[packages/php/dev-7.1] up to 7.1.0RC3
glen
glen at pld-linux.org
Tue Oct 4 18:20:48 CEST 2016
commit 34458d35dd806ab62379d6abe86a5514b174f023
Author: Elan Ruusamäe <glen at delfi.ee>
Date: Tue Oct 4 18:47:24 2016 +0300
up to 7.1.0RC3
php-cgi-fcgi.ini | 46 +++++++++++++++++++++++++++++++++++-----------
php-ini.patch | 18 +++++++++++++++---
php.spec | 4 ++--
3 files changed, 52 insertions(+), 16 deletions(-)
---
diff --git a/php.spec b/php.spec
index d0b71a8..a6cc65a 100644
--- a/php.spec
+++ b/php.spec
@@ -134,7 +134,7 @@
%endif
%define rel 0.5
-%define subver RC2
+%define subver RC3
%define orgname php
%define ver_suffix 71
%define php_suffix %{!?with_default_php:%{ver_suffix}}
@@ -155,7 +155,7 @@ License: PHP 3.01 and Zend and BSD
Group: Libraries
#Source0: http://php.net/distributions/%{orgname}-%{version}.tar.xz
Source0: https://downloads.php.net/~davey/php-%{version}%{subver}.tar.xz
-# Source0-md5: efa2652fdb58b5bee56750238b5df45f
+# Source0-md5: 2bfa0ad51de4fce87d0175d655f6bf69
Source2: %{orgname}-mod_php.conf
Source3: %{orgname}-cgi-fcgi.ini
Source4: %{orgname}-apache.ini
diff --git a/php-cgi-fcgi.ini b/php-cgi-fcgi.ini
index 809c7d3..bae4609 100644
--- a/php-cgi-fcgi.ini
+++ b/php-cgi-fcgi.ini
@@ -8,41 +8,65 @@
; copying whole large php.ini.
[PHP]
-; Disable logging through FastCGI connection
-; See http://bugs.php.net/bug.php?id=28074
-; fastcgi.logging = 0
-
; cgi.force_redirect is necessary to provide security running PHP as a CGI under
; most web servers. Left undefined, PHP turns this on by default. You can
; turn it off here AT YOUR OWN RISK
; **You CAN safely turn this off for IIS, in fact, you MUST.**
-; cgi.force_redirect = 1
+; http://php.net/cgi.force-redirect
+;cgi.force_redirect = 1
; if cgi.nph is enabled it will force cgi to always sent Status: 200 with
-; every request.
-; cgi.nph = 1
+; every request. PHP's default behavior is to disable this feature.
+;cgi.nph = 1
; if cgi.force_redirect is turned on, and you are not running under Apache or Netscape
; (iPlanet) web servers, you MAY need to set an environment variable name that PHP
; will look for to know it is OK to continue execution. Setting this variable MAY
; cause security issues, KNOW WHAT YOU ARE DOING FIRST.
-; cgi.redirect_status_env = ;
+; http://php.net/cgi.redirect-status-env
+;cgi.redirect_status_env =
; cgi.fix_pathinfo provides *real* PATH_INFO/PATH_TRANSLATED support for CGI. PHP's
; previous behaviour was to set PATH_TRANSLATED to SCRIPT_FILENAME, and to not grok
; what PATH_INFO is. For more information on PATH_INFO, see the cgi specs. Setting
-; this to 1 will cause PHP CGI to fix it's paths to conform to the spec. A setting
+; this to 1 will cause PHP CGI to fix its paths to conform to the spec. A setting
; of zero causes PHP to behave as before. Default is 1. You should fix your scripts
; to use SCRIPT_FILENAME rather than PATH_TRANSLATED.
+; http://php.net/cgi.fix-pathinfo
cgi.fix_pathinfo=1
+; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside
+; of the web tree and people will not be able to circumvent .htaccess security.
+; http://php.net/cgi.dicard-path
+;cgi.discard_path=1
+
+; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate
+; security tokens of the calling client. This allows IIS to define the
+; security context that the request runs under. mod_fastcgi under Apache
+; does not currently support this feature (03/17/2002)
+; Set to 1 if running under IIS. Default is zero.
+; http://php.net/fastcgi.impersonate
+;fastcgi.impersonate = 1
+
+; Disable logging through FastCGI connection. PHP's default behavior is to enable
+; this feature.
+;fastcgi.logging = 0
+
; cgi.rfc2616_headers configuration option tells PHP what type of headers to
-; use when sending HTTP response code. If it's set 0 PHP sends Status: header that
-; is supported by Apache. When this option is set to 1 PHP will send
+; use when sending HTTP response code. If set to 0, PHP sends Status: header that
+; is supported by Apache. When this option is set to 1, PHP will send
; RFC2616 compliant header.
; Default is zero.
+; http://php.net/cgi.rfc2616-headers
;cgi.rfc2616_headers = 0
+; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #!
+; (shebang) at the top of the running script. This line might be needed if the
+; script support running both as stand-alone script and via PHP CGI<. PHP in CGI
+; mode skips this line and ignores its content if this directive is turned on.
+; http://php.net/cgi.check-shebang-line
+;cgi.check_shebang_line=1
+
[Session]
session.save_path = /tmp ; argument passed to save_handler
; in the case of files, this is the
diff --git a/php-ini.patch b/php-ini.patch
index 509448a..5655466 100644
--- a/php-ini.patch
+++ b/php-ini.patch
@@ -1,5 +1,5 @@
---- php-7.1.0alpha2/php.ini~ 2016-07-04 14:50:51.000000000 +0300
-+++ php-7.1.0alpha2/php.ini 2016-07-04 14:55:32.781046036 +0300
+--- php-7.1.0RC3/php.ini~ 2016-10-04 18:47:57.000000000 +0300
++++ php-7.1.0RC3/php.ini 2016-10-04 18:50:05.861335161 +0300
@@ -82,6 +82,20 @@
; much more verbose when it comes to errors. We recommending using the
; development version only in development environments as errors shown to
@@ -57,7 +57,7 @@
; On windows:
; extension_dir = "ext"
-@@ -760,53 +760,6 @@
+@@ -761,65 +761,6 @@
; http://php.net/enable-dl
enable_dl = Off
@@ -88,6 +88,11 @@
-; http://php.net/cgi.fix-pathinfo
-;cgi.fix_pathinfo=1
-
+-; if cgi.discard_path is enabled, the PHP CGI binary can safely be placed outside
+-; of the web tree and people will not be able to circumvent .htaccess security.
+-; http://php.net/cgi.dicard-path
+-;cgi.discard_path=1
+-
-; FastCGI under IIS (on WINNT based OS) supports the ability to impersonate
-; security tokens of the calling client. This allows IIS to define the
-; security context that the request runs under. mod_fastcgi under Apache
@@ -108,6 +113,13 @@
-; http://php.net/cgi.rfc2616-headers
-;cgi.rfc2616_headers = 0
-
+-; cgi.check_shebang_line controls whether CGI PHP checks for line starting with #!
+-; (shebang) at the top of the running script. This line might be needed if the
+-; script support running both as stand-alone script and via PHP CGI<. PHP in CGI
+-; mode skips this line and ignores its content if this directive is turned on.
+-; http://php.net/cgi.check-shebang-line
+-;cgi.check_shebang_line=1
+-
;;;;;;;;;;;;;;;;
; File Uploads ;
;;;;;;;;;;;;;;;;
================================================================
---- gitweb:
http://git.pld-linux.org/gitweb.cgi/packages/php.git/commitdiff/34458d35dd806ab62379d6abe86a5514b174f023
More information about the pld-cvs-commit
mailing list