symfony
diff --git a/‎src/Symfony/Bridge/Twig/Extension/FormExtension.php
Lines changed: 9 additions & 6 deletions b/‎src/Symfony/Bridge/Twig/Extension/FormExtension.php
Lines changed: 9 additions & 6 deletions
diff --git a/‎src/Symfony/Bridge/Twig/Tests/Extension/FormExtensionDivLayoutTest.php
Lines changed: 1 addition & 2 deletions b/‎src/Symfony/Bridge/Twig/Tests/Extension/FormExtensionDivLayoutTest.php
Lines changed: 1 addition & 2 deletions
diff --git a/‎src/Symfony/Bundle/SecurityBundle/Resources/config/guard.xml
Lines changed: 2 additions & 0 deletions b/‎src/Symfony/Bundle/SecurityBundle/Resources/config/guard.xml
Lines changed: 2 additions & 0 deletions
diff --git a/‎src/Symfony/Bundle/WebProfilerBundle/Controller/ProfilerController.php
Lines changed: 1 addition & 1 deletion b/‎src/Symfony/Bundle/WebProfilerBundle/Controller/ProfilerController.php
Lines changed: 1 addition & 1 deletion
diff --git a/‎src/Symfony/Bundle/WebProfilerBundle/Tests/Controller/ProfilerControllerTest.php
Lines changed: 37 additions & 0 deletions b/‎src/Symfony/Bundle/WebProfilerBundle/Tests/Controller/ProfilerControllerTest.php
Lines changed: 37 additions & 0 deletions
@@ -73,15 +73,10 @@ public function getTests()
     {
         return array(
             new TwigTest('selectedchoice', 'Symfony\Bridge\Twig\Extension\twig_is_selected_choice'),
-            new TwigTest('rootform', array($this, 'isRootForm')),
+            new TwigTest('rootform', 'Symfony\Bridge\Twig\Extension\twig_is_root_form'),
         );
     }
 
-    public function isRootForm(FormView $formView)
-    {
-        return null === $formView->parent;
-    }
-
     /**
      * {@inheritdoc}
      */
@@ -110,3 +105,11 @@ function twig_is_selected_choice(ChoiceView $choice, $selectedValue)
 
     return $choice->value === $selectedValue;
 }
+
+/**
+ * @internal
+ */
+function twig_is_root_form(FormView $formView)
+{
+    return null === $formView->parent;
+}
@@ -162,8 +162,7 @@ public function isRootFormProvider()
      */
     public function testIsRootForm($expected, FormView $formView)
     {
-        $extension = new FormExtension();
-        $this->assertSame($expected, $extension->isRootForm($formView));
+        $this->assertSame($expected, twig_is_root_form($formView));
     }
 
     protected function renderForm(FormView $view, array $vars = array())
 
@@ -13,6 +13,8 @@
             <argument type="service" id="security.token_storage" />
             <argument type="service" id="event_dispatcher" on-invalid="null" />
         </service>
+        
+        <service id="Symfony\Component\Security\Guard\GuardAuthenticatorHandler" alias="security.authentication.guard_handler" />
 
         <!-- See GuardAuthenticationFactory -->
         <service id="security.authentication.provider.guard"
 
@@ -368,7 +368,7 @@ public function openAction(Request $request)
 
         $filename = $this->baseDir.DIRECTORY_SEPARATOR.$file;
 
-        if (preg_match("'(^|[/\\\\])\.\.?([/\\\\]|$)'", $file) || !is_readable($filename)) {
+        if (preg_match("'(^|[/\\\\])\.'", $file) || !is_readable($filename)) {
             throw new NotFoundHttpException(sprintf('The file "%s" cannot be opened.', $file));
         }
 
 
@@ -14,6 +14,7 @@
 use PHPUnit\Framework\TestCase;
 use Symfony\Bundle\WebProfilerBundle\Controller\ProfilerController;
 use Symfony\Bundle\WebProfilerBundle\Csp\ContentSecurityPolicyHandler;
+use Symfony\Component\HttpKernel\Exception\NotFoundHttpException;
 use Symfony\Component\HttpKernel\Profiler\Profile;
 use Symfony\Component\HttpFoundation\Request;
 
@@ -46,6 +47,42 @@ public function getEmptyTokenCases()
         );
     }
 
+    /**
+     * @dataProvider getOpenFileCases
+     */
+    public function testOpeningDisallowedPaths($path, $isAllowed)
+    {
+        $urlGenerator = $this->getMockBuilder('Symfony\Component\Routing\Generator\UrlGeneratorInterface')->getMock();
+        $twig = $this->getMockBuilder('Twig\Environment')->disableOriginalConstructor()->getMock();
+        $profiler = $this
+            ->getMockBuilder('Symfony\Component\HttpKernel\Profiler\Profiler')
+            ->disableOriginalConstructor()
+            ->getMock();
+
+        $controller = new ProfilerController($urlGenerator, $profiler, $twig, array(), 'bottom', null, __DIR__.'/../..');
+
+        try {
+            $response = $controller->openAction(Request::create('/_wdt/open', Request::METHOD_GET, array('file' => $path)));
+            $this->assertEquals(200, $response->getStatusCode());
+            $this->assertTrue($isAllowed);
+        } catch (NotFoundHttpException $e) {
+            $this->assertFalse($isAllowed);
+        }
+    }
+
+    public function getOpenFileCases()
+    {
+        return array(
+            array('README.md', true),
+            array('composer.json', true),
+            array('Controller/ProfilerController.php', true),
+            array('.gitignore', false),
+            array('../TwigBundle/README.md', false),
+            array('Controller/../README.md', false),
+            array('Controller/./ProfilerController.php', false),
+        );
+    }
+
     /**
      * @dataProvider provideCspVariants
      */
Original file line number	Diff line number	Diff line change
`@@ -162,8 +162,7 @@ public function isRootFormProvider()`
`162`	`162`	`*/`
`163`	`163`	`public function testIsRootForm($expected, FormView $formView)`
`164`	`164`	`{`
`165`		`- $extension = new FormExtension();`
`166`		`- $this->assertSame($expected, $extension->isRootForm($formView));`
	`165`	`+ $this->assertSame($expected, twig_is_root_form($formView));`
`167`	`166`	`}`
`168`	`167`
`169`	`168`	`protected function renderForm(FormView $view, array $vars = array())`
Original file line number	Diff line number	Diff line change
`@@ -368,7 +368,7 @@ public function openAction(Request $request)`
`368`	`368`
`369`	`369`	`$filename = $this->baseDir.DIRECTORY_SEPARATOR.$file;`
`370`	`370`
`371`		`- if (preg_match("'(^\|[/\\\\])\.\.?([/\\\\]\|$)'", $file) \|\| !is_readable($filename)) {`
	`371`	`+ if (preg_match("'(^\|[/\\\\])\.'", $file) \|\| !is_readable($filename)) {`
`372`	`372`	`throw new NotFoundHttpException(sprintf('The file "%s" cannot be opened.', $file));`
`373`	`373`	`}`
`374`	`374`