Merge pull request #79 from AikidoSec/whitelist-php-streams

Whitelist php streams from fopen hooks

lib/agent/globals/constants.go

@@ -1,7 +1,7 @@
 package globals
 
 const (
-	Version                            = "1.0.93"
+	Version                            = "1.0.94"
 	ConfigUpdatedAtMethod              = "GET"
 	ConfigUpdatedAtAPI                 = "/config"
 	ConfigAPIMethod                    = "GET"

lib/php-extension/HandlePathAccess.cpp

@@ -2,6 +2,11 @@
 
 /* Helper for handle pre file path access */
 void helper_handle_pre_file_path_access(char *filename, EVENT_ID &eventId) {
+    if (strncmp(filename, "php://", 6) == 0) {
+        // Whitelist php:// streams as they are often used by PHP frameworks a lot
+        return;
+    }
+
     // if filename starts with http:// or https://, it's a URL so we treat it as an outgoing request
     if (strncmp(filename, "http://", 7) == 0 ||
         strncmp(filename, "https://", 8) == 0) {

lib/php-extension/include/php_aikido.h

@@ -3,7 +3,7 @@
 extern zend_module_entry aikido_module_entry;
 #define phpext_aikido_ptr &aikido_module_entry
 
-#define PHP_AIKIDO_VERSION "1.0.93"
+#define PHP_AIKIDO_VERSION "1.0.94"
 
 #if defined(ZTS) && defined(COMPILE_DL_AIKIDO)
 ZEND_TSRMLS_CACHE_EXTERN()

lib/request-processor/globals/globals.go

@@ -11,5 +11,5 @@ var CloudConfig CloudConfigData
 var CloudConfigMutex sync.Mutex
 
 const (
-	Version = "1.0.93"
+	Version = "1.0.94"
 )

package/rpm/aikido.spec

@@ -1,5 +1,5 @@
 Name:           aikido-php-firewall
-Version:        1.0.93
+Version:        1.0.94
 Release:        1
 Summary:        Aikido PHP Extension
 License:        GPL