proc_open can accept stream resources in the descriptorspec, like this:
proc_open("command", array(0 => $resource), $pipes);
Previously, if a resource which was *not* of type "stream" was passed, proc_open would
return without freeing dynamically allocated memory. It's fixed now.
if (Z_TYPE_P(descitem) == IS_RESOURCE) {
/* should be a stream - try and dup the descriptor */
- php_stream *stream;
+ php_stream *stream = (php_stream*)zend_fetch_resource(Z_RES_P(descitem), "stream", php_file_le_stream());
+ if (stream == NULL) {
+ goto exit_fail;
+ }
+
php_socket_t fd;
php_file_descriptor_t desc;
- php_stream_from_zval(stream, descitem);
-
if (FAILURE == php_stream_cast(stream, PHP_STREAM_AS_FD, (void **)&fd, REPORT_ERRORS)) {
goto exit_fail;
}
--- /dev/null
+--TEST--
+proc_open does not leak memory when called with wrong resource type in descriptorspec
+--FILE--
+<?php
+ $context = stream_context_create();
+ try {
+ proc_open('not_a_real_command_but_I_dont_care', array(0 => $context), $pipes);
+ echo "Not reached";
+ } catch (TypeError $e) {
+ echo $e->getMessage(), "\n";
+ }
+?>
+--EXPECT--
+proc_open(): supplied resource is not a valid stream resource
projects / php / commitdiff