summaryrefslogtreecommitdiff
path: root/ext/xsl
Commit message (Collapse)AuthorAgeFilesLines
...
* year++Xinchen Hui2018-01-024-4/+4
|
* Cleanup type conversionDmitry Stogov2017-12-071-2/+1
|
* Add zend_object_alloc() APINikita Popov2017-11-251-1/+1
| | | | | | | | | | | Using ecalloc() to create objects is expensive, because the dynamic-size memset() is unreasonably slow. Make sure we only zero the main object structure with known size, as the properties are intialized separately anyway. Technically we do not need to zero the embedded zend_object structure either, but as long as the memset argument is constant, a couple more bytes don't really matter.
* RC manipulation cleanup 2Xinchen Hui2017-11-021-3/+1
|
* Avoid HashTable allocations for empty arrays (using zend_empty_array).Dmitry Stogov2017-10-241-1/+3
|
* Refactored array creation API. array_init() and array_init_size() are ↵Dmitry Stogov2017-09-202-6/+3
| | | | converted into macros calling zend_new_array(). They are not functions anymore and don't return any values.
* Merge branch 'PHP-7.1' into PHP-7.2Anatol Belski2017-09-112-0/+207
|\ | | | | | | | | * PHP-7.1: Fork test to keep up with libxsl >= 1.1.30
| * Merge branch 'PHP-7.0' into PHP-7.1Anatol Belski2017-09-112-0/+207
| |\ | | | | | | | | | | | | * PHP-7.0: Fork test to keep up with libxsl >= 1.1.30
| | * Fork test to keep up with libxsl >= 1.1.30Anatol Belski2017-09-112-0/+207
| | | | | | | | | | | | | | | | | | The behavior of date parsing has changed and is reflected in the changelog. Invalid dates are not accepted, in particular dates with a negative year, as in this test.
| | * Update copyright headers to 2017Sammy Kaye Powers2017-01-044-4/+4
| | |
| * | Update copyright headers to 2017Sammy Kaye Powers2017-01-044-4/+4
| | |
* | | Deprecate __autoload()Nikita Popov2017-02-031-2/+2
| | |
* | | Update copyright headers to 2017Sammy Kaye Powers2017-01-024-4/+4
| | |
* | | Remove more PHP 6 leftovers from testsNikita Popov2016-11-242-4/+4
|/ /
* | Fixed compilation warningsDmitry Stogov2016-06-221-5/+4
| |
* | Fixed the UTF-8 and long path support in the streams on Windows.Anatol Belski2016-06-202-0/+37
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | Since long the default PHP charset is UTF-8, however the Windows part is out of step with this important point. The current implementation in PHP doesn't technically permit to handle UTF-8 filepath and several other things. Till now, only the ANSI compatible APIs are being used. Here is more about it https://msdn.microsoft.com/en-us/library/windows/desktop/dd317752%28v=vs.85%29.aspx The patch fixes not only issues with multibyte filenames under incompatible codepages, but indirectly also issues with some other multibyte encodings like BIG5, Shift-JIS, etc. by providing a clean way to access filenames in UTF-8. Below is a small list of issues from the bug tracker, that are getting fixed: https://bugs.php.net/63401 https://bugs.php.net/41199 https://bugs.php.net/50203 https://bugs.php.net/71509 https://bugs.php.net/64699 https://bugs.php.net/64506 https://bugs.php.net/30195 https://bugs.php.net/65358 https://bugs.php.net/61315 https://bugs.php.net/70943 https://bugs.php.net/70903 https://bugs.php.net/63593 https://bugs.php.net/54977 https://bugs.php.net/54028 https://bugs.php.net/43148 https://bugs.php.net/30730 https://bugs.php.net/33350 https://bugs.php.net/35300 https://bugs.php.net/46990 https://bugs.php.net/61309 https://bugs.php.net/69333 https://bugs.php.net/45517 https://bugs.php.net/70551 https://bugs.php.net/50197 https://bugs.php.net/72200 https://bugs.php.net/37672 Yet more related tickets can for sure be found - on bugs.php.net, Stackoverflow and Github. Some of the bugs are pretty recent, some descend to early 2000th, but the user comments in there last even till today. Just for example, bug #30195 was opened in 2004, the latest comment in there was made in 2014. It is certain, that these bugs descend not only to pure PHP use cases, but get also redirected from the popular PHP based projects. Given the modern systems (and those supported by PHP) are always based on NTFS, there is no excuse to keep these issues unresolved. The internalization approach on Windows is in many ways different from UNIX and Linux, while it supports and is based on Unicode. It depends on the current system code page, APIs used and exact kind how the binary was compiled The locale doesn't affect the way Unicode or ANSI API work. PHP in particular is being compiled without _UNICODE defined and this is conditioned by the way we handle strings. Here is more about it https://msdn.microsoft.com/en-us/library/tsbaswba.aspx However, with any system code page ANSI functions automatically convert paths to UTF-16. Paths in some encodings incompatible with the current system code page, won't work correctly with ANSI APIs. PHP till now only uses the ANSI Windows APIs. For example, on a system with the current code page 1252, the paths in cp1252 are supported and transparently converted to UTF-16 by the ANSI functions. Once one wants to handle a filepath encoded with cp932 on that particular system, an ANSI or a POSIX compatible function used in PHP will produce an erroneous result. When trying to convert that cp932 path to UTF-8 and passing to the ANSI functions, an ANSI function would likely interpret the UTF-8 string as some string in the current code page and create a filepath that represents every single byte of the UTF-8 string. These behaviors are not only broken but also disregard the documented INI settings. This patch solves the issies with the multibyte paths on Windows by intelligently enforcing the usage of the Unicode aware APIs. For functions expect Unicode (fe CreateFileW, FindFirstFileW, etc.), arguments will be converted to UTF-16 wide chars. For functions returning Unicode aware data (fe GetCurrentDirectoryW, etc.), resulting wide string is converted back to char's depending on the current PHP charset settings, either to the current ANSI codepage (this is the behavior prior to this patch) or to UTF-8 (the default behavior). In a particular case, users might have to explicitly set internal_encoding or default_charset, if filenames in ANSI codepage are necessary. Current tests show no regressions and witness that this will be an exotic case, the current default UTF-8 encoding is compatible with any supported system. The dependency libraries are long switching to Unicode APIs, so some tests were also added for extensions not directly related to streams. At large, the patch brings over 150 related tests into the core. Those target and was run on various environments with European, Asian, etc. codepages. General PHP frameworks was tested and showed no regressions. The impact on the current C code base is low, the most places affected are the Windows only places in the three files tsrm_win32.c, zend_virtual_cwd.c and plain_wrapper.c. The actual implementation of the most of the wide char supporting functionality is in win32/ioutil.* and win32/codepage.*, several low level functionsare extended in place to avoid reimplementation for now. No performance impact was sighted. As previously mentioned, the ANSI APIs used prior the patch perform Unicode conversions internally. Using the Unicode APIs directly while doing custom conversions just retains the status quo. The ways to optimize it are open (fe. by implementing caching for the strings converted to wide variants). The long path implementation is user transparent. If a path exceeds the length of _MAX_PATH, it'll be automatically prefixed with \\?\. The MAXPATHLEN is set to 2048 bytes. Appreciation to Pierre Joye, Matt Ficken, @algo13 and others for tips, ideas and testing. Thanks.
* | Removed "zend_fcall_info.function_table". It was assigned in many places, ↵Dmitry Stogov2016-04-271-1/+0
| | | | | | | | but is never used.
* | Merge branch 'PHP-7.0'Anatol Belski2016-03-141-1/+2
|\ \ | |/ | | | | | | | | * PHP-7.0: fix test Update NEWS
| * Merge branch 'PHP-5.6' into PHP-7.0Anatol Belski2016-03-141-1/+2
| |\ | | | | | | | | | | | | * PHP-5.6: fix test
| | * fix testAnatol Belski2016-03-141-1/+2
| | | | | | | | | | | | | | | Many warnings won't appear with libxml2 >= 2.9.3 because in many cases libxml2 2.9.3 will just abort processing.
| | * Fix bug #71540 - NULL pointer dereference in xsl_ext_function_php()Stanislav Malyshev2016-02-152-0/+71
| | |
* | | Removed zend_fcall_info.symbol_tableDmitry Stogov2016-03-021-1/+0
| | |
* | | Merge branch 'PHP-7.0'Stanislav Malyshev2016-02-152-1/+3
|\ \ \ | |/ / | | | | | | | | | * PHP-7.0: More fixing for bug #71540
| * | More fixing for bug #71540Stanislav Malyshev2016-02-152-1/+3
| | |
| * | Fix bug #71540 - NULL pointer dereference in xsl_ext_function_php()Stanislav Malyshev2016-02-152-0/+71
| | |
* | | Fix bug #71540 - NULL pointer dereference in xsl_ext_function_php()Stanislav Malyshev2016-02-152-0/+71
| | |
* | | Merge branch 'PHP-7.0'Lior Kaplan2016-01-014-4/+4
|\ \ \ | |/ / | | | | | | | | | | | | | | | * PHP-7.0: Update header to PHP Version 7 Happy new year (Update copyright to 2016) Happy new year (Update copyright to 2016)
| * | Merge branch 'PHP-5.6' into PHP-7.0Lior Kaplan2016-01-014-4/+4
| |\ \ | | |/ | | | | | | | | | * PHP-5.6: Happy new year (Update copyright to 2016)
| | * Happy new year (Update copyright to 2016)Lior Kaplan2016-01-014-4/+4
| | |
| * | Fixed bug #70678 (PHP7 returns true when false is expected)Felipe Pena2015-10-161-1/+1
| | | | | | | | | | | | Cherry-pick from master.
* | | Remove leftovers of TSRMLS in docsTom Van Looy2015-12-251-10/+0
| | |
* | | - Fixed bug #70678 (PHP7 returns true when false is expected)Felipe Pena2015-10-111-1/+1
|/ /
* | Removed or simplified incorrect SEPARATE_*() macros usage.Dmitry Stogov2015-09-291-3/+0
| |
* | Use dieXinchen Hui2015-09-201-2/+2
| |
* | Fixed bug #70535 (XSLT: free(): invalid pointer)Xinchen Hui2015-09-201-0/+22
| |
* | Merge branch 'PHP-5.6'Stanislav Malyshev2015-09-021-1/+3
|\ \ | |/ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.6: (21 commits) fix unit tests update NEWS add NEWS for fixes Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix bug ##70284 (Use after free vulnerability in unserialize() with GMP) Fix for bug #69782 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) ... Conflicts: ext/exif/exif.c ext/gmp/gmp.c ext/pcre/php_pcre.c ext/session/session.c ext/session/tests/session_decode_variation3.phpt ext/soap/soap.c ext/spl/spl_observer.c ext/standard/var.c ext/standard/var_unserializer.c ext/standard/var_unserializer.re ext/xsl/xsltprocessor.c
| * Merge branch 'PHP-5.4' into PHP-5.5Stanislav Malyshev2015-09-011-69/+73
| |\ | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | * PHP-5.4: Improve fix for #70172 Fix bug #70312 - HAVAL gives wrong hashes in specific cases fix test add test Fix bug #70366 - use-after-free vulnerability in unserialize() with SplDoublyLinkedList Fix bug #70365 - use-after-free vulnerability in unserialize() with SplObjectStorage Fix bug #70172 - Use After Free Vulnerability in unserialize() Fix bug #70388 - SOAP serialize_function_call() type confusion Fixed bug #70350: ZipArchive::extractTo allows for directory traversal when creating directories Improve fix for #70385 Fix bug #70345 (Multiple vulnerabilities related to PCRE functions) Fix bug #70385 (Buffer over-read in exif_read_data with TIFF IFD tag byte value of 32 bytes) Fix bug #70219 (Use after free vulnerability in session deserializer) Fix for bug #69782 Add CVE IDs asigned (post release) to PHP 5.4.43 Add CVE IDs asigned to #69085 (PHP 5.4.39) 5.4.45 next Conflicts: configure.in ext/pcre/php_pcre.c ext/standard/var_unserializer.c ext/standard/var_unserializer.re main/php_version.h
| | * Fix for bug #69782Stanislav Malyshev2015-08-161-69/+73
| | |
| * | Bump yearXinchen Hui2015-01-154-4/+4
| | |
* | | Partially fix XSLT warningsNikita Popov2015-07-171-13/+12
| | | | | | | | | | | | | | | | | | | | | The two remaining issues seem to be genuine problems. We're treating node->children as a string, even though it's actually an xmlNode. The same code exists twice in xpath.c. In all cases gcov shows no coverage for it.
* | | Use ZSTR_ API to access zend_string elements (this is just renaming without ↵Dmitry Stogov2015-06-301-4/+4
| | | | | | | | | | | | semantick changes).
* | | Fix more minor mistakes in the proto commentsRasmus Lerdorf2015-06-231-9/+9
| | |
* | | Tweak uncaught exception message displayNikita Popov2015-05-171-10/+10
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | This implements a reduced variant of #1226 with just the following change: -Fatal error: Uncaught exception 'EngineException' with message 'Call to private method foo::bar() from context ''' in %s:%d +Fatal error: Uncaught EngineException: Call to private method foo::bar() from context '' in %s:%d The '' wrapper around messages is very weird if the exception message itself contains ''. Futhermore having the message wrapped in '' doesn't work for the "and defined" suffix of TypeExceptions.
* | | fix libxml2 headers lookupAnatol Belski2015-05-131-1/+3
| | |
* | | Finish PHP 4 constructor deprecationNikita Popov2015-03-311-1/+1
| | |
* | | cleanup mod version macros and mod defs, round xAnatol Belski2015-03-232-7/+4
| | |
* | | Use specialized macro for string zval creationDmitry Stogov2015-03-121-1/+1
| | |
* | | Remove xsl.security_prefs ini optionNikita Popov2015-03-093-74/+6
| | | | | | | | | | | | | | | | | | Conflicts: ext/xsl/php_xsl.c ext/xsl/xsltprocessor.c
* | | Move zend_object->guards into additional slot of ↵Dmitry Stogov2015-02-041-1/+1
| | | | | | | | | | | | zend_object->properties_table[]. As result size of objects without __get/__set/__unset/__isset magic methods is reduced.
* | | bump yearXinchen Hui2015-01-154-4/+4
| | |
View Lorry Controller Status