Expand PHP interception to Windows, moving shared logic into PHP

Author: pimterry

src/interceptors/terminal-wrappers/build-php-config.php

@@ -0,0 +1,62 @@
+<?php
+
+/*
+When run by php, this file grabs the current php.ini config,
+writes a new temporary one to disk that trusts your local
+HTTP Toolkit CA certificate, and then logs the path of that.
+
+If future PHP instances are started with PHPRC=[that path],
+then they'll start exactly the same way as normal, except
+they'll automatically trust the certificate.
+*/
+
+// PHP has ini reading built in, but not writing.
+// From https://gist.github.com/edvardHua/a9830a68ae68f57cd892a8a2903a1fb4
+function write_ini_file($assoc_arr, $path) {
+    $content = "";
+    foreach ($assoc_arr as $key => $elem) {
+        $content .= "[" . $key . "]\n";
+        foreach ($elem as $key2 => $elem2) {
+            if (is_array($elem2)) {
+                for ($i = 0; $i < count($elem2); $i++) {
+                    $content .= $key2 . "[] = \"" . $elem2[$i] . "\"\n";
+                }
+            } else if ($elem2 == "") {
+                $content .= $key2 . " = \n";
+            } else {
+                $content .= $key2 . " = \"" . $elem2 . "\"\n";
+            }
+        }
+    }
+    if (!$handle = fopen($path, 'w')) {
+        return false;
+    }
+    if (!fwrite($handle, $content)) {
+        return false;
+    }
+    fclose($handle);
+    return true;
+}
+
+// Get the contents of the current config file
+$phpIniLocation = php_ini_loaded_file();
+if ($phpIniLocation) {
+    $phpIniContents = parse_ini_file($phpIniLocation, true);
+} else {
+    $phpIniContents = array();
+}
+
+// Edit the config to trust our HTTPS certificate
+if ($phpIniContents['openssl']) {
+    $phpIniContents['openssl']['openssl.cafile'] = getenv('SSL_CERT_FILE');
+} else {
+    $phpIniContents['openssl'] = array('openssl.cafile' => getenv('SSL_CERT_FILE'));
+}
+
+// Create a new config file that the real PHP instance will use
+$newPhpIni = tempnam(sys_get_temp_dir(), 'httptoolkit-php.ini');
+write_ini_file($phpIniContents, $newPhpIni);
+
+// Log the new config path to use
+echo $newPhpIni;
+?>

src/interceptors/terminal-wrappers/php

@@ -1,29 +1,12 @@
 #!/usr/bin/env bash
+set -e
 
 # Exclude ourselves from PATH within this script, to avoid recursing
 PATH="${PATH/`dirname $0`:/}"
 
-# Get the php.ini that would be used
-PHP_INI_LOCATION=`php -r 'echo php_ini_loaded_file();'`
-
-# Create a temp directory, and ensure it's cleaned up afterwards
-PHP_INI_OVERRIDE_DIR=$(mktemp -d)
-trap "rm -rf $PHP_INI_OVERRIDE_DIR" EXIT
-
-# Copy the existing php.ini, and set PHPRC so our new copy is used
-export PHPRC=$PHP_INI_OVERRIDE_DIR/php.ini
-cp $PHP_INI_LOCATION $PHPRC
-
-# Ensure the temporary php.ini trusts the HTTP Toolkit certificate
-if grep -q 'openssl.cafile=' $PHPRC; then
-    # If there's an openssl.cafile line (commented or not), enable & set it
-    sed -i -e "s/;\?openssl.cafile=.*/openssl.cafile=${SSL_CERT_FILE//\//\\/}/" $PHPRC
-elif grep -q '\[openssl\]' $PHPRC; then
-    # If not, but there's an [openssl] section, add the setting there
-    sed -i -e "s/\[openssl\]/[openssl]\nopenssl.cafile=${SSL_CERT_FILE//\//\\/}/" $PHPRC
-else
-    # If that's missing too, add it ourselves
-    printf "\n[openssl]\nopenssl.cafile=$SSL_CERT_FILE" >> $PHPRC
-fi
+# Build a new PHP config that trusts our certificate, and use PHPRC
+# to ensure that the next php command uses it.
+export PHPRC=`php $(dirname $0)/build-php-config.php`
 
+# Pass everything through to PHP (but now using our tweaked config)
 php "$@"

src/interceptors/terminal-wrappers/php.bat

@@ -0,0 +1,19 @@
+@echo off
+SETLOCAL
+
+REM Exclude ourselves from PATH within this script, to avoid recursing
+set ORIGINALPATH=%PATH%
+REM Get the current file's folder
+set THIS_PATH=%~dp0
+REM Strip the trailing slash from the folder
+set WRAPPER_FOLDER=%THIS_PATH:~0,-1%
+REM Remove that folder from PATH
+call set PATH=%%PATH:%WRAPPER_FOLDER%;=%%
+
+REM Create a php.ini that trusts our cert, and set the path in PHPRC so PHP uses it
+FOR /F "tokens=* USEBACKQ" %%F IN (`php %WRAPPER_FOLDER%\build-php-config.php`) DO (
+    SET PHPRC=%%F
+)
+
+REM Start PHP for real (but now using our tweaked config)
+php %*