php-src/main/safe_mode.c
Zeev Suraski 6614e8edb4 - I wrote a long msg but the commit didn't go through.
- So here is the short version:
- a) Start moving to binary opens in Windows
- b) Give checkuid_mode() a small face lift including the fopen-wrappers.c
- The mode to this function should at least be a #define but that is for
- another day. Anyway this whole stuff should be given more face lifts in
- the future.
2000-06-25 17:02:59 +00:00

147 lines
3.8 KiB
C

/*
+----------------------------------------------------------------------+
| PHP version 4.0 |
+----------------------------------------------------------------------+
| Copyright (c) 1997, 1998, 1999, 2000 The PHP Group |
+----------------------------------------------------------------------+
| This source file is subject to version 2.02 of the PHP license, |
| that is bundled with this package in the file LICENSE, and is |
| available at through the world-wide-web at |
| http://www.php.net/license/2_02.txt. |
| If you did not receive a copy of the PHP license and are unable to |
| obtain it through the world-wide-web, please send a note to |
| license@php.net so we can mail you a copy immediately. |
+----------------------------------------------------------------------+
| Authors: Rasmus Lerdorf <rasmus@lerdorf.on.ca> |
+----------------------------------------------------------------------+
*/
/* $Id$ */
#include "php.h"
#include <stdio.h>
#include <stdlib.h>
#if HAVE_UNISTD_H
#include <unistd.h>
#endif
#include <sys/stat.h>
#include "ext/standard/pageinfo.h"
#include "safe_mode.h"
#include "SAPI.h"
/*
* php_checkuid
*
* This function has four modes:
*
* 0 - return invalid (0) if file does not exist
* 1 - return valid (1) if file does not exist
* 2 - if file does not exist, check directory
* 3 - only check directory (needed for mkdir)
*/
PHPAPI int php_checkuid(const char *fn, char *fopen_mode, int mode) {
struct stat sb;
int ret;
long uid=0L, duid=0L;
char *s;
if (!fn) return(0); /* path must be provided */
if (fopen_mode) {
if (fopen_mode[0] == 'r') {
mode = 0;
} else {
mode = 2;
}
}
/*
* If given filepath is a URL, allow - safe mode stuff
* related to URL's is checked in individual functions
*/
if (!strncasecmp(fn,"http://",7) || !strncasecmp(fn,"ftp://",6)) {
return(1);
}
if (mode<3) {
ret = V_STAT(fn,&sb);
if (ret<0 && mode < 2) {
php_error(E_WARNING,"Unable to access %s",fn);
return(mode);
}
if (ret>-1) {
uid=sb.st_uid;
if (uid==php_getuid()) return(1);
}
}
s = strrchr(fn,'/');
/* This loop gets rid of trailing slashes which could otherwise be
* used to confuse the function.
*/
while(s && *(s+1)=='\0' && s>fn) {
*s='\0';
s = strrchr(fn,'/');
}
if (s) {
*s='\0';
ret = V_STAT(fn,&sb);
*s='/';
if (ret<0) {
php_error(E_WARNING, "Unable to access %s",fn);
return(0);
}
duid = sb.st_uid;
} else {
s = emalloc(MAXPATHLEN+1);
if (!V_GETCWD(s,MAXPATHLEN)) {
php_error(E_WARNING, "Unable to access current working directory");
return(0);
}
ret = V_STAT(s,&sb);
efree(s);
if (ret<0) {
php_error(E_WARNING, "Unable to access %s",s);
return(0);
}
duid = sb.st_uid;
}
if (duid == (uid=php_getuid())) return(1);
else {
php_error(E_WARNING, "SAFE MODE Restriction in effect. The script whose uid is %ld is not allowed to access %s owned by uid %ld",uid,fn,duid);
return(0);
}
}
PHPAPI char *php_get_current_user()
{
struct passwd *pwd;
struct stat *pstat;
SLS_FETCH();
if (SG(request_info).current_user) {
return SG(request_info).current_user;
}
/* FIXME: I need to have this somehow handled if
USE_SAPI is defined, because cgi will also be
interfaced in USE_SAPI */
pstat = sapi_get_stat();
if (!pstat) {
return empty_string;
}
if ((pwd=getpwuid(pstat->st_uid))==NULL) {
return empty_string;
}
SG(request_info).current_user_length = strlen(pwd->pw_name);
SG(request_info).current_user = estrndup(pwd->pw_name, SG(request_info).current_user_length);
return SG(request_info).current_user;
}