Merge branch 'PHP-7.3' into PHP-7.4

* PHP-7.3: SQLite3: add DEFENSIVE config for SQLite >= 3.26.0 as a mitigation strategy against potential security flaws
author: Christoph M. Becker <cmbecker69@gmx.de> 2019-03-11 16:31:26 +0100
committer: Christoph M. Becker <cmbecker69@gmx.de> 2019-03-11 16:31:26 +0100
commit: aefe0dfd61fa8b1f7e32eaa688f81a76a6956649 (patch)
tree: 8402f0cf90ebdae8da8f2bcd305606e5d77614dd /php.ini-development
parent: cc354a079073061336d8824eebba85042a0de104 (diff)
parent: e7ce7c6bb211011569d8036b663bc4ccd45b9984 (diff)
download: php-git-aefe0dfd61fa8b1f7e32eaa688f81a76a6956649.tar.gz
1 files changed, 11 insertions, 0 deletions
diff --git a/php.ini-development b/php.ini-development
index c6b63ebc44..9aadcd79f2 100644
--- a/php.ini-development
+++ b/php.ini-development
@@ -1004,8 +1004,19 @@ cli_server.color = On
 ;intl.use_exceptions = 0
 
 [sqlite3]
+; Directory pointing to SQLite3 extensions
+; http://php.net/sqlite3.extension-dir
 ;sqlite3.extension_dir =
 
+; SQLite defensive mode flag (only available from SQLite 3.26+)
+; When the defensive flag is enabled, language features that allow ordinary
+; SQL to deliberately corrupt the database file are disabled. This forbids
+; writing directly to the schema, shadow tables (eg. FTS data tables), or
+; the sqlite_dbpage virtual table.
+; https://www.sqlite.org/c3ref/c_dbconfig_defensive.html
+; (for older SQLite versions, this flag has no use)
+sqlite3.defensive = 1
+
 [Pcre]
 ; PCRE library backtracking limit.
 ; http://php.net/pcre.backtrack-limit
author	Christoph M. Becker <cmbecker69@gmx.de>	2019-03-11 16:31:26 +0100
committer	Christoph M. Becker <cmbecker69@gmx.de>	2019-03-11 16:31:26 +0100
commit	aefe0dfd61fa8b1f7e32eaa688f81a76a6956649 (patch)
tree	8402f0cf90ebdae8da8f2bcd305606e5d77614dd /php.ini-development
parent	cc354a079073061336d8824eebba85042a0de104 (diff)
parent	e7ce7c6bb211011569d8036b663bc4ccd45b9984 (diff)
download	php-git-aefe0dfd61fa8b1f7e32eaa688f81a76a6956649.tar.gz