Edit report at https://bugs.php.net/bug.php?id=44433&edit=1
ID: 44433
Comment by: emeraldd dot chris at gmail dot com
Reported by: hans at velum dot net
Summary: Text with null characters (\0) truncated when bound
to prepared statement
Status: No Feedback
Type: Bug
Package: PDO related
Operating System: Gentoo Linux
PHP Version: 5.2.5
Block user comment: N
Private report: N
New Comment:
I can confirm that this still exists in php 5.3.19 (also running gentoo). Has
anyone found a solution?
Previous Comments:
------------------------------------------------------------------------
[2012-10-12 13:01:15] metala at metala dot org
Forgot to add the postgres and pdo_pgsql versions.
pdo_pgsql
PDO Driver for PostgreSQL => enabled
PostgreSQL(libpq) Version => 9.1.5
Module version => 1.0.2
Revision => $Id$
Package: postgresql-9.1
State: installed
Automatically installed: no
Version: 9.1.5-2
------------------------------------------------------------------------
[2012-10-12 12:57:21] metala at metala dot org
I have experienced the same issue with PHP 5.4.4-7 using Debian wheezy/sid.
Actually It made me drop the idea to store objects in database and I used the
conventional way to solve the problem. So it was frustrating....
------------------------------------------------------------------------
[2009-05-03 01:00:11] php-bugs at lists dot php dot net
No feedback was provided for this bug for over a week, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to "Open".
------------------------------------------------------------------------
[2009-04-25 14:56:32] [email protected]
Please try using this CVS snapshot:
http://snaps.php.net/php5.2-latest.tar.gz
For Windows:
http://windows.php.net/snapshots/
------------------------------------------------------------------------
[2009-03-09 23:21:21] bmauser at gmail dot com
I noticed the same problem on windows (vista) and same php version 5.2.5. The
serialized string I tried to store in the database was:
O:8:"Psa_User":3:{s:9:" * groups";a:0:{}s:13:" *
last_login";i:0;s:10:"test_value";i:391;}
and when I put output from serialize() in hex editor you can see some null
characters:
00000000h: 4F 3A 38 3A 22 50 73 61 5F 55 73 65 72 22 3A 33 ; O:8:"Psa_User":3
00000010h: 3A 7B 73 3A 39 3A 22 00 2A 00 67 72 6F 75 70 73 ; :{s:9:".*.groups
00000020h: 22 3B 61 3A 30 3A 7B 7D 73 3A 31 33 3A 22 00 2A ; ";a:0:{}s:13:".*
00000030h: 00 6C 61 73 74 5F 6C 6F 67 69 6E 22 3B 69 3A 30 ; .last_login";i:0
00000040h: 3B 73 3A 31 30 3A 22 74 65 73 74 5F 76 61 6C 75 ; ;s:10:"test_valu
00000050h: 65 22 3B 69 3A 33 39 31 3B 7D ; e";i:391;}
The value in query that should update the database is truncated to the first
null character in string. That is true for prepared statements with
PDO->prepare() and also for only escaped values with PDO->quote().
When using the same code with mysql_pdo driver queries are not truncated and
the null characters are stored in the database blob object.
I used base64_encode and decode functions to workaround this and stored base64
encoded string in the database.
------------------------------------------------------------------------
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
https://bugs.php.net/bug.php?id=44433
--
Edit this bug report at https://bugs.php.net/bug.php?id=44433&edit=1
