Re: [RFC] Multibyte char handling

From:	Yasuo Ohgaki	Date:	Sat, 18 Jan 2014 00:20:06 +0000
Subject:	Re: [RFC] Multibyte char handling
References:	1 2 3 4 5 6 7 8	Groups:	php.internals
Request:	Send a blank email to [email protected] to get a copy of this message

Hi Julien,

On Sat, Jan 18, 2014 at 7:10 AM, Yasuo Ohgaki <[email protected]> wrote:

> Why is that an issue ?
>> We just leave it as-is , or ?
>
>
> Some users are annoyed by sloppy multilingual implementations using
> this option. There is feature request from user who want to remove
> mbstring.func_overload INI option.
>
> https://bugs.php.net/bug.php?id=65785
>
> We may extend or drop this feature. I neutral for this.
>

Since we are better to concentrate on fixing the security issue, I've
made it open issue for future releases.

I'll just add mb new functions to mbstring.func_overload INI option.

If func_overload is supported, we still needs php_mblen() for command
line output since it's not good idea to detect locale and using
internal_encoding
opens new vulnerability.

Functions that are better to use locale are

 - mb_escape_shell_arg()
 - mb_escape_shell_cmd()

These function may override locale by encoding parameter.

Since fgetcsv() uses locale now, we may do the same for fgetcsv() also.

The RFC is updated.

Regards,

--
Yasuo Ohgaki
[email protected]


   

Thread (31 messages)

• Yasuo OhgakiWed, 15 Jan 2014 23:50:18 +0000
  • Yasuo OhgakiThu, 16 Jan 2014 00:12:44 +0000Re: [RFC] Multibyte char handling
    • [email protected]Thu, 16 Jan 2014 02:36:16 +0000Re: Re: [RFC] Multibyte char handling
      • Yasuo OhgakiThu, 16 Jan 2014 02:58:05 +0000
        • Stas MalyshevThu, 16 Jan 2014 07:22:05 +0000
          • Yasuo OhgakiThu, 16 Jan 2014 10:36:14 +0000
          • Derick RethansThu, 16 Jan 2014 11:38:59 +0000
            • Yasuo OhgakiFri, 17 Jan 2014 03:19:21 +0000
  • Nikita PopovThu, 16 Jan 2014 12:18:36 +0000
    • Yasuo OhgakiThu, 16 Jan 2014 22:34:06 +0000
      • Nikita PopovThu, 16 Jan 2014 22:38:00 +0000
        • Yasuo OhgakiThu, 16 Jan 2014 22:47:49 +0000
          • Pierre JoyeSun, 19 Jan 2014 16:09:40 +0000
            • Yasuo OhgakiSun, 19 Jan 2014 22:48:08 +0000
              • Yasuo OhgakiSun, 19 Jan 2014 22:59:13 +0000
              • Pierre JoyeMon, 20 Jan 2014 06:38:12 +0000
                • Yasuo OhgakiMon, 20 Jan 2014 08:57:48 +0000
      • MikeFri, 17 Jan 2014 16:37:58 +0000
        • Yasuo OhgakiFri, 17 Jan 2014 19:53:58 +0000
        • Julien PauliFri, 17 Jan 2014 20:06:38 +0000
          • Yasuo OhgakiFri, 17 Jan 2014 21:34:43 +0000
            • Yasuo OhgakiFri, 17 Jan 2014 21:41:31 +0000
            • Julien PauliFri, 17 Jan 2014 21:50:04 +0000
              • Yasuo OhgakiFri, 17 Jan 2014 22:10:27 +0000
                • Yasuo OhgakiFri, 17 Jan 2014 22:31:05 +0000
                • Julien PauliFri, 17 Jan 2014 23:04:05 +0000
                • Yasuo OhgakiSat, 18 Jan 2014 00:20:06 +0000
  • Lester CaineSat, 18 Jan 2014 13:41:54 +0000
    • Yasuo OhgakiSat, 18 Jan 2014 18:52:01 +0000
      • Lester CaineSat, 18 Jan 2014 21:19:43 +0000
  • Yasuo OhgakiThu, 23 Jan 2014 04:39:42 +0000Re: [RFC] Multibyte char handling