mirror of
https://github.com/php/php-src.git
synced 2024-09-23 19:07:26 +00:00
MFB: Improved fix for MOPB-02-2007
This commit is contained in:
parent
35a6ab5a2c
commit
7d74c2c3e6
@ -133,8 +133,22 @@ PHPAPI void php_register_variable_ex(char *var, zval *val, zval *track_vars_arra
|
||||
int new_idx_len = 0;
|
||||
|
||||
if(++nest_level > PG(max_input_nesting_level)) {
|
||||
HashTable *ht;
|
||||
/* too many levels of nesting */
|
||||
php_error_docref(NULL TSRMLS_CC, E_ERROR, "Input variable nesting level more than allowed %ld (change max_input_nesting_level in php.ini to increase the limit)", PG(max_input_nesting_level));
|
||||
|
||||
if (track_vars_array) {
|
||||
ht = Z_ARRVAL_P(track_vars_array);
|
||||
} else if (PG(register_globals)) {
|
||||
ht = EG(active_symbol_table);
|
||||
}
|
||||
|
||||
zend_hash_del(ht, var, var_len + 1);
|
||||
zval_dtor(val);
|
||||
|
||||
if (!PG(display_errors)) {
|
||||
php_error_docref(NULL TSRMLS_CC, E_WARNING, "Input variable nesting level more than allowed %ld (change max_input_nesting_level in php.ini to increase the limit)", PG(max_input_nesting_level));
|
||||
}
|
||||
return;
|
||||
}
|
||||
|
||||
ip++;
|
||||
@ -150,9 +164,9 @@ PHPAPI void php_register_variable_ex(char *var, zval *val, zval *track_vars_arra
|
||||
/* PHP variables cannot contain '[' in their names, so we replace the character with a '_' */
|
||||
*(index_s - 1) = '_';
|
||||
|
||||
index_len = var_len = 0;
|
||||
index_len = 0;
|
||||
if (index) {
|
||||
index_len = var_len = strlen(index);
|
||||
index_len = strlen(index);
|
||||
}
|
||||
goto plain_var;
|
||||
return;
|
||||
@ -818,8 +832,6 @@ int php_hash_environment(TSRMLS_D)
|
||||
{
|
||||
char *p;
|
||||
unsigned char _gpc_flags[5] = {0, 0, 0, 0, 0};
|
||||
zval *dummy_track_vars_array = NULL;
|
||||
zend_bool initialized_dummy_track_vars_array=0;
|
||||
zend_bool jit_initialization = PG(auto_globals_jit);
|
||||
struct auto_global_record {
|
||||
char *name;
|
||||
@ -893,15 +905,9 @@ int php_hash_environment(TSRMLS_D)
|
||||
continue;
|
||||
}
|
||||
if (!PG(http_globals)[i]) {
|
||||
if (!initialized_dummy_track_vars_array) {
|
||||
ALLOC_ZVAL(dummy_track_vars_array);
|
||||
array_init(dummy_track_vars_array);
|
||||
INIT_PZVAL(dummy_track_vars_array);
|
||||
initialized_dummy_track_vars_array = 1;
|
||||
} else {
|
||||
dummy_track_vars_array->refcount++;
|
||||
}
|
||||
PG(http_globals)[i] = dummy_track_vars_array;
|
||||
ALLOC_ZVAL(PG(http_globals)[i]);
|
||||
array_init(PG(http_globals)[i]);
|
||||
INIT_PZVAL(PG(http_globals)[i]);
|
||||
}
|
||||
|
||||
PG(http_globals)[i]->refcount++;
|
||||
|
35
tests/basic/027.phpt
Normal file
35
tests/basic/027.phpt
Normal file
@ -0,0 +1,35 @@
|
||||
--TEST--
|
||||
Handling of max_input_nesting_level being reached
|
||||
--INI--
|
||||
magic_quotes_gpc=0
|
||||
always_populate_raw_post_data=0
|
||||
display_errors=0
|
||||
max_input_nesting_level=10
|
||||
track_errors=1
|
||||
log_errors=0
|
||||
--SKIPIF--
|
||||
<?php if (php_sapi_name()=='cli') echo 'skip'; ?>
|
||||
--POST--
|
||||
a=1&b=ZYX&c[][][][][][][][][][][][][][][][][][][][][][]=123&d=123&e[][]][]=3
|
||||
--FILE--
|
||||
<?php
|
||||
var_dump($_POST, $php_errormsg);
|
||||
?>
|
||||
--EXPECT--
|
||||
array(4) {
|
||||
["a"]=>
|
||||
string(1) "1"
|
||||
["b"]=>
|
||||
string(3) "ZYX"
|
||||
["d"]=>
|
||||
string(3) "123"
|
||||
["e"]=>
|
||||
array(1) {
|
||||
[0]=>
|
||||
array(1) {
|
||||
[0]=>
|
||||
string(1) "3"
|
||||
}
|
||||
}
|
||||
}
|
||||
string(124) "Unknown: Input variable nesting level more than allowed 10 (change max_input_nesting_level in php.ini to increase the limit)"
|
Loading…
Reference in New Issue
Block a user