Newsgroups: php.internals Path: news.php.net Xref: news.php.net php.internals:58945 Return-Path: Mailing-List: contact internals-help@lists.php.net; run by ezmlm Delivered-To: mailing list internals@lists.php.net Received: (qmail 18517 invoked from network); 14 Mar 2012 23:27:08 -0000 Received: from unknown (HELO lists.php.net) (127.0.0.1) by localhost with SMTP; 14 Mar 2012 23:27:08 -0000 Authentication-Results: pb1.pair.com header.from=ilia@prohost.org; sender-id=pass Authentication-Results: pb1.pair.com smtp.mail=ilia@prohost.org; spf=pass; sender-id=pass Received-SPF: pass (pb1.pair.com: domain prohost.org designates 209.85.215.170 as permitted sender) X-PHP-List-Original-Sender: ilia@prohost.org X-Host-Fingerprint: 209.85.215.170 mail-ey0-f170.google.com Received: from [209.85.215.170] ([209.85.215.170:60415] helo=mail-ey0-f170.google.com) by pb1.pair.com (ecelerity 2.1.1.9-wez r(12769M)) with ESMTP id ED/63-32926-A49216F4 for ; Wed, 14 Mar 2012 18:27:07 -0500 Received: by eaao10 with SMTP id o10so1379578eaa.29 for ; Wed, 14 Mar 2012 16:27:03 -0700 (PDT) X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=google.com; s=20120113; h=mime-version:in-reply-to:references:date:message-id:subject:from:to :cc:content-type:x-gm-message-state; bh=QiJqhJbwwtdKaMqHVxy8TLYurYzV0dsHTCKIjfzPihQ=; b=TWr/JmWIL7z8WUjJjqRBKSqe1ISGlhj4s0NQkNypfoI2c9UcznS49jLG1bmrwS3dDo W4z5sct/fuoy9x4l2jaufUCUPgzYSO614dl3ZeZtgOFypfxlIx9LMtiWiuSBpVMuCjQC q4Gj7PVTaHCRwA/0zHf9Dh/H4fL8RJfOBQDJwioH306x3yBDjRB9TohBmepBcEsAzxiE HNhkD5n0NBiwulpZ7RAXm+7GsuDRLSxCqsFtCI0icGgO65KFfbeAqYStJ6lCYvJmy5T8 ZjBQ5HbPTG0yOk/n0M4KGC0jtKGsqK72GH9UhG0GFIatMHB/mDQuFeJq4/JWNdURUV6n VU4A== MIME-Version: 1.0 Received: by 10.213.113.200 with SMTP id b8mr339495ebq.68.1331767623326; Wed, 14 Mar 2012 16:27:03 -0700 (PDT) Received: by 10.14.132.73 with HTTP; Wed, 14 Mar 2012 16:27:03 -0700 (PDT) In-Reply-To: <4F60F4B1.5010407@lerdorf.com> References: <4F60F4B1.5010407@lerdorf.com> Date: Wed, 14 Mar 2012 19:27:03 -0400 Message-ID: To: Rasmus Lerdorf Cc: PHP internals Content-Type: text/plain; charset=ISO-8859-1 X-Gm-Message-State: ALoCoQm3hDSOmqKZhpZKVqFbMhuod8FVeF0E943wfZNoOC0K89bX0q5JYDaDlwWWybhu9DwbcJi4 Subject: Re: [PHP-DEV] Let parse_str() parse more than max_input_vars args From: ilia@prohost.org (Ilia Alshanetsky) Sounds like a least dangerous way of solving the problem to me. The only issue I can see with this fix is what would happen is if after the "PG(max_input_vars) = max_vars; " call the request got interrupted in persistent environment such as Apache (mod_php). Wouldn't that means that for subsequent requests the value would not be equal to the one set by the user? On Wed, Mar 14, 2012 at 3:42 PM, Rasmus Lerdorf wrote: > It is somewhat unintuitive that parse_str() is subject to the > max_input_vars limitation and there are sites that use parse_str() to > parse things that aren't directly coming from user query args. > There arr two ways to solve this. We could add an optional max_vars arg > something along these lines: > > https://gist.github.com/2038870 > > The other way to solve this would be to make max_input_vars PHP_INI_ALL > and then just let people ini_set() their way around the limit. > > The one drawback with the optional arg approach is that since > parse_str() is a thin layer on top of the query string parser, the error > if you exceed the passed max_vars talks about the ini setting which in > this case wouldn't really be correct and fixing that would be complicated. > > -Rasmus > > -- > PHP Internals - PHP Runtime Development Mailing List > To unsubscribe, visit: http://www.php.net/unsub.php >