From: Ilia Alshanetsky Date: Tue, 18 Oct 2005 22:50:43 +0000 (+0000) Subject: Do not set authorizer unless safe_mode or open_basedir are being used. X-Git-Tag: RELEASE_0_9_1~82 X-Git-Url: https://granicus.if.org/sourcecode?a=commitdiff_plain;h=090ef86983d31b7af3905f5e5a2e710f5a84a433;p=php Do not set authorizer unless safe_mode or open_basedir are being used. --- diff --git a/ext/sqlite/sqlite.c b/ext/sqlite/sqlite.c index c61c595052..427819c147 100644 --- a/ext/sqlite/sqlite.c +++ b/ext/sqlite/sqlite.c @@ -1178,7 +1178,9 @@ static struct php_sqlite_db *php_sqlite_open(char *filename, int mode, char *per /* authorizer hook so we can enforce safe mode * Note: the declaration of php_sqlite_authorizer is correct for 2.8.2 of libsqlite, * and IS backwards binary compatible with earlier versions */ - sqlite_set_authorizer(sdb, php_sqlite_authorizer, NULL); + if (PG(safe_mode) || (PG(open_basedir) && *PG(open_basedir))) { + sqlite_set_authorizer(sdb, php_sqlite_authorizer, NULL); + } db->rsrc_id = ZEND_REGISTER_RESOURCE(object ? NULL : return_value, db, persistent_id ? le_sqlite_pdb : le_sqlite_db); if (object) {