INIT_PZVAL(array_ptr);
switch (arg) {
case PARSE_POST:
- zend_hash_add_ptr(&EG(symbol_table), "HTTP_POST_VARS", sizeof("HTTP_POST_VARS"), array_ptr, sizeof(pval *),NULL);
+ if (zend_hash_add_ptr(&EG(symbol_table), "HTTP_POST_VARS", sizeof("HTTP_POST_VARS"), array_ptr, sizeof(pval *),NULL)==FAILURE) {
+ zval **p;
+
+ /* This could happen if we're in RFC 1867 file upload */
+ /* The parsing portion of the POST reader should actually move
+ * to this function - Zeev
+ */
+ zval_dtor(array_ptr);
+ FREE_ZVAL(array_ptr);
+ zend_hash_find(&EG(symbol_table), "HTTP_POST_VARS", sizeof("HTTP_POST_VARS"), (void **) &p);
+ array_ptr = *p;
+ }
break;
case PARSE_GET:
zend_hash_add_ptr(&EG(symbol_table), "HTTP_GET_VARS", sizeof("HTTP_GET_VARS"), array_ptr, sizeof(pval *),NULL);
state = 1;
eolsize = 2;
- if(*(loc+len)==0x0a)
+ if(*(loc+len)==0x0a) {
eolsize = 1;
+ }
rem -= (loc - ptr) + len + eolsize;
ptr = loc + len + eolsize;
php_error(E_WARNING, "File Upload Error - No Mime boundary found after start of file header");
SAFE_RETURN;
}
- fn = tempnam(PG(upload_tmp_dir), "php");
+ fn = tempnam(PG(upload_tmp_dir), "php");
if ((loc - ptr - 4) > PG(upload_max_filesize)) {
php_error(E_WARNING, "Max file size of %ld bytes exceeded - file [%s] not saved", PG(upload_max_filesize),namebuf);
bytes=0;
bytes = 0;
SET_VAR_STRING(namebuf, estrdup("none"));
} else {
- fp = fopen(fn, "w");
+ fp = fopen(fn, "wb");
if (!fp) {
php_error(E_WARNING, "File Upload Error - Unable to open temporary file [%s]", fn);
SAFE_RETURN;
projects / php / commitdiff