Added a mechanism allowing the disabling of the ability to change

author Ilia Alshanetsky <iliaa@php.net>

Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)

committer Ilia Alshanetsky <iliaa@php.net>

Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)
author Ilia Alshanetsky <iliaa@php.net>
Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)
committer Ilia Alshanetsky <iliaa@php.net>
Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)
diff --git a/ext/standard/basic_functions.c b/ext/standard/basic_functions.c

index c0a11fb27afd914e205286f2e8da481af52e8afb..93f1a783c212f34f42646f3e053b9f8c7213bbaf 100644 (file)
--- a/ext/standard/basic_functions.c
+++ b/ext/standard/basic_functions.c
@@ -2344,6 +2344,18 @@ PHP_FUNCTION(ini_set)
                 }
         }       
                 
+#define _CHECK_SAFEMODE_INI(ini, var) strncmp(ini, Z_STRVAL_PP(var), sizeof(ini))
+               
+       /* checks that ensure the user does not overwrite certain ini settings when safe_mode is enabled */
+       if (PG(safe_mode)) {
+               if (!_CHECK_SAFEMODE_INI("max_execution_time", varname) ||
+                       !_CHECK_SAFEMODE_INI("memory_limit", varname) ||
+                       !_CHECK_SAFEMODE_INI("child_terminate", varname)) {
+                       zval_dtor(return_value);
+                       RETURN_FALSE;
+               }       
+       }       
+               
         if (zend_alter_ini_entry(Z_STRVAL_PP(varname), Z_STRLEN_PP(varname)+1, Z_STRVAL_PP(new_value), Z_STRLEN_PP(new_value),
                                                                 PHP_INI_USER, PHP_INI_STAGE_RUNTIME) == FAILURE) {
                 zval_dtor(return_value);
author	Ilia Alshanetsky <iliaa@php.net>
	Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)
committer	Ilia Alshanetsky <iliaa@php.net>
	Fri, 25 Oct 2002 01:06:46 +0000 (01:06 +0000)