diff options
Diffstat (limited to 'execute.c')
| -rw-r--r-- | execute.c | 4 |
1 files changed, 1 insertions, 3 deletions
| @@ -151,7 +151,7 @@ static int suhosin_check_filename(char *s, int slen) | |||
| 151 | SDEBUG("fn=%s", s); | 151 | SDEBUG("fn=%s", s); |
| 152 | /* disallow uploaded files */ | 152 | /* disallow uploaded files */ |
| 153 | if (SG(rfc1867_uploaded_files)) { | 153 | if (SG(rfc1867_uploaded_files)) { |
| 154 | if (zend_hash_str_exists(SG(rfc1867_uploaded_files), s, slen)) { // <--- TODO: range check | 154 | if (zend_hash_str_exists(SG(rfc1867_uploaded_files), s, slen)) { |
| 155 | return SUHOSIN_CODE_TYPE_UPLOADED; | 155 | return SUHOSIN_CODE_TYPE_UPLOADED; |
| 156 | } | 156 | } |
| 157 | } | 157 | } |
| @@ -777,9 +777,7 @@ ZEND_API static void suhosin_execute_internal(zend_execute_data *execute_data, z | |||
| 777 | } | 777 | } |
| 778 | 778 | ||
| 779 | suhosin_internal_function_handler *ih; | 779 | suhosin_internal_function_handler *ih; |
| 780 | // SDEBUG("before %d", zend_hash_exists(&ihandler_table, function_name)); | ||
| 781 | if ((ih = zend_hash_find_ptr(&ihandler_table, function_name))) { | 780 | if ((ih = zend_hash_find_ptr(&ihandler_table, function_name))) { |
| 782 | // SDEBUG("AFTER"); | ||
| 783 | void *handler = execute_data->func->internal_function.handler; | 781 | void *handler = execute_data->func->internal_function.handler; |
| 784 | 782 | ||
| 785 | if (handler != ZEND_FN(display_disabled_function)) { | 783 | if (handler != ZEND_FN(display_disabled_function)) { |
