yohgaki

diff --git a/ext/pgsql/pgsql.c b/ext/pgsql/pgsql.c
index 2ac0454..c4632ae 100644
--- a/ext/pgsql/pgsql.c
+++ b/ext/pgsql/pgsql.c
@@ -746,6 +746,104 @@ ZEND_GET_MODULE(pgsql)
 
 static int le_link, le_plink, le_result, le_lofp, le_string;
 
+/* Compatibility definitions */
+

yohgaki

Index: en/reference/session/security.xml
===================================================================
--- en/reference/session/security.xml	(リビジョン 332867)
+++ en/reference/session/security.xml	(作業コピー)
@@ -7,6 +7,102 @@
   External links: <link xlink:href="&url.session-fixation;">Session fixation</link>
  </para>
  <para>
+  HTTP session management is core of web security. All of mitigation should be adopted to make
+  sure session security. User should enable/use applicable settings appropriately.

yohgaki

%global pkgname phalcon

Name:           php-phalcon
Version:        1.3.4
Release:        1%{?dist}
Summary:        PhalconPHP is a web framework delivered as a C extension 

License:        BSD
URL:            http://phalconphp.com
Source0:        c%{pkgname}-master.zip

yohgaki

<?php

const RECORDS  = 1000000;
const SEARCHES = 10000;

$pgsql = pg_connect('host=localhost dbname=test') or die('Failed to connect PostgreSQL');
$version = pg_version();
!version_compare($version['server'], '9.4', '<') or die('Need PostgreSQL 9.4 or later');
$mongo = (new MongoClient())->test->test;

yohgaki

<?php
const NUM_DATA=10000;
const DUMMY_BYTES=36000;
$db = pg_connect('host=localhost dbname=yohgaki') || die('Failed to connect db');


$dummy = base64_encode(file_get_contents('/dev/urandom', false, null, -1, DUMMY_BYTES));
$dummy = substr($dummy, 0, DUMMY_BYTES);
//$dummy = str_repeat('a', DUMMY_BYTES);

yohgaki

diff --git a/ext/session/mod_files.c b/ext/session/mod_files.c
index 621c4e1..a21e0ca 100644
--- a/ext/session/mod_files.c
+++ b/ext/session/mod_files.c
@@ -61,40 +61,9 @@ typedef struct {
 } ps_files;
 
 ps_module ps_mod_files = {
-	PS_MOD(files)
+	PS_MOD_SID(files)

yohgaki

Index: ext/pgsql/tests/08escape.phpt
===================================================================
--- ext/pgsql/tests/08escape.phpt	(リビジョン 319557)
+++ ext/pgsql/tests/08escape.phpt	(作業コピー)
@@ -11,8 +11,9 @@
 // pg_escape_string() test
 $before = "ABC\\ABC\'";
 $expect  = "ABC\\\\ABC\\'";
+$expect2  = "ABC\\\\ABC\\\\''"; //the way escape string differs from PostgreSQL 9.0
 $after = pg_escape_string($before);

yohgaki

<?php
$db = pg_connect('host=127.0.0.1 dbname=test');

// Create test table with reserved word "user"
$sql = 'drop table test2; create table test2 ('.pg_escape_identifier('user').' text);';
var_dump($sql);
pg_query($sql);

// Example use of pg_escape_literal(). 
// Note that no quotes around string. Quotes are added by the function.

yohgaki

diff --git a/ext/session/mod_files.c b/ext/session/mod_files.c
index 621c4e1..a21e0ca 100644
--- a/ext/session/mod_files.c
+++ b/ext/session/mod_files.c
@@ -61,40 +61,9 @@ typedef struct {
 } ps_files;
 
 ps_module ps_mod_files = {
-	PS_MOD(files)
+	PS_MOD_SID(files)

yohgaki

diff --git a/ext/session/mod_files.c b/ext/session/mod_files.c
index ec25bea..2046934 100644
--- a/ext/session/mod_files.c
+++ b/ext/session/mod_files.c
@@ -61,40 +61,9 @@ typedef struct {
 } ps_files;
 
 ps_module ps_mod_files = {
-	PS_MOD(files)
+	PS_MOD_SID(files)