SSO-in-a-Box: packages/ssoinabox-webui/root/usr/local/share/ssoinabox/htdocs/includes/smarty/sysplugins/smarty

0 3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	1	<?php
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	2	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	3	* Smarty plugin
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	4	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	5	* @package Smarty
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	6	* @subpackage Security
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	7	* @author Uwe Tews
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	8	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	9
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	10	/*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	11	* FIXME: Smarty_Security API
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	12	* - getter and setter instead of public properties would allow cultivating an internal cache properly
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	13	* - current implementation of isTrustedResourceDir() assumes that Smarty::$template_dir and Smarty::$config_dir are immutable
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	14	* the cache is killed every time either of the variables change. That means that two distinct Smarty objects with differing
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	15	* $template_dir or $config_dir should NOT share the same Smarty_Security instance,
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	16	* as this would lead to (severe) performance penalty! how should this be handled?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	17	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	18
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	19	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	20	* This class does contain the security settings
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	21	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	22	class Smarty_Security {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	23
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	24	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	25	* This determines how Smarty handles "<?php ... ?>" tags in templates.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	26	* possible values:
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	27	* <ul>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	28	* <li>Smarty::PHP_PASSTHRU -> echo PHP tags as they are</li>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	29	* <li>Smarty::PHP_QUOTE -> escape tags as entities</li>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	30	* <li>Smarty::PHP_REMOVE -> remove php tags</li>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	31	* <li>Smarty::PHP_ALLOW -> execute php tags</li>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	32	* </ul>
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	33	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	34	* @var integer
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	35	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	36	public $php_handling = Smarty::PHP_PASSTHRU;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	37	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	38	* This is the list of template directories that are considered secure.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	39	* $template_dir is in this list implicitly.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	40	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	41	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	42	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	43	public $secure_dir = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	44	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	45	* This is an array of directories where trusted php scripts reside.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	46	* {@link $security} is disabled during their inclusion/execution.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	47	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	48	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	49	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	50	public $trusted_dir = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	51	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	52	* List of regular expressions (PCRE) that include trusted URIs
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	53	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	54	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	55	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	56	public $trusted_uri = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	57	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	58	* This is an array of trusted static classes.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	59	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	60	* If empty access to all static classes is allowed.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	61	* If set to 'none' none is allowed.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	62	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	63	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	64	public $static_classes = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	65	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	66	* This is an array of trusted PHP functions.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	67	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	68	* If empty all functions are allowed.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	69	* To disable all PHP functions set $php_functions = null.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	70	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	71	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	72	public $php_functions = array(
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	73	'isset', 'empty',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	74	'count', 'sizeof',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	75	'in_array', 'is_array',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	76	'time',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	77	'nl2br',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	78	);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	79	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	80	* This is an array of trusted PHP modifers.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	81	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	82	* If empty all modifiers are allowed.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	83	* To disable all modifier set $modifiers = null.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	84	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	85	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	86	public $php_modifiers = array(
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	87	'escape',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	88	'count'
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	89	);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	90	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	91	* This is an array of allowed tags.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	92	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	93	* If empty no restriction by allowed_tags.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	94	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	95	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	96	public $allowed_tags = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	97	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	98	* This is an array of disabled tags.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	99	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	100	* If empty no restriction by disabled_tags.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	101	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	102	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	103	public $disabled_tags = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	104	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	105	* This is an array of allowed modifier plugins.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	106	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	107	* If empty no restriction by allowed_modifiers.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	108	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	109	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	110	public $allowed_modifiers = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	111	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	112	* This is an array of disabled modifier plugins.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	113	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	114	* If empty no restriction by disabled_modifiers.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	115	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	116	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	117	public $disabled_modifiers = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	118	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	119	* This is an array of trusted streams.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	120	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	121	* If empty all streams are allowed.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	122	* To disable all streams set $streams = null.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	123	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	124	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	125	public $streams = array('file');
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	126	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	127	* + flag if constants can be accessed from template
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	128	* @var boolean
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	129	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	130	public $allow_constants = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	131	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	132	* + flag if super globals can be accessed from template
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	133	* @var boolean
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	134	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	135	public $allow_super_globals = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	136
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	137	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	138	* Cache for $resource_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	139	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	140	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	141	protected $_resource_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	142	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	143	* Cache for $template_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	144	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	145	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	146	protected $_template_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	147	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	148	* Cache for $config_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	149	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	150	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	151	protected $_config_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	152	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	153	* Cache for $secure_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	154	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	155	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	156	protected $_secure_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	157	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	158	* Cache for $php_resource_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	159	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	160	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	161	protected $_php_resource_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	162	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	163	* Cache for $trusted_dir lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	164	* @var array
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	165	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	166	protected $_trusted_dir = null;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	167
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	168
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	169	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	170	* @param Smarty $smarty
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	171	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	172	public function __construct($smarty)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	173	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	174	$this->smarty = $smarty;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	175	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	176
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	177	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	178	* Check if PHP function is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	179	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	180	* @param string $function_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	181	* @param object $compiler compiler object
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	182	* @return boolean true if function is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	183	* @throws SmartyCompilerException if php function is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	184	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	185	public function isTrustedPhpFunction($function_name, $compiler)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	186	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	187	if (isset($this->php_functions) && (empty($this->php_functions) \|\| in_array($function_name, $this->php_functions))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	188	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	189	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	190
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	191	$compiler->trigger_template_error("PHP function '{$function_name}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	192	return false; // should not, but who knows what happens to the compiler in the future?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	193	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	194
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	195	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	196	* Check if static class is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	197	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	198	* @param string $class_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	199	* @param object $compiler compiler object
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	200	* @return boolean true if class is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	201	* @throws SmartyCompilerException if static class is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	202	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	203	public function isTrustedStaticClass($class_name, $compiler)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	204	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	205	if (isset($this->static_classes) && (empty($this->static_classes) \|\| in_array($class_name, $this->static_classes))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	206	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	207	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	208
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	209	$compiler->trigger_template_error("access to static class '{$class_name}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	210	return false; // should not, but who knows what happens to the compiler in the future?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	211	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	212
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	213	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	214	* Check if PHP modifier is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	215	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	216	* @param string $modifier_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	217	* @param object $compiler compiler object
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	218	* @return boolean true if modifier is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	219	* @throws SmartyCompilerException if modifier is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	220	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	221	public function isTrustedPhpModifier($modifier_name, $compiler)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	222	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	223	if (isset($this->php_modifiers) && (empty($this->php_modifiers) \|\| in_array($modifier_name, $this->php_modifiers))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	224	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	225	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	226
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	227	$compiler->trigger_template_error("modifier '{$modifier_name}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	228	return false; // should not, but who knows what happens to the compiler in the future?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	229	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	230
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	231	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	232	* Check if tag is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	233	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	234	* @param string $tag_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	235	* @param object $compiler compiler object
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	236	* @return boolean true if tag is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	237	* @throws SmartyCompilerException if modifier is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	238	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	239	public function isTrustedTag($tag_name, $compiler)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	240	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	241	// check for internal always required tags
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	242	if (in_array($tag_name, array('assign', 'call', 'private_filter', 'private_block_plugin', 'private_function_plugin', 'private_object_block_function',
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	243	'private_object_function', 'private_registered_function', 'private_registered_block', 'private_special_variable', 'private_print_expression', 'private_modifier'))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	244	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	245	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	246	// check security settings
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	247	if (empty($this->allowed_tags)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	248	if (empty($this->disabled_tags) \|\| !in_array($tag_name, $this->disabled_tags)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	249	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	250	} else {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	251	$compiler->trigger_template_error("tag '{$tag_name}' disabled by security setting", $compiler->lex->taglineno);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	252	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	253	} else if (in_array($tag_name, $this->allowed_tags) && !in_array($tag_name, $this->disabled_tags)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	254	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	255	} else {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	256	$compiler->trigger_template_error("tag '{$tag_name}' not allowed by security setting", $compiler->lex->taglineno);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	257	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	258	return false; // should not, but who knows what happens to the compiler in the future?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	259	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	260
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	261	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	262	* Check if modifier plugin is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	263	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	264	* @param string $modifier_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	265	* @param object $compiler compiler object
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	266	* @return boolean true if tag is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	267	* @throws SmartyCompilerException if modifier is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	268	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	269	public function isTrustedModifier($modifier_name, $compiler)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	270	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	271	// check for internal always allowed modifier
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	272	if (in_array($modifier_name, array('default'))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	273	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	274	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	275	// check security settings
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	276	if (empty($this->allowed_modifiers)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	277	if (empty($this->disabled_modifiers) \|\| !in_array($modifier_name, $this->disabled_modifiers)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	278	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	279	} else {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	280	$compiler->trigger_template_error("modifier '{$modifier_name}' disabled by security setting", $compiler->lex->taglineno);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	281	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	282	} else if (in_array($modifier_name, $this->allowed_modifiers) && !in_array($modifier_name, $this->disabled_modifiers)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	283	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	284	} else {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	285	$compiler->trigger_template_error("modifier '{$modifier_name}' not allowed by security setting", $compiler->lex->taglineno);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	286	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	287	return false; // should not, but who knows what happens to the compiler in the future?
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	288	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	289
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	290	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	291	* Check if stream is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	292	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	293	* @param string $stream_name
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	294	* @return boolean true if stream is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	295	* @throws SmartyException if stream is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	296	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	297	public function isTrustedStream($stream_name)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	298	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	299	if (isset($this->streams) && (empty($this->streams) \|\| in_array($stream_name, $this->streams))) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	300	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	301	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	302
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	303	throw new SmartyException("stream '{$stream_name}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	304	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	305
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	306	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	307	* Check if directory of file resource is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	308	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	309	* @param string $filepath
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	310	* @return boolean true if directory is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	311	* @throws SmartyException if directory is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	312	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	313	public function isTrustedResourceDir($filepath)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	314	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	315	$_template = false;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	316	$_config = false;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	317	$_secure = false;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	318
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	319	$_template_dir = $this->smarty->getTemplateDir();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	320	$_config_dir = $this->smarty->getConfigDir();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	321
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	322	// check if index is outdated
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	323	if ((!$this->_template_dir \|\| $this->_template_dir !== $_template_dir)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	324	\|\| (!$this->_config_dir \|\| $this->_config_dir !== $_config_dir)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	325	\|\| (!empty($this->secure_dir) && (!$this->_secure_dir \|\| $this->_secure_dir !== $this->secure_dir))
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	326	) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	327	$this->_resource_dir = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	328	$_template = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	329	$_config = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	330	$_secure = !empty($this->secure_dir);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	331	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	332
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	333	// rebuild template dir index
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	334	if ($_template) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	335	$this->_template_dir = $_template_dir;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	336	foreach ($_template_dir as $directory) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	337	$directory = realpath($directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	338	$this->_resource_dir[$directory] = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	339	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	340	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	341
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	342	// rebuild config dir index
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	343	if ($_config) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	344	$this->_config_dir = $_config_dir;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	345	foreach ($_config_dir as $directory) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	346	$directory = realpath($directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	347	$this->_resource_dir[$directory] = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	348	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	349	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	350
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	351	// rebuild secure dir index
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	352	if ($_secure) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	353	$this->_secure_dir = $this->secure_dir;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	354	foreach ((array) $this->secure_dir as $directory) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	355	$directory = realpath($directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	356	$this->_resource_dir[$directory] = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	357	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	358	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	359
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	360	$_filepath = realpath($filepath);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	361	$directory = dirname($_filepath);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	362	$_directory = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	363	while (true) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	364	// remember the directory to add it to _resource_dir in case we're successful
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	365	$_directory[$directory] = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	366	// test if the directory is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	367	if (isset($this->_resource_dir[$directory])) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	368	// merge sub directories of current $directory into _resource_dir to speed up subsequent lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	369	$this->_resource_dir = array_merge($this->_resource_dir, $_directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	370	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	371	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	372	// abort if we've reached root
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	373	if (($pos = strrpos($directory, DS)) === false \|\| !isset($directory[1])) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	374	break;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	375	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	376	// bubble up one level
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	377	$directory = substr($directory, 0, $pos);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	378	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	379
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	380	// give up
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	381	throw new SmartyException("directory '{$_filepath}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	382	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	383
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	384	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	385	* Check if URI (e.g. {fetch} or {html_image}) is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	386	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	387	* To simplify things, isTrustedUri() resolves all input to "{$PROTOCOL}://{$HOSTNAME}".
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	388	* So "http://username:password@hello.world.example.org:8080/some-path?some=query-string"
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	389	* is reduced to "http://hello.world.example.org" prior to applying the patters from {@link $trusted_uri}.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	390	* @param string $uri
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	391	* @return boolean true if URI is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	392	* @throws SmartyException if URI is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	393	* @uses $trusted_uri for list of patterns to match against $uri
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	394	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	395	public function isTrustedUri($uri)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	396	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	397	$_uri = parse_url($uri);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	398	if (!empty($_uri['scheme']) && !empty($_uri['host'])) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	399	$_uri = $_uri['scheme'] . '://' . $_uri['host'];
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	400	foreach ($this->trusted_uri as $pattern) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	401	if (preg_match($pattern, $_uri)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	402	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	403	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	404	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	405	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	406
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	407	throw new SmartyException("URI '{$uri}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	408	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	409
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	410	/**
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	411	* Check if directory of file resource is trusted.
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	412	*
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	413	* @param string $filepath
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	414	* @return boolean true if directory is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	415	* @throws SmartyException if PHP directory is not trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	416	*/
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	417	public function isTrustedPHPDir($filepath)
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	418	{
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	419	if (empty($this->trusted_dir)) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	420	throw new SmartyException("directory '{$filepath}' not allowed by security setting (no trusted_dir specified)");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	421	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	422
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	423	// check if index is outdated
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	424	if (!$this->_trusted_dir \|\| $this->_trusted_dir !== $this->trusted_dir) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	425	$this->_php_resource_dir = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	426
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	427	$this->_trusted_dir = $this->trusted_dir;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	428	foreach ((array) $this->trusted_dir as $directory) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	429	$directory = realpath($directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	430	$this->_php_resource_dir[$directory] = true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	431	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	432	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	433
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	434	$_filepath = realpath($filepath);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	435	$directory = dirname($_filepath);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	436	$_directory = array();
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	437	while (true) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	438	// remember the directory to add it to _resource_dir in case we're successful
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	439	$_directory[] = $directory;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	440	// test if the directory is trusted
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	441	if (isset($this->_php_resource_dir[$directory])) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	442	// merge sub directories of current $directory into _resource_dir to speed up subsequent lookups
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	443	$this->_php_resource_dir = array_merge($this->_php_resource_dir, $_directory);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	444	return true;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	445	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	446	// abort if we've reached root
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	447	if (($pos = strrpos($directory, DS)) === false \|\| !isset($directory[2])) {
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	448	break;
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	449	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	450	// bubble up one level
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	451	$directory = substr($directory, 0, $pos);
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	452	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	453
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	454	throw new SmartyException("directory '{$_filepath}' not allowed by security setting");
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	455	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	456
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	457	}
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	458
3906ca745819 First commit! Dan Fuhry <dan@fuhry.us> parents: diff changeset	459	?>

author	Dan Fuhry <dan@fuhry.us>
	Tue, 08 Jan 2013 23:13:29 -0500
changeset 0	3906ca745819
permissions	-rw-r--r--