Bug in PHP4 or stupid mistake from me?

Anon

Hi, in a php4 script I use these lines:

if(!mysql_num_rows($r)) 
	header("Location: $SCRIPT_NAME");

In other words, if the query results in no rows at all, it must reload itself to let the user present a new chance to enter data.

In this case, it's a login script. When the user submits a name and password and it's wrong; the query results in 0 rows, and thus !mysql_num_rows($r) becomes true.

This makes a Windows NT webserver running IIS4 CRASH. Dr. Watson activates and ALL websites running on this webserver are brought down. IIS comes to a complete stop. And a message saying "STACK OVERFLOW" appears.

Is it really that stupid to use the internal PHP variable "script_name" to redirect?

When I used php4isapi.dll this worked fine. Now we are using phpts.exe in CGI mode and it crashes !!

The solution was simple, we replaced "script_name" with the actual script name so:

if(!mysql_num_rows($r)) 
	header("Location: login.php");

This made it work perfectly again and everything run smoothly.

I'd like to know if I actually stumbled upon a real fat bug, or that I'm just plain stupid.

Greetings,
Martin.

Anon

where is $SCRIPT_NAME defined? make sure it is as
$SCRIPT_NAME = "login.php3";

Anon

Yes...
I too would be worried about the scope of the variable $SCRIPT_NAME. Make sure it is within global scope.

Anon

Not your mistake, Martin - I have been wrestling with this exact same problem today, where a script that works fine in ISAPI kills inetinfo when run in CGI.

Again, the problem manifests itself in performing a header redirection in CGI mode. Through tests, I found the following:

header: /myApp/index.php - KILLS IIS
header: http://myserver/myApp/index.php - WORKS FINE

So, it looks like something is going screwy either in PHP or IIS when only the relative path is provided.

I haven't seen any fix for this so I'm currently sticking to ISAPI.