Mercurial > hg > isophonics-drupal-site
diff vendor/psy/psysh/src/CodeCleaner/InstanceOfPass.php @ 13:5fb285c0d0e3
Update Drupal core to 8.4.7 via Composer. Security update; I *think* we've
been lucky to get away with this so far, as we don't support self-registration
which seems to be used by the so-called "drupalgeddon 2" attack that 8.4.5
was vulnerable to.
| author | Chris Cannam |
|---|---|
| date | Mon, 23 Apr 2018 09:33:26 +0100 |
| parents | |
| children |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/vendor/psy/psysh/src/CodeCleaner/InstanceOfPass.php Mon Apr 23 09:33:26 2018 +0100 @@ -0,0 +1,47 @@ +<?php + +/* + * This file is part of Psy Shell. + * + * (c) 2012-2018 Justin Hileman + * + * For the full copyright and license information, please view the LICENSE + * file that was distributed with this source code. + */ + +namespace Psy\CodeCleaner; + +use PhpParser\Node; +use PhpParser\Node\Expr\ConstFetch; +use PhpParser\Node\Expr\Instanceof_; +use PhpParser\Node\Scalar; +use PhpParser\Node\Scalar\Encapsed; +use Psy\Exception\FatalErrorException; + +/** + * Validate that the instanceof statement does not receive a scalar value or a non-class constant. + * + * @author Martin HasoĊ <martin.hason@gmail.com> + */ +class InstanceOfPass extends CodeCleanerPass +{ + const EXCEPTION_MSG = 'instanceof expects an object instance, constant given'; + + /** + * Validate that the instanceof statement does not receive a scalar value or a non-class constant. + * + * @throws FatalErrorException if a scalar or a non-class constant is given + * + * @param Node $node + */ + public function enterNode(Node $node) + { + if (!$node instanceof Instanceof_) { + return; + } + + if (($node->expr instanceof Scalar && !$node->expr instanceof Encapsed) || $node->expr instanceof ConstFetch) { + throw new FatalErrorException(self::EXCEPTION_MSG, 0, E_ERROR, null, $node->getLine()); + } + } +}