Rasmus Lerdorf
d08a0e99c8
An input filter might not simply strip stuff, it might also turn things
...
into entities or use some other mechanism which causes the filtered data
to be longer than the original data. Ergo, pass in the address of the
buffer instead so the filter is free to reallocate it.
2003-02-20 22:21:49 +00:00
Rasmus Lerdorf
7429c2dc3f
Input Filter support. See README.input_filter for details.
...
@- Input Filter support added. See README.input_filter. (Rasmus)
2003-02-19 19:41:09 +00:00
Stefan Esser
a0873a8f7d
size matters not.
2003-02-11 21:44:02 +00:00
Stefan Esser
d2c550e991
8 + 20 + 1 + 1 = 30
...
There was no Bufferoverflow on 64bit systems.
And the "fix" broke the header code on systems with old style snprintf.
2003-02-11 21:41:32 +00:00
Moriyoshi Koizumi
6d95ea199d
Fixed possible snprintf problem
...
# besides snprintf returns int value, not uint / size_t...
2003-02-10 20:18:08 +00:00
Moriyoshi Koizumi
9450b1e4b0
Fixed possible buffer overflow in 64bit systems
2003-02-10 20:11:10 +00:00
Moriyoshi Koizumi
9d5811c1f0
Jani happification
2003-02-10 19:45:34 +00:00
Moriyoshi Koizumi
21f766b7a4
Fixed zlib.output_compression so it can work even if zlib extension is built as shared
2003-02-10 19:04:44 +00:00
Sascha Schumann
ba32a619ae
use SUCCESS/FAILURE instead of 0/-1
2003-02-09 21:15:55 +00:00
foobar
a09e1397c7
Fixed compile failures when ZLIB / PCRE are compiled as shared
...
extensions in same build.
2003-02-09 19:09:52 +00:00
Sascha Schumann
294e776d95
add sapi_get_target_uid/_gid for obtaining information about the
...
non-privileged user the web server is running as. this is useful
for creating shared memory segments which need to be accessed by
the child processes/threads.
2003-01-21 11:03:58 +00:00
Sascha Schumann
0855c0b603
whitespace
2003-01-15 11:30:39 +00:00
Sebastian Bergmann
2c5d4b8c23
Bump year.
2002-12-31 15:59:15 +00:00
Marcus Boerger
8ed84254cd
-php_error -> php_error_docref
2002-12-05 21:46:08 +00:00
Sascha Schumann
2b95b3c83b
add a "force HTTP/1.0 response" facility to the SAPI layer
...
this is necessary, when you want to take over control of a connection
and the web server is doing stupid things by default (like enabling
chunked transfer encoding for no reason).
2002-12-01 03:28:21 +00:00
Sascha Schumann
09f463ddae
Add sapi_get_fd() and implement it for the Apache/thttpd SAPIs.
2002-11-26 05:15:55 +00:00
Hartmut Holzgraefe
fb5ac5d286
the apache 1.x sapi read_posts tests for SG(read_post_bytes) being
...
counted up, so lets make it happy although this value is not really
needed in these cases ...
2002-11-21 10:29:11 +00:00
George Schlossnagle
99c7ddc3a8
added support functions for the apache_hooks SAPI
2002-11-18 00:59:23 +00:00
Hartmut Holzgraefe
be5e379ec6
HTTP_RAW_POST_DATA BC fixes
...
# hopefully all done, commiting anyway to continue work on my home box
php://input stream fixes (POST data handerl mangles data, CLI crashbug)
2002-11-12 18:29:11 +00:00
Hartmut Holzgraefe
5aec6f4e33
fix for #20198 :
...
"always_populate_raw_post_data = On" breaks HTTP file uploads
2002-11-08 08:41:52 +00:00
Hartmut Holzgraefe
07b90cafc9
removed left-over unused variable
2002-10-21 19:18:39 +00:00
Hartmut Holzgraefe
8841dfc995
removed bogus paranoid header checking
2002-10-21 18:44:50 +00:00
Hartmut Holzgraefe
8b7e9d7774
some changes to how request input data (Content-Lenght >0) is handled
...
- webdav-specific stuff removed (should be handled using httpd.conf
LIMIT or equivalents)
- always_populate_raw_post_data now working on any method, not just
POST (and webdav methods with allow_webdav_methods), when
Content-Length is greater zero
- raw input data is also available using php://input stream,
this way one doesn't have to care about memory_limit
- input data is now always consumed (although maybe ignored,
this fixes we had withproblems with keep-alive connections
@ raw POST data is now available as php://input stream (hartmut)
2002-10-21 16:41:06 +00:00
Yasuo Ohgaki
71fb0299d1
Added missing charset.
2002-09-08 01:06:29 +00:00
Hartmut Holzgraefe
431b903e97
WebDAV MKCOL can have post data body, see rfc2518 8.3.1
2002-09-07 17:48:51 +00:00
Stefan Esser
27e2bc2f55
This 2 lines should have been removed when the header() code was rewritten.
2002-09-04 20:27:35 +00:00
Christian Stocker
55f3ec1af4
do not check for POST twice
2002-08-22 07:56:39 +00:00
Christian Stocker
9495fb9d7d
@ - Added php.ini option "allow_webdav_methods" to allow handling of
...
@ WebDAV http requests within PHP scripts. (chregu)
# More methods (for DeltaV) will follow.
2002-08-22 07:48:23 +00:00
Marcus Boerger
abc7041ca2
-keep mimetype until sapi deactivation
...
-move NULL check for sapi_apply_default_charset to proper position.
2002-08-05 18:32:05 +00:00
Rasmus Lerdorf
c8bf165242
Yup, sizeof() includes the space for the \0
2002-08-03 14:09:56 +00:00
Rui Hirokawa
7527bf0c58
made sapi_register_treat_data() to support multibyte input encoding translation without MBSTR_ENC_TRANS and changed php_treat_data to php_default_treat_data.
2002-08-02 06:53:48 +00:00
Stefan Roehrich
f871a5b742
Fixed wrong usage of strncmp.
2002-08-01 21:12:09 +00:00
Marcus Boerger
be0a6f4949
- free mimetype and statusline early if no longer needed or in deactivation
...
#not setting them to NULL caused the segfault
2002-08-01 09:00:30 +00:00
Rasmus Lerdorf
7b9036cada
Need room for the \0 here to avoid an overflow
2002-08-01 07:49:53 +00:00
Marcus Boerger
4e05dd7c1b
-problem with CLI/mbstring/output buffering
2002-07-31 17:55:15 +00:00
Stefan Roehrich
6f786ebf3e
Commit patch as discussed on LinuxTag and posted to php-dev in June.
...
Disables zlib.output_compression for scripts with image/ content-type
header (fixes bug #16109 ) and makes it possible to switch
zlib.output_compression during script execution before the headers are
sent.
@- zlib.output_compression is disabled for "image/" content-type
@ headers and can be changed during script execution. (Stefan)
2002-07-28 14:08:08 +00:00
Rui Hirokawa
fbbeaec630
fixed: output encoding translation by mb_output_handler() in ext/mbstring was not usable when Content-Type is set by header().
2002-07-27 13:58:16 +00:00
foobar
c7a68b78a7
- Fixed bug: #18268 . If pcre is build as shared extension, we can't use
...
php_pcre_replace() here.
- Cleaned up a bit.
2002-07-13 00:15:22 +00:00
Sascha Schumann
fee236fb80
fix typo
2002-07-03 10:47:16 +00:00
Sascha Schumann
9c876ea01a
Add sapi_header_op interface which supersedes the sapi_add_header and _ex
...
calls.
Revert the change to the sapi_add_header_ex interface.
Fix various bugs:
1. header("HTTP/1.0 306 foo");
header("Location: absolute-uri");
did not work in combination with several SAPI modules, because
http_status_line was never properly reset. And thus, all SAPI
modules which looked at http_status_line ignored the changed
http_response_code.
2. The CGI SAPI did not send out the HTTP status line at all, if
http_status_line had not been set explicitly by calling
header("HTTP/1.0 200 foo");
2002-07-03 10:42:31 +00:00
Derick Rethans
6869cb3f5a
- Added a new parameter to the header() function which overrides the HTTP
...
response code.
@- Added a new parameter to the header() function which overrides the HTTP
@ response code. (Derick)
2002-06-21 09:31:21 +00:00
Stefan Esser
028b25362b
fix: appending the default charset to text/ content types never worked
...
fix: removed double free
2002-06-18 15:04:58 +00:00
Stefan Esser
28ad564c29
keep fingers away from already freed memory.
2002-06-18 12:57:09 +00:00
Sander Roobol
0c1718c614
Patch by Michael Sisolak <msisolak@yahoo.com> to make header() honor the
...
replace parameter. Closes #16458 .
2002-06-18 10:16:36 +00:00
Stefan Esser
3acaa30c1c
fix for bug #14776
2002-01-14 13:36:54 +00:00
Stefan Esser
a06a627394
fixed: fix for my broken patch.
2001-12-16 23:21:52 +00:00
Stefan Esser
4d2343d7af
whitespace.
2001-12-16 21:47:37 +00:00
Stefan Esser
8022bb9b40
fixed: WWW-Authenticate -> header_line got only freed when safe_mode was activ
...
fixed: WWW-Authenticate -> content of header_line was changed after it was freed
2001-12-16 21:40:20 +00:00
Stefan Esser
b29bcc8618
fixed: bufferoverflow in sapi_add_header_ex triggerable by header("WWW-Authenticate: Basic foobar");
2001-12-16 14:47:18 +00:00
Sebastian Bergmann
38933514e1
Update headers.
2001-12-11 15:32:16 +00:00