| #
478f119a |
| 04-Jan-2017 |
Sammy Kaye Powers |
Update copyright headers to 2017
|
| #
9e29f841 |
| 02-Jan-2017 |
Sammy Kaye Powers |
Update copyright headers to 2017
|
| #
625304fa |
| 30-Dec-2016 |
Sara Golemon |
Use new param API in standard
|
|
Revision tags: php-7.1.1, php-5.6.29, php-7.0.14, php-7.1.0, php-5.6.29RC1, php-7.0.14RC1 |
|
| #
2d19c92f |
| 18-Nov-2016 |
Nikita Popov |
Make php_url_parse_ex() respect length argument
This should fix all out-of-bounds reads that could previously
occur if the string passed to php_url_parse_ex() is not NUL
terminated.
|
| #
f0f68c72 |
| 18-Nov-2016 |
Nikita Popov |
Cleanup parse_url() query/fragment handling
The query/fragment handling was pretty convoluted, with many parts
being duplicated. Simplify by checking for fragment, then for query,
th
Cleanup parse_url() query/fragment handling
The query/fragment handling was pretty convoluted, with many parts
being duplicated. Simplify by checking for fragment, then for query,
then for path.
show more ...
|
| #
9befad6f |
| 17-Nov-2016 |
Nikita Popov |
Cleanup parse_url() gotos
Simplify some unnecessarily complicated code. In particular the
length updates are unnecessary (length is only used at the very
start) and we're goto'ing ar
Cleanup parse_url() gotos
Simplify some unnecessarily complicated code. In particular the
length updates are unnecessary (length is only used at the very
start) and we're goto'ing around a bit too much.
show more ...
|
|
Revision tags: php-7.1.0RC6, php-5.6.28, php-7.0.13, php-5.6.28RC1, php-7.1.0RC5, php-7.0.13RC1, php-7.1.0RC4, php-5.6.27, php-7.0.12 |
|
| #
b061fa90 |
| 07-Oct-2016 |
Nikita Popov |
Fix bug #73192
|
| #
1c468ee0 |
| 07-Oct-2016 |
Nikita Popov |
Revert "Added validation to parse_url() to prohibit restricted characters inside login/pass components based on RFC3986"
This reverts commit 085dfca02b64588317a233eb191d07a75511fff2.
|
|
Revision tags: php-7.1.0RC3, php-5.6.27RC1, php-7.0.12RC1, php-5.6.26, php-7.1.0RC2, php-7.0.11, php-5.6.26RC1, php-7.1.0RC1, php-7.0.11RC1, php-7.1.0beta3, php-5.6.25, php-7.0.10, php-7.1.0beta2, php-5.6.25RC1, php-7.0.10RC1, php-7.1.0beta1, php-5.6.24, php-7.0.9, php-5.5.38, php-5.6.24RC1, php-7.1.0alpha3, php-7.0.9RC1, php-7.1.0alpha2, php-7.0.8, php-5.6.23, php-5.5.37, php-5.6.23RC1, php-7.0.8RC1, php-7.1.0alpha1, php-5.6.22, php-5.5.36, php-7.0.7, php-5.6.22RC1, php-7.0.7RC1, php-7.0.6, php-5.6.21, php-5.5.35, php-5.6.21RC1, php-7.0.6RC1, php-5.6.20, php-5.5.34, php-7.0.5, php-5.6.20RC1, php-7.0.5RC1, php-5.6.19, php-5.5.33, php-7.0.4, php-5.6.19RC1, php-7.0.4RC1, php-5.6.18, php-7.0.3, php-5.5.32, php-5.6.18RC1, php-7.0.3RC1, php-5.6.17, php-5.5.31, php-7.0.2, php-7.0.2RC1, php-5.6.17RC1, php-7.0.1RC1, php-7.0.0, php-5.6.16, php-7.0.0RC8, php-7.0.0RC7, php-5.6.16RC1, php-5.6.15 |
|
| #
085dfca0 |
| 27-Oct-2015 |
Ilia Alshanetsky |
Added validation to parse_url() to prohibit restricted characters inside login/pass components based on RFC3986
|
| #
d690014b |
| 11-Sep-2016 |
Andrea Faulds |
Remove zpp fallback code (always use Fast ZPP)
Squashed commit of the following:
commit 3e27fbb3d22b42d181e15c345f1c59a007b6b58c
Author: Andrea Faulds <ajf@ajf.me>
Date: S
Remove zpp fallback code (always use Fast ZPP)
Squashed commit of the following:
commit 3e27fbb3d22b42d181e15c345f1c59a007b6b58c
Author: Andrea Faulds <ajf@ajf.me>
Date: Sun Sep 11 19:14:37 2016 +0100
Keep dummy FAST_ZPP macro for compatibility
commit 8a7cfd00deaa4a3c5026c97580c49c886c72a5b4
Author: Andrea Faulds <ajf@ajf.me>
Date: Mon Sep 5 22:36:03 2016 +0100
Remove FAST_ZPP macro and plain zpp fallback code
show more ...
|
| #
40bd921c |
| 16-Aug-2016 |
Stanislav Malyshev |
Fix TSRM build
|
| #
b9e81e58 |
| 16-Aug-2016 |
Stanislav Malyshev |
Fixed bug #72849 - integer overflow in urlencode
|
|
Revision tags: php-7.0.0RC6, php-7.0.1, php-5.6.15RC1, php-7.0.0RC5, php-5.5.30, php-5.6.14, php-7.0.0RC4 |
|
| #
e1ba58f0 |
| 28-Sep-2015 |
Stanislav Malyshev |
Fix bug #70480 (php_url_parse_ex() buffer overflow read)
(cherry picked from commit 629e4da7cc8b174acdeab84969cbfc606a019b31)
|
| #
e2add3ed |
| 21-Jun-2016 |
Julien Pauli |
Fixed parse_url() for better compliance with RFC3986
|
| #
88746d60 |
| 16-Jun-2016 |
Stanislav Malyshev |
Fix bug #72400 and #72403 - prevent signed int overflows for string lengths
|
| #
95433e8e |
| 27-Mar-2016 |
Stanislav Malyshev |
Fix bug #71798 - Integer Overflow in php_raw_url_encode
|
| #
c4517b2a |
| 21-Mar-2016 |
Stanislav Malyshev |
Fix bug #71750: use zend_string_safe_alloc for calculated allocations
|
| #
49493a2d |
| 01-Jan-2016 |
Lior Kaplan |
Happy new year (Update copyright to 2016)
|
| #
f705063e |
| 27-Oct-2015 |
Ilia Alshanetsky |
Added validation to parse_url() to prohibit restricted characters inside login/pass components based on RFC3986
|
| #
629e4da7 |
| 28-Sep-2015 |
Stanislav Malyshev |
Fix bug #70480 (php_url_parse_ex() buffer overflow read)
|
| #
ad4fa8f7 |
| 24-Sep-2015 |
Dmitry Stogov |
Fixed incorrect usage of HASH_OF() macro. Replaced HASH_OF() with more appropriate Z_ARRVAL_P() or Z_OBJPROP_P().
|
|
Revision tags: php-5.6.14RC1, php-7.0.0RC3, php-5.6.13, php-7.0.0RC2, php-5.5.29, php-5.4.45, php-5.6.13RC1, php-7.0.0RC1, php-5.6.12, php-5.5.28, php-7.0.0beta3, php-5.4.44, php-5.6.12RC1, php-7.0.0beta2, php-7.0.0beta1, php-5.6.11, php-5.5.27, php-5.4.43 |
|
| #
e49922d3 |
| 01-Jul-2015 |
Christoph M. Becker |
Fix #69976: Unable to parse "all" urls with colon char
If a colon occurs in a query string or fragment of a partial URL without
scheme, parse_url() tries to regard it as port separator.
Fix #69976: Unable to parse "all" urls with colon char
If a colon occurs in a query string or fragment of a partial URL without
scheme, parse_url() tries to regard it as port separator. If up to 5 digits
follow and then a slash or the end of the string, parse_url() fails.
We're fixing this by checking whether the colon is part of the query string or
the fragment, under the assumption that question marks and hash signs are only
allowed as separators of query string and fragments, respectively, what is
guarenteed for URIs (RFC 3986), but not necessarily for URLs (RFC 1738) where
question marks are allowed for usernames and passwords.
Anyhow, this constitutes a minor BC, so the fix is applied to master only.
show more ...
|
| #
4a2e40bb |
| 30-Jun-2015 |
Dmitry Stogov |
Use ZSTR_ API to access zend_string elements (this is just renaming without semantick changes).
|
|
Revision tags: php-5.6.11RC1, php-5.5.27RC1, php-7.0.0alpha2, php-5.5.26, php-7.0.0alpha1, php-5.6.10, php-5.4.42, POST_PHP7_NSAPI_REMOVAL, PRE_PHP7_NSAPI_REMOVAL, php-5.6.10RC1, php-5.5.26RC1, php-5.5.25, php-5.6.9 |
|
| #
8bdec7a2 |
| 13-May-2015 |
olshevskiy87 |
fix typos
Signed-off-by: olshevskiy87 <olshevskiy87@bk.ru>
|
|
Revision tags: php-5.4.41, php-5.6.9RC1, php-5.5.25RC1, php-5.6.8, php-5.5.24, php-5.4.40, php-5.6.8RC1, php-5.5.24RC1 |
|
| #
0a10440c |
| 30-Mar-2015 |
Ferenc Kovacs |
no need for default value
|
