Merge branch 'PHP-7.4' into PHP-8.0

nikic · nikic · commit ef59d09af06b · 2021-05-20T09:53:25.000+02:00
* PHP-7.4:
  Fix handling of open_basedir that contains cwd
diff --git a/ext/standard/tests/file/open_basedir_cwd_resolve.phpt b/ext/standard/tests/file/open_basedir_cwd_resolve.phpt
@@ -0,0 +1,15 @@
+--TEST--
+CWD on open_basedir should not imply that everything is accessible
+--FILE--
+<?php
+
+$cwd = getcwd();
+ini_set('open_basedir', $cwd);
+var_dump(file_get_contents('/some/path/outside/open/basedir'));
+
+?>
+--EXPECTF--
+Warning: file_get_contents(): open_basedir restriction in effect. File(/some/path/outside/open/basedir) is not within the allowed path(s): (%s) in %s on line %d
+
+Warning: file_get_contents(/some/path/outside/open/basedir): Failed to open stream: Operation not permitted in %s on line %d
+bool(false)
diff --git a/main/fopen_wrappers.c b/main/fopen_wrappers.c
@@ -198,6 +198,10 @@ PHPAPI int php_check_specific_open_basedir(const char *basedir, const char *path
 			path_tmp[path_len - 1] = '\0';
 #endif
 		}
+		if (*path_tmp == '\0') {
+			/* Do not pass an empty string to realpath(), as this will resolve to CWD. */
+			break;
+		}
 		nesting_level++;
 	}
 

Original file line number	Diff line number	Diff line change
`@@ -198,6 +198,10 @@ PHPAPI int php_check_specific_open_basedir(const char basedir, const char path`
`198`	`198`	`path_tmp[path_len - 1] = '\0';`
`199`	`199`	`#endif`
`200`	`200`	`}`
	`201`	`+ if (*path_tmp == '\0') {`
	`202`	`+ /* Do not pass an empty string to realpath(), as this will resolve to CWD. */`
	`203`	`+ break;`
	`204`	`+ }`
`201`	`205`	`nesting_level++;`
`202`	`206`	`}`
`203`	`207`