Refactor environment loading and handling for FrankenPHP + add more s… by ioaniftimesei · Pull Request #397 · AikidoSec/firewall-php

ioaniftimesei · 2026-02-19T16:18:17Z

…afe-guards for AIKIDO_DISABLE

Summary by Aikido

Security Issues: 0	🔍 Quality Issues: 6	Resolved Issues: 0

⚡ Enhancements

Added system and frankenphp-specific environment fetchers with logging
Added runtime guards to skip processing when AIKIDO_DISABLE was set

🔧 Refactors

Reworked environment loading into prioritized getters and helper functions
Changed initialization to call LoadSystemEnvironment during MINIT
Bumped library version constants to 1.5.2 across codebase
Added missing include for vector and minor include reordering

^{More info}

…afe-guards for AIKIDO_DISABLE

lib/php-extension/Environment.cpp

lib/php-extension/HandleFileCompilation.cpp

tudor-timcu · 2026-02-20T06:37:09Z

lib/php-extension/Environment.cpp

@@ -185,12 +190,16 @@ bool GetBoolFromString(const std::string& env, bool default_value) {
    return default_value;
 }



Let's rename this function to GetEnvBoolWithAllGetters or smth like this so it's more explicit what it does. Can remove the comment from the Includes.h after that.

aikido-pr-checks · 2026-02-20T13:21:41Z

lib/php-extension/RequestProcessor.cpp

    std::string sapiName = sapi_module.name;

+    if (sapiName == "frankenphp") {
+        if (GetEnvBoolWithAllGetters("FRANKENPHP_WORKER", false)) {


Calling GetEnvBoolWithAllGetters("FRANKENPHP_WORKER", ...) here can dereference AIKIDO_GLOBAL(server) via GetFrankenEnvVariable before server is initialized; guard AIKIDO_GLOBAL(server) or delay this check.

Details

✨ AI Reasoning
The code attempts to detect a FrankenPHP warm-up request by calling GetEnvBoolWithAllGetters("FRANKENPHP_WORKER", false) early in RequestProcessor::RequestInit. GetEnvBoolWithAllGetters uses the complete set of getters including GetFrankenEnvVariable, which calls AIKIDO_GLOBAL(server).GetVar. Because the FRANKENPHP_WORKER check was moved earlier in RequestInit (before environment/server-related initialization and before LoadEnvironment/LoadLaravelEnvFile), AIKIDO_GLOBAL(server) may not be initialized yet, leading to dereferencing an uninitialized or null server object and causing a segmentation fault. This regression was introduced by moving the FRANKENPHP_WORKER check to earlier lines and by using the "all getters" helper at that point.

🔧 How do I fix it?
Add null checks before dereferencing pointers, validate array bounds before access, avoid using pointers after free/delete, don't write to string literals, and prefer smart pointers in modern C++.

_{Reply @AikidoSec feedback: [FEEDBACK] to get better review comments in the future.}
_{Reply @AikidoSec ignore: [REASON] to ignore this issue.}
_{More info}

Refactor environment loading and handling for FrankenPHP + add more s…

b21817c

…afe-guards for AIKIDO_DISABLE