| #
a3891d9d |
| 22-Dec-2022 |
Jakub Zelenka |
Fix GH-9981: FPM does not reset fastcgi.error_header |
| #
29926c32 |
| 23-Dec-2022 |
Derick Rethans |
Merge remote-tracking branch 'derickr/gh10072-execute-ex' into PHP-8.1
|
| #
5f1311a9 |
| 22-Dec-2022 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix undefined behaviour in phpdbg_load_module_or_extension
If zend_register_module_ex were to return NULL, then module_entry will
be set to NULL, and the if's body will load module_entry
Fix undefined behaviour in phpdbg_load_module_or_extension
If zend_register_module_ex were to return NULL, then module_entry will
be set to NULL, and the if's body will load module_entry->name. Since
module_entry is NULL, loading the name would cause a NULL pointer
dereference. However, since a NULL pointer dereference is undefined
behaviour, the compiler is free to remove the check.
Fix it by using *name instead of module_entry->name.
Closes GH-10157
Signed-off-by: George Peter Banyard <girgias@php.net>
show more ...
|
| #
c4487b7a |
| 17-Dec-2022 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Initialize ping_auto_globals_mask to prevent undefined behaviour
Closes GH-10121 |
| #
6de376a2 |
| 21-Dec-2022 |
Arnaud Le Blanc |
[ci skip] NEWS |
| #
d19a70c9 |
| 20-Dec-2022 |
Derick Rethans |
Fix GH-9891: DateTime modify with unixtimestamp (@) must work like setTimestamp |
| #
b8ac2071 |
| 16-Dec-2022 |
Christoph M. Becker |
Fix GH-10112: LDAP\Connection::__construct() refers to ldap_create()
There is no `ldap_create()`, but rather `ldap_connect()`.
Closes GH-10115. |
| #
7a983e28 |
| 15-Nov-2022 |
Tyson Andre |
Fix Windows shmget() wrt. IPC_PRIVATE
Fixes #9944
https://man7.org/linux/man-pages/man2/shmget.2.html notes
The name choice IPC_PRIVATE was perhaps unfortunate, IPC_NEW
Fix Windows shmget() wrt. IPC_PRIVATE
Fixes #9944
https://man7.org/linux/man-pages/man2/shmget.2.html notes
The name choice IPC_PRIVATE was perhaps unfortunate, IPC_NEW
would more clearly show its function.
Closes GH-9946.
show more ...
|
| #
aef7d810 |
| 06-Dec-2022 |
Christoph M. Becker |
Fix GH-9949: Partial content on incomplete POST request
`ap_get_brigade()` may fail for different reasons, and we must not
pretend that a partially read POST payload is fine; instead we
Fix GH-9949: Partial content on incomplete POST request
`ap_get_brigade()` may fail for different reasons, and we must not
pretend that a partially read POST payload is fine; instead we report
a content length of zero what matches all other `read_post()` callbacks
of bundled SAPIs.
Closes GH-10059.
show more ...
|
| #
696bb385 |
| 07-Dec-2022 |
Ben Ramsey |
PHP-8.1 is now for PHP 8.1.15-dev |
| #
2f6b9e6c |
| 05-Dec-2022 |
Christoph M. Becker |
Fix #81742: open_basedir bypass in SQLite3 by using file URI
A previous fix[1] was not sufficient to catch all potential file URIs,
because the patch did not cater to URL encoding. Prop
Fix #81742: open_basedir bypass in SQLite3 by using file URI
A previous fix[1] was not sufficient to catch all potential file URIs,
because the patch did not cater to URL encoding. Properly parsing and
decoding the URI may yield a different result than the handling of
SQLite3, so we play it safe, and reject any file URIs if open_basedir
is configured.
[1] <https://bugs.php.net/bug.php?id=77967>
Closes GH-10018.
show more ...
|
| #
608ddb03 |
| 02-Dec-2022 |
George Peter Banyard |
Fix GH-10011 (Trampoline autoloader will get reregistered and cannot be unregistered)
There are two issues to resolve:
1. The FCC is not refetch when trying to unregister a trampoline
Fix GH-10011 (Trampoline autoloader will get reregistered and cannot be unregistered)
There are two issues to resolve:
1. The FCC is not refetch when trying to unregister a trampoline
2. Comparing the function pointer of trampolines is meaningless as they are reallocated, thus we need to compare the name of the function
Found while working on GH-8294
Closes GH-10033
show more ...
|
| #
93592ea7 |
| 17-Nov-2022 |
蝦米 |
Fix GH-9769: Misleading error message for unpacking of objects
Only arrays can be unpacked in constant expressions.
Closes GH-9776. |
| #
d0218511 |
| 30-Nov-2022 |
Derick Rethans |
Fixed GH-9699, GH-9866, and GH-9880 (problems with diff); and GH-9700 (greedy tzid parsing) |
| #
44377c3c |
| 29-Nov-2022 |
Christoph M. Becker |
Fix GH-9971: Incorrect NUMERIC value returned from PDO_Firebird
Dialect 1 databases store and transfer `NUMERIC(15,2)` values as
doubles, which we need to cater to in `firebird_stmt_get_
Fix GH-9971: Incorrect NUMERIC value returned from PDO_Firebird
Dialect 1 databases store and transfer `NUMERIC(15,2)` values as
doubles, which we need to cater to in `firebird_stmt_get_col()` to
avoid `ZEND_ASSUME(0)` to ever be triggered, since that may result
in undefined behavior.
Since adding a regression test would require to create a dialect 1
database, we go without it.
Closes GH-10021.
show more ...
|
| #
500b28ad |
| 25-Nov-2022 |
Jakub Zelenka |
Fix GH-10000: Test failures when OpenSSL compiled with no-dsa |
| #
4987e65a |
| 25-Nov-2022 |
Arnaud Le Blanc |
[ci skip] NEWS |
| #
ce572213 |
| 25-Nov-2022 |
Jakub Zelenka |
Fix GH-9064: PHP fails to build if openssl was built with no-ec |
| #
c9c1934f |
| 28-Aug-2022 |
Jakub Zelenka |
Fix GH-8517: FPM child pointer can be potentially uninitialized
There might be a moment when the child log event is executed after
freeing a child. That could possibly happen if the chil
Fix GH-8517: FPM child pointer can be potentially uninitialized
There might be a moment when the child log event is executed after
freeing a child. That could possibly happen if the child output is
triggered at the same as the terminating of the child. Then the output
event could be potentially processed after the terminating event which
would cause this kind of issue.
The issue might got more visible after introducing the log_stream on
a child because it is more likely that this cannot be dereferenced
after free. However it is very hard to reproduce this issue so there
is no test for this.
The fix basically prevents passing a child pointer and instead passes
the child PID and then looks the child up by the PID when it is being
processed. This is obviously slower but it is a safe way to do it and
the slow down should not be hopefully visible in a way that it would
overload a master process.
show more ...
|
| #
1767f32c |
| 22-Nov-2022 |
Jakub Zelenka |
[ci skip] Fix NEWS FPM entries |
| #
5a4520bc |
| 21-Nov-2022 |
Jakub Zelenka |
Fix bug #68207: Setting fastcgi.error_header can result in a WARNING |
| #
31b20f17 |
| 22-Nov-2022 |
Jakub Zelenka |
Merge branch 'PHP-8.0' into PHP-8.1
|
| #
72da2b02 |
| 22-Nov-2022 |
Petr Sumbera |
php-fpm: fix Solaris port events.mechanism
Closes GH-9959. |
| #
6fbf81c6 |
| 09-Nov-2022 |
George Peter Banyard |
Fix GH-9883 SplFileObject::__toString() reads next line
We need to overwrite the __toString magic method for SplFileObject, similarly to how DirectoryIterator overwrites it
Moreover, th
Fix GH-9883 SplFileObject::__toString() reads next line
We need to overwrite the __toString magic method for SplFileObject, similarly to how DirectoryIterator overwrites it
Moreover, the custom cast handler is useless as we define __toString methods, so use the standard one instead.
Closes GH-9912
show more ...
|
| #
2d94ee5f |
| 15-Nov-2022 |
Christoph M. Becker |
Avoid undefined behavior in Windows ftok(3) emulation
`.nFileIndexHigh` is a unsigned 32bit number. Casting that to `__int64`
and shifting left by 32bits triggers undefined behavior if
Avoid undefined behavior in Windows ftok(3) emulation
`.nFileIndexHigh` is a unsigned 32bit number. Casting that to `__int64`
and shifting left by 32bits triggers undefined behavior if the most
significant bit of `.nFileIndexHigh` is set. We could avoid that by
casting to `(__uint64)`, but in that case the whole clause doesn't have
an effect anymore, so we drop it altogether.
Closes GH-9958.
show more ...
|
