Bug #14909 Updated: Allows access to ANY file
ID: 14909
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Closed
Bug Type: Apache related
Operating System: Windows
PHP Version: 4.1.1
Assigned To: imajes
New Comment:
I had someone trying to exploit this bug like two months ago. I
accidently saw it in my apache logs someone was trying to do this.
This only happens if you php dir is in your webserver root?
Previous Comments:
[2002-02-27 07:37:28] [EMAIL PROTECTED]
we have a manual chapter for securing the cgi-bin installation.
http://www.php.net/manual/en/security.cgi-bin.php
[2002-02-24 03:56:30] [EMAIL PROTECTED]
For emmergency, a simple check at auto_prepend_file whould help:
?PHP
if (preg_match(/^\/php\/php.exe/i,$_SERVER[REQUEST_URI])) {
print No Hack; exit;
}
?
[2002-01-09 09:56:39] [EMAIL PROTECTED]
I have windows xp + apache + php 4.1 installed and the /php/ alias is
also definied in my httpd.conf and therefor I am also affected by this
exploit. but how can I use php WITHOUT this alias in apache conf? I
tried several things but it doesn't work.
chris, 15 =)
[2002-01-09 02:17:17] [EMAIL PROTECTED]
so do we have to read the documentation again on how to install PHP??
have u added a fix?
[2002-01-08 08:03:10] [EMAIL PROTECTED]
the documentation is fixed, i committed this morning/last night.
there is however a bug in the way apache handles the binary -- or the
way php acts when called as a binary (you can get premature end of
script headers).
What i would like to do is leave this open, and noticeable for some of
the apache guys to take a look at and comment on it.
The docs are fixed we just need to wait to see if this is a thing
to hand off to apache.
The remainder of the comments for this report are too long. To view
the rest of the comments, please view the bug report online at
http://bugs.php.net/14909
--
Edit this bug report at http://bugs.php.net/?id=14909edit=1
Bug #15836 Updated: Bug #11162 pfsockopen closes connection after script finishes !
ID: 15836 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Documentation problem Operating System: FreeBSD PHP Version: 4.1.1 New Comment: I know, that p* functions opens 1 connection per process. But in any case p* functions should not close this connection, but hold it opened in hashed table for next time, same script will be executed on this apache process, isnt it ? Unfortunately this doen not happend ;( PHP really closes the socket right after script end ;( And in tests apache was configured like: MinSpareServers 1 MaxSpareServers 1 StartServers 1 MaxClients 1 That means that only 2 apache processes are in memory, (parent and a child) and only one of them handles php scripts. But all tests faied, as i talk. any pfsockopen connections are closed after end of script ;( Previous Comments: [2002-03-02 13:44:13] [EMAIL PROTECTED] [EMAIL PROTECTED] 29-Jan-2001 03:26 OK, WRT to the p* functions opening a new connection when one already exists. It is my understanting that (under Apache anyways) this is on a per-process basis. If you do a 'ps auxw|grep httpd' on your server you will see more than one process. What p* does is make a p-connection on one of those processes only, the one that actually handles your request. Chances are that when you hit the page again it will be answered by a different process. I'm guessing if you keep hitting reload you'll get around to the original process again and there will be no error message or second connection open. Anyhow, this is true of all p* functions; they open not one connection per server, but one connection per server _process_. Hope this explains something (it's from the manual at http://www.php.net/manual/en/function.pfsockopen.php) I'm keeping this open as a doc problem though, cause the documentation is very skimmy. Derick [2002-03-02 13:39:56] [EMAIL PROTECTED] The problem still exists! Connection, opened by pfsockopen(), is closing when the script is finishes. (tested by just simple netcat -l and by multithreaded java chat server) PHP Version 4.1.1 Apache/1.3.20 FreeBSD 4.5-STABLE -- Edit this bug report at http://bugs.php.net/?id=15836edit=1
Bug #15832 Updated: error when using the copy function
ID: 15832 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Feedback Bug Type: Unknown/Other Function Operating System: Windows PHP Version: 4.1.1 New Comment: Yes but if you do this $folder=; copy(file, $folder); then the file will be uploaded to the root of your computer like I said. Previous Comments: [2002-03-02 13:53:22] [EMAIL PROTECTED] What do you mean, forget the dest? If you call copy(file); it will complain. [2002-03-02 10:53:57] [EMAIL PROTECTED] When I use the copy ( string source, string dest) function in PHP 4.1.1 and Apache 2.0.28 for uploading files to a dir and forget to set the string dest the file will bo copied to the root dir of my harddrive. I have set the php.ini to have this lines. doc_root = C:\Program Files\Apache Group\Apache2\htdocs user_dir = C:\Program Files\Apache Group\Apache2\htdocs -- Edit this bug report at http://bugs.php.net/?id=15832edit=1
Bug #15177 Updated: Informix Shared Module will not compile
ID: 15177 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: *Compile Issues Operating System: RH Linux 7.2 PHP Version: 4.1.1 New Comment: The last version where compile with-informix worked was php4-4.0.4pl1 None after that work, I've tryed them all, including snapshots Previous Comments: [2002-01-23 00:45:02] [EMAIL PROTECTED] Same problem as with 4.1.0. Informix will compile statically in PHP, but will not compile as a shared module. I get the same error as in 4.1.0: /bin/sh /php/php-4.1.1/libtool --silent --mode=compile gcc -I. -I/php/php-4.1.1/ext/informix -I/php/php-4.1.1/main -I/php/php-4.1.1 -I/usr/include/apache -I/php/php-4.1.1/Zend -I/opt/informix/incl/esql -I/php/php-4.1.1/ext/xml/expat -DLINUX=22 -DEAPI -DEAPI_MM -DEAPI_MM_CORE_PATH=/var/run/httpd.mm -I/php/php-4.1.1/TSRM -g -O2 -prefer-pic -c ifx.c touch ifx.slo /bin/sh /php/php-4.1.1/libtool --silent --mode=link gcc -I. -I/php/php-4.1.1/ext/informix -I/php/php-4.1.1/main -I/php/php-4.1.1 -I/usr/include/apache -I/php/php-4.1.1/Zend -I/opt/informix/incl/esql -I/php/php-4.1.1/ext/xml/expat -DLINUX=22 -DEAPI -DEAPI_MM -DEAPI_MM_CORE_PATH=/var/run/httpd.mm -I/php/php-4.1.1/TSRM -g -O2 -prefer-pic -o informix.la -avoid-version -module -rpath /php/php-4.1.1/modules ifx.lo -Rext/informix -Lext/informix -R/opt/informix/lib/esql -L/opt/informix/lib/esql -R/opt/informix/lib -L/opt/informix/lib -lifsql -lifasf -lifgen -lifos -lifgls -ldl -lcrypt -lphpifx -lifglx libtool: link: only absolute run-paths are allowed make[3]: *** [informix.la] Error 1 make[3]: Leaving directory `/php/php-4.1.1/ext/informix' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/php/php-4.1.1/ext/informix' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/php/php-4.1.1/ext' make: *** [all-recursive] Error 1 Configure was input as [root@elliott php-4.1.1]# ./configure --with-apxs=/usr/sbin/apxs --without-mysql --enable-shared --with-informix=shared Any ideas? Zack -- Edit this bug report at http://bugs.php.net/?id=15177edit=1
Bug #15177 Updated: Informix Shared Module will not compile
ID: 15177 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Critical Bug Type: *Compile Issues Operating System: RH Linux 7.2 PHP Version: 4.1.1 New Comment: Marking as Critical for release 4.2.0 Previous Comments: [2002-03-03 05:30:06] [EMAIL PROTECTED] The last version where compile with-informix worked was php4-4.0.4pl1 None after that work, I've tryed them all, including snapshots [2002-01-23 00:45:02] [EMAIL PROTECTED] Same problem as with 4.1.0. Informix will compile statically in PHP, but will not compile as a shared module. I get the same error as in 4.1.0: /bin/sh /php/php-4.1.1/libtool --silent --mode=compile gcc -I. -I/php/php-4.1.1/ext/informix -I/php/php-4.1.1/main -I/php/php-4.1.1 -I/usr/include/apache -I/php/php-4.1.1/Zend -I/opt/informix/incl/esql -I/php/php-4.1.1/ext/xml/expat -DLINUX=22 -DEAPI -DEAPI_MM -DEAPI_MM_CORE_PATH=/var/run/httpd.mm -I/php/php-4.1.1/TSRM -g -O2 -prefer-pic -c ifx.c touch ifx.slo /bin/sh /php/php-4.1.1/libtool --silent --mode=link gcc -I. -I/php/php-4.1.1/ext/informix -I/php/php-4.1.1/main -I/php/php-4.1.1 -I/usr/include/apache -I/php/php-4.1.1/Zend -I/opt/informix/incl/esql -I/php/php-4.1.1/ext/xml/expat -DLINUX=22 -DEAPI -DEAPI_MM -DEAPI_MM_CORE_PATH=/var/run/httpd.mm -I/php/php-4.1.1/TSRM -g -O2 -prefer-pic -o informix.la -avoid-version -module -rpath /php/php-4.1.1/modules ifx.lo -Rext/informix -Lext/informix -R/opt/informix/lib/esql -L/opt/informix/lib/esql -R/opt/informix/lib -L/opt/informix/lib -lifsql -lifasf -lifgen -lifos -lifgls -ldl -lcrypt -lphpifx -lifglx libtool: link: only absolute run-paths are allowed make[3]: *** [informix.la] Error 1 make[3]: Leaving directory `/php/php-4.1.1/ext/informix' make[2]: *** [all-recursive] Error 1 make[2]: Leaving directory `/php/php-4.1.1/ext/informix' make[1]: *** [all-recursive] Error 1 make[1]: Leaving directory `/php/php-4.1.1/ext' make: *** [all-recursive] Error 1 Configure was input as [root@elliott php-4.1.1]# ./configure --with-apxs=/usr/sbin/apxs --without-mysql --enable-shared --with-informix=shared Any ideas? Zack -- Edit this bug report at http://bugs.php.net/?id=15177edit=1
Bug #15835 Updated: Problem on function gmp_invert ()
ID: 15835 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Feedback Bug Type: *Math Functions Operating System: Linux - Red Hat 7.2 PHP Version: 4.1.2 New Comment: I can't get gmp_invert() return anything other than false, but that might be because I have no idea what gmp_invert() does :) Can you supply some (human understandable) data that does work? Previous Comments: [2002-03-02 14:20:49] [EMAIL PROTECTED] Example: $x = gmp_init(0x00d2d025ec7e1dbb6d778a52394c988594c57b47d7327a3e676d3a5ca7a5af87c4153c80994cf781f6a9d4a2f0e66d04baffb0059853a8937a895f6d17e76950e1); // mod $y = gmp_init(6211846575289879599); // value $w = gmp_invert($y,$x); The $w value should be : 667351618289984699831448814604762419850017638123963706466136275029334435034698239463153441869117173460635003602664197747901516108936488872273669129832 [2002-03-02 13:29:43] [EMAIL PROTECTED] Please provide a short reproducing script with values that you are using and expected output. Sean [2002-03-02 11:44:47] [EMAIL PROTECTED] The function resource gmp_invert() doesn't work right. It always return zero. I implemented the extended Euclides algoritm that do exactly the same that this function and, it returned me the right value. -- Edit this bug report at http://bugs.php.net/?id=15835edit=1
Bug #13472 Updated: input type=hidden should be in a fieldset if there is one
ID: 13472 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Analyzed Bug Type: Session related Operating System: Any PHP Version: 4.0.6 New Comment: I could not find any suitable workaround :( I hope this will be fixed soon, cause this is really killing me... Previous Comments: [2002-03-03 07:34:13] [EMAIL PROTECTED] anyone know how long before this is fixed or if there is any known workaround? [2001-12-07 09:16:24] [EMAIL PROTECTED] Reclassified back to session-related because Yasuo persuaded me to call it a bug ;) [2001-12-05 13:22:53] [EMAIL PROTECTED] hum... not a bug ? PHP is not rewriting html code well, so I'd call it a bug :-) Anyway... any chance to get it fixed soon ? That shouldnt be /that/ hard to do, since you just have to write the input after the first fieldset if there is one, or jst after the form is there isnt any... [2001-12-05 10:22:58] [EMAIL PROTECTED] Not a bug. Making it a feature request. [2001-09-28 04:12:48] [EMAIL PROTECTED] When enabling trans-id, php rewrites the forms to add an input type=hidden. the problem is that, in xhtml strict, inputs have to be in a fieldset element. when a fieldset element is already here, php still writes the input type=hidden before the fieldset, causing the page to be invalid html. reproducing is easy : ?xml version=1.0 encoding=iso-8859-1? !DOCTYPE html PUBLIC -//W3C//DTD XHTML 1.0 Strict//EN DTD/xhtml1-strict.dtd html xmlns=http://www.w3.org/1999/xhtml; xml:lang=en lang=en head titlePHP Bug with forms and sessions/title /head body form action=blabla.phpfieldsetinput type=submit value=test //fieldset/form/body/html its valid html, but php will, with transid, make it invalid by putting this input between the form and the fieldset... -- Edit this bug report at http://bugs.php.net/?id=13472edit=1
Bug #13472 Updated: input type=hidden should be in a fieldset if there is one
ID: 13472 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Analyzed Bug Type: Session related Operating System: Any PHP Version: 4.0.6 New Comment: Notice .. any blocklevel tag is affected .. not just fieldset and as such any solution to this problem should take this issue into account. Previous Comments: [2002-03-03 08:04:33] [EMAIL PROTECTED] I could not find any suitable workaround :( I hope this will be fixed soon, cause this is really killing me... [2002-03-03 07:34:13] [EMAIL PROTECTED] anyone know how long before this is fixed or if there is any known workaround? [2001-12-07 09:16:24] [EMAIL PROTECTED] Reclassified back to session-related because Yasuo persuaded me to call it a bug ;) [2001-12-05 13:22:53] [EMAIL PROTECTED] hum... not a bug ? PHP is not rewriting html code well, so I'd call it a bug :-) Anyway... any chance to get it fixed soon ? That shouldnt be /that/ hard to do, since you just have to write the input after the first fieldset if there is one, or jst after the form is there isnt any... [2001-12-05 10:22:58] [EMAIL PROTECTED] Not a bug. Making it a feature request. The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/13472 -- Edit this bug report at http://bugs.php.net/?id=13472edit=1
Bug #14991 Updated: ini_set scrambles output
ID: 14991
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Open
Bug Type: Scripting Engine problem
Operating System: Free BSD 4.4
PHP Version: 4.1.1
New Comment:
I have problems with this bug too ... same scrambled output. But only
when the session is not cookie-based. Otherwise it works fine.
Previous Comments:
[2002-02-27 05:20:49] [EMAIL PROTECTED]
On Windows platforms (windows2000/php4.1.1 - isapi app on IIS 5.0)
ini_set not workink properly too. Output is also scrambled.
[2002-01-24 15:14:18] [EMAIL PROTECTED]
I fix this Problem now by reading the incorrect output into a
output-buffer using ob_get_contents and tweak it with preg_replace,
duh!
Works, but is, ehh, not very smart #-)
But, surprise surprise, i then come over the error described in PHP-Bug
#14080(which is still not fixed in 4.1.1).
funny, eh?
[2002-01-11 04:36:17] [EMAIL PROTECTED]
The following Code shows some strange behaviour:
table cellspacing=2 cellpadding=2 border=0
tr
td class=grossfett valign=top align=leftGalerie/td
/tr
tr
td valign=top nowrap
?php
ini_set(session.use_trans_sid,0);
$cnt=0;
$d =
dir($DOCUMENT_ROOT/3sonstiges/felgenveredelung/bp/galerie/thumbs/);
while($entry=$d-read())
{
[...snipped some echo blabla;lines]
}
$d-close();
ini_set(session.use_trans_sid,1);
?
/td
/tr
/table
The following Output is produced:
table cellspacing=2 cellpadding=2 border=0
tr
td class=grossfett valign=top align=leftGalerie/td
/tr
tr
tda href =javascript:;
onClick=window.open(bp/showpic.php?pic
=1.jpg,hurz,location=0,directories=0,status=0,menubar=0,scrollbars=0
,toolbar=0,width=380,height=250);img src=bp/galerie/thumbs/1.jpg
border=0/a
[...snipped the list]
valign=top nowrap
/td
/tr
/table
watch the
tda href [...]
this should be
td valign=top nowrapa href [...]
If i comment out the ini_set(); lines, output is normal.
Any Idea?
--
Edit this bug report at http://bugs.php.net/?id=14991edit=1
Bug #15843: php.exe crashes everytime I call session_start(); whitin a script.
From: [EMAIL PROTECTED] Operating system: Windows XP PHP version: 4.1.1 PHP Bug Type: Session related Bug description: php.exe crashes everytime I call session_start(); whitin a script. I am running php 4.1.1 on XP under Apache 1.3. Every time I call session script, php.exe on server crashes. Error msg (in windows): php.exe has encountered a problems and needs to close. szAppName: php.exe szAppVer: 0.0.0.0 szModName: php4ts.dll szModVer: 0.0.0.0 offset:000a956c I have set the session.save_path = C:\windows\temp in the php.ini, but the problem persist. php file content that craches php.exe - ?php // creates session for user session_start(); session_register(iwcuser); session_register(iwcpass); @$iwcuser = $username; @$iwcpass = $password; ? - Hope that the problem is within my script, and not PHP itself, but anyhow, users running their own scripts should be able to crash PHP. Regards, -Vildan -- Edit bug report at http://bugs.php.net/?id=15843edit=1 -- Fixed in CVS:http://bugs.php.net/fix.php?id=15843r=fixedcvs Fixed in release:http://bugs.php.net/fix.php?id=15843r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=15843r=needtrace Try newer version: http://bugs.php.net/fix.php?id=15843r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=15843r=support Expected behavior: http://bugs.php.net/fix.php?id=15843r=notwrong Not enough info: http://bugs.php.net/fix.php?id=15843r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=15843r=submittedtwice
Bug #15761 Updated: IMAP-SSL Bug
ID: 15761 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: IMAP related Operating System: RedHat 7.2 PHP Version: 4.1.1 New Comment: Show us your entire ./configure line please. Do you have both --with-imap and --with-imap-ssl? Previous Comments: [2002-03-03 12:41:36] [EMAIL PROTECTED] Please FIX the BUG thanx [2002-02-27 06:30:27] [EMAIL PROTECTED] sorry my eMail is: [EMAIL PROTECTED] [2002-02-27 06:28:59] [EMAIL PROTECTED] Hi, If I PHP with --with-imap-ssl=/usr/local/openssl install comes with apache start of the errors: Syntax error on line 240 of /usr/local/apache/conf/httpd.conf: Cannot load /usr/local/apache/libexec/libphp4.so into server: /usr/local/apache/libexec/libphp4.so: undefined symbol: ssl_onceonlyinit /usr/local/apache/bin/apachectl start: httpd could not be started OpenSSL Version is: OpenSSL 0.9.6c -- Edit this bug report at http://bugs.php.net/?id=15761edit=1
Bug #15761 Updated: IMAP-SSL Bug
ID: 15761 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Feedback Bug Type: IMAP related Operating System: RedHat 7.2 PHP Version: 4.1.1 New Comment: status - feedback Previous Comments: [2002-03-03 12:54:52] [EMAIL PROTECTED] Show us your entire ./configure line please. Do you have both --with-imap and --with-imap-ssl? [2002-03-03 12:41:36] [EMAIL PROTECTED] Please FIX the BUG thanx [2002-02-27 06:30:27] [EMAIL PROTECTED] sorry my eMail is: [EMAIL PROTECTED] [2002-02-27 06:28:59] [EMAIL PROTECTED] Hi, If I PHP with --with-imap-ssl=/usr/local/openssl install comes with apache start of the errors: Syntax error on line 240 of /usr/local/apache/conf/httpd.conf: Cannot load /usr/local/apache/libexec/libphp4.so into server: /usr/local/apache/libexec/libphp4.so: undefined symbol: ssl_onceonlyinit /usr/local/apache/bin/apachectl start: httpd could not be started OpenSSL Version is: OpenSSL 0.9.6c -- Edit this bug report at http://bugs.php.net/?id=15761edit=1
Bug #15845 Updated: xslt_process() errors...
ID: 15845
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
-Status: Open
+Status: Bogus
Bug Type: Sablotron XSL
Operating System: Linux
PHP Version: 4.0.6
New Comment:
This is not a bug. It is intended to work that way.
You are using the old ext/sablot and there xslt_process does not need a
sablotron processor handle.
Please ask further questions on php-general.
Previous Comments:
[2002-03-03 11:08:45] [EMAIL PROTECTED]
I tried to do some transformations using sablotron and
the PHP xslt functions.
After running into troubles from the first moment, I tried
some example scripts, but all of them won't work.
To get an idea of what i did i will post the xml-file content, the
xsl-file content and the script...
THE XSL FILE
--
?xml version=1.0 encoding=ISO-8859-1?
xsl:stylesheet version=1.0
xmlns:xsl=http://www.w3.org/1999/XSL/Transform;
xsl:template match=/
html
body
table border=2 bgcolor=yellow
tr
thTitle/th
thArtist/th
/tr
xsl:for-each select=catalog/cd
tr
tdxsl:value-of select=title//td
tdxsl:value-of select=artist//td
/tr
/xsl:for-each
/table
/body
/html
/xsl:template
/xsl:stylesheet
--
THE XML FILE
--
?xml version=1.0 encoding=ISO-8859-1?
catalog
cd
titleEmpire Burlesque/title
artistBob Dylan/artist
countryUSA/country
companyColumbia/company
price10.90/price
year1985/year
/cd
/catalog
--
THE SCRIP (taken from the php-online-documentation for
xslt_process())
--
?
$xsl = implode('',file(xml/cedists/cedist_news.xsl));
$xml = implode('',file(xml/cedefts/cedeft_news.xml));
// $xml and $xsl contain the XML and XSL data
$arguments = array(
'/_xml' = $xml,
'/_xsl' = $xsl
);
// Allocate a new XSLT processor
$xh = xslt_create();
// Process the document
$result = xslt_process($xh, 'arg:/_xml', 'arg:/_xsl', NULL,
$arguments);
if ($result) {
print pre\n;
print $result;
print /pre\n;
}
else {
print xslt_error($xh);
print xslt_errno($xh);
}
xslt_free($xh);
?
--
THE PROBLEM
**
Running the script produces the following error:
Only variables can be passed by reference
So i tried the following:
...
$result = xslt_process($xh,$xml,$xsl,NULL,$output);
echo $output;
...
Running the script with this xslt_process line produces
the following error:
Wrong parameter count for xslt_process()
So i changed the thing again and again and again until i
got a call of xslt_process which worked:
...
$result = xslt_process($xsl,$xml,$output);
echo $output;
...
As you can see, i DO NOT pass the reference to the created processor
($xh), and i also did not pass the other stuff, and !! the ORDER OF
$xsl and $xml WAS CHANGED.
This works! But why???
It even works, if i don't use xslt_create() function.
Why is that???
The whole xslt_ stuff seems to be a bit tricky...
**
ADDITIONAL INFORMATION
==
PHP Version 4.0.6
--
Linux Kernel 2.4.16
--'./configure'
'--with-apxs=/usr/local/apache/bin/apxs'
'--with-mysql=/usr/local/mysql' '--enable-track-vars'
'--enable-sysvsem' '--disable-debug' '--enable-ftp' '--enable-bcmath'
'--with-gd' '--with-jpeg-dir' '--with-png-dir=/usr/lib'
'--with-zlib-dir=/usr/include' '--with-pdflib' '--with-ttf'
'--with-ming=/usr/src/ming-0.2a' '--with-imap=/usr/src/imap-4.7c'
'--with-swf=/usr/src/dist' '--with-dom' '--with-curl' '--with-sablot'
'--enable-memory-limit'
--
NO INFORMATION ABOUT SABLOTRON AVAILABLE, BUT SABLTRON
HAS BEEN INSTALLED BY THE PROVIDER ON MY REQUEST, SO I
THINK IT SHOULD BE THE LATEST VERSION
==
--
Edit this bug report at http://bugs.php.net/?id=15845edit=1
Bug #15843 Updated: php.exe crashes everytime I call session_start(); whitin a script.
ID: 15843 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Session related Operating System: Windows XP PHP Version: 4.1.1 New Comment: Hello, I have tracked down the problem. Setting session.save_path = C:\windows\temp will not fix the problem. You will have to create own folder under the root c:\ e.g. c:\mytemp, using the admin rights (root) and the set: session.save_path = C:\mytemp -Vildan Previous Comments: [2002-03-03 09:21:15] [EMAIL PROTECTED] I am running php 4.1.1 on XP under Apache 1.3. Every time I call session script, php.exe on server crashes. Error msg (in windows): php.exe has encountered a problems and needs to close. szAppName: php.exe szAppVer: 0.0.0.0 szModName: php4ts.dll szModVer: 0.0.0.0 offset:000a956c I have set the session.save_path = C:\windows\temp in the php.ini, but the problem persist. php file content that craches php.exe - ?php // creates session for user session_start(); session_register(iwcuser); session_register(iwcpass); @$iwcuser = $username; @$iwcpass = $password; ? - Hope that the problem is within my script, and not PHP itself, but anyhow, users running their own scripts should be able to crash PHP. Regards, -Vildan -- Edit this bug report at http://bugs.php.net/?id=15843edit=1
Bug #15761 Updated: IMAP-SSL Bug
ID: 15761 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Feedback Bug Type: IMAP related Operating System: RedHat 7.2 PHP Version: 4.1.1 New Comment: here is my ./configure: ./configure --with-apxs=/usr/local/apache/bin/apxs --with-mysql=/usr/local/mysql --with-mcrypt=/usr/local/lib --with-png-dir=/usr/local/lib --with-jpeg-dir=/usr/local/lib --with-curl=/usr/local/lib --with-unixODBC=/usr/local/lib --with-zlib=/usr/local --enable-ftp --with-hyperwave --with-ming --with-freetype-dir=/usr/local --with-gd --with-swf --with-ttf=/usr/local/lib --enable-gd-native-ttf --with-mhash=/usr/local/lib --enable-yp --enable-versioning --enable-ftp --enable-apc --enable-bcmath --with-tiff-dir=/usr/local/lib --with-t1lib=/usr/local/lib --enable-sysvshm=yes --enable-sysvsem=yes --enable-calendar --enable-trans-sid --enable-mbregex --enable-mbstring --enable-wddx --enable-shmop --enable-exif --enable-memory-limit --enable-freetype-4bit-antialias-hack --with-bz2 --with-gettext --with-xpm=/usr/X11R6 --with-openssl=/usr/local/openssl --with-pgsql=/usr/local/pgsql --disable-debug --with-microcode=shared --with-dom=/usr/local/lib --enable-gd-imgstrttf --enable-pdflib --with-pdflib --enable-xslt --with-xslt-sablot --enable-dbase --with-ldap --with-zip --with-zlib-dir=/usr/local/lib --with-pspell --with-rtfm=shared --with-kerberos --with-imap --with-imap-ssl=/usr/local/openssl Previous Comments: [2002-03-03 12:56:53] [EMAIL PROTECTED] status - feedback [2002-03-03 12:54:52] [EMAIL PROTECTED] Show us your entire ./configure line please. Do you have both --with-imap and --with-imap-ssl? [2002-03-03 12:41:36] [EMAIL PROTECTED] Please FIX the BUG thanx [2002-02-27 06:30:27] [EMAIL PROTECTED] sorry my eMail is: [EMAIL PROTECTED] [2002-02-27 06:28:59] [EMAIL PROTECTED] Hi, If I PHP with --with-imap-ssl=/usr/local/openssl install comes with apache start of the errors: Syntax error on line 240 of /usr/local/apache/conf/httpd.conf: Cannot load /usr/local/apache/libexec/libphp4.so into server: /usr/local/apache/libexec/libphp4.so: undefined symbol: ssl_onceonlyinit /usr/local/apache/bin/apachectl start: httpd could not be started OpenSSL Version is: OpenSSL 0.9.6c -- Edit this bug report at http://bugs.php.net/?id=15761edit=1
Bug #15846: www.php.net has a PHP error !
From: [EMAIL PROTECTED] Operating system: all PHP version: 4.1.2 PHP Bug Type: Unknown/Other Function Bug description: www.php.net has a PHP error ! Parse error: parse error, expecting `')'' in /local/Web/sites/phpweb/include/countries.inc on line 50 -- Edit bug report at http://bugs.php.net/?id=15846edit=1 -- Fixed in CVS:http://bugs.php.net/fix.php?id=15846r=fixedcvs Fixed in release:http://bugs.php.net/fix.php?id=15846r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=15846r=needtrace Try newer version: http://bugs.php.net/fix.php?id=15846r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=15846r=support Expected behavior: http://bugs.php.net/fix.php?id=15846r=notwrong Not enough info: http://bugs.php.net/fix.php?id=15846r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=15846r=submittedtwice
Bug #15821 Updated: imap_fetchbody fails on subparts
ID: 15821 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Closed Bug Type: IMAP related Operating System: Windows 2000 SP2 PHP Version: 4.1.1 New Comment: No bug, bogus developer. Previous Comments: [2002-03-01 15:02:33] [EMAIL PROTECTED] imap_fetchbody does not return anything when I try to get a subpart of a multipart message. IE a multipart/mixed message with part 1 text/plain and part 2 with type text/html. If I pass either 1.1 or 1.2 I get an empty string. Passing either 1 or 2 fetches the plain and html parts respectively. Obtaining the struct with or without FT_PREFETCHTEXT makes no difference. I suspect the problem is in the client lib. In looking at the server logs no FETCH request is issued in the 1.1 and 1.2 part cases. Mike. -- Edit this bug report at http://bugs.php.net/?id=15821edit=1
Bug #15491 Updated: Curl and PHP_CURL_RETURN wrong behavior
ID: 15491
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Bogus
Bug Type: cURL related
Operating System: Linux 2.4 (RedHat 7.2)
PHP Version: 4.1.1
New Comment:
mhhh...what i mean is:
If CURLOPT_RETURNTRANSFER set to 1 curl_exec() should return the
transfered content instead of printing it out directly (see
http://www.php.net/manual/en/function.curl-setopt.php)
In this case (when CURLOPT_RETURNTRANSFER=1) curl_exec() should return
exactly the transfered content and not the statuscode
Have a look at the example:
?php
$url= 'http://127.0.0.1/empty_document.html';#Its an empty html
document
$ch = curl_init($url);
curl_setopt ( $ch, CURLOPT_RETURNTRANSFER, 1);
$content= curl_exec ( $ch);#returns 1, should return nothink
echo content of $url :$content;
echo \n;
curl_setopt ( $ch, CURLOPT_RETURNTRANSFER, 0);
echo content of $url :;
curl_exec ( $ch);# print out nothink - right
?
Previous Comments:
[2002-03-03 11:30:26] [EMAIL PROTECTED]
This is the correct behaviour, it signifies that the request was
successfully made, whether or not the server returns data is not a cURL
thing...
[2002-02-11 18:51:04] [EMAIL PROTECTED]
Its not exactly the same bug described in #15307.
Bug #15307 was fixed in the cvs of curl.c (V 1.103)
... i get the last CVS curl.c (V 1.105) the Segfault was fixed but
php
returns 1 (RETURN_TRUE) in such situation.
Cheers
Hans-Jürgen Petrich
[2002-02-11 18:25:38] [EMAIL PROTECTED]
This is the same bug I reported in report #15307, though I didn't
provide a fix like Hans did. Way to go!
[2002-02-10 14:54:09] [EMAIL PROTECTED]
Hi,
i still working with the PHP's curl functions (PHP 4.1.1) .
When call curl_exec() and CURLOPT_RETURNTRANSFER ist set (to 1) via
curl_opt() - php quit with a Segfault when curl_exec() receive nothink
from
the Server.
After i get the last CVS curl.c (V 1.105) the Segfault was fixed but
php
return 1 (RETURN_TRUE) in such situation.
I have write a small (and perhaps dirty) hack witch will fix this.
Perhaps
the author of curl.c can update curl.c in the CVS to avoid the wrong
return
value
Thank u, PHP is great.
Hans-Juergen Petrich
/* curl.c */
/* {{{ proto bool curl_exec(int ch)
Perform a CURL session */
PHP_FUNCTION(curl_exec)
{
zval **zid;
php_curl *ch;
CURLcodeerror;
if (ZEND_NUM_ARGS() != 1 ||
zend_get_parameters_ex(1, zid) == FAILURE) {
WRONG_PARAM_COUNT;
}
ZEND_FETCH_RESOURCE(ch, php_curl *, zid, -1, le_curl_name, le_curl);
error = curl_easy_perform(ch-cp);
if (error != CURLE_OK) {
if (ch-handlers-write-buf.len 0)
smart_str_free(ch-handlers-write-buf);
SAVE_CURL_ERROR(ch, error);
RETURN_FALSE;
}
if (ch-handlers-write-method == PHP_CURL_RETURN) {
if (ch-handlers-write-buf.len = 0)
RETURN_NULL();
if (ch-handlers-write-type != PHP_CURL_BINARY)
smart_str_0(ch-handlers-write-buf);
RETURN_STRINGL(ch-handlers-write-buf.c,
ch-handlers-write-buf.len, 0);
}
RETURN_TRUE;
}
/* }}} */
--
Edit this bug report at http://bugs.php.net/?id=15491edit=1
Bug #15849: Bugs found in rfc1867.c by source inspection
From: [EMAIL PROTECTED]
Operating system:
PHP version: 4.1.2
PHP Bug Type: Unknown/Other Function
Bug description: Bugs found in rfc1867.c by source inspection
The following was found by source code inspection:
You can't add 1 to the result of a memchr() and then
still expect to be able to check for a NULL result.
Regards,
Wolfram.
--- php4-4.1.2/main/rfc1867.c.orig Thu Feb 21 19:46:45 2002
+++ php4-4.1.2/main/rfc1867.c Sun Mar 3 22:11:42 2002
@@ -162,15 +162,15 @@
SAFE_RETURN;
}
/* some other headerfield found,
skip it
*/
- loc = (char *) memchr(ptr, '\n',
rem)+1;
+ loc = (char *) memchr(ptr, '\n',
rem);
if (!loc) {
/* broken */
php_error(E_WARNING, File
Uploa
d Mime headers garbled ptr: [%c%c%c%c%c], *ptr, *(ptr + 1), *(ptr + 2),
*(ptr +
3), *(ptr + 4));
SAFE_RETURN;
}
- while (*loc == ' ' || *loc ==
'\t') {
+ while (*++loc == ' ' || *loc ==
'\t') {
/* other field is folded,
skip i
t */
- loc = (char *) memchr(loc,
'\n',
rem-(loc-ptr))+1;
+ loc = (char *) memchr(loc,
'\n',
rem-(loc-ptr));
if (!loc) {
/* broken */
php_error(E_WARNING, Fi
le Upload Mime headers garbled ptr: [%c%c%c%c%c], *ptr, *(ptr + 1), *(ptr
+ 2),
*(ptr + 3), *(ptr + 4));
--
Edit bug report at http://bugs.php.net/?id=15849edit=1
--
Fixed in CVS:http://bugs.php.net/fix.php?id=15849r=fixedcvs
Fixed in release:http://bugs.php.net/fix.php?id=15849r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=15849r=needtrace
Try newer version: http://bugs.php.net/fix.php?id=15849r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=15849r=support
Expected behavior: http://bugs.php.net/fix.php?id=15849r=notwrong
Not enough info: http://bugs.php.net/fix.php?id=15849r=notenoughinfo
Submitted twice: http://bugs.php.net/fix.php?id=15849r=submittedtwice
Bug #15850: Compiling not possible due to incorrect creation of Makefile
From: [EMAIL PROTECTED] Operating system: LinuxMandrake 7.2 (2.2.17-21mdk) PHP version: 4.1.2 PHP Bug Type: Compile Failure Bug description: Compiling not possible due to incorrect creation of Makefile The bug appears when I try to compile PHP 4.1.2 as an apxs dynamic apache module. First I had a #configure --with-mysql --with-gd --enable-fff --with-apxs which produced an (almost) empty Makefile afterwards. Only 5 lines of path definitions where in there. This resulted in an error when trying to #make the project, as it returned: make: *** No targets. Stop. I just found the solution! It really is a bug in your configure script, please fix it as soon as you have time. I had the PHP sources located in /mnt/raid/Samba/Linux Programme/php-4.1.2 During the last step (creating files) the configure script tried to access the path, but did not use a metacharacter space (Linux\ Programme), so it tried to write in /mnt/raid/Samba/Linux, where of course no files were! Cool, I got that one :-) Anyways, if I hadn't found this bug, I'm sure you would have, and I'm sure you'd have helped me. You people are the ones who make PHP such a great language. PHP is incredibly awesome, you're doing a fantastic job! -- Edit bug report at http://bugs.php.net/?id=15850edit=1 -- Fixed in CVS:http://bugs.php.net/fix.php?id=15850r=fixedcvs Fixed in release:http://bugs.php.net/fix.php?id=15850r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=15850r=needtrace Try newer version: http://bugs.php.net/fix.php?id=15850r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=15850r=support Expected behavior: http://bugs.php.net/fix.php?id=15850r=notwrong Not enough info: http://bugs.php.net/fix.php?id=15850r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=15850r=submittedtwice
Bug #15850 Updated: Compiling not possible due to incorrect creation of Makefile
ID: 15850 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Compile Failure Operating System: LinuxMandrake 7.2 (2.2.17-21mdk) PHP Version: 4.1.2 New Comment: --enable-fff of course is --enable-track-vars Previous Comments: [2002-03-03 17:48:43] [EMAIL PROTECTED] The bug appears when I try to compile PHP 4.1.2 as an apxs dynamic apache module. First I had a #configure --with-mysql --with-gd --enable-fff --with-apxs which produced an (almost) empty Makefile afterwards. Only 5 lines of path definitions where in there. This resulted in an error when trying to #make the project, as it returned: make: *** No targets. Stop. I just found the solution! It really is a bug in your configure script, please fix it as soon as you have time. I had the PHP sources located in /mnt/raid/Samba/Linux Programme/php-4.1.2 During the last step (creating files) the configure script tried to access the path, but did not use a metacharacter space (Linux\ Programme), so it tried to write in /mnt/raid/Samba/Linux, where of course no files were! Cool, I got that one :-) Anyways, if I hadn't found this bug, I'm sure you would have, and I'm sure you'd have helped me. You people are the ones who make PHP such a great language. PHP is incredibly awesome, you're doing a fantastic job! -- Edit this bug report at http://bugs.php.net/?id=15850edit=1
Bug #15845 Updated: xslt_process() errors...
ID: 15845
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Bogus
Bug Type: Sablotron XSL
Operating System: Linux
PHP Version: 4.0.6
New Comment:
The new extension for xslt processing is called ext/xslt and was
released first with PHP 4.1.0
You have to ask around if someone can send you an old version of the
documentation or check it out via cvs.
And yes, xslt_process won't take a handle as an argument, but you
already found that out.
Previous Comments:
[2002-03-03 14:42:03] [EMAIL PROTECTED]
when you say does not need a handle you wanna say won't take one,
right?
and... what version of php uses the new ext/sablot, if this is the
old?
is the old version documented somewhere? could not find anything...
jj
[2002-03-03 13:27:54] [EMAIL PROTECTED]
This is not a bug. It is intended to work that way.
You are using the old ext/sablot and there xslt_process does not need a
sablotron processor handle.
Please ask further questions on php-general.
[2002-03-03 11:08:45] [EMAIL PROTECTED]
I tried to do some transformations using sablotron and
the PHP xslt functions.
After running into troubles from the first moment, I tried
some example scripts, but all of them won't work.
To get an idea of what i did i will post the xml-file content, the
xsl-file content and the script...
THE XSL FILE
--
?xml version=1.0 encoding=ISO-8859-1?
xsl:stylesheet version=1.0
xmlns:xsl=http://www.w3.org/1999/XSL/Transform;
xsl:template match=/
html
body
table border=2 bgcolor=yellow
tr
thTitle/th
thArtist/th
/tr
xsl:for-each select=catalog/cd
tr
tdxsl:value-of select=title//td
tdxsl:value-of select=artist//td
/tr
/xsl:for-each
/table
/body
/html
/xsl:template
/xsl:stylesheet
--
THE XML FILE
--
?xml version=1.0 encoding=ISO-8859-1?
catalog
cd
titleEmpire Burlesque/title
artistBob Dylan/artist
countryUSA/country
companyColumbia/company
price10.90/price
year1985/year
/cd
/catalog
--
THE SCRIP (taken from the php-online-documentation for
xslt_process())
--
?
$xsl = implode('',file(xml/cedists/cedist_news.xsl));
$xml = implode('',file(xml/cedefts/cedeft_news.xml));
// $xml and $xsl contain the XML and XSL data
$arguments = array(
'/_xml' = $xml,
'/_xsl' = $xsl
);
// Allocate a new XSLT processor
$xh = xslt_create();
// Process the document
$result = xslt_process($xh, 'arg:/_xml', 'arg:/_xsl', NULL,
$arguments);
if ($result) {
print pre\n;
print $result;
print /pre\n;
}
else {
print xslt_error($xh);
print xslt_errno($xh);
}
xslt_free($xh);
?
--
THE PROBLEM
**
Running the script produces the following error:
Only variables can be passed by reference
So i tried the following:
...
$result = xslt_process($xh,$xml,$xsl,NULL,$output);
echo $output;
...
Running the script with this xslt_process line produces
the following error:
Wrong parameter count for xslt_process()
So i changed the thing again and again and again until i
got a call of xslt_process which worked:
...
$result = xslt_process($xsl,$xml,$output);
echo $output;
...
As you can see, i DO NOT pass the reference to the created processor
($xh), and i also did not pass the other stuff, and !! the ORDER OF
$xsl and $xml WAS CHANGED.
This works! But why???
It even works, if i don't use xslt_create() function.
Why is that???
The whole xslt_ stuff seems to be a bit tricky...
**
ADDITIONAL INFORMATION
==
PHP Version 4.0.6
--
Linux Kernel 2.4.16
--'./configure'
'--with-apxs=/usr/local/apache/bin/apxs'
'--with-mysql=/usr/local/mysql' '--enable-track-vars'
'--enable-sysvsem' '--disable-debug' '--enable-ftp' '--enable-bcmath'
'--with-gd' '--with-jpeg-dir' '--with-png-dir=/usr/lib'
'--with-zlib-dir=/usr/include' '--with-pdflib' '--with-ttf'
'--with-ming=/usr/src/ming-0.2a'
Bug #14431 Updated: my_getwd.c:62: #error No way to get current directory
ID: 14431 Updated by: [EMAIL PROTECTED] -Summary: my_getwd.c:62: #error No way to get current directory Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Compile Failure Operating System: Solaris8 PHP Version: 4.1.0 -Assigned To: +Assigned To: zak Previous Comments: [2001-12-11 13:08:24] [EMAIL PROTECTED] This one seems to be similar to bug id 10269. Could someone assist me in working this out? ./configure \ --with-expat-dir=/usr/local \ --with-sablot=/usr/local \ --enable-xslt \ --with-xslt-sablot \ --with-openssl=/usr/local/ssl \ --with-curl=/opt \ --with-ldap=/usr/local \ --with-mysql \ --with-nsapi=/usr/netscape/server4 \ --with-iconv=/usr/local Making all in Zend Making all in main Making all in ext Making all in curl Making all in iconv Making all in ldap Making all in mysql Making all in libmysql /bin/sh /usr/software/php4/php-4.1.0/libtool --silent --mode=compile /usr/software/php4/php-4.1.0/meta_ccld -I. -I/usr/software/php4/php-4.1.0/ext/mysql/libmysql -I/usr/software/php4/php-4.1.0/main -I/usr/software/php4/php-4.1.0 -I/usr/netscape/server4/plugins/include -I/usr/software/php4/php-4.1.0/Zend -I/usr/local/ssl/include -I/opt/include -I/usr/local/include -I/usr/software/php4/php-4.1.0/ext/mysql/libmysql -D_POSIX_PTHREAD_SEMANTICS -D_POSIX_PTHREAD_SEMANTICS -D_REENTRANT -I/usr/software/php4/php-4.1.0/TSRM -DTHREAD=1 -g -O2 -pthreads -DZTS -prefer-pic -c my_getwd.c my_getwd.c:62: #error No way to get current directory *** Error code 1 make: Fatal error: Command failed for target `my_getwd.lo' Current working directory /usr/software/php4/php-4.1.0/ext/mysql/libmysql *** Error code 1 make: Fatal error: Command failed for target `all-recursive' Current working directory /usr/software/php4/php-4.1.0/ext/mysql/libmysql *** Error code 1 make: Fatal error: Command failed for target `all-recursive' Current working directory /usr/software/php4/php-4.1.0/ext/mysql *** Error code 1 make: Fatal error: Command failed for target `all-recursive' Current working directory /usr/software/php4/php-4.1.0/ext *** Error code 1 make: Fatal error: Command failed for target `all-recursive' -- Edit this bug report at http://bugs.php.net/?id=14431edit=1
Bug #15761 Updated: IMAP-SSL Bug
ID: 15761 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Feedback Bug Type: IMAP related Operating System: RedHat 7.2 PHP Version: 4.1.1 New Comment: You might wanna read the ./configure --help sometime.. You're using totally bogus paths there. /usr/local/lib won't work anywhere. Remove the '/lib' from those. Also, are you sure your c-client lib has been compiled with SSL support? --Jani Previous Comments: [2002-03-03 13:54:08] [EMAIL PROTECTED] here is my ./configure: ./configure --with-apxs=/usr/local/apache/bin/apxs --with-mysql=/usr/local/mysql --with-mcrypt=/usr/local/lib --with-png-dir=/usr/local/lib --with-jpeg-dir=/usr/local/lib --with-curl=/usr/local/lib --with-unixODBC=/usr/local/lib --with-zlib=/usr/local --enable-ftp --with-hyperwave --with-ming --with-freetype-dir=/usr/local --with-gd --with-swf --with-ttf=/usr/local/lib --enable-gd-native-ttf --with-mhash=/usr/local/lib --enable-yp --enable-versioning --enable-ftp --enable-apc --enable-bcmath --with-tiff-dir=/usr/local/lib --with-t1lib=/usr/local/lib --enable-sysvshm=yes --enable-sysvsem=yes --enable-calendar --enable-trans-sid --enable-mbregex --enable-mbstring --enable-wddx --enable-shmop --enable-exif --enable-memory-limit --enable-freetype-4bit-antialias-hack --with-bz2 --with-gettext --with-xpm=/usr/X11R6 --with-openssl=/usr/local/openssl --with-pgsql=/usr/local/pgsql --disable-debug --with-microcode=shared --with-dom=/usr/local/lib --enable-gd-imgstrttf --enable-pdflib --with-pdflib --enable-xslt --with-xslt-sablot --enable-dbase --with-ldap --with-zip --with-zlib-dir=/usr/local/lib --with-pspell --with-rtfm=shared --with-kerberos --with-imap --with-imap-ssl=/usr/local/openssl [2002-03-03 12:56:53] [EMAIL PROTECTED] status - feedback [2002-03-03 12:54:52] [EMAIL PROTECTED] Show us your entire ./configure line please. Do you have both --with-imap and --with-imap-ssl? [2002-03-03 12:41:36] [EMAIL PROTECTED] Please FIX the BUG thanx [2002-02-27 06:30:27] [EMAIL PROTECTED] sorry my eMail is: [EMAIL PROTECTED] The remainder of the comments for this report are too long. To view the rest of the comments, please view the bug report online at http://bugs.php.net/15761 -- Edit this bug report at http://bugs.php.net/?id=15761edit=1
Bug #15821 Updated: imap_fetchbody fails on subparts
ID: 15821 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Closed +Status: Bogus Bug Type: IMAP related Operating System: Windows 2000 SP2 PHP Version: 4.1.1 Previous Comments: [2002-03-03 15:12:04] [EMAIL PROTECTED] No bug, bogus developer. [2002-03-01 15:02:33] [EMAIL PROTECTED] imap_fetchbody does not return anything when I try to get a subpart of a multipart message. IE a multipart/mixed message with part 1 text/plain and part 2 with type text/html. If I pass either 1.1 or 1.2 I get an empty string. Passing either 1 or 2 fetches the plain and html parts respectively. Obtaining the struct with or without FT_PREFETCHTEXT makes no difference. I suspect the problem is in the client lib. In looking at the server logs no FETCH request is issued in the 1.1 and 1.2 part cases. Mike. -- Edit this bug report at http://bugs.php.net/?id=15821edit=1
Bug #15851: Output has extra garbage past end of output
From: [EMAIL PROTECTED] Operating system: Debian/testing Linux 2.2.18pre21 PHP version: 4.1.2 PHP Bug Type: Output Control Bug description: Output has extra garbage past end of output We have some PHP4 scripts, running against PHP4.1.2 and Apache 1.3.23, output buffering off. For some unknown reason, script output has extra fragments of the document, after the /HTML tag. Like: ...document.../HTML face=Arial or ...doc.../HTML color=#ff -- Edit bug report at http://bugs.php.net/?id=15851edit=1 -- Fixed in CVS:http://bugs.php.net/fix.php?id=15851r=fixedcvs Fixed in release:http://bugs.php.net/fix.php?id=15851r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=15851r=needtrace Try newer version: http://bugs.php.net/fix.php?id=15851r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=15851r=support Expected behavior: http://bugs.php.net/fix.php?id=15851r=notwrong Not enough info: http://bugs.php.net/fix.php?id=15851r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=15851r=submittedtwice
Bug #15852: Displaying the file system
From: [EMAIL PROTECTED]
Operating system: Win2K
PHP version: 4.1.2
PHP Bug Type: Directory function related
Bug description: Displaying the file system
A client has posted us the following code, after being able to view to
complete filesystem on a Windows 2000 server we resell space on:
?
// get directory handle
$hook = dir(c:winnt);
// display location
echo bCurrent path is $hook-path/bbr;
// read directory and echo list
while ($file=$hook-read())
{
if ($file != . $file != ..)
{
echo $filebr;
}
}
// close directory
$hook-close();
?
Is there anyway to protect against this, and does it represent a security
flaw?
Thanks
Gary
--
Edit bug report at http://bugs.php.net/?id=15852edit=1
--
Fixed in CVS:http://bugs.php.net/fix.php?id=15852r=fixedcvs
Fixed in release:http://bugs.php.net/fix.php?id=15852r=alreadyfixed
Need backtrace: http://bugs.php.net/fix.php?id=15852r=needtrace
Try newer version: http://bugs.php.net/fix.php?id=15852r=oldversion
Not developer issue: http://bugs.php.net/fix.php?id=15852r=support
Expected behavior: http://bugs.php.net/fix.php?id=15852r=notwrong
Not enough info: http://bugs.php.net/fix.php?id=15852r=notenoughinfo
Submitted twice: http://bugs.php.net/fix.php?id=15852r=submittedtwice
Bug #14529 Updated: script doesn't always finish output
ID: 14529
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
Status: Open
Bug Type: Output Control
Operating System: Linux RH 7.2
PHP Version: 4.1.2
New Comment:
I've been seeing the same thing in 4.1.2. In some cases, it partially
displays pages. In others (I think
this may be related), it doesn't acknowledge a POST until it's been
submitted multiple times (3 or 4
generally). Both behaviors are very inconsistent (they happen
frequently on a site with moderate use, but I
can't reproduce them).
Here's a backtrace:
Program received signal SIGSEGV, Segmentation fault.
0x402ad693 in _zend_is_inconsistent (ht=0x5a5a5a5a,
file=0x403fcb84 zend_hash.c, line=975) at zend_hash.c:84
84 if (ht-inconsistent==HT_OK) {
(gdb) bt
#0 0x402ad693 in _zend_is_inconsistent (ht=0x5a5a5a5a,
file=0x403fcb84
ýÿþýÿýÿ\025?ýÿG?F?ýÿýÿk?l?\205uTvýÿÌ?ýÿUvýÿË?§v¨vù?ýÿýÿýÿýÿx@z@u@ýÿv@w@ýÿýÿê@î@í@ýÿì@\017yýÿýÿ\204A\205A\203Aýÿ¼A½AÔAýÿýÿýÿýÿUBýÿPBLBHBýÿSBýÿWBTBNBJBQBýÿýÿIBKBcBýÿýÿ§B¦B¤Býÿýÿýÿä|å|ýÿýÿe~N~\027Cýÿ\026CýÿýÿcCýÿýÿ\202\177ýÿ{C|Cýÿ...,
line=975) at zend_hash.c:84
#1 0x4046b258 in ?? () from /usr/local/apache/libexec/libphp4.so
#2 0x402aff9f in zend_hash_internal_pointer_reset_ex (ht=0x5a5a5a5a,
pos=0xb090) at zend_hash.c:975
First symbol in segment of executable not a source symbol
Previous Comments:
[2002-02-28 17:15:48] [EMAIL PROTECTED]
Regarding the configure line and your MySQL problems. You should NEVER
(okay this is my opinion) use the bundled MySQL libs. On your
configure line you should do
--with-mysql=/usr | --with-mysql=/usr/local
Just depends on where it put your libs, which you can find like so
[root@somemachine /]# ldconfig -p | grep mysql
libmysqlclient.so.10 (libc6) =
/usr/local/lib/mysql/libmysqlclient.so.10
libmysqlclient.so (libc6) =
/usr/local/lib/mysql/libmysqlclient.so
I think the RPM puts it in /usr.
-Chris
[2002-02-28 16:27:48] [EMAIL PROTECTED]
We are getting closer, I've got a small team of people at this end
working on solving this bug and are now trying to dedicate much more
time and money into getting this bug solved! (Our business success
depends on it) The problem, we only know PHP programming well and are
weaker in the server end of things (I'm the only one with some Linux
knowledge) so we need your help to solve this. Here is a summary of
all things done so far to narrow this down (much already due to your
help). We've seperated everything into sections below.
PROBLEM:
While running some more complex PHP scripts they will not work on
anything newer than 4.0.6 but works 100% on 4.0 - 4.0.6. The page
simply stops displaying part ways through a script (usually right in
the middle of an echo statement or between echo statements). The
script seemed to finish commands past the point of where it stopped but
is only known through the sessions (seeing nothing else is being
displayed to screen) But, we've discovered when this crash happens
where it has been giving us problems as well so we can not confirm this
anymore.
APACHE ERROR_LOG:
When a page is loaded with my problem scripts I get either 1 or 2
errors in my apache error_log:
[date] [notice] child pid exit signal Segmentation fault (11)
(if two errors the second is the same except different pid number)
SCRIPTS CAUSING CRASHES:
These scripts that cause the problems have been in development for
almost 3 years now and are fairly complex. Not all scripts give me
hassles, but from the tests I have done, it appears only scripts that
have sessions AND use fairly large hashes (passed into and out from
sessions via serialize() functions) is where I have problems. Even
complex or large scripts without this in it seem to run fine. All
scripts run fine in PHP versions 4.0.6 or older but not since 4.1.0 or
newer (up to 4.2.2)
PHP compiling configurations:
Have tried compiling with various combinations of options trying to
narrow down if a particular option is what is causing the problems. So
far I can not find anything consistent.
GDB RESULTS:
You gave me the link to the generating bug-traces and I'm having
problems getting it to run apache properly.
I could not find a core file on my server. (Apache isn't generating
them, or I simply can not find them). So I've been using your
suggested method of running the script through gdb itself. Here is
what I've done so far.
Stopped the apache server (tested going to web page and confirmed it
was down), I then typed:
gdb /usr/sbin/httpd
run -X (from inside the gdb prompt)
It then says it's starting /usr/sbin/httpd with a new thread and then
starts a new blank line (while it's waiting for an apache crash
signal).
If at this point I use my browser
Bug #12270 Updated: php4ts.dll crashes due to null-pointer assignment on shutdown
ID: 12270
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
-Status: Feedback
+Status: No Feedback
Bug Type: Reproducible crash
Operating System: Win32
PHP Version: 4.0.6
New Comment:
No feedback was provided for this bug for over a month, so it is
being suspended automatically. If you are able to provide the
information that was originally requested, please do so and change
the status of the bug back to Open.
Previous Comments:
[2002-02-03 20:19:29] [EMAIL PROTECTED]
Could you try 4.1.1?
[2001-07-22 15:30:06] [EMAIL PROTECTED]
The fix is not valid - p-pLast cannot be NULLif everything works right
- i.e., the bug is elsewhere.
Do you have a script that reproduces this problem (preferably with the
CGI version of PHP)?
[2001-07-20 03:02:45] [EMAIL PROTECTED]
The crash may be only reproducible in release builds with activated
bcmath. (In debug builds
the Zend efree() function returns prior actual freeing something, if the
thread which calls efree()
isn't the thread which original allocated the resource).
The call stack of this issue is:
php_module_shutdown_wrapper() // pi3web_sapi.c
php_module_shutdown() // main.c
zend_shutdown()// zend.c
zend_hash_destroy(module_registry) // zend_hash.c
pefree(ht-arBuckets, ht-persistent) // zend_hash.c
...
PHP_MSHUTDOWN_FUNCTION(bcmath) // bcmath.c
bc_free_num (num) // init.c, the global bcnum value is _two_
efree ((*num)-n_ptr); // zend_alloc.c
In efree() the code in macro REMOVE_POINTER_FROM_LIST() crashes
#define REMOVE_POINTER_FROM_LIST(p) \
if (!p-persistent p==AG(head)) {\
AG(head) = p-pNext;\
} else if (p-persistent p==AG(phead)) { \
AG(phead) = p-pNext; \
} else {\
p-pLast-pNext = p-pNext; \
} \
if (p-pNext) { \
p-pNext-pLast = p-pLast; \
}
The reason of the crash is
} else {\
p-pLast-pNext = p-pNext; \
if the pointer pLast == NULL. This is true for the last allocated
persistent
resource. This code is only called when bcmath performs shutdown,
because in other calls of efree() the condition p==AG(head) seems to
be always true.
A probable fix is:
} else if (p-pLast) { \
p-pLast-pNext = p-pNext; \
---
regards,
Holger Zimmermann
--
Edit this bug report at http://bugs.php.net/?id=12270edit=1
Bug #15015 Updated: Session function don't work with PHP loadable module
ID: 15015 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Feedback +Status: No Feedback Bug Type: Session related Operating System: Windows 2000 Pro sr1 PHP Version: 4.1.1 New Comment: No feedback was provided for this bug for over a month, so it is being suspended automatically. If you are able to provide the information that was originally requested, please do so and change the status of the bug back to Open. Previous Comments: [2002-02-03 19:42:31] [EMAIL PROTECTED] Do you session support when you display phpinfo()? [2002-01-13 08:04:09] [EMAIL PROTECTED] Hi All: The session functions will only work when PHP is working as a CGI under Apache 1.3.22. They will not work when PHP is installed as a loadable module. SPECS: Win2K SR1, Apache 1.3.22, PHP 4.1.1. All downloaded binaries, none compiled V/R Art -- Edit this bug report at http://bugs.php.net/?id=15015edit=1
Bug #14529 Updated: script doesn't always finish output
ID: 14529
Updated by: [EMAIL PROTECTED]
-Summary: script doesn't always finish output
Reported By: [EMAIL PROTECTED]
-Status: Open
+Status: Feedback
Bug Type: Output Control
Operating System: Linux RH 7.2
PHP Version: 4.1.2
New Comment:
It looks you are having session bug.
It seems you are unset()ing $HTTP_SESSION_VARS or $_SESSION somewhere
in your script, aren't you?
Previous Comments:
[2002-03-03 21:12:33] [EMAIL PROTECTED]
I'm seeing the same problem with 4.1.2. Can reproduce, but with no
consistency.
I'm also seeing a problem where PHP isn't responded to POSTs (watching
it in ethereal, I had to post
repeatedly to get a response; the responding page was to set a couple
cookies and do a redirect). Any
possibility that they might be related?
(Had added a comment with a backtrace, but this one looks much more
useful):
#0 0x402ad693 in _zend_is_inconsistent (ht=0x0,
file=0x403fcb84 zend_hash.c, line=975) at zend_hash.c:84
#1 0x402aff9f in zend_hash_internal_pointer_reset_ex (ht=0x0,
pos=0xb090)
at zend_hash.c:975
#2 0x4031da18 in php_session_save_current_state () at session.c:544
#3 0x40320579 in php_session_flush () at session.c:1381
#4 0x403205bd in zm_deactivate_session (type=1, module_number=3)
at session.c:1393
#5 0x402ac614 in module_registry_cleanup (module=0x8054dc8) at
zend_API.c:1165
#6 0x402af394 in zend_hash_apply (ht=0x404808c0,
apply_func=0x402ac5d0 module_registry_cleanup) at
zend_hash.c:669
#7 0x402a8a4e in zend_deactivate_modules () at zend.c:585
#8 0x402b9eb0 in php_request_shutdown (dummy=0x0) at main.c:723
#9 0x402b63ff in apache_php_module_main (r=0x80ab44c,
display_source_mode=0)
at sapi_apache.c:96
#10 0x402b71d0 in send_php (r=0x80ab44c, display_source_mode=0,
filename=0x80ab9cc /usr/local/apache/htdocs/planworld/index.php)
at mod_php4.c:575
#11 0x402b724c in send_parsed_php (r=0x80ab44c) at mod_php4.c:590
#12 0x4004b743 in _ufc_foobar () from /lib/libcrypt.so.1
#13 0x400630b9 in ?? () from /lib/libdb.so.3
#14 0x40063529 in ?? () from /lib/libdb.so.3
#15 0x400354e2 in ?? () from /lib/libcrypt.so.1
#16 0x4004b743 in _ufc_foobar () from /lib/libcrypt.so.1
#17 0x400630b9 in ?? () from /lib/libdb.so.3
#18 0x4006312f in ?? () from /lib/libdb.so.3
#19 0x4005910d in _ufc_foobar () from /lib/libcrypt.so.1
#20 0x400592e3 in _ufc_foobar () from /lib/libcrypt.so.1
#21 0x40059476 in _ufc_foobar () from /lib/libcrypt.so.1
#22 0x40059c34 in _ufc_foobar () from /lib/libcrypt.so.1
#23 0x4005a645 in _ufc_foobar () from /lib/libcrypt.so.1
#24 0x80486dd in ?? () from /usr/local/apache/libexec/mod_caucho.so
#25 0x401589cb in __gconv_transform_internal_utf16 (step=0x80486c0,
data=0x2,
inbuf=0xbaa4, inbufend=0x8048560 U\211åSè,
written=0x804877c,
do_flush=1073786464) at ../iconv/loop.c:151
[2002-03-03 20:56:34] [EMAIL PROTECTED]
I've been seeing the same thing in 4.1.2. In some cases, it partially
displays pages. In others (I think
this may be related), it doesn't acknowledge a POST until it's been
submitted multiple times (3 or 4
generally). Both behaviors are very inconsistent (they happen
frequently on a site with moderate use, but I
can't reproduce them).
Here's a backtrace:
Program received signal SIGSEGV, Segmentation fault.
0x402ad693 in _zend_is_inconsistent (ht=0x5a5a5a5a,
file=0x403fcb84 zend_hash.c, line=975) at zend_hash.c:84
84 if (ht-inconsistent==HT_OK) {
(gdb) bt
#0 0x402ad693 in _zend_is_inconsistent (ht=0x5a5a5a5a,
file=0x403fcb84
ýÿþýÿýÿ\025?ýÿG?F?ýÿýÿk?l?\205uTvýÿÌ?ýÿUvýÿË?§v¨vù?ýÿýÿýÿýÿx@z@u@ýÿv@w@ýÿýÿê@î@í@ýÿì@\017yýÿýÿ\204A\205A\203Aýÿ¼A½AÔAýÿýÿýÿýÿUBýÿPBLBHBýÿSBýÿWBTBNBJBQBýÿýÿIBKBcBýÿýÿ§B¦B¤Býÿýÿýÿä|å|ýÿýÿe~N~\027Cýÿ\026CýÿýÿcCýÿýÿ\202\177ýÿ{C|Cýÿ...,
line=975) at zend_hash.c:84
#1 0x4046b258 in ?? () from /usr/local/apache/libexec/libphp4.so
#2 0x402aff9f in zend_hash_internal_pointer_reset_ex (ht=0x5a5a5a5a,
pos=0xb090) at zend_hash.c:975
First symbol in segment of executable not a source symbol
[2002-02-28 17:15:48] [EMAIL PROTECTED]
Regarding the configure line and your MySQL problems. You should NEVER
(okay this is my opinion) use the bundled MySQL libs. On your
configure line you should do
--with-mysql=/usr | --with-mysql=/usr/local
Just depends on where it put your libs, which you can find like so
[root@somemachine /]# ldconfig -p | grep mysql
libmysqlclient.so.10 (libc6) =
/usr/local/lib/mysql/libmysqlclient.so.10
libmysqlclient.so (libc6) =
/usr/local/lib/mysql/libmysqlclient.so
I think the RPM puts it in /usr.
-Chris
Bug #15852 Updated: Displaying the file system
ID: 15852
Updated by: [EMAIL PROTECTED]
Reported By: [EMAIL PROTECTED]
-Status: Open
+Status: Bogus
Bug Type: Directory function related
Operating System: Win2K
PHP Version: 4.1.2
New Comment:
The bug system is not the appropriate forum for asking support
questions. For a list of a range of more appropriate places to ask
for help using PHP, please visit http://www.php.net/support.php
Previous Comments:
[2002-03-03 20:54:45] [EMAIL PROTECTED]
A client has posted us the following code, after being able to view to
complete filesystem on a Windows 2000 server we resell space on:
?
// get directory handle
$hook = dir(c:winnt);
// display location
echo bCurrent path is $hook-path/bbr;
// read directory and echo list
while ($file=$hook-read())
{
if ($file != . $file != ..)
{
echo $filebr;
}
}
// close directory
$hook-close();
?
Is there anyway to protect against this, and does it represent a
security flaw?
Thanks
Gary
--
Edit this bug report at http://bugs.php.net/?id=15852edit=1
Bug #15853: Problem with Chop function :: Apache/PHP crashes with Dr. Watson error
From: [EMAIL PROTECTED] Operating system: Windows NT Service Pack 6 PHP version: 4.1.1 PHP Bug Type: Strings related Bug description: Problem with Chop function :: Apache/PHP crashes with Dr. Watson error Hi, I am encountering this strange problem whilst using chop() function in PHP to trim some specified characters from the trailing part of the string. PHP Manual says that chop and rtrim are aliases of each other. But when I use chop() function, Apache crashes with a Dr. Watson Error message. My PHP is configured for a SAPI dll use with Apache as against CGI solution. When I reconfigured my Apache to use PHP as CGI, the error message was different. PHP crashes with a Dr. Watson Error (OleWnd...) and Apache reports a 500 Internal Server Error. I have read in some Perl book that chop is a function in Perl. I doubt whether to use chop function, any implementation of Perl is needed. Please help... Deepak -- Edit bug report at http://bugs.php.net/?id=15853edit=1 -- Fixed in CVS:http://bugs.php.net/fix.php?id=15853r=fixedcvs Fixed in release:http://bugs.php.net/fix.php?id=15853r=alreadyfixed Need backtrace: http://bugs.php.net/fix.php?id=15853r=needtrace Try newer version: http://bugs.php.net/fix.php?id=15853r=oldversion Not developer issue: http://bugs.php.net/fix.php?id=15853r=support Expected behavior: http://bugs.php.net/fix.php?id=15853r=notwrong Not enough info: http://bugs.php.net/fix.php?id=15853r=notenoughinfo Submitted twice: http://bugs.php.net/fix.php?id=15853r=submittedtwice
Bug #15850 Updated: Compiling not possible due to incorrect creation of Makefile
ID: 15850 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] -Status: Open +Status: Bogus Bug Type: Compile Failure Operating System: LinuxMandrake 7.2 (2.2.17-21mdk) PHP Version: 4.1.2 New Comment: Completely non-sensical bug report. Previous Comments: [2002-03-03 17:49:56] [EMAIL PROTECTED] --enable-fff of course is --enable-track-vars [2002-03-03 17:48:43] [EMAIL PROTECTED] The bug appears when I try to compile PHP 4.1.2 as an apxs dynamic apache module. First I had a #configure --with-mysql --with-gd --enable-fff --with-apxs which produced an (almost) empty Makefile afterwards. Only 5 lines of path definitions where in there. This resulted in an error when trying to #make the project, as it returned: make: *** No targets. Stop. I just found the solution! It really is a bug in your configure script, please fix it as soon as you have time. I had the PHP sources located in /mnt/raid/Samba/Linux Programme/php-4.1.2 During the last step (creating files) the configure script tried to access the path, but did not use a metacharacter space (Linux\ Programme), so it tried to write in /mnt/raid/Samba/Linux, where of course no files were! Cool, I got that one :-) Anyways, if I hadn't found this bug, I'm sure you would have, and I'm sure you'd have helped me. You people are the ones who make PHP such a great language. PHP is incredibly awesome, you're doing a fantastic job! -- Edit this bug report at http://bugs.php.net/?id=15850edit=1
Bug #15853 Updated: Problem with Chop function :: Apache/PHP crashes with Dr. Watson error
ID: 15853 Updated by: [EMAIL PROTECTED] Reported By: [EMAIL PROTECTED] Status: Open Bug Type: Strings related Operating System: Windows NT Service Pack 6 PHP Version: 4.1.1 New Comment: Hi, The problem is bit vagarious and sometimes is not reproducible too. deepak Previous Comments: [2002-03-04 03:01:12] [EMAIL PROTECTED] Hi, I am encountering this strange problem whilst using chop() function in PHP to trim some specified characters from the trailing part of the string. PHP Manual says that chop and rtrim are aliases of each other. But when I use chop() function, Apache crashes with a Dr. Watson Error message. My PHP is configured for a SAPI dll use with Apache as against CGI solution. When I reconfigured my Apache to use PHP as CGI, the error message was different. PHP crashes with a Dr. Watson Error (OleWnd...) and Apache reports a 500 Internal Server Error. I have read in some Perl book that chop is a function in Perl. I doubt whether to use chop function, any implementation of Perl is needed. Please help... Deepak -- Edit this bug report at http://bugs.php.net/?id=15853edit=1
