wip

iluuu1994 · iluuu1994 · commit cf0657f2ca69 · 2023-04-03T17:52:50.000+02:00
diff --git a/Zend/tests/gh10469.phpt b/Zend/tests/gh10469.phpt
@@ -1,5 +1,7 @@
 --TEST--
 GH-10469: Disallow open_basedir() with parent dir components (..)
+--EXTENSIONS--
+zend_test
 --FILE--
 <?php
 ini_set('open_basedir', __DIR__);
@@ -11,13 +13,16 @@ chdir($tmpDir);
 ini_set('open_basedir', ini_get('open_basedir') . ':.' . DIRECTORY_SEPARATOR . '..');
 ini_set('open_basedir', ini_get('open_basedir') . ':.' . DIRECTORY_SEPARATOR . '..' . DIRECTORY_SEPARATOR);
 ini_set('open_basedir', ini_get('open_basedir') . ':' . DIRECTORY_SEPARATOR . 'a' . DIRECTORY_SEPARATOR);
+ini_set('open_basedir', ini_get('open_basedir') . ':.' . DIRECTORY_SEPARATOR . 'a');
 
 chdir($originalDir);
 var_dump(ini_get('open_basedir'));
+var_dump(get_open_basedir());
 ?>
 --CLEAN--
 <?php
 @rmdir(__DIR__ . '/gh10469_tmp');
 ?>
 --EXPECTF--
 string(%d) "%stests:.%e..:.%e..%e"
+string(%d) "%stests:%stests:%stests%e:%stests%egh10469_tmp%ea"
diff --git a/ext/zend_test/test.c b/ext/zend_test/test.c
@@ -533,6 +533,12 @@ static ZEND_FUNCTION(zend_get_map_ptr_last)
 	RETURN_LONG(CG(map_ptr_last));
 }
 
+static ZEND_FUNCTION(get_open_basedir)
+{
+	ZEND_PARSE_PARAMETERS_NONE();
+	RETURN_STRING(PG(open_basedir));
+}
+
 static zend_object *zend_test_class_new(zend_class_entry *class_type)
 {
 	zend_object *obj = zend_objects_new(class_type);
diff --git a/ext/zend_test/test.stub.php b/ext/zend_test/test.stub.php
@@ -192,6 +192,8 @@ function zend_test_zend_call_stack_use_all(): int {}
     function zend_test_is_string_marked_as_valid_utf8(string $string): bool {}
 
     function zend_get_map_ptr_last(): int {}
+
+    function get_open_basedir(): ?string {}
 }
 
 namespace ZendTestNS {
diff --git a/ext/zend_test/test_arginfo.h b/ext/zend_test/test_arginfo.h
diff --git a/main/fopen_wrappers.c b/main/fopen_wrappers.c
@@ -98,6 +98,7 @@ PHPAPI ZEND_INI_MH(OnUpdateBaseDir)
 		}
 		char resolved_name[MAXPATHLEN + 1];
 		if (expand_filepath(ptr, resolved_name) == NULL) {
+			// efree(pathbuf);
 			smart_str_free(&buf);
 			return FAILURE;
 		}

Original file line number	Diff line number	Diff line change
`@@ -533,6 +533,12 @@ static ZEND_FUNCTION(zend_get_map_ptr_last)`
`533`	`533`	`RETURN_LONG(CG(map_ptr_last));`
`534`	`534`	`}`
`535`	`535`
	`536`	`+static ZEND_FUNCTION(get_open_basedir)`
	`537`	`+{`
	`538`	`+ ZEND_PARSE_PARAMETERS_NONE();`
	`539`	`+ RETURN_STRING(PG(open_basedir));`
	`540`	`+}`
	`541`	`+`
`536`	`542`	`static zend_object zend_test_class_new(zend_class_entry class_type)`
`537`	`543`	`{`
`538`	`544`	`zend_object *obj = zend_objects_new(class_type);`
Original file line number	Diff line number	Diff line change
`@@ -192,6 +192,8 @@ function zend_test_zend_call_stack_use_all(): int {}`
`192`	`192`	`function zend_test_is_string_marked_as_valid_utf8(string $string): bool {}`
`193`	`193`
`194`	`194`	`function zend_get_map_ptr_last(): int {}`
	`195`	`+`
	`196`	`+ function get_open_basedir(): ?string {}`
`195`	`197`	`}`
`196`	`198`
`197`	`199`	`namespace ZendTestNS {`
Original file line number	Diff line number	Diff line change
`@@ -98,6 +98,7 @@ PHPAPI ZEND_INI_MH(OnUpdateBaseDir)`
`98`	`98`	`}`
`99`	`99`	`char resolved_name[MAXPATHLEN + 1];`
`100`	`100`	`if (expand_filepath(ptr, resolved_name) == NULL) {`
	`101`	`+ // efree(pathbuf);`
`101`	`102`	`smart_str_free(&buf);`
`102`	`103`	`return FAILURE;`
`103`	`104`	`}`