Comments (6)
@RoderickVincent for what it's worth mine fails that test too but it looks like you passed with flying colors otherwise.
Note that option is off by default anyway in suhosin, in theory you should be just fine.
from suhosin.
Thank you for your reply! But I don't quite understand what you are talking about. Do you mean that you did a test and encountered such the same error like me? And do you know where is the problem?
Yours sincerely
Roderick V.
Semlaland.com Affordable as well as Premium shared web hosting. Proudly made in Jönköping
Cassie.in Fashion House, personal blog & more!
On Jul 25, 2014, at 20:23, "ck-on" [email protected] wrote:
@RoderickVincent for what it's worth mine fails that test too but it looks like you passed with flying colors otherwise.
Note that option is off by default anyway in suhosin, in theory you should be just fine.
—
Reply to this email directly or view it on GitHub.
from suhosin.
What he means is that for some systems there are far more tests failing. However we detected that for some tests the test fails just because the error message is printed in an unexpected position of the output. So it might be just a stdout/stderr buffering problem on different operating systems. We will try to fix that with the next real release.
When you report a failed test please paste the output of the various error files created by failing tests like:
tests/filter/suhosin_upload_disallow_binary_on.diff
from suhosin.
Thanks. Here is the content of that file:
458+ e dropped (attacker 'REMOTE_ADDR not set', file '/home/Ella/suhosin-master/tests/filter/suhosin_upload_disallow_binary_on.php')461- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')462- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')463- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')464- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')465- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')466- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')467- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')468- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')469- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')470- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')471- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')472- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')473- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')474- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')475- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')476- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')477- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')478- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')479- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')480- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')481- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')482- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')483- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')484- ALERT - uploaded file contains binary data - file dropped (attacker 'REMOTE_ADDR not set', file '%s')
from suhosin.
I have problems also
Debian GNU/Linux 7.6 (wheezy)
systemd
PHP 5.4.31-1~dotdeb.1 with Suhosin v0.9.34-dev MAYBE this is the problem?
gcc-4.7.real (Debian 4.7.2-5) 4.7.2
as root
Testing: suhosin.executor.func.blacklist=printf [tests/executor/function_blacklist_printf.phpt]
Testing: suhosin.executor.func.whitelist=call_user_func [tests/executor/function_whilelist_call_user_func.phpt]
Testing: suhosin.upload.disallow_binary=On [tests/filter/suhosin_upload_disallow_binary_on.phpt]
as user
Testing: suhosin.executor.func.blacklist=printf [tests/executor/function_blacklist_printf.phpt]
Testing: suhosin.executor.func.whitelist=call_user_func [tests/executor/function_whilelist_call_user_func.phpt]
Testing: suhosin.upload.disallow_binary=On [tests/filter/suhosin_upload_disallow_binary_on.phpt]
PHPSESSID session id not too long [tests/session/PHPSESSID_max_id_length_ok.phpt]
session id not too long [tests/session/max_id_length_ok.phpt]
Please advise.
from suhosin.
In Linux tests appear to truncate printf() output with suhosin.log.stdout exceeding a certain length. As warning messages in suhosin contain the full path of the php file, this behaviour can be reproduced by testing with a long path name (e.g. ridiculously long /home/user/_src/suhosin). On the other hand, a very short path name (e.g. /tmp/s) should let all test cases pass correctly.
The idea behind suhosin.log.stdout is that suhosin warning messages are not randomly mixed with the test case's output, e.g. var_dump() with WARNING lines in between the lines. This behaviour was seen before, when test cases logged to stderr and PHP's run-tests.php automatically merged stdout and stderr.
Any ideas on how to resolve this Linux specific issue would be greatly appreciated.
from suhosin.
Related Issues (20)
- Handling cookies set on clientside when using encryption HOT 4
- Incompatibility with pcs ext. HOT 3
- Disable or uninstall Suhosin? 404 for everything HOT 1
- Loadable extension for HHVM HOT 1
- Too long syslog line HOT 2
- Ini section HOT 4
- filter HTTP_PROXY HOT 2
- disable URL-based sessions HOT 5
- suhosin should not restrict on cli access HOT 4
- Revive the php < 5.4 support HOT 6
- View log in system with systemd HOT 1
- Segmentation fault with enabled suhosin HOT 1
- http://download.suhosin.org is not acting properly HOT 1
- /suhosin.c:35:10: fatal error: 'php_logos.h' file not found HOT 1
- Apache24 segfault when OPcache + Suhosin are enabled HOT 6
- HTTPS certificate expired on suhosin.org HOT 3
- Repository key expired HOT 2
- ini priority for debian/ubuntu HOT 1
- PHP 5.6 with empty POST array HOT 7
- Need to disable suhosin for one Directory ( live chat ) HOT 10
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from suhosin.