#
900f0cab |
| 24-Oct-2023 |
icy17 <1061499390@qq.com> |
Fix null pointer dereferences in case of allocation failure Closes GH-12506.
|
#
c283c3ab |
| 15-Jul-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Sanitize libxml2 globals before parsing Fixes GHSA-3qrf-m4j2-pcrr. To parse a document with libxml2, you first need to create a parsing context. The parsing context contains par
Sanitize libxml2 globals before parsing Fixes GHSA-3qrf-m4j2-pcrr. To parse a document with libxml2, you first need to create a parsing context. The parsing context contains parsing options (e.g. XML_NOENT to substitute entities) that the application (in this case PHP) can set. Unfortunately, libxml2 also supports providing default set options. For example, if you call xmlSubstituteEntitiesDefault(1) then the XML_NOENT option will be added to the parsing options every time you create a parsing context **even if the application never requested XML_NOENT**. Third party extensions can override these globals, in particular the substitute entity global. This causes entity substitution to be unexpectedly active. Fix it by setting the parsing options to a sane known value. For API calls that depend on global state we introduce PHP_LIBXML_SANITIZE_GLOBALS() and PHP_LIBXML_RESTORE_GLOBALS(). For other APIs that work directly with a context we introduce php_libxml_sanitize_parse_ctxt_options().
show more ...
|
#
ec10b28d |
| 27-Jan-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Fix array overrun when appending slash to paths Fix it by extending the array sizes by one character. As the input is limited to the maximum path length, there will always be place to ap
Fix array overrun when appending slash to paths Fix it by extending the array sizes by one character. As the input is limited to the maximum path length, there will always be place to append the slash. As the php_check_specific_open_basedir() simply uses the strings to compare against each other, no new failures related to too long paths are introduced. We'll let the DOM and XML case handle a potentially too long path in the library code.
show more ...
|
Revision tags: php-8.1.7RC1, php-8.1.4RC1, php-8.1.3, php-8.1.2RC1, php-8.1.0, php-7.3.33, php-7.3.32 |
|
#
53f89219 |
| 12-Oct-2021 |
Nikita Popov |
Fix bug #81521 The current error message is incorrect -- the problem here is not that the property is invalid, but that these methods are unusable prior to loading data, same as read
Fix bug #81521 The current error message is incorrect -- the problem here is not that the property is invalid, but that these methods are unusable prior to loading data, same as read().
show more ...
|
Revision tags: php-7.3.31, php-7.3.30, php-7.3.29 |
|
#
aff36587 |
| 29-Jun-2021 |
Patrick Allaert |
Fixed some spaces used instead of tabs
|
#
9d2a466c |
| 09-Jun-2021 |
Nikita Popov |
Remove explicit assignments of zend_objects_destroy_object This is the default handler, no need to set it explicitly. This makes it easier to see which objects really have a custom dtor_
Remove explicit assignments of zend_objects_destroy_object This is the default handler, no need to set it explicitly. This makes it easier to see which objects really have a custom dtor_obj.
show more ...
|
#
940f599b |
| 25-May-2021 |
Nikita Popov |
Convert check into assertion in ext/xmlreader $this is requires to be instanceof self for quite a while now, so make this an assertion.
|
#
3c96d7e6 |
| 25-May-2021 |
Nikita Popov |
Remove some unnecessary null pointer checks in ext/xmlreader intern cannot be NULL.
|
#
01b3fc03 |
| 06-May-2021 |
KsaR |
Update http->https in license (#6945) 1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https. 2. Update few license 3.0 to 3.01 as
Update http->https in license (#6945) 1. Update: http://www.php.net/license/3_01.txt to https, as there is anyway server header "Location:" to https. 2. Update few license 3.0 to 3.01 as 3.0 states "php 5.1.1, 4.1.1, and earlier". 3. In some license comments is "at through the world-wide-web" while most is without "at", so deleted. 4. fixed indentation in some files before |
show more ...
|
Revision tags: php-7.3.28 |
|
#
272df442 |
| 22-Apr-2021 |
Christoph M. Becker |
Fix #73246: XMLReader: encoding length not checked libxml2 expects the passed encoding to be NUL terminated, so we reject strings with NUL bytes right away. Closes GH-6899.
|
#
1ec7cc96 |
| 01-Mar-2021 |
Nikita Popov |
Clarify types in XmlReader property handling Make it clearer that the specified type is really the only type that can be returned.
|
#
4c6533c2 |
| 17-Feb-2021 |
Máté Kocsis |
Generate class entries from stubs for com, standard, xmlreader, xmlwriter, xsl, zip, Zend Closes GH-6706
|
Revision tags: php-7.3.27 |
|
#
3e01f5af |
| 15-Jan-2021 |
Nikita Popov |
Replace zend_bool uses with bool We're starting to see a mix between uses of zend_bool and bool. Replace all usages with the standard bool type everywhere. Of course, zend_bool
Replace zend_bool uses with bool We're starting to see a mix between uses of zend_bool and bool. Replace all usages with the standard bool type everywhere. Of course, zend_bool is retained as an alias.
show more ...
|
Revision tags: php-7.3.26, php-7.3.26RC1, php-7.3.25, php-7.3.25RC1, php-7.3.24, php-7.3.24RC1 |
|
#
faea5ab8 |
| 05-Oct-2020 |
Nikita Popov |
Throw from XmlReader::expand() if DOM extension missing Otherwise it is hard to uphold the arginfo contract for this function -- we cannot simply mirror the zpp call, as the class en
Throw from XmlReader::expand() if DOM extension missing Otherwise it is hard to uphold the arginfo contract for this function -- we cannot simply mirror the zpp call, as the class entry it is based on does not exist.
show more ...
|
Revision tags: php-7.3.23, php-7.3.23RC1, php-7.3.22 |
|
#
f068fbcf |
| 19-Aug-2020 |
Máté Kocsis |
Promote warnings to exceptions in ext/xmlreader Closes GH-6021
|
Revision tags: php-7.3.22RC1, php-7.3.21, php-7.3.21RC1, php-7.3.20 |
|
#
2b5de6f8 |
| 01-Jul-2020 |
Max Semenik |
Remove proto comments from C files Closes GH-5758
|
Revision tags: php-7.3.20RC1, php-7.3.19, php-7.4.7RC1, php-7.3.19RC1 |
|
#
c7055f59 |
| 20-May-2020 |
George Peter Banyard |
Fix [-Wundef] warning in XMLReader extension
|
#
60412c37 |
| 03-May-2020 |
Máté Kocsis |
Fix UNKNOWN default values in ext/xml
|
Revision tags: php-7.3.18RC1, php-7.2.30, php-7.3.17 |
|
#
c5fb4f07 |
| 13-Apr-2020 |
Máté Kocsis |
Generate function entries from stubs for a couple of extensions Migrates ext/standard, ext/tidy, ext/tokenizer, ext/xml, ext/xml_reader, and ext/xml_writer. Closes GH-5381.
|
Revision tags: php-7.3.17RC1, php-7.3.18, php-7.3.16, php-7.3.16RC1, php-7.3.15RC1, php-7.3.15, php-7.3.14, php-7.3.14RC1 |
|
#
34570372 |
| 31-Dec-2019 |
Máté Kocsis |
Use RETURN_THROWS() during ZPP in most of the extensions Except for some bigger ones: reflection, sodium, spl
|
Revision tags: php-7.3.13, php-7.3.13RC1, php-7.2.26RC1, php-7.4.0, php-7.2.25, php-7.3.12, php-7.4.0RC6, php-7.3.12RC1, php-7.2.25RC1, php-7.4.0RC5, php-7.1.33, php-7.2.24, php-7.3.11, php-7.4.0RC4 |
|
#
64685782 |
| 11-Oct-2019 |
Christoph M. Becker |
Allow to call XMLReader::open() and ::XML() statically The implementation of `XMLReader::open()` and `XMLReader::XML()` still supports calling the methods statically and non-statically.
Allow to call XMLReader::open() and ::XML() statically The implementation of `XMLReader::open()` and `XMLReader::XML()` still supports calling the methods statically and non-statically. However, as of PHP 8.0.0, calling these methods statically is not allowed, because they are not declared as static methods. Since we consider it to be cleaner to call these methods statically, but had deprecated to call them statically, we properly support both variants. We implement support for static and non-static calls by overloading, so that non-static calls have access to the `$this` pointer.
show more ...
|
Revision tags: php-7.3.11RC1, php-7.2.24RC1, php-7.4.0RC3 |
|
#
5d6e923d |
| 24-Sep-2019 |
Gabriel Caruso |
Remove mention of PHP major version in Copyright headers Closes GH-4732.
|
Revision tags: php-7.2.23, php-7.3.10, php-7.4.0RC2, php-7.2.23RC1, php-7.3.10RC1 |
|
#
616027cf |
| 04-Sep-2019 |
Christoph M. Becker |
Add ext/xmlreader stubs
|
#
f3dad040 |
| 04-Sep-2019 |
Christoph M. Becker |
Add missing zend_parse_paramters_none()
|
Revision tags: php-7.4.0RC1, php-7.1.32, php-7.2.22, php-7.3.9, php-7.4.0beta4, php-7.2.22RC1, php-7.3.9RC1, php-7.4.0beta2, php-7.1.31, php-7.2.21, php-7.3.8, php-7.4.0beta1, php-7.2.21RC1, php-7.3.8RC1, php-7.4.0alpha3, php-7.3.7, php-7.2.20, php-7.4.0alpha2, php-7.3.7RC3, php-7.3.7RC2, php-7.2.20RC2, php-7.4.0alpha1, php-7.3.7RC1, php-7.2.20RC1 |
|
#
457392fa |
| 05-Jun-2019 |
Dmitry Stogov |
Cheaper checks for exceptions thrown from __toString()
|