| #
47699a24 |
| 03-Feb-2018 |
Nikita Popov |
Bump libcurl requirement to 7.15.5
The existence of the following functions is now guaranteed:
* curl_escape()
* curl_unescape()
* curl_multi_setopt()
libcurl 7.15.5
Bump libcurl requirement to 7.15.5
The existence of the following functions is now guaranteed:
* curl_escape()
* curl_unescape()
* curl_multi_setopt()
libcurl 7.15.5 has been released 11.5 years ago and is available
even in RHEL 5.
show more ...
|
| #
85021a39 |
| 06-Dec-2017 |
Benjamin Morel |
Add CURLOPT_REQUEST_TARGET constant
|
| #
b2a1199d |
| 12-Jan-2018 |
Anatol Belski |
[ci skip] Fix typos
|
| #
d857703b |
| 12-Jan-2018 |
Anatol Belski |
[ci skip] Update UPGRADING
|
| #
45db77ed |
| 11-Jan-2018 |
Anatol Belski |
Revert "Add possibility to lower timer resolution"
This reverts commit c3717d9aecbe65cb2e5778a24a91e9eaf638639e.
The final mitigation of the consequences with spectre should be
Revert "Add possibility to lower timer resolution"
This reverts commit c3717d9aecbe65cb2e5778a24a91e9eaf638639e.
The final mitigation of the consequences with spectre should be
discussed more also with the regard to the happenings on the
developments. Right now a preliminary mitigation might be wrong or
suboptimal, thus reverting this.
show more ...
|
| #
c3717d9a |
| 10-Jan-2018 |
Anatol Belski |
Add possibility to lower timer resolution
The recently discovered security flaw Spectre requires a high resolution
timer. To the today's knowledge, PHP can't be used to create an attack
Add possibility to lower timer resolution
The recently discovered security flaw Spectre requires a high resolution
timer. To the today's knowledge, PHP can't be used to create an attack for
this flaw. Still some concerns were raised, that there might be impact in
shared hosting environments. This patch adds a possibility to reduce the
timer resolution by an ini setting, thus giving administrators full
control. Especially, as the flaw was also demonstrated by an abuse of
the JS engine in a browser, Firefox reduced several time sources to 20us.
Any programming language, that doesn't compile to JIT, won't be able to
produce an attack vector for Meltdown and Spectre, at least by todays
knowledge. There are also other factors that say that the security
concern on the hrtime feature is to the big part not justified, still we
aim JIT in the future. Thus, adding a possibility to control the timer
resolution is a good and small enough tradeoff for safety and future.
show more ...
|
| #
83497327 |
| 07-Jan-2018 |
Anatol Belski |
Implement high resolution monotonic timer function hrtime()
|
| #
ec69cb66 |
| 04-Jan-2018 |
Xinchen Hui |
Added entry on UPGRADING
|
| #
b2b2b437 |
| 25-Dec-2017 |
Nikita Popov |
Add _IS_NUMBER as cast_object() target type
convert_scalar_to_number() will now call cast_object() with an
_IS_NUMBER argument, in which case the cast handler should return
either an
Add _IS_NUMBER as cast_object() target type
convert_scalar_to_number() will now call cast_object() with an
_IS_NUMBER argument, in which case the cast handler should return
either an integer or floating point number, whichever is more
appropriate.
Previously convert_scalar_to_number() unconditionally converted
objects to integers instead.
Fixes bug #53033.
Fixes bug #54973.
Fixes bug #73108.
show more ...
|
| #
688b9136 |
| 23-Dec-2017 |
Nikita Popov |
Fixed bug #54043
|
| #
161fd757 |
| 19-Dec-2017 |
Nikita Popov |
Bump libcurl requirement to 7.12.1
The existence of the following functions is now guaranteed:
* curl_reset()
* curl_strerror()
* curl_multi_strerror()
* curl_share_strer
Bump libcurl requirement to 7.12.1
The existence of the following functions is now guaranteed:
* curl_reset()
* curl_strerror()
* curl_multi_strerror()
* curl_share_strerror()
libcurl 7.12.1 has been released more than 13 years ago and is
available even in RHEL 4.
show more ...
|
| #
e5123055 |
| 18-Dec-2017 |
Nikita Popov |
Remove opcache.inherited_hack
This ini directive has already been ignored since PHP 5.3.
|
| #
a1d2bf83 |
| 18-Dec-2017 |
Nikita Popov |
Document removal of opcache.fast_shutdown
[ci skip]
|
| #
43d9f599 |
| 16-Dec-2017 |
Nikita Popov |
Fix duplicate NEWS entry
Also add an UPGRADING note while at it, as this is potentially
BC breaking.
[ci skip]
|
| #
fc80114a |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_kronecker()
Exposes the mpz_kronecker(), mpz_si_kronecker() and
mpz_kronecher_si() for computing the Kronecker symbol.
|
| #
10a336d3 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_perfect_power()
Exposes the mpz_perfect_power_p() function.
We already had the more specific gmp_perfect_square() function.
|
| #
a1d36a11 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_lcm()
Exposes mpz_lcm() and mpz_lcm_ui() for calculating the least
common multiple.
We already expose the somewhat complementary gmp_gcd() function.
|
| #
7fea7967 |
| 09-Dec-2017 |
Nikita Popov |
Add gmp_binomial()
Adds PHP bindings for mpz_bin_ui and mpz_bin_uiui, for calculating
binomial coefficients.
|
| #
6d4de4cf |
| 06-Oct-2017 |
David Walker |
Implement list() reference assignments
Support list() reference assignments of the form:
list(&$a, list(&$b, $c)) = $d;
RFC: https://wiki.php.net/rfc/list_reference_ass
Implement list() reference assignments
Support list() reference assignments of the form:
list(&$a, list(&$b, $c)) = $d;
RFC: https://wiki.php.net/rfc/list_reference_assignment
show more ...
|
| #
9cdd547e |
| 06-Dec-2017 |
Nikita Popov |
Fixed bug #74372
|
| #
9379b319 |
| 05-Nov-2017 |
Tyson Andre |
Fix typo in UPGRADING, should be oci_unregister_taf_callback
See de65a2243f5e52ccafc69889ab0b64f4481c5358 which exposes
the unregister functionality.
[ci skip]
|
| #
88e94a0b |
| 05-Nov-2017 |
Tyson Andre |
Mention spl_object_id in UPGRADING notes
This was implemented in PR #2611
|
| #
b66eeb36 |
| 02-Nov-2017 |
Anatol Belski |
Note to UPGRADING about Spoofchecker::setRestrictionLevel()
|
| #
e8237705 |
| 22-Oct-2017 |
Andrea Faulds |
Merge JSON_THROW_ON_ERROR
|
| #
cb9d81ef |
| 05-Oct-2017 |
Dmitry Stogov |
Refactored recursion pretection
|
