From 6dbefef57332594bece8a91fccb2bf830c52ae83 Mon Sep 17 00:00:00 2001
From: Marco Antonio Nina <marcoantonionina@colosa.com>
Date: Fri, 31 Oct 2014 17:38:55 -0400
Subject: [PATCH] PM-849 safe_mode SOLVED

- Se tienen modos deseguridad que no permiten ejecutar shell_exec.
- ya no se valida por safe_mode pero si se valida que no este entre las funciones restringidas, ademas de probar que se puede ejecutar shell_exec.
---
 workflow/engine/classes/class.wsTools.php | 17 ++++++++++++++---
 1 file changed, 14 insertions(+), 3 deletions(-)

diff --git a/workflow/engine/classes/class.wsTools.php b/workflow/engine/classes/class.wsTools.php
index 391160c6a..1e884cfa6 100755
--- a/workflow/engine/classes/class.wsTools.php
+++ b/workflow/engine/classes/class.wsTools.php
@@ -1257,13 +1257,24 @@ class workspaceTools
     {
         mysql_query("CREATE DATABASE IF NOT EXISTS " . mysql_real_escape_string($database));
 
-        // Check for safe mode and if mysql exist on server
+        //check function shell_exec
+        $disabled_functions = ini_get('disable_functions');
+        $flag = false;
+        if ($disabled_functions!='') {
+            $arr = explode(',', $disabled_functions);
+            sort($arr);
+            if (in_array("shell_exec", $arr)) {
+                $flag = true;
+            }
+        }
+
+        // Check if mysql exist on server
         $flagFunction = null;
-        if ( !ini_get('safe_mode') ) {
+        if ( !$flag ) {
             $flagFunction = shell_exec('mysql --version');
         }
 
-        if ( !ini_get('safe_mode') && !is_null($flagFunction) ) {
+        if ( !$flag && !is_null($flagFunction) ) {
             $command = 'mysql'
             . ' --host=' . $parameters['dbHost']
             . ' --user=' . $parameters['dbUser']