(PHP 4, PHP 5)
exec — Execute an external program
$command
[, array &$output
[, int &$return_var
]] )
exec() executes the given
command
.
command
The command that will be executed.
output
If the output
argument is present, then the
specified array will be filled with every line of output from the
command. Trailing whitespace, such as \n, is not
included in this array. Note that if the array already contains some
elements, exec() will append to the end of the array.
If you do not want the function to append elements, call
unset() on the array before passing it to
exec().
return_var
If the return_var
argument is present
along with the output
argument, then the
return status of the executed command will be written to this
variable.
The last line from the result of the command. If you need to execute a command and have all the data from the command passed directly back without any interference, use the passthru() function.
To get the output of the executed command, be sure to set and use the
output
parameter.
Example #1 An exec() example
<?php
// outputs the username that owns the running php/httpd process
// (on a system with the "whoami" executable in the path)
echo exec('whoami');
?>
当用户提供的数据传入此函数,使用 escapeshellarg() 或 escapeshellcmd() 来确保用户欺骗系统从而执行任意命令。
Note:
如何程序使用此函数启动,为了能保持在后台运行,此程序必须将输出重定向到文件或其它输出流。否则会导致 PHP 挂起,直至程序执行结束。
Note: 安全模式 启用时,可仅可用 safe_mode_exec_dir 执行文件。实际上,现在不允许在到可执行的路径中存在 .. 组件。
安全模式 启用时,命令字符串会被 escapeshellcmd() 转换。因此,echo y | echo x 会变成 echo y \| echo x。