]> granicus.if.org Git - php/commit
projects / php / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 65d8183) | patch
security fix - by default 'local infile' is disabled:
authorDarek Slusarczyk <dariusz.slusarczyk@oracle.com>
Mon, 11 Feb 2019 16:16:49 +0000 (17:16 +0100)
committerDarek Slusarczyk <dariusz.slusarczyk@oracle.com>
Mon, 11 Feb 2019 17:04:51 +0000 (18:04 +0100)
commit2eaabf06fc5a62104ecb597830b2852d71b0a111
tree678c001e7bac00445f7b1ddd25adc326a7cc1db0tree | snapshot
parent65d81833bbd1de8c38abc591525ebce56bdbd95ccommit | diff
security fix - by default 'local infile' is disabled:
- set default for mysqli.allow_local_infile=0
- explicitly disable PDO::MYSQL_ATTR_LOCAL_INFILE in case of lack of driver options
- add getAttribute support for PDO::MYSQL_ATTR_LOCAL_INFILE
- update existing tests where needed
- add new tests [checking default value and setting on] the 'local infile' in ext/mysqli and ext/pdo_mysql
18 files changed:
NEWS diff | blob | history
ext/mysqli/mysqli.c diff | blob | history
ext/mysqli/tests/061.phpt diff | blob | history
ext/mysqli/tests/bug36745.phpt diff | blob | history
ext/mysqli/tests/bug53503.phpt diff | blob | history
ext/mysqli/tests/bug68077.phpt diff | blob | history
ext/mysqli/tests/mysqli_constants.phpt diff | blob | history
ext/mysqli/tests/mysqli_get_client_stats.phpt diff | blob | history
ext/mysqli/tests/mysqli_info.phpt diff | blob | history
ext/mysqli/tests/mysqli_local_infile_default_off.phpt [new file with mode: 0644] blob
ext/mysqli/tests/mysqli_local_infile_set_on.phpt [new file with mode: 0644] blob
ext/mysqli/tests/mysqli_real_connect.phpt diff | blob | history
ext/mysqli/tests/mysqli_real_connect_pconn.phpt diff | blob | history
ext/mysqlnd/mysqlnd_connection.c diff | blob | history
ext/pdo_mysql/mysql_driver.c diff | blob | history
ext/pdo_mysql/tests/pdo_mysql___construct_options.phpt diff | blob | history
ext/pdo_mysql/tests/pdo_mysql_local_infile_default_off.phpt [new file with mode: 0644] blob
ext/pdo_mysql/tests/pdo_mysql_local_infile_set_on.phpt [new file with mode: 0644] blob
Unnamed repository; edit this file 'description' to name the repository.