1--TEST-- 2Dump unserialize 3--SKIPIF-- 4<?php 5if (!extension_loaded("snuffleupagus")) { 6 print "skip"; 7} 8?> 9--POST-- 10post_a=data_post_a&post_b=data_post_b 11--GET-- 12get_a=data_get_a&get_b=data_get_b 13--COOKIE-- 14cookie_a=data_cookie_a&cookie_b=data_cookie_b 15--INI-- 16sp.configuration_file={PWD}/config/dump_unserialize.ini 17--FILE-- 18<?php 19@mkdir("/tmp/dump_result/"); 20foreach (glob("/tmp/dump_result/sp_dump.*") as $dump) { 21 @unlink($dump); 22} 23 24echo "1\n"; 25var_dump(unserialize('s:1:"a";alyualskdufyhalkdjsfhalkjdhflaksjdfhlkasdhflkahdawkuerylksjdfhlkssjgdflaksjdhflkasjdf')); 26$filename = glob('/tmp/dump_result/sp_dump.*')[0]; 27$res = file($filename); 28if ($res[3] != "GET:get_a='data_get_a' get_b='data_get_b' \n") { 29 echo "Invalid GET\n"; 30} elseif ($res[4] != "POST:post_a='data_post_a' post_b='data_post_b' \n") { 31 echo "Invalid POST\n"; 32} elseif ($res[5] != "COOKIE:cookie_a='data_cookie_a&cookie_b=data_cookie_b' \n") { 33 echo "Invalid COOKIE\n"; 34} 35?> 36--EXPECTF-- 371 38 39Fatal error: [snuffleupagus][0.0.0.0][unserialize][drop] Invalid HMAC for s:1:"a";alyualskdufyhalkdjsfh in %a/dump_unserialize.php on line 8 40