Merge branch 'PHP-5.5' into PHP-5.6

* PHP-5.5: Update header handling to RFC 7230
2024-09-22 10:27:25 +00:00 · 2015-02-05 20:09:49 -08:00 · 2015-02-05 20:09:49 -08:00 · a1c28567c6
commit a1c28567c6
parent 2c386b55f2 067340bbc8
5 changed files with 14 additions and 16 deletions
--- a/2
+++ b/2
@ -7,6 +7,8 @@
 ?? Feb 2015, PHP 5.6.6
 - Core:
  . Removed support for multi-line headers, as the are deprecated by RFC 7230.
    (Stas)
  . Fixed bug #68986 (pointer returned by php_stream_fopen_temporary_file
    not validated in memory.c). (nayana at ddproperty dot com)
  . Fixed bug #67068 (getClosure returns somethings that's not a closure).
--- a/ext/standard/tests/general_functions/bug60227_2.phpt
+++ b/ext/standard/tests/general_functions/bug60227_2.phpt
@ -1,14 +1,15 @@
 --TEST--
 Bug #60227 (header() cannot detect the multi-line header with CR), \r before \n
 --INI--
 expose_php=0
 --FILE--
 <?php
 header("X-foo: e\n foo");
 header("X-Foo6: e\rSet-Cookie: ID=123\n d");
 echo 'foo';
 ?>
 --EXPECTF--
 Warning: Header may not contain more than a single header, new line detected in %s on line %d
 foo
 --EXPECTHEADERS--
-X-foo: e
+Content-type: text/html; charset=UTF-8
 foo
--- a/ext/standard/tests/general_functions/bug60227_3.phpt
+++ b/ext/standard/tests/general_functions/bug60227_3.phpt
@ -1,8 +1,9 @@
 --TEST--
 Bug #60227 (header() cannot detect the multi-line header with CR), \0 before \n
 --INI--
 expose_php=0
 --FILE--
 <?php
 header("X-foo: e\n foo");
 header("X-Foo6: e\0Set-Cookie: ID=\n123\n d");
 echo 'foo';
 ?>
@ -10,5 +11,4 @@ echo 'foo';
 Warning: Header may not contain NUL bytes in %s on line %d
 foo
 --EXPECTHEADERS--
-X-foo: e
+Content-type: text/html; charset=UTF-8
 foo
--- a/ext/standard/tests/general_functions/bug60227_4.phpt
+++ b/ext/standard/tests/general_functions/bug60227_4.phpt
@ -1,8 +1,9 @@
 --TEST--
 Bug #60227 (header() cannot detect the multi-line header with CR), CRLF
 --INI--
 expose_php=0
 --FILE--
 <?php
 header("X-foo: e\r\n foo");
 header("X-foo: e\r\nfoo");
 echo 'foo';
 ?>
@ -10,5 +11,4 @@ echo 'foo';
 Warning: Header may not contain more than a single header, new line detected in %s on line %d
 foo
 --EXPECTHEADERS--
-X-foo: e
+Content-type: text/html; charset=UTF-8
 foo
--- a/main/SAPI.c
+++ b/main/SAPI.c
@ -747,13 +747,8 @@ SAPI_API int sapi_header_op(sapi_header_op_enum op, void *arg TSRMLS_DC)
 		/* new line/NUL character safety check */
 		int i;
 		for (i = 0; i < header_line_len; i++) {
-			/* RFC 2616 allows new lines if followed by SP or HT */
+			/* RFC 7230 ch. 3.2.4 deprecates folding support */
-			int illegal_break =
+			if (header_line[i] == '\n' || header_line[i] == '\r') {
 					(header_line[i+1] != ' ' && header_line[i+1] != '\t')
 					&& (
 						header_line[i] == '\n'
 						|| (header_line[i] == '\r' && header_line[i+1] != '\n'));
 			if (illegal_break) {
 				efree(header_line);
 				sapi_module.sapi_error(E_WARNING, "Header may not contain "
 						"more than a single header, new line detected");