blob: ab54f029f7476ae69ba790dc8a5daf8527f68296 [file] [log] [blame]
Andrey Andreevc9eface2014-09-02 15:19:01 +03001<?php
2/**
3 * CodeIgniter
4 *
Andrey Andreevbf6b11d2015-01-12 17:27:12 +02005 * An open source application development framework for PHP
Andrey Andreevc9eface2014-09-02 15:19:01 +03006 *
Andrey Andreev46f2f262014-11-11 14:37:51 +02007 * This content is released under the MIT License (MIT)
Andrey Andreevc9eface2014-09-02 15:19:01 +03008 *
Instructor, BCIT0e59db62019-01-01 08:34:36 -08009 * Copyright (c) 2014 - 2019, British Columbia Institute of Technology
Andrey Andreevc9eface2014-09-02 15:19:01 +030010 *
Andrey Andreev46f2f262014-11-11 14:37:51 +020011 * Permission is hereby granted, free of charge, to any person obtaining a copy
12 * of this software and associated documentation files (the "Software"), to deal
13 * in the Software without restriction, including without limitation the rights
14 * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
15 * copies of the Software, and to permit persons to whom the Software is
16 * furnished to do so, subject to the following conditions:
Andrey Andreevc9eface2014-09-02 15:19:01 +030017 *
Andrey Andreev46f2f262014-11-11 14:37:51 +020018 * The above copyright notice and this permission notice shall be included in
19 * all copies or substantial portions of the Software.
20 *
21 * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
22 * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
23 * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
24 * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
25 * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
26 * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN
27 * THE SOFTWARE.
28 *
29 * @package CodeIgniter
30 * @author EllisLab Dev Team
Andrey Andreev1924e872016-01-11 12:55:34 +020031 * @copyright Copyright (c) 2008 - 2014, EllisLab, Inc. (https://ellislab.com/)
Instructor, BCIT0e59db62019-01-01 08:34:36 -080032 * @copyright Copyright (c) 2014 - 2019, British Columbia Institute of Technology (https://bcit.ca/)
33 * @license https://opensource.org/licenses/MIT MIT License
Andrey Andreevbd202c92016-01-11 12:50:18 +020034 * @link https://codeigniter.com
Andrey Andreev46f2f262014-11-11 14:37:51 +020035 * @since Version 3.0.0
Andrey Andreevc9eface2014-09-02 15:19:01 +030036 * @filesource
37 */
38defined('BASEPATH') OR exit('No direct script access allowed');
39
40/**
41 * CodeIgniter Session Memcached Driver
42 *
Andrey Andreev46f2f262014-11-11 14:37:51 +020043 * @package CodeIgniter
Andrey Andreevc9eface2014-09-02 15:19:01 +030044 * @subpackage Libraries
45 * @category Sessions
Andrey Andreev46f2f262014-11-11 14:37:51 +020046 * @author Andrey Andreev
Andrey Andreevbd202c92016-01-11 12:50:18 +020047 * @link https://codeigniter.com/user_guide/libraries/sessions.html
Andrey Andreevc9eface2014-09-02 15:19:01 +030048 */
49class CI_Session_memcached_driver extends CI_Session_driver implements SessionHandlerInterface {
50
51 /**
Andrey Andreevc9eface2014-09-02 15:19:01 +030052 * Memcached instance
53 *
54 * @var Memcached
55 */
56 protected $_memcached;
57
58 /**
59 * Key prefix
60 *
61 * @var string
62 */
63 protected $_key_prefix = 'ci_session:';
64
65 /**
66 * Lock key
67 *
68 * @var string
69 */
70 protected $_lock_key;
71
72 // ------------------------------------------------------------------------
73
74 /**
75 * Class constructor
76 *
77 * @param array $params Configuration parameters
78 * @return void
79 */
80 public function __construct(&$params)
81 {
82 parent::__construct($params);
83
Andrey Andreevdfb39be2014-10-06 01:50:14 +030084 if (empty($this->_config['save_path']))
Andrey Andreevc9eface2014-09-02 15:19:01 +030085 {
86 log_message('error', 'Session: No Memcached save path configured.');
87 }
88
Andrey Andreevdfb39be2014-10-06 01:50:14 +030089 if ($this->_config['match_ip'] === TRUE)
Andrey Andreevc9eface2014-09-02 15:19:01 +030090 {
91 $this->_key_prefix .= $_SERVER['REMOTE_ADDR'].':';
92 }
93 }
94
95 // ------------------------------------------------------------------------
96
Andrey Andreev10411fc2015-01-19 13:54:53 +020097 /**
98 * Open
99 *
100 * Sanitizes save_path and initializes connections.
101 *
102 * @param string $save_path Server path(s)
103 * @param string $name Session cookie name, unused
104 * @return bool
105 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300106 public function open($save_path, $name)
107 {
108 $this->_memcached = new Memcached();
Andrey Andreev4f502562014-11-10 19:18:33 +0200109 $this->_memcached->setOption(Memcached::OPT_BINARY_PROTOCOL, TRUE); // required for touch() usage
Andrey Andreevc9eface2014-09-02 15:19:01 +0300110 $server_list = array();
111 foreach ($this->_memcached->getServerList() as $server)
112 {
113 $server_list[] = $server['host'].':'.$server['port'];
114 }
115
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300116 if ( ! preg_match_all('#,?([^,:]+)\:(\d{1,5})(?:\:(\d+))?#', $this->_config['save_path'], $matches, PREG_SET_ORDER))
Andrey Andreevc9eface2014-09-02 15:19:01 +0300117 {
118 $this->_memcached = NULL;
Andrey Andreevdfb39be2014-10-06 01:50:14 +0300119 log_message('error', 'Session: Invalid Memcached save path format: '.$this->_config['save_path']);
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200120 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300121 }
122
123 foreach ($matches as $match)
124 {
125 // If Memcached already has this server (or if the port is invalid), skip it
126 if (in_array($match[1].':'.$match[2], $server_list, TRUE))
127 {
128 log_message('debug', 'Session: Memcached server pool already has '.$match[1].':'.$match[2]);
129 continue;
130 }
131
132 if ( ! $this->_memcached->addServer($match[1], $match[2], isset($match[3]) ? $match[3] : 0))
133 {
134 log_message('error', 'Could not add '.$match[1].':'.$match[2].' to Memcached server pool.');
135 }
136 else
137 {
Andrey Andreeva8f29f92014-11-10 18:55:55 +0200138 $server_list[] = $match[1].':'.$match[2];
Andrey Andreevc9eface2014-09-02 15:19:01 +0300139 }
140 }
141
142 if (empty($server_list))
143 {
144 log_message('error', 'Session: Memcached server pool is empty.');
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200145 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300146 }
147
Andrey Andreeva9da3dd2018-06-12 16:40:12 +0300148 $this->php5_validate_id();
149
Andrey Andreevaf849692015-12-12 14:07:39 +0200150 return $this->_success;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300151 }
152
153 // ------------------------------------------------------------------------
154
Andrey Andreev10411fc2015-01-19 13:54:53 +0200155 /**
156 * Read
157 *
158 * Reads session data and acquires a lock
159 *
160 * @param string $session_id Session ID
161 * @return string Serialized session data
162 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300163 public function read($session_id)
164 {
165 if (isset($this->_memcached) && $this->_get_lock($session_id))
166 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200167 // Needed by write() to detect session_regenerate_id() calls
168 $this->_session_id = $session_id;
169
Andrey Andreevc9eface2014-09-02 15:19:01 +0300170 $session_data = (string) $this->_memcached->get($this->_key_prefix.$session_id);
171 $this->_fingerprint = md5($session_data);
172 return $session_data;
173 }
174
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200175 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300176 }
177
Andrey Andreev10411fc2015-01-19 13:54:53 +0200178 // ------------------------------------------------------------------------
179
180 /**
181 * Write
182 *
183 * Writes (create / update) session data
184 *
185 * @param string $session_id Session ID
186 * @param string $session_data Serialized session data
187 * @return bool
188 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300189 public function write($session_id, $session_data)
190 {
Andrey Andreev62769262016-11-29 15:30:30 +0200191 if ( ! isset($this->_memcached, $this->_lock_key))
Andrey Andreev7474a672014-10-31 23:35:32 +0200192 {
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200193 return $this->_fail();
Andrey Andreev7474a672014-10-31 23:35:32 +0200194 }
195 // Was the ID regenerated?
196 elseif ($session_id !== $this->_session_id)
197 {
198 if ( ! $this->_release_lock() OR ! $this->_get_lock($session_id))
199 {
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200200 return $this->_fail();
Andrey Andreev7474a672014-10-31 23:35:32 +0200201 }
202
203 $this->_fingerprint = md5('');
204 $this->_session_id = $session_id;
205 }
206
Andrey Andreev62769262016-11-29 15:30:30 +0200207 $key = $this->_key_prefix.$session_id;
208
209 $this->_memcached->replace($this->_lock_key, time(), 300);
210 if ($this->_fingerprint !== ($fingerprint = md5($session_data)))
Andrey Andreevc9eface2014-09-02 15:19:01 +0300211 {
Andrey Andreev62769262016-11-29 15:30:30 +0200212 if ($this->_memcached->set($key, $session_data, $this->_config['expiration']))
Andrey Andreevc9eface2014-09-02 15:19:01 +0300213 {
Andrey Andreev62769262016-11-29 15:30:30 +0200214 $this->_fingerprint = $fingerprint;
Andrey Andreeva54a2b92016-02-10 19:55:39 +0200215 return $this->_success;
216 }
Andrey Andreev62769262016-11-29 15:30:30 +0200217
218 return $this->_fail();
219 }
220 elseif (
221 $this->_memcached->touch($key, $this->_config['expiration'])
222 OR ($this->_memcached->getResultCode() === Memcached::RES_NOTFOUND && $this->_memcached->set($key, $session_data, $this->_config['expiration']))
223 )
224 {
225 return $this->_success;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300226 }
227
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200228 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300229 }
230
231 // ------------------------------------------------------------------------
232
Andrey Andreev10411fc2015-01-19 13:54:53 +0200233 /**
234 * Close
235 *
236 * Releases locks and closes connection.
237 *
Gabriel Potkány1fb50002015-02-04 01:45:59 +0100238 * @return bool
Andrey Andreev10411fc2015-01-19 13:54:53 +0200239 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300240 public function close()
241 {
242 if (isset($this->_memcached))
243 {
Andrey Andreev21592212016-02-29 17:38:51 +0200244 $this->_release_lock();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300245 if ( ! $this->_memcached->quit())
246 {
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200247 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300248 }
249
250 $this->_memcached = NULL;
Andrey Andreevaf849692015-12-12 14:07:39 +0200251 return $this->_success;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300252 }
253
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200254 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300255 }
256
257 // ------------------------------------------------------------------------
258
Andrey Andreev10411fc2015-01-19 13:54:53 +0200259 /**
260 * Destroy
261 *
262 * Destroys the current session.
263 *
264 * @param string $session_id Session ID
265 * @return bool
266 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300267 public function destroy($session_id)
268 {
269 if (isset($this->_memcached, $this->_lock_key))
270 {
271 $this->_memcached->delete($this->_key_prefix.$session_id);
Andrey Andreevaf849692015-12-12 14:07:39 +0200272 $this->_cookie_destroy();
273 return $this->_success;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300274 }
275
Andrey Andreeva027a7f2016-03-10 13:59:20 +0200276 return $this->_fail();
Andrey Andreevc9eface2014-09-02 15:19:01 +0300277 }
278
279 // ------------------------------------------------------------------------
280
Andrey Andreev10411fc2015-01-19 13:54:53 +0200281 /**
282 * Garbage Collector
283 *
284 * Deletes expired sessions
285 *
286 * @param int $maxlifetime Maximum lifetime of sessions
287 * @return bool
288 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300289 public function gc($maxlifetime)
290 {
Andrey Andreev7474a672014-10-31 23:35:32 +0200291 // Not necessary, Memcached takes care of that.
Andrey Andreevaf849692015-12-12 14:07:39 +0200292 return $this->_success;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300293 }
294
Andrey Andreeva9da3dd2018-06-12 16:40:12 +0300295 // --------------------------------------------------------------------
296
297 /**
298 * Validate ID
299 *
300 * Checks whether a session ID record exists server-side,
301 * to enforce session.use_strict_mode.
302 *
303 * @param string $id
304 * @return bool
305 */
Michiel Vugteveend3e92732018-08-07 15:23:21 +0200306 public function validateSessionId($id)
Andrey Andreeva9da3dd2018-06-12 16:40:12 +0300307 {
Andrey Andreev800a20d2018-06-15 13:48:53 +0300308 $this->_memcached->get($this->_key_prefix.$id);
Andrey Andreeva9da3dd2018-06-12 16:40:12 +0300309 return ($this->_memcached->getResultCode() === Memcached::RES_SUCCESS);
310 }
311
Andrey Andreevc9eface2014-09-02 15:19:01 +0300312 // ------------------------------------------------------------------------
313
Andrey Andreev10411fc2015-01-19 13:54:53 +0200314 /**
315 * Get lock
316 *
317 * Acquires an (emulated) lock.
318 *
319 * @param string $session_id Session ID
320 * @return bool
321 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300322 protected function _get_lock($session_id)
323 {
Andrey Andreev79b8a082016-01-07 13:55:21 +0200324 // PHP 7 reuses the SessionHandler object on regeneration,
325 // so we need to check here if the lock key is for the
326 // correct session ID.
327 if ($this->_lock_key === $this->_key_prefix.$session_id.':lock')
Andrey Andreevc9eface2014-09-02 15:19:01 +0300328 {
Andrey Andreevc4de3c22016-02-10 07:41:43 +0200329 if ( ! $this->_memcached->replace($this->_lock_key, time(), 300))
330 {
Andrey Andreev8215e2f2016-02-11 20:30:43 +0200331 return ($this->_memcached->getResultCode() === Memcached::RES_NOTFOUND)
Andrey Andreevfdf4b592017-07-06 11:49:13 +0300332 ? $this->_memcached->add($this->_lock_key, time(), 300)
Andrey Andreevc4de3c22016-02-10 07:41:43 +0200333 : FALSE;
334 }
Andrey Andreev615f3d92018-01-12 12:33:44 +0200335
336 return TRUE;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300337 }
338
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200339 // 30 attempts to obtain a lock, in case another request already has it
Andrey Andreevc9eface2014-09-02 15:19:01 +0300340 $lock_key = $this->_key_prefix.$session_id.':lock';
Andrey Andreevc9eface2014-09-02 15:19:01 +0300341 $attempt = 0;
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200342 do
Andrey Andreevc9eface2014-09-02 15:19:01 +0300343 {
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200344 if ($this->_memcached->get($lock_key))
Andrey Andreevc9eface2014-09-02 15:19:01 +0300345 {
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200346 sleep(1);
Andrey Andreevc9eface2014-09-02 15:19:01 +0300347 continue;
348 }
349
Andrey Andreevfdf4b592017-07-06 11:49:13 +0300350 $method = ($this->_memcached->getResultCode() === Memcached::RES_NOTFOUND) ? 'add' : 'set';
351 if ( ! $this->_memcached->$method($lock_key, time(), 300))
Andrey Andreevc9eface2014-09-02 15:19:01 +0300352 {
353 log_message('error', 'Session: Error while trying to obtain lock for '.$this->_key_prefix.$session_id);
Andrey Andreevc4de3c22016-02-10 07:41:43 +0200354 return FALSE;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300355 }
356
357 $this->_lock_key = $lock_key;
358 break;
359 }
Andrey Andreev73b9e852015-04-30 13:06:40 +0300360 while (++$attempt < 30);
Andrey Andreevc9eface2014-09-02 15:19:01 +0300361
Andrey Andreeve1a5bb32015-03-04 13:33:39 +0200362 if ($attempt === 30)
Andrey Andreevc9eface2014-09-02 15:19:01 +0300363 {
Master Yodac1dc4462015-03-06 22:22:24 -0800364 log_message('error', 'Session: Unable to obtain lock for '.$this->_key_prefix.$session_id.' after 30 attempts, aborting.');
Andrey Andreevc4de3c22016-02-10 07:41:43 +0200365 return FALSE;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300366 }
367
368 $this->_lock = TRUE;
Andrey Andreevc4de3c22016-02-10 07:41:43 +0200369 return TRUE;
Andrey Andreevc9eface2014-09-02 15:19:01 +0300370 }
371
372 // ------------------------------------------------------------------------
373
Andrey Andreev10411fc2015-01-19 13:54:53 +0200374 /**
375 * Release lock
376 *
377 * Releases a previously acquired lock
378 *
379 * @return bool
380 */
Andrey Andreevc9eface2014-09-02 15:19:01 +0300381 protected function _release_lock()
382 {
383 if (isset($this->_memcached, $this->_lock_key) && $this->_lock)
384 {
385 if ( ! $this->_memcached->delete($this->_lock_key) && $this->_memcached->getResultCode() !== Memcached::RES_NOTFOUND)
386 {
Andrey Andreev00025882015-02-11 16:23:46 +0200387 log_message('error', 'Session: Error while trying to free lock for '.$this->_lock_key);
Andrey Andreevc9eface2014-09-02 15:19:01 +0300388 return FALSE;
389 }
390
391 $this->_lock_key = NULL;
392 $this->_lock = FALSE;
393 }
394
395 return TRUE;
396 }
Andrey Andreev62769262016-11-29 15:30:30 +0200397}