938a8eb347
* Fix parsing of the three major entry points (index.php, api.php, load.php) back to PHP 4.4.9. We don't care what happens if you actually try to run these files on old versions, but the entry files need to parse correctly. * consign /includes/templates/PHP4.php and /includes/templates/NoLocalSettings.php to the fiery pit of hell where they belong. * Prevent loading of any other files for PHP < 5. WebStart.php was rendered unparseable in PHP 4 by the introduction of try/catch blocks in r85327. * Die outright with a pretty error message on PHP < 5.2.3 as well as PHP 4. All versions of PHP below that throw parse errors of various sorts. * Reimplement wfDie() to provide an entry-point-dependent die-with-readable-error-message function (for instance, we want a pretty human-readable page in index.php, something wrapped in CSS/JS /*...*/ comment block in load.php, etc). * Standardise the appearance of the catastrophic errors thrown at the top of the stack with the ones lower down (exception-within-exception, etc). There isn't really a way to do this without duplication, AFAICT.
67 lines
2.3 KiB
PHP
67 lines
2.3 KiB
PHP
<?php
|
|
/**
|
|
* This file is the entry point for the resource loader.
|
|
*
|
|
* This program is free software; you can redistribute it and/or modify
|
|
* it under the terms of the GNU General Public License as published by
|
|
* the Free Software Foundation; either version 2 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License along
|
|
* with this program; if not, write to the Free Software Foundation, Inc.,
|
|
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
|
|
* http://www.gnu.org/copyleft/gpl.html
|
|
*
|
|
* @file
|
|
* @author Roan Kattouw
|
|
* @author Trevor Parscal
|
|
*
|
|
*/
|
|
|
|
// We want error messages to not be interpreted as CSS or JS
|
|
function wfDie( $msg = '' ) {
|
|
header( $_SERVER['SERVER_PROTOCOL'] . ' 500 MediaWiki configuration Error', true, 500 );
|
|
echo "/* $msg */";
|
|
die( 1 );
|
|
}
|
|
|
|
// Die on unsupported PHP versions
|
|
if( !function_exists( 'version_compare' ) || version_compare( phpversion(), '5.2.3' ) < 0 ){
|
|
$version = htmlspecialchars( $wgVersion );
|
|
wfDie( "MediaWiki $version requires at least PHP version 5.2.3." );
|
|
}
|
|
|
|
require ( dirname( __FILE__ ) . '/includes/WebStart.php' );
|
|
wfProfileIn( 'load.php' );
|
|
|
|
// URL safety checks
|
|
//
|
|
// See RawPage.php for details; summary is that MSIE can override the
|
|
// Content-Type if it sees a recognized extension on the URL, such as
|
|
// might be appended via PATH_INFO after 'load.php'.
|
|
//
|
|
// Some resources can contain HTML-like strings (e.g. in messages)
|
|
// which will end up triggering HTML detection and execution.
|
|
//
|
|
if ( $wgRequest->isPathInfoBad() ) {
|
|
wfHttpError( 403, 'Forbidden',
|
|
'Invalid file extension found in PATH_INFO or QUERY_STRING.' );
|
|
return;
|
|
}
|
|
|
|
// Respond to resource loading request
|
|
$resourceLoader = new ResourceLoader();
|
|
$resourceLoader->respond( new ResourceLoaderContext( $resourceLoader, $wgRequest ) );
|
|
|
|
wfProfileOut( 'load.php' );
|
|
wfLogProfilingData();
|
|
|
|
// Shut down the database. foo()->bar() syntax is not supported in PHP4, and this file
|
|
// needs to *parse* in PHP4, although we'll never get down here to worry about = vs =&
|
|
$lb = wfGetLBFactory();
|
|
$lb->shutdown();
|