3.11-r5.ebuild,v 1.1 2006/01/04 09:24:47 chtekk Exp $
IUSE="cgi cli discard-path force-cgi-redirect"
KEYWORDS="~alpha ~arm ~ia64 ~s390 ~sparc ~x86"
# NOTE: Portage doesn't support setting PROVIDE based on the USE flags
# that have been enabled, so we have to PROVIDE everything for now
# and hope for the best
#
# This will be sorted out when GLEP 37 is implemented
PROVIDE="virtual/php virtual/httpd-php"
# php package settings
SLOT="4"
MY_PHP_P="php-${PV}"
PHP_PACKAGE=1
# php patch settings
HARDENEDPHP_PATCH="hardening-patch-${PV}-0.4.3-gentoo.patch.gz"
LIB64_PATCH="${PV}/php${PV}-multilib-search-path.patch"
inherit eutils php4_4-sapi apache-module
want_apache
DESCRIPTION="The PHP language runtime engine"
DEPEND="${DEPEND} app-admin/php-toolkit"
RDEPEND="${RDEPEND} app-admin/php-toolkit"
# fixed PCRE library for security issues, bug #102373
SRC_URI="${SRC_URI} http://gentoo.longitekk.com/php-pcrelib-new-secpatch.tar.bz2"
pkg_setup() {
# make sure the user has specified a SAPI
einfo "Determining SAPI(s) to build"
confutils_require_any " Enabled SAPI:" " Disabled SAPI:" cli cgi apache apache2
if useq apache || useq apache2 ; then
if [ "${APACHE_VERSION}" != "0" ] ; then
if ! useq threads ; then
APACHE2_SAFE_MPMS="peruser prefork"
else
APACHE2_SAFE_MPMS="event leader metuxmpm perchild threadpool worker"
fi
ewarn
ewarn "If this package fails with a fatal error about Apache2 not having"
ewarn "been compiled with a compatible MPM, this is normally because you"
ewarn "need to toggle the 'threads' USE flag."
ewarn
ewarn "If 'threads' is off, try switching it on."
ewarn "If 'threads' is on, try switching it off."
ewarn
apache-module_pkg_setup
fi
fi
if useq fastbuild ; then
ewarn
ewarn "'fastbuild' attempts to build all SAPIs in a single pass."
ewarn "This is an experimental feature, which may fail to compile"
ewarn "and may produce PHP binaries which are broken."
ewarn
ewarn "Rebuild without 'fastbuild' and reproduce any bugs before filing"
ewarn "any bugs in Gentoo's Bugzilla or bugs.php.net."
ewarn
fi
php4_4-sapi_pkg_setup
}
src_unpack() {
# custom src_unpack, used only for PHP ebuilds that need additional patches
# normally the eclass src_unpack is used
if [ "${PHP_PACKAGE}" == 1 ] ; then
unpack ${A}
fi
cd "${S}"
# fix PHP branding
sed -e 's|^EXTRA_VERSION=""|EXTRA_VERSION="-pl5-gentoo"|g' -i configure.in
# patch to fix pspell extension, bug #99312 (new patch by upstream)
use spell && epatch "${FILESDIR}/${PV}/php${PV}-pspell-ext-segf.patch"
# patch fo fix safe_mode bypass in CURL extension, bug #111032
use curl && epatch "${FILESDIR}/${PV}/php${PV}-curl-open_basedir.patch"
# fix header injection in mbstring extension
use nls && epatch "${FILESDIR}/${PV}/php${PV}-mbstring-header_inj.patch"
# patch to fix safe_mode bypass in GD extension, bug #109669
if use gd || use gd-external ; then
epatch "${FILESDIR}/${PV}/php${PV}-gd-safe_mode.patch"
fi
# patch open_basedir directory bypass, bug #102943
epatch "${FILESDIR}/${PV}/php${PV}-fopen_wrappers.patch"
# patch $GLOBALS overwrite vulnerability, bug #111011 and bug #111014
epatch "${FILESDIR}/${PV}/php${PV}-globals_overwrite.patch"
# patch phpinfo() XSS vulnerability, bug #111015
epatch "${FILESDIR}/${PV}/php${PV}-phpinfo_xss.patch"
# patch to fix session.save_path segfault and other issues in
# the apache2handler SAPI, bug #107602
epatch "${FILESDIR}/${PV}/php${PV}-apache2sapi.patch"
# patch to fix some issues in the apache SAPI
epatch "${FILESDIR}/${PV}/php${PV}-apachesapi.patch"
# patch to fix PCRE library security issues, bug #102373
epatch "${FILESDIR}/${PV}/php${PV}-pcre-security.patch"
# sobstitute the bundled PCRE library with a fixed version for bug #102373
einfo "Updating bundled PCRE library"
rm -rf "${S}/ext/pcre/pcrelib" && mv -f "${WORKDIR}/pcrelib-new" "${S}/ext/pcre/pcrelib" || die "Unable to update the bundled PCRE library"
# we call the eclass src_unpack, but don't want ${A} to be unpacked again
PHP_PACKAGE=0
php4_4-sapi_src_unpack
PHP_PACKAGE=1
}
php_determine_sapis() {
# holds the list of sapis that we want to build
PHPSAPIS=
if useq cli ; then
PHPSAPIS="${PHPSAPIS} cli"
fi
if useq cgi ; then
PHPSAPIS="${PHPSAPIS} cgi"
fi
# note - we can only build one apache sapi for now
# note - apache SAPI comes after the simpler cli/cgi sapis
if useq apache || useq apache2 ; then
if [ "${APACHE_VERSION}" != "0" ]; then
PHPSAPIS="${PHPSAPIS} apache${APACHE_VERSION}"
fi
fi
}
src_compile() {
if useq fastbuild ; then
src_compile_fastbuild
else
src_compile_normal
fi
}
src_compile_fastbuild() {
php_determine_sapis
build_cli=0
build_cgi=0
build_apache=0
for x in ${PHPSAPIS} ; do
case ${x} in
cli)
build_cli=1
;;
cgi)
build_cgi=1
;;
apache*)
build_apache=1
;;
esac
done
if [[ ${build_cli} = 1 ]] ; then
my_conf="${my_conf} --enable-cli"
else
my_conf="${my_conf} --disable-cli"
fi
if [[ ${build_cgi} = 1 ]] ; then
my_conf="${my_conf} --enable-cgi --enable-fastcgi"
enable_extension_enable "discard-path" "discard-path" 0
enable_extension_enable "force-cgi-redirect" "force-cgi-redirect" 0
else
my_conf="${my_conf} --disable-cgi"
fi
if [[ ${build_apache} = 1 ]] ; then
my_conf="${my_conf} --with-apxs${USE_APACHE2}=/usr/sbin/apxs${USE_APACHE2}"
fi
# now we know what we are building, build it
php4_4-sapi_src_compile
# to keep the separate php.ini files for each SAPI, we change the
# build-defs.h and recompile
if [[ ${build_cli} = 1 ]] ; then
einfo
einfo "Building CLI SAPI"
einfo
sed -e 's|^#define PHP_CONFIG_FILE_PATH.*|#define PHP_CONFIG_FILE_PATH "/etc/php/cli-php4"|g;' -i main/build-defs.h
sed -e 's|^#define PHP_CONFIG_FILE_SCAN_DIR.*|#define PHP_CONFIG_FILE_SCAN_DIR "/etc/php/cli-php4/ext-active"|g;' -i main/build-defs.h
for x in main/main.o main/main.lo main/php_ini.o main/php_ini.lo ; do
[[ -f ${x} ]] && rm -f ${x}
done
make sapi/cli/php || die "Unable to make CLI SAPI"
cp sapi/cli/php php-cli || die "Unable to copy CLI SAPI"
fi
if [[ ${build_cgi} = 1 ]] ; then
einfo
einfo "Building CGI SAPI"
einfo
sed -e 's|^#define PHP_CONFIG_FILE_PATH.*|#define PHP_CONFIG_FILE_PATH "/etc/php/cgi-php4"|g;' -i main/build-defs.h
sed -e 's|^#define PHP_CONFIG_FILE_SCAN_DIR.*|#define PHP_CONFIG_FILE_SCAN_DIR "/etc/php/cgi-php4/ext-active"|g;' -i main/build-defs.h
for x in main/main.o main/main.lo main/php_ini.o main/php_ini.lo ; do
[[ -f ${x} ]] && rm -f ${x}
done
make sapi/cgi/php || die "Unable to make CGI SAPI"
cp sapi/cgi/php php-cgi || die "Unable to copy CGI SAPI"
fi
if [[ ${build_apache} = 1 ]] ; then
einfo
einfo "Building apache${USE_APACHE2} SAPI"
einfo
sed -e "s|^#define PHP_CONFIG_FILE_PATH.*|#define PHP_CONFIG_FILE_PATH \"/etc/php/apache${APACHE_VERSION}-php4\"|g;" -i main/build-defs.h
sed -e "s|^#define PHP_CONFIG_FILE_SCAN_DIR.*|#define PHP_CONFIG_FILE_SCAN_DIR \"/etc/php/apache${APACHE_VERSION}-php4/ext-active\"|g;" -i main/build-defs.h
for x in main/main.o main/main.lo main/php_ini.o main/php_ini.lo ; do
[[ -f ${x} ]] && rm -f ${x}
done
make || die "Unable to build mod_php"
fi
}
src_compile_normal() {
php_determine_sapis
CLEAN_REQUIRED=0
for x in ${PHPSAPIS} ; do
if [ "${CLEAN_REQUIRED}" = 1 ]; then
make clean
# echo > /dev/null
fi
PHPSAPI=${x}
case ${x} in
cli)
my_conf="--enable-cli --disable-cgi"
php4_4-sapi_src_compile
cp sapi/cli/php php-cli
;;
cgi)
my_conf="${orig_conf} --disable-cli --enable-cgi --enable-fastcgi"
enable_extension_enable "discard-path" "discard-path" 0
enable_extension_enable "force-cgi-redirect" "force-cgi-redirect" 0
php4_4-sapi_src_compile
cp sapi/cgi/php php-cgi
;;
apache*)
my_conf="${orig_conf} --disable-cli --with-apxs${USE_APACHE2}=/usr/sbin/apxs${USE_APACHE2}"
php4_4-sapi_src_compile
;;
esac
CLEAN_REQUIRED=1
done
}
src_install() {
php_determine_sapis
destdir=/usr/$(get_libdir)/php4
# let the eclass do the heavy lifting
php4_4-sapi_src_install
einfo
einfo "Installing SAPI(s) ${PHPSAPIS}"
einfo
for x in ${PHPSAPIS} ; do
PHPSAPI=${x}
case ${x} in
cli)
einfo "Installing CLI SAPI"
into ${destdir}
newbin php-cli php || die "Unable to install ${x} sapi"
php4_4-sapi_install_ini
;;
cgi)
einfo "Installing CGI SAPI"
into ${destdir}
dobin php-cgi || die "Unable to install ${x} sapi"
php4_4-sapi_install_ini
;;
apache*)
einfo "Installing apache${USE_APACHE2} SAPI"
make INSTALL_ROOT="${D}" install-sapi || die "Unable to install ${x} SAPI"
if [ -n "${USE_APACHE2}" ] ; then
einfo "Installing Apache2 config for PHP (70_mod_php.conf)"
insinto ${APACHE_MODULES_CONFDIR}
doins "${FILESDIR}/4-any/apache-2.0/70_mod_php.conf"
else
einfo "Installing Apache config for PHP (70_mod_php.conf)"
insinto ${APACHE_MODULES_CONFDIR}
doins "${FILESDIR}/4-any/apache-1.3/70_mod_php.conf"
fi
php4_4-sapi_install_ini
;;
esac
done
}
pkg_postinst()
{
# Output some general info to the user
if useq apache || useq apache2 ; then
APACHE1_MOD_DEFINE="PHP4"
APACHE1_MOD_CONF="70_mod_php"
APACHE2_MOD_DEFINE="PHP4"
APACHE2_MOD_CONF="70_mod_php"
apache-module_pkg_postinst
fi
php4_4-sapi_pkg_postinst
}
|