#
47699a24 |
| 03-Feb-2018 |
Nikita Popov |
Bump libcurl requirement to 7.15.5 The existence of the following functions is now guaranteed: * curl_escape() * curl_unescape() * curl_multi_setopt() libcurl 7.15.5
Bump libcurl requirement to 7.15.5 The existence of the following functions is now guaranteed: * curl_escape() * curl_unescape() * curl_multi_setopt() libcurl 7.15.5 has been released 11.5 years ago and is available even in RHEL 5.
show more ...
|
#
85021a39 |
| 06-Dec-2017 |
Benjamin Morel |
Add CURLOPT_REQUEST_TARGET constant
|
#
b2a1199d |
| 12-Jan-2018 |
Anatol Belski |
[ci skip] Fix typos
|
#
d857703b |
| 12-Jan-2018 |
Anatol Belski |
[ci skip] Update UPGRADING
|
#
45db77ed |
| 11-Jan-2018 |
Anatol Belski |
Revert "Add possibility to lower timer resolution" This reverts commit c3717d9aecbe65cb2e5778a24a91e9eaf638639e. The final mitigation of the consequences with spectre should be
Revert "Add possibility to lower timer resolution" This reverts commit c3717d9aecbe65cb2e5778a24a91e9eaf638639e. The final mitigation of the consequences with spectre should be discussed more also with the regard to the happenings on the developments. Right now a preliminary mitigation might be wrong or suboptimal, thus reverting this.
show more ...
|
#
c3717d9a |
| 10-Jan-2018 |
Anatol Belski |
Add possibility to lower timer resolution The recently discovered security flaw Spectre requires a high resolution timer. To the today's knowledge, PHP can't be used to create an attack
Add possibility to lower timer resolution The recently discovered security flaw Spectre requires a high resolution timer. To the today's knowledge, PHP can't be used to create an attack for this flaw. Still some concerns were raised, that there might be impact in shared hosting environments. This patch adds a possibility to reduce the timer resolution by an ini setting, thus giving administrators full control. Especially, as the flaw was also demonstrated by an abuse of the JS engine in a browser, Firefox reduced several time sources to 20us. Any programming language, that doesn't compile to JIT, won't be able to produce an attack vector for Meltdown and Spectre, at least by todays knowledge. There are also other factors that say that the security concern on the hrtime feature is to the big part not justified, still we aim JIT in the future. Thus, adding a possibility to control the timer resolution is a good and small enough tradeoff for safety and future.
show more ...
|
#
83497327 |
| 07-Jan-2018 |
Anatol Belski |
Implement high resolution monotonic timer function hrtime()
|
#
ec69cb66 |
| 04-Jan-2018 |
Xinchen Hui |
Added entry on UPGRADING
|
#
b2b2b437 |
| 25-Dec-2017 |
Nikita Popov |
Add _IS_NUMBER as cast_object() target type convert_scalar_to_number() will now call cast_object() with an _IS_NUMBER argument, in which case the cast handler should return either an
Add _IS_NUMBER as cast_object() target type convert_scalar_to_number() will now call cast_object() with an _IS_NUMBER argument, in which case the cast handler should return either an integer or floating point number, whichever is more appropriate. Previously convert_scalar_to_number() unconditionally converted objects to integers instead. Fixes bug #53033. Fixes bug #54973. Fixes bug #73108.
show more ...
|
#
688b9136 |
| 23-Dec-2017 |
Nikita Popov |
Fixed bug #54043
|
#
161fd757 |
| 19-Dec-2017 |
Nikita Popov |
Bump libcurl requirement to 7.12.1 The existence of the following functions is now guaranteed: * curl_reset() * curl_strerror() * curl_multi_strerror() * curl_share_strer
Bump libcurl requirement to 7.12.1 The existence of the following functions is now guaranteed: * curl_reset() * curl_strerror() * curl_multi_strerror() * curl_share_strerror() libcurl 7.12.1 has been released more than 13 years ago and is available even in RHEL 4.
show more ...
|
#
e5123055 |
| 18-Dec-2017 |
Nikita Popov |
Remove opcache.inherited_hack This ini directive has already been ignored since PHP 5.3.
|
#
a1d2bf83 |
| 18-Dec-2017 |
Nikita Popov |
Document removal of opcache.fast_shutdown [ci skip]
|
#
43d9f599 |
| 16-Dec-2017 |
Nikita Popov |
Fix duplicate NEWS entry Also add an UPGRADING note while at it, as this is potentially BC breaking. [ci skip]
|
#
fc80114a |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_kronecker() Exposes the mpz_kronecker(), mpz_si_kronecker() and mpz_kronecher_si() for computing the Kronecker symbol.
|
#
10a336d3 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_perfect_power() Exposes the mpz_perfect_power_p() function. We already had the more specific gmp_perfect_square() function.
|
#
a1d36a11 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_lcm() Exposes mpz_lcm() and mpz_lcm_ui() for calculating the least common multiple. We already expose the somewhat complementary gmp_gcd() function.
|
#
7fea7967 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_binomial() Adds PHP bindings for mpz_bin_ui and mpz_bin_uiui, for calculating binomial coefficients.
|
#
6d4de4cf |
| 06-Oct-2017 |
David Walker |
Implement list() reference assignments Support list() reference assignments of the form: list(&$a, list(&$b, $c)) = $d; RFC: https://wiki.php.net/rfc/list_reference_ass
Implement list() reference assignments Support list() reference assignments of the form: list(&$a, list(&$b, $c)) = $d; RFC: https://wiki.php.net/rfc/list_reference_assignment
show more ...
|
#
9cdd547e |
| 06-Dec-2017 |
Nikita Popov |
Fixed bug #74372
|
#
9379b319 |
| 05-Nov-2017 |
Tyson Andre |
Fix typo in UPGRADING, should be oci_unregister_taf_callback See de65a2243f5e52ccafc69889ab0b64f4481c5358 which exposes the unregister functionality. [ci skip]
|
#
88e94a0b |
| 05-Nov-2017 |
Tyson Andre |
Mention spl_object_id in UPGRADING notes This was implemented in PR #2611
|
#
b66eeb36 |
| 02-Nov-2017 |
Anatol Belski |
Note to UPGRADING about Spoofchecker::setRestrictionLevel()
|
#
e8237705 |
| 22-Oct-2017 |
Andrea Faulds |
Merge JSON_THROW_ON_ERROR
|
#
cb9d81ef |
| 05-Oct-2017 |
Dmitry Stogov |
Refactored recursion pretection
|