summaryrefslogtreecommitdiff
path: root/main/rfc1867.c
Commit message (Collapse)AuthorAgeFilesLines
* MFH: Bump copyright year, 3 of 3.Sebastian Bergmann2008-12-311-1/+1
|
* WSArnaud Le Blanc2008-10-201-19/+19
|
* Better fix for #46313Arnaud Le Blanc2008-10-201-3/+10
|
* Fixed #46313 (Magic quotes broke $_FILES)Arnaud Le Blanc2008-10-201-4/+0
| | | | | | | | | | | # magic_quotes_gpc was disabled during registration of $_FILES["x"]["tmp_name"] # and $GLOBALS["x"] (which is tmp_name with register_globals enabled). This # caused "x" to not be escaped so there was 2 different keys for the same file # in $_FILES, one with tmp_name and the other without. # All other variables (name, size, etc) are registered with magic_quotes_gpc # untouched, both in $_FILES and $GLOBALS and I did not found a reason for # disabling it for tmp_name.
* clean some dead code (with static analysis help)Nuno Lopes2008-09-231-2/+3
|
* MFH: More accurate max_file_size / upload_max_filesize (fixes #45124)Arnaud Le Blanc2008-09-071-2/+2
|
* MFH: Fixed #43540 (rfc1867 handler newlength problem)Arnaud Le Blanc2008-09-061-1/+1
|
* MFH: check if return value of write() is -1 and abort upload in this case ↵Antony Dovgal2008-03-141-1/+7
| | | | setting the correct error status
* MFH: Bump copyright year, 2 of 2.Sebastian Bergmann2007-12-311-1/+1
|
* Allow file uploads to bypass open_basedir checks (fixes regression)Ilia Alshanetsky2007-07-171-1/+1
|
* - Drop superflous efreeMarcus Boerger2007-02-241-3/+0
|
* - Avoid sprintf, even when checked copy'n'paste or changes lead to errorsMarcus Boerger2007-02-241-24/+26
|
* MFH: Bump year.Sebastian Bergmann2007-01-011-1/+1
|
* If one name is disallowed don't drop all filesStefan Esser2006-09-291-2/+4
|
* Delete empty temporary files if file upload hook forbids the uploadStefan Esser2006-09-191-0/+8
|
* Minor tweak to the file upload hooks. The MULTIPART_EVENT_FORMDATA eventRasmus Lerdorf2006-09-091-0/+10
| | | | | | | | was only triggering when an input filter was applied. This simple change makes the event also trigger when no filter is applied. The newlength pointer is set to NULL to let a downstream module differentiate between the two cases.
* Binary safe multipart request handlingIlia Alshanetsky2006-07-271-16/+17
|
* Added RFC1867 fileupload processing hook.Stefan Esser2006-07-221-5/+87
|
* bump year and license versionfoobar2006-01-011-3/+3
|
* - Bumber up yearfoobar2005-08-031-1/+1
|
* Fixed bug #33673 (Added detection for partially uploaded files).Ilia Alshanetsky2005-07-131-5/+17
|
* Bug #32491 (File upload error - unable to create a temporary file) - ↵Uwe Schindler2005-04-041-6/+6
| | | | Changing file upload from stdio to posix
* Prune uploaded file names to \ on all OSes, read comments for explanation.Ilia Alshanetsky2005-02-151-9/+6
|
* Final version of filename upload handling.Ilia Alshanetsky2005-02-011-4/+23
|
* Use multibyte specific code for handling files and generic basename basedIlia Alshanetsky2005-01-241-10/+8
| | | | | code in all other instances.
* - Revert irrelevant part.Moriyoshi Koizumi2005-01-241-10/+26
|
* Fixed bug #31398 (When magic_guotes_gpc are enabled filenames with 'Ilia Alshanetsky2005-01-201-33/+10
| | | | | get cutoff).
* Fixed: strip quotes from filenameStefan Esser2004-11-201-0/+8
|
* Fixed bug #30750 (Meaningful error message when upload directory is notIlia Alshanetsky2004-11-111-8/+13
| | | | | accessible).
* only allow valid arrays at this pointStefan Esser2004-09-131-0/+4
|
* New Rule: Never try to repair potential malicious user inputStefan Esser2004-09-121-4/+19
|
* Minor format specifier fixesSara Golemon2004-08-111-2/+2
|
* Fixed bug #29369 (Uploaded files with ' or " in their names get their namesIlia Alshanetsky2004-07-251-0/+9
| | | | | truncated at those characters).
* - Better stability during premature shutdown of request startupAndi Gutmans2004-07-101-3/+4
|
* This is more correct.Stefan Esser2004-05-231-3/+3
|
* - Fixed TSRM problem in latest commit.Derick Rethans2004-05-211-1/+1
|
* - Fixed bug #28456 (Problem with enclosed / in uploaded file names)Derick Rethans2004-05-211-1/+10
|
* - Fixed definesDerick Rethans2004-05-111-5/+5
|
* - Stopped file uploads from throwing E_WARNINGs and E_NOTICEs which can not beDerick Rethans2004-03-251-4/+10
| | | | | | hidden from within scripts (and a result value in the $_FILES global can be used to see the real failure anyway).
* - Revert bogus commitDerick Rethans2004-03-241-9/+3
|
* - Fixed NEWSDerick Rethans2004-03-241-3/+9
| | | | | #- Can we *please* keep this in order?
* better write into the correct bufferStefan Esser2004-02-121-0/+3
|
* - A belated happy holidays and PHP 5Andi Gutmans2004-01-081-2/+2
|
* - Add comment, I put this ina week ago and it already confused me :)Derick Rethans2003-12-071-1/+1
|
* - Fix sapi_input_filter patch. Returning 1 from the filter handler shouldDerick Rethans2003-11-291-3/+2
| | | | | | | make PHP register the variable, returning 0 shouldn't. The new length of the variables being filtered is now returned in the new_val_len argument of the function.
* - Prevent registration of the variable when a zero-length is returnedDerick Rethans2003-11-261-8/+11
| | | | | from the sapi_input_filter.
* Fix odd increments to repair the boundary checks.Stefan Esser2003-11-121-0/+4
|
* added buffer reallocation for filename.Rui Hirokawa2003-11-051-6/+15
|
* Fixed possible crashbug.Stefan Esser2003-11-031-2/+2
|
* It is usually a good idea to write only into allocated bufferspace.Stefan Esser2003-11-031-5/+5
|
View Lorry Controller Status