summaryrefslogtreecommitdiff
path: root/ext/xmlrpc
Commit message (Collapse)AuthorAgeFilesLines
* Fix #78173: XML-RPC mutates immutable objects during encodingAsher Baker2019-06-181-3/+3
| | | | | | | | With opcache.protect_memory=1 enabled, the XML-RPC extension causes a segfault on PHP 7.2 as it is modifying the recursion counter of objects it touches, without first checking if they are immutable or not. This doesn't affect 7.3+
* Merge branch 'PHP-7.1' into PHP-7.2Stanislav Malyshev2019-01-064-2/+32
|\ | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-7.1: Fix #77369 - memcpy with negative length via crafted DNS response Fix more issues with encodilng length Fix #77270: imagecolormatch Out Of Bounds Write on Heap Fix bug #77380 (Global out of bounds read in xmlrpc base64 code) Fix bug #77371 (heap buffer overflow in mb regex functions - compile_string_node) Fix bug #77370 - check that we do not read past buffer end when parsing multibytes Fix #77269: Potential unsigned underflow in gdImageScale Fix bug #77247 (heap buffer overflow in phar_detect_phar_fname_ext) Fix bug #77242 (heap out of bounds read in xmlrpc_decode()) Regenerate certs for openssl tests
| * Fix bug #77380 (Global out of bounds read in xmlrpc base64 code)Stanislav Malyshev2019-01-062-2/+19
| |
| * Fix bug #77242 (heap out of bounds read in xmlrpc_decode())Stanislav Malyshev2019-01-062-0/+13
| |
| * Sync leading and final newlines in *.phpt sectionsPeter Kokot2018-10-155-19/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds missing newlines, trims multiple redundant final newlines into a single one, and trims redundant leading newlines in all *.phpt sections. According to POSIX, a line is a sequence of zero or more non-' <newline>' characters plus a terminating '<newline>' character. [1] Files should normally have at least one final newline character. C89 [2] and later standards [3] mention a final newline: "A source file that is not empty shall end in a new-line character, which shall not be immediately preceded by a backslash character." Although it is not mandatory for all files to have a final newline fixed, a more consistent and homogeneous approach brings less of commit differences issues and a better development experience in certain text editors and IDEs. [1] http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/V1_chap03.html#tag_03_206 [2] https://port70.net/~nsz/c/c89/c89-draft.html#2.1.1.2 [3] https://port70.net/~nsz/c/c99/n1256.html#5.1.1.2
| * Trim trailing whitespace in *.phptPeter Kokot2018-10-1414-18/+18
| |
| * Sync leading and final newlines in source code filesPeter Kokot2018-10-1415-33/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds missing newlines, trims multiple redundant final newlines into a single one, and trims redundant leading newlines. According to POSIX, a line is a sequence of zero or more non-' <newline>' characters plus a terminating '<newline>' character. [1] Files should normally have at least one final newline character. C89 [2] and later standards [3] mention a final newline: "A source file that is not empty shall end in a new-line character, which shall not be immediately preceded by a backslash character." Although it is not mandatory for all files to have a final newline fixed, a more consistent and homogeneous approach brings less of commit differences issues and a better development experience in certain text editors and IDEs. [1] http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/V1_chap03.html#tag_03_206 [2] https://port70.net/~nsz/c/c89/c89-draft.html#2.1.1.2 [3] https://port70.net/~nsz/c/c99/n1256.html#5.1.1.2
| * Trim trailing whitespace in source code filesPeter Kokot2018-10-133-6/+6
| |
* | Fix #75282: xmlrpc_encode_request() crashesChristoph M. Becker2018-10-213-1/+14
| | | | | | | | | | | | | | | | | | | | | | Since we allow ext/xmlrpc to be built against a system libxmlrpc(-epi), we must not `efree` memory which has been allocated via `malloc`. To distinguish bundled and system libxmlrpc(-epi) we introduce the macro `HAVE_XMLRPC_BUNDLED` (analogous to how it is done by ext/gd). We deliberately keep the ugly `#ifdef`s, instead of tucking them away in an `XMLRPC_FREE()` macro, to not forget that it is a bad idea to fork and bundle a library, but to also allow building against an unpatched system lib.
* | Sync leading and final newlines in *.phpt sectionsPeter Kokot2018-10-155-19/+5
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds missing newlines, trims multiple redundant final newlines into a single one, and trims redundant leading newlines in all *.phpt sections. According to POSIX, a line is a sequence of zero or more non-' <newline>' characters plus a terminating '<newline>' character. [1] Files should normally have at least one final newline character. C89 [2] and later standards [3] mention a final newline: "A source file that is not empty shall end in a new-line character, which shall not be immediately preceded by a backslash character." Although it is not mandatory for all files to have a final newline fixed, a more consistent and homogeneous approach brings less of commit differences issues and a better development experience in certain text editors and IDEs. [1] http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/V1_chap03.html#tag_03_206 [2] https://port70.net/~nsz/c/c89/c89-draft.html#2.1.1.2 [3] https://port70.net/~nsz/c/c99/n1256.html#5.1.1.2
* | Trim trailing whitespace in *.phptPeter Kokot2018-10-1414-18/+18
| |
* | Sync leading and final newlines in source code filesPeter Kokot2018-10-1415-33/+0
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This patch adds missing newlines, trims multiple redundant final newlines into a single one, and trims redundant leading newlines. According to POSIX, a line is a sequence of zero or more non-' <newline>' characters plus a terminating '<newline>' character. [1] Files should normally have at least one final newline character. C89 [2] and later standards [3] mention a final newline: "A source file that is not empty shall end in a new-line character, which shall not be immediately preceded by a backslash character." Although it is not mandatory for all files to have a final newline fixed, a more consistent and homogeneous approach brings less of commit differences issues and a better development experience in certain text editors and IDEs. [1] http://pubs.opengroup.org/onlinepubs/9699919799/basedefs/V1_chap03.html#tag_03_206 [2] https://port70.net/~nsz/c/c89/c89-draft.html#2.1.1.2 [3] https://port70.net/~nsz/c/c99/n1256.html#5.1.1.2
* | Trim trailing whitespace in source code filesPeter Kokot2018-10-133-6/+6
| |
* | Merge branch 'PHP-7.1' into PHP-7.2Joe2018-02-081-1/+1
|\ \ | |/ | | | | | | * PHP-7.1: Fixes bug #75871 Use pkg-config for libxml2 if available
| * Fixes bug #75871 Use pkg-config for libxml2 if availablePedro Magalhães2018-02-081-1/+1
| |
| * year++Xinchen Hui2018-01-022-2/+2
| |
* | year++Xinchen Hui2018-01-022-2/+2
| |
* | Merge branch 'PHP-7.1' into PHP-7.2Nikita Popov2017-08-022-2/+58
|\ \ | |/
| * Merge branch 'PHP-7.0' into PHP-7.1Nikita Popov2017-08-022-2/+58
| |\
| | * Bug #74975: Different serialization for classesAndreas Treichel2017-08-022-2/+58
| | |
| | * Update copyright headers to 2017Sammy Kaye Powers2017-01-042-2/+2
| | |
| | * More int->size_t and string overflow fixesStanislav Malyshev2016-11-052-3/+3
| | |
| * | Update copyright headers to 2017Sammy Kaye Powers2017-01-042-2/+2
| | |
* | | Update copyright headers to 2017Sammy Kaye Powers2017-01-022-2/+2
| | |
* | | further normalizations, uint vs uint32_tAnatol Belski2016-11-261-1/+1
| | | | | | | | | | | | | | | | | | fix merge mistake yet one more replacement run
* | | Remove the b prefix from literals on unrelated testsPedro Magalhães2016-11-201-2/+2
| | |
* | | Merge branch 'PHP-7.1'Stanislav Malyshev2016-11-052-3/+3
|\ \ \ | |/ / | | | | | | | | | * PHP-7.1: More int->size_t and string overflow fixes
| * | Merge branch 'PHP-7.0' into PHP-7.1Stanislav Malyshev2016-11-052-3/+3
| |\ \ | | | | | | | | | | | | | | | | * PHP-7.0: More int->size_t and string overflow fixes
| | * | More int->size_t and string overflow fixesStanislav Malyshev2016-11-052-3/+3
| | |/
* | | Merge branch 'PHP-7.1'Stanislav Malyshev2016-11-032-2/+6
|\ \ \ | |/ / | | | | | | | | | | | | | | | * PHP-7.1: Add length check for bzcompress too - fix for bug #73356 More string length checks & fixes More string length checks & fixes
| * | Merge branch 'PHP-7.0' into PHP-7.1Stanislav Malyshev2016-11-032-2/+7
| |\ \ | | |/ | | | | | | | | | | | | | | | * PHP-7.0: Add length check for bzcompress too - fix for bug #73356 More string length checks & fixes More string length checks & fixes
| | * Merge branch 'PHP-5.6' into PHP-7.0Stanislav Malyshev2016-11-032-2/+7
| | |\ | | | | | | | | | | | | | | | | * PHP-5.6: More string length checks & fixes
| | | * More string length checks & fixesStanislav Malyshev2016-11-032-10/+15
| | | |
| | * | Fixed bug #72647 (xmlrpc_encode() unexpected output after referencing array ↵Xinchen Hui2016-07-222-0/+37
| | | | | | | | | | | | | | | | elements)
* | | | remove redundant includesAnatol Belski2016-10-201-11/+0
| | | |
* | | | fix Windows compilationAnatol Belski2016-10-208-38/+1
| | | | | | | | | | | | | | | | | | | | php.h is included, it contains all the stuff needed and conflicts otherwise.
* | | | Implement #72612 (libxmlrc uses system malloc instead of PHP alloc routines)Joe Watkins2016-10-1913-98/+101
|/ / /
* | | Merge branch 'PHP-7.0' into PHP-7.1Xinchen Hui2016-07-222-0/+37
|\ \ \ | | | | | | | | | | | | | | | | * PHP-7.0: Fixed bug #72647 (xmlrpc_encode() unexpected output after referencing array elements)
| * | | Fixed bug #72647 (xmlrpc_encode() unexpected output after referencing array ↵Xinchen Hui2016-07-222-0/+37
| |/ / | | | | | | | | | elements)
* | | Merge branch 'PHP-7.0'Stanislav Malyshev2016-07-192-5/+21
|\ \ \ | |/ / | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-7.0: (27 commits) fix #72519, possible OOB using imagegif fix #72512, invalid read or write for palette image when invalid transparent index is used Apparently some envs miss SIZE_MAX Fix tests Fix bug #72618: NULL Pointer Dereference in exif_process_user_comment Partial fix for bug #72613 - do not allow reading past error read Partial fix for bug #72613 - do not treat negative returns from bz2 as size_t Fix bug #72606: heap-buffer-overflow (write) simplestring_addn simplestring.c Fix for bug #72558, Integer overflow error within _gdContributionsAlloc() Fix bug #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE update NEWS Fixed bug #72570 Segmentation fault when binding parameters on a query without placeholders Fix bug #72562 - destroy var_hash properly Fix bug #72551 and bug #72552 - check before converting size_t->int Fix bug #72541 - size_t overflow lead to heap corruption Fix bug #72533 (locale_accept_from_http out-of-bounds access) Fix fir bug #72520 Fix for bug #72513 Fix for bug #72513 CS fix and comments with bug ID ... Conflicts: ext/standard/basic_functions.c
| * | Merge branch 'PHP-5.6' into PHP-7.0Stanislav Malyshev2016-07-192-5/+21
| |\ \ | | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6: fix #72519, possible OOB using imagegif fix #72512, invalid read or write for palette image when invalid transparent index is used Apparently some envs miss SIZE_MAX Fix tests Fix bug #72618: NULL Pointer Dereference in exif_process_user_comment Partial fix for bug #72613 - do not treat negative returns from bz2 as size_t Fix bug #72606: heap-buffer-overflow (write) simplestring_addn simplestring.c Fix for bug #72558, Integer overflow error within _gdContributionsAlloc() Fix bug #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE Fix bug #72562 - destroy var_hash properly Fix bug #72533 (locale_accept_from_http out-of-bounds access) Fix fir bug #72520 Fix for bug #72513 Fix for bug #72513 CS fix and comments with bug ID Fix for HTTP_PROXY issue. 5.6.24RC1 add tests for bug #72512 Fixed bug #72512 gdImageTrueColorToPaletteBody allows arbitrary write/read access Fixed bug #72479 - same as #72434 Conflicts: Zend/zend_virtual_cwd.c ext/bz2/bz2.c ext/exif/exif.c ext/session/session.c ext/snmp/snmp.c ext/standard/basic_functions.c main/SAPI.c main/php_variables.c
| | * Merge branch 'PHP-5.5' into PHP-5.6Stanislav Malyshev2016-07-192-25/+41
| | |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.5: fix #72519, possible OOB using imagegif fix #72512, invalid read or write for palette image when invalid transparent index is used Apparently some envs miss SIZE_MAX Fix tests Fix bug #72618: NULL Pointer Dereference in exif_process_user_comment Partial fix for bug #72613 - do not treat negative returns from bz2 as size_t Fix bug #72606: heap-buffer-overflow (write) simplestring_addn simplestring.c Fix for bug #72558, Integer overflow error within _gdContributionsAlloc() Fix bug #72603: Out of bound read in exif_process_IFD_in_MAKERNOTE Fix bug #72562 - destroy var_hash properly Fix bug #72533 (locale_accept_from_http out-of-bounds access) Fix fir bug #72520 Fix for bug #72513 CS fix and comments with bug ID Fix for HTTP_PROXY issue. add tests for bug #72512 Fixed bug #72512 gdImageTrueColorToPaletteBody allows arbitrary write/read access Fixed bug #72479 - same as #72434 Conflicts: ext/bz2/bz2.c main/SAPI.c main/php_variables.c
| | | * Apparently some envs miss SIZE_MAXStanislav Malyshev2016-07-191-0/+3
| | | |
| | | * Fix bug #72606: heap-buffer-overflow (write) simplestring_addn simplestring.cStanislav Malyshev2016-07-182-25/+38
| | | |
* | | | Merge branch 'throw-error-in-extensions'Aaron Piotrowski2016-07-051-1/+1
|\ \ \ \
| * | | | Replace zend_ce_error with NULL and replace more E_ERROR with thrown ErrorAaron Piotrowski2016-06-131-2/+1
| | | | |
| * | | | Merge branch 'master' into throw-error-in-extensionsAaron Piotrowski2016-06-107-42/+177
| |\ \ \ \ | | |/ / /
| * | | | Convert E_ERROR to thrown Error in extensionsAaron Piotrowski2015-07-051-1/+2
| | | | |
* | | | | Added ZEND_ATTRIBUTE_FORMAT to some middind functions.Dmitry Stogov2016-06-211-1/+1
| |/ / / |/| | | | | | | | | | | | | | | "%p" replaced by ZEND_LONG_FMT to avoid compilation warnings. Fixed most incorrect use cases of format specifiers.
* | | | fix test portabilityAnatol Belski2016-05-311-1/+6
| | | |
View Lorry Controller Status