From 8b29ae910ffd1751add50c60c64553b6f87e338e Mon Sep 17 00:00:00 2001
From: Jakub Vrana <jakub@vrana.cz>
Date: Wed, 24 Jan 2018 15:10:44 +0100
Subject: [PATCH] Verify if adminer.version was created on www.adminer.org

---
 adminer/include/design.inc.php | 17 +++++++++++++++--
 adminer/script.inc.php         |  2 +-
 adminer/static/functions.js    |  2 +-
 3 files changed, 17 insertions(+), 4 deletions(-)

diff --git a/adminer/include/design.inc.php b/adminer/include/design.inc.php
index 8d8106e0..28b159c6 100644
--- a/adminer/include/design.inc.php
+++ b/adminer/include/design.inc.php
@@ -35,8 +35,21 @@ function page_header($title, $error = "", $breadcrumb = array(), $title2 = "") {
 <body class="<?php echo lang('ltr'); ?> nojs">
 <?php
 	$filename = get_temp_dir() . "/adminer.version";
-	if (!$_COOKIE["adminer_version"] && file_exists($filename) && filemtime($filename) + 86400 > time()) { // 86400 - 1 day in seconds
-		$_COOKIE["adminer_version"] = file_get_contents($filename); // doesn't need to send to the browser
+	if (!$_COOKIE["adminer_version"] && function_exists('openssl_verify') && file_exists($filename) && filemtime($filename) + 86400 > time()) { // 86400 - 1 day in seconds
+		$version = unserialize(file_get_contents($filename));
+		$public = "-----BEGIN PUBLIC KEY-----
+MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwqWOVuF5uw7/+Z70djoK
+RlHIZFZPO0uYRezq90+7Amk+FDNd7KkL5eDve+vHRJBLAszF/7XKXe11xwliIsFs
+DFWQlsABVZB3oisKCBEuI71J4kPH8dKGEWR9jDHFw3cWmoH3PmqImX6FISWbG3B8
+h7FIx3jEaw5ckVPVTeo5JRm/1DZzJxjyDenXvBQ/6o9DgZKeNDgxwKzH+sw9/YCO
+jHnq1cFpOIISzARlrHMa/43YfeNRAm/tsBXjSxembBPo7aQZLAWHmaj5+K19H10B
+nCpz9Y++cipkVEiKRGih4ZEvjoFysEOdRLj6WiD/uUNky4xGeA6LaJqh5XpkFkcQ
+fQIDAQAB
+-----END PUBLIC KEY-----
+";
+		if (openssl_verify($version["version"], base64_decode($version["signature"]), $public) == 1) {
+			$_COOKIE["adminer_version"] = $version["version"]; // doesn't need to send to the browser
+		}
 	}
 	?>
 <script<?php echo nonce(); ?>>
diff --git a/adminer/script.inc.php b/adminer/script.inc.php
index 0f896b43..51f0534d 100644
--- a/adminer/script.inc.php
+++ b/adminer/script.inc.php
@@ -37,7 +37,7 @@ if ($_GET["script"] == "db") {
 } elseif ($_GET["script"] == "version") {
 	$fp = file_open_lock(get_temp_dir() . "/adminer.version");
 	if ($fp) {
-		file_write_unlock($fp, $_POST["version"]);
+		file_write_unlock($fp, serialize(array("signature" => $_POST["signature"], "version" => $_POST["version"])));
 	}
 
 } else { // connect
diff --git a/adminer/static/functions.js b/adminer/static/functions.js
index b2f39cce..05b62fcd 100644
--- a/adminer/static/functions.js
+++ b/adminer/static/functions.js
@@ -115,7 +115,7 @@ function verifyVersion(current, url, token) {
 				if (match) {
 					cookie('adminer_version=' + match[1], 1);
 					ajax(url + 'script=version', function () {
-					}, 'version=' + match[1] + '&token=' + token);
+					}, event.data + '&token=' + token);
 				}
 			}
 		}, false);