Added missing safe_mode & open_basedir checks.

author: Ilia Alshanetsky <iliaa@php.net> 2005-04-17 18:05:03 +0000
committer: Ilia Alshanetsky <iliaa@php.net> 2005-04-17 18:05:03 +0000
commit: 6de75a77c671e3a0971ffa896018025af114a42a (patch)
tree: 9008ca2785a25155cc1f060ee0845511cfc42b3d /ext/xmlreader/php_xmlreader.c
parent: 87c931695f0157d307f4706be0c916bff0a9c39b (diff)
download: php-git-6de75a77c671e3a0971ffa896018025af114a42a.tar.gz
1 files changed, 8 insertions, 0 deletions
diff --git a/ext/xmlreader/php_xmlreader.c b/ext/xmlreader/php_xmlreader.c
index 191f878c91..1de031aa51 100644
--- a/ext/xmlreader/php_xmlreader.c
+++ b/ext/xmlreader/php_xmlreader.c
@@ -229,6 +229,14 @@ char *_xmlreader_get_valid_file_path(char *source, char *resolved_path, int reso
 
 	xmlFreeURI(uri);
 
+	if (PG(safe_mode) && (!php_checkuid(file_dest, NULL, CHECKUID_CHECK_FILE_AND_DIR))) {
+		return NULL;
+	}
+
+	if (php_check_open_basedir(file_dest TSRMLS_CC)) {
+		return NULL;
+	}
+
 	return file_dest;
 }
author	Ilia Alshanetsky <iliaa@php.net>	2005-04-17 18:05:03 +0000
committer	Ilia Alshanetsky <iliaa@php.net>	2005-04-17 18:05:03 +0000
commit	6de75a77c671e3a0971ffa896018025af114a42a (patch)
tree	9008ca2785a25155cc1f060ee0845511cfc42b3d /ext/xmlreader/php_xmlreader.c
parent	87c931695f0157d307f4706be0c916bff0a9c39b (diff)
download	php-git-6de75a77c671e3a0971ffa896018025af114a42a.tar.gz