IN_LIBXSLT xsltCheckFilename xsltCheckRead xsltCheckWrite xsltCheckWritePath xsltDefaultSecurityPrefs xsltFreeSecurityPrefs xsltGetDefaultSecurityPrefs xsltGetSecurityPrefs xsltNewSecurityPrefs xsltSecurityAllow xsltSecurityForbid xsltSetCtxtSecurityPrefs xsltSetDefaultSecurityPrefs xsltSetSecurityPrefs

int xsltCheckRead ( xsltSecurityPrefsPtr  sec, xsltTransformContextPtr  ctxt, const xmlChar *  URL  ) xsltCheckRead: : the security options : an XSLT transformation context : the resource to be read Check if the resource is allowed to be read Return 1 if read is allowed, 0 if not and -1 in case or error. Definition at line 433 of file security.c. Referenced by xsltLoadDocument(), xsltLoadStyleDocument(), xsltParseStylesheetFile(), and xsltParseStylesheetImport(). { int ret; xmlURIPtr uri; xsltSecurityCheck check; uri = xmlParseURI((const char *)URL); if (uri == NULL) { xsltTransformError(ctxt, NULL, NULL, "xsltCheckRead: URL parsing failed for %s\n", URL); return(-1); } if ((uri->scheme == NULL) || (xmlStrEqual(BAD_CAST uri->scheme, BAD_CAST "file"))) { /* * Check if we are allowed to read this file */ check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_READ_FILE); if (check != NULL) { ret = check(sec, ctxt, uri->path); if (ret == 0) { xsltTransformError(ctxt, NULL, NULL, "Local file read for %s refused\n", URL); xmlFreeURI(uri); return(0); } } } else { /* * Check if we are allowed to write this network resource */ check = xsltGetSecurityPrefs(sec, XSLT_SECPREF_READ_NETWORK); if (check != NULL) { ret = check(sec, ctxt, (const char *)URL); if (ret == 0) { xsltTransformError(ctxt, NULL, NULL, "Network file read for %s refused\n", URL); xmlFreeURI(uri); return(0); } } } xmlFreeURI(uri); return(1); }