[PHP-DEV] Re: [RFC Discussion] Precise Session Management

Hi all, On Tue, Jan 26, 2016 at 4:01 PM, Yasuo Ohgaki wrote: > Since the function only allows chars used by ID, I would like to add "_" a > valid char. "_" should be very safe char. I think about possible attack/misuse scenario a little more and come up with following. "_" is wild card char of

[PHP-DEV] Re: [RFC Discussion] Precise Session Management

On Tue, Jan 26, 2016 at 4:01 PM, Yasuo Ohgaki wrote: > Currently, the use of "PHPAPI php_session_valid_chars()" is up to save > handler, > but it should be checked always by session module. Since the function > only allows Oops, sorry s/PHPAPI php_session_valid_chars()/PHPAPI php_session_valid_

[PHP-DEV] Re: [RFC Discussion] Precise Session Management

Hi all, On Tue, Jan 26, 2016 at 11:22 AM, Yasuo Ohgaki wrote: > On Fri, Jan 22, 2016 at 10:32 AM, Yasuo Ohgaki wrote: >> On Fri, Jan 22, 2016 at 10:19 AM, Yasuo Ohgaki wrote: >>> >>> https://github.com/php/php-src/pull/1734 >>> >>> Few things are missing still, but it's good enough to review ba

Re: [PHP-DEV] Severe safety fail in file access and stream filters

Hi Umberto, On Fri, Jan 22, 2016 at 9:49 PM, Umberto Salsi wrote: > thank you very much for the reply, I now start understanding better what > happen and why currently i/o cannot be handled in user's space. You're welcome. I think you have pointed out important missing parts in PHP. > Rather th

[PHP-DEV] Re: [RFC Discussion] Precise Session Management

Hi all, On Fri, Jan 22, 2016 at 10:32 AM, Yasuo Ohgaki wrote: > On Fri, Jan 22, 2016 at 10:19 AM, Yasuo Ohgaki wrote: >> >> https://github.com/php/php-src/pull/1734 >> >> Few things are missing still, but it's good enough to review basic features. > > Please note that if you execute run-tests.ph

Re: [PHP-DEV] RE: compiling php 5.6.# fails with sun CC 12.3 sparc sol 10, no problem 5.5 or 5.3

Not sure if this helps, but perhaps something like this: # gmake Makefile fragment to clean a file of its carriage returns. # Carriage returns drive the Studio compiler crazy. cleancr = $(GSED) -i -e 's/\r//g' $(1) ; Chris On 26/01/2016 3:05 AM, Ross, Christine wrote: Hi Thank you for gettin

Re: [PHP-DEV] PHP 7.0.3 RC1 is available for testing - **** BC break ***

Hi Remi and all, On Fri, Jan 22, 2016 at 1:20 AM, Remi Collet wrote: > Fedora detected a BC break in 5.6.18RC1 and 7.0.3RC1 related to > session management. > > This update breaks: > > Horde_SessionHandler (2.2.6) and symfony (2.7.9) Thank you for notifying issue. Remi provided reproduceble phpt

[PHP-DEV] NEUTRAL Benchmark Results for PHP Master 2016-01-25

Results for project PHP master, build date 2016-01-25 06:30:37+02:00 commit: 319e828 previous commit:af255c6 revision date: 2016-01-24 23:04:15+01:00 environment:Haswell-EP cpu:Intel(R) Xeon(R) CPU E5-2699 v3 @ 2.30GHz 2x18 cores, stepping 2, LLC 45 MB

[PHP-DEV] RE: compiling php 5.6.# fails with sun CC 12.3 sparc sol 10, no problem 5.5 or 5.3

Hi Thank you for getting back to me. I installed 5.6.17 that I downloaded from php.net. I had previously tried 5.6.10 with the same results. I'm running v2.5 of bison and v0.13.5 of re2c. When I was trying to debug this I installed re2c but it didn't help. I could install a later version

RE: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

> -Original Message- > From: Peter Lind [mailto:peter.e.l...@gmail.com] > Sent: Monday, January 25, 2016 1:47 PM > To: Zeev Suraski > Cc: Dan Ackroyd ; internals@lists.php.net > Subject: Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct > > On 25 January 2016 at 12:43, Zeev Su

Re: [PHP-DEV] Re: [RFC] Generalize support of negative string offsets

Hi Andrea, Le 23/01/2016 22:10, Andrea Faulds a écrit : Er, ignore what I just said. Negative string offsets are actually special-cased and always produce an "Unitialized string offset" or "Invalid string offset" notice. So our current behaviour is in fact completely useless, not just mostly. :

RE: [PHP-DEV] [RFC] [Re-proposed] Adopt Code of Conduct

That's been in my queue for a while... > -Original Message- > From: Andrea Faulds [mailto:a...@ajf.me] > Sent: Thursday, January 21, 2016 6:26 PM > To: internals@lists.php.net > Subject: Re: [PHP-DEV] [RFC] [Re-proposed] Adopt Code of Conduct > > Hi, > > > Namely - decision by consensus.

[PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

Hi, There was a lot of traffic over the weekend, and several of you have provided suggestions and rewordings of several documents through https://github.com/derickr/php-community-health I've adopted some, I have declined some (with reasons), and I've left some unresolved. As I wrote in my mail

Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

Hi Stanislav, I have made a small change to The Pragmatist Code of conduct from 'behave like an adult to 'you are expected to show others civility and courtesy.' > This one basically can be TLDRed as "behave as an adult". Which is nice > if we were to agree what it means, but that is in no wa

Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

On 25 January 2016 at 12:43, Zeev Suraski wrote: > > > > -Original Message- > > From: Dan Ackroyd [mailto:dan...@basereality.com] > > Sent: Monday, January 25, 2016 12:48 AM > > To: Stanislav Malyshev > > Cc: internals@lists.php.net > > Subject: Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adop

RE: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

> -Original Message- > From: Dan Ackroyd [mailto:dan...@basereality.com] > Sent: Monday, January 25, 2016 12:48 AM > To: Stanislav Malyshev > Cc: internals@lists.php.net > Subject: Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct > > A significant number of technical RFC disc

Re: [PHP-DEV] alternative valgrind-like support for run-tests along other nice additions

Hi Pierre, On Mon, Jan 25, 2016 at 5:49 PM, Pierre Joye wrote: > This is only for Windows but I think it could make sense to provide it > for other platforms as well, optionally. It can then allow us to > support other features more easily. I am particularly interested to > see if we can make som

RE: [PHP-DEV] Specific incident in relationship to the proposed Code of Conduct

> -Original Message- > From: Derick Rethans [mailto:der...@php.net] > Sent: Monday, January 25, 2016 1:01 PM > To: Stanislav Malyshev > Cc: Pierre Joye ; PHP internals > > Subject: Re: [PHP-DEV] Specific incident in relationship to the proposed Code > of Conduct > > On Sat, 23 Jan 2016

Re: [PHP-DEV] Specific incident in relationship to the proposed Code of Conduct

On Sat, 23 Jan 2016, Stanislav Malyshev wrote: > > I think we should have used temporary bans a bit more to cool down > > things. Including to myself along other. > > Ban is a very dangerous thing, since it excludes people from discussion > thus preventing it from reaching a conclusion, achievin

[PHP-DEV] Re: compiling php 5.6.# fails with sun CC 12.3 sparc sol 10, no problem 5.5 or 5.3

Please try the sources available from the website (e.g. 5.6.17), these are already have some files pre-generated. Regradless, which versions of re2c/bison do you have on that system? Kaplan From: Ross, Christine Sent: Saturday, January 23, 2016 11:29 PM

Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

On Mon, Jan 25, 2016 at 9:21 AM, Stanislav Malyshev wrote: > Hi! > >> I already submitted it here once, so I'm skipping it - but I do >> personally like how it says the project is about code. > > But it's not. Not only. Code is the result, sure, at least one of, but > there's a lot of things invol

Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

On 25/01/16 05:23, Stanislav Malyshev wrote: > For me, if people would use CoC to count how many times they sent a > message on the list and then start arguing about *that* instead of the > actual matter, then we made things worse, not better. The thought that > somebody can be banned from discussi

[PHP-DEV] alternative valgrind-like support for run-tests along other nice additions

hi, It has been a long due request to have something similar to valgrind on Windows. I use a tool since quite some time for C projects and it becomes so handy that it is now a good choice for testing PHP as well, DrMemory (http://drmemory.org/) It works on many other platforms as well and provide

Re: [PHP-DEV] Re: Reusing main VM stack for generators

On 01/25/2016 11:36 AM, Bob Weinand wrote: Am 25.01.2016 um 09:13 schrieb Dmitry Stogov : We basically need a way to properly first fetch the args (beware: func_arg fetches...) before instantiating the call frame, an issue which for example could be solved if we applied my vm_stack_restructu

Re: [PHP-DEV] Re: Reusing main VM stack for generators

> Am 25.01.2016 um 09:13 schrieb Dmitry Stogov : >> We basically need a way to properly first fetch the args (beware: func_arg >> fetches...) before instantiating the call frame, an issue which for example >> could be solved if we applied my vm_stack_restructuring patch (because it >> only insta

Re: [PHP-DEV] Re: [RFC] [Re-proposed] Adopt Code of Conduct

Hi! > I already submitted it here once, so I'm skipping it - but I do > personally like how it says the project is about code. But it's not. Not only. Code is the result, sure, at least one of, but there's a lot of things involved that aren't code. > Actually, IMHO it is totally enough. The best

[PHP-DEV] Re: Reusing main VM stack for generators

On 01/22/2016 10:29 PM, Bob Weinand wrote: Am 22.01.2016 um 15:43 schrieb Dmitry Stogov >: Hi, Could you please, take a look into the PoC. It's incomplete, but may be you get ideas how to fix this. https://gist.github.com/dstogov/285024375d15cacf2a9b Few tests are f