Browse Source

- Protect $HTTP_POST_FILES[] as well

PHP-4.0.5
Zeev Suraski 27 years ago
parent
commit
e5c8aeb3f1
  1. 6
      main/main.c
  2. 1
      main/php_globals.h
  3. 2
      main/rfc1867.c

6
main/main.c

@ -956,7 +956,7 @@ static int php_hash_environment(ELS_D SLS_DC PLS_DC)
php_import_environment_variables(ELS_C PLS_CC);
}
PG(http_globals).post = PG(http_globals).get = PG(http_globals).cookie = PG(http_globals).server = PG(http_globals).environment = NULL;
PG(http_globals).post = PG(http_globals).get = PG(http_globals).cookie = PG(http_globals).server = PG(http_globals).environment = PG(http_globals).post_files = NULL;
while(*p) {
switch(*p++) {
@ -1013,7 +1013,9 @@ static int php_hash_environment(ELS_D SLS_DC PLS_DC)
if (PG(http_globals).environment) {
zend_hash_add_ptr(&EG(symbol_table), "HTTP_ENV_VARS", sizeof("HTTP_ENV_VARS"), PG(http_globals).environment, sizeof(zval *), NULL);
}
if (PG(http_globals).post_files) {
zend_hash_add_ptr(&EG(symbol_table), "HTTP_POST_FILES", sizeof("HTTP_POST_FILES"), PG(http_globals).post_files, sizeof(zval *),NULL);
}
if (!have_variables_order) {
php_register_server_variables(ELS_C SLS_CC PLS_CC);

1
main/php_globals.h

@ -48,6 +48,7 @@ typedef struct _php_http_globals {
zval *cookie;
zval *server;
zval *environment;
zval *post_files;
} php_http_globals;
struct _php_tick_function_entry;

2
main/rfc1867.c

@ -71,7 +71,7 @@ static void php_mime_split(char *buf, int cnt, char *boundary, zval *array_ptr)
ALLOC_ZVAL(http_post_files);
array_init(http_post_files);
INIT_PZVAL(http_post_files);
zend_hash_add_ptr(&EG(symbol_table), "HTTP_POST_FILES", sizeof("HTTP_POST_FILES"), http_post_files, sizeof(zval *),NULL);
PG(http_globals).post_files = http_post_files;
}

Loading…
Cancel
Save