diff -Naur drupal-7.61/CHANGELOG.txt drupal-7.66/CHANGELOG.txt --- drupal-7.61/CHANGELOG.txt 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/CHANGELOG.txt 2019-04-17 22:20:46.000000000 +0200 @@ -1,3 +1,34 @@ +Drupal 7.xx, xxxx-xx-xx (development version) +----------------------- + +Drupal 7.66, 2019-04-17 +----------------------- +- Fixed security issues: + - SA-CORE-2019-006 + +Drupal 7.65, 2019-03-20 +----------------------- +- Fixed security issues: + - SA-CORE-2019-004 + +Drupal 7.64, 2019-02-06 +----------------------- +- [regression] Unset the 'host' header in drupal_http_request() during redirect +- Fixed: 7.x does not have Phar protection and Phar tests are failing on Drupal 7 +- Fixed: Notice: Undefined index: display_field in file_field_widget_value() (line 582 of /module/file/file.field.inc) +- Performance improvement: Registry rebuild should not parse the same file twice in the same request +- Fixed _registry_update() to clear caches after transaction is committed + +Drupal 7.63, 2019-01-16 +----------------------- +- Fixed a fatal error for some Drush users introduced by SA-CORE-2019-002. + +Drupal 7.62, 2019-01-15 +----------------------- +- Fixed security issues: + - SA-CORE-2019-001 + - SA-CORE-2019-002 + Drupal 7.61, 2018-11-07 ----------------------- - File upload validation functions and hook_file_validate() implementations are diff -Naur drupal-7.61/includes/bootstrap.inc drupal-7.66/includes/bootstrap.inc --- drupal-7.61/includes/bootstrap.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/includes/bootstrap.inc 2019-04-17 22:20:46.000000000 +0200 @@ -8,7 +8,7 @@ /** * The current system version. */ -define('VERSION', '7.61'); +define('VERSION', '7.66'); /** * Core API compatibility. @@ -704,6 +704,19 @@ // Set sane locale settings, to ensure consistent string, dates, times and // numbers handling. setlocale(LC_ALL, 'C'); + + // PHP's built-in phar:// stream wrapper is not sufficiently secure. Override + // it with a more secure one, which requires PHP 5.3.3. For lower versions, + // unregister the built-in one without replacing it. Sites needing phar + // support for lower PHP versions must implement hook_stream_wrappers() to + // register their desired implementation. + if (in_array('phar', stream_get_wrappers(), TRUE)) { + stream_wrapper_unregister('phar'); + if (version_compare(PHP_VERSION, '5.3.3', '>=')) { + include_once DRUPAL_ROOT . '/includes/file.phar.inc'; + file_register_phar_wrapper(); + } + } } /** diff -Naur drupal-7.61/includes/common.inc drupal-7.66/includes/common.inc --- drupal-7.61/includes/common.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/includes/common.inc 2019-04-17 22:20:46.000000000 +0200 @@ -1094,6 +1094,11 @@ elseif ($options['max_redirects']) { // Redirect to the new location. $options['max_redirects']--; + + // We need to unset the 'Host' header + // as we are redirecting to a new location. + unset($options['headers']['Host']); + $result = drupal_http_request($location, $options); $result->redirect_code = $code; } diff -Naur drupal-7.61/includes/file.inc drupal-7.66/includes/file.inc --- drupal-7.61/includes/file.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/includes/file.inc 2019-04-17 22:20:46.000000000 +0200 @@ -993,8 +993,15 @@ * @return * The destination filepath, or FALSE if the file already exists * and FILE_EXISTS_ERROR is specified. + * + * @throws RuntimeException + * Thrown if the filename contains invalid UTF-8. */ function file_destination($destination, $replace) { + $basename = drupal_basename($destination); + if (!drupal_validate_utf8($basename)) { + throw new RuntimeException(sprintf("Invalid filename '%s'", $basename)); + } if (file_exists($destination)) { switch ($replace) { case FILE_EXISTS_REPLACE: @@ -1002,7 +1009,6 @@ break; case FILE_EXISTS_RENAME: - $basename = drupal_basename($destination); $directory = drupal_dirname($destination); $destination = file_create_filename($basename, $directory); break; @@ -1218,11 +1224,20 @@ * @return * File path consisting of $directory and a unique filename based off * of $basename. + * + * @throws RuntimeException + * Thrown if the $basename is not valid UTF-8 or another error occurs + * stripping control characters. */ function file_create_filename($basename, $directory) { + $original = $basename; // Strip control characters (ASCII value < 32). Though these are allowed in // some filesystems, not many applications handle them well. $basename = preg_replace('/[\x00-\x1F]/u', '_', $basename); + if (preg_last_error() !== PREG_NO_ERROR) { + throw new RuntimeException(sprintf("Invalid filename '%s'", $original)); + } + if (substr(PHP_OS, 0, 3) == 'WIN') { // These characters are not allowed in Windows filenames $basename = str_replace(array(':', '*', '?', '"', '<', '>', '|'), '_', $basename); @@ -1534,7 +1549,7 @@ // rename filename.php.foo and filename.php to filename.php.foo.txt and // filename.php.txt, respectively). Don't rename if 'allow_insecure_uploads' // evaluates to TRUE. - if (!variable_get('allow_insecure_uploads', 0) && preg_match('/\.(php|pl|py|cgi|asp|js)(\.|$)/i', $file->filename) && (substr($file->filename, -4) != '.txt')) { + if (!variable_get('allow_insecure_uploads', 0) && preg_match('/\.(php|phar|pl|py|cgi|asp|js)(\.|$)/i', $file->filename) && (substr($file->filename, -4) != '.txt')) { $file->filemime = 'text/plain'; // The destination filename will also later be used to create the URI. $file->filename .= '.txt'; @@ -1563,7 +1578,13 @@ if (substr($destination, -1) != '/') { $destination .= '/'; } - $file->destination = file_destination($destination . $file->filename, $replace); + try { + $file->destination = file_destination($destination . $file->filename, $replace); + } + catch (RuntimeException $e) { + drupal_set_message(t('The file %source could not be uploaded because the name is invalid.', array('%source' => $form_field_name)), 'error'); + return FALSE; + } // If file_destination() returns FALSE then $replace == FILE_EXISTS_ERROR and // there's an existing file so we need to bail. if ($file->destination === FALSE) { @@ -2130,9 +2151,33 @@ * 'filename', and 'name' members corresponding to the matching files. */ function file_scan_directory($dir, $mask, $options = array(), $depth = 0) { + // Default nomask option. + $nomask = '/(\.\.?|CVS)$/'; + + // Overrides the $nomask variable accordingly if $options['nomask'] is set. + // + // Allow directories specified in settings.php to be ignored. You can use this + // to not check for files in common special-purpose directories. For example, + // node_modules and bower_components. Ignoring irrelevant directories is a + // performance boost. + if (!isset($options['nomask'])) { + $ignore_directories = variable_get( + 'file_scan_ignore_directories', + array() + ); + + foreach ($ignore_directories as $index => $ignore_directory) { + $ignore_directories[$index] = preg_quote($ignore_directory, '/'); + } + + if (!empty($ignore_directories)) { + $nomask = '/^(\.\.?)|CVS|' . implode('|', $ignore_directories) . '$/'; + } + } + // Merge in defaults. $options += array( - 'nomask' => '/(\.\.?|CVS)$/', + 'nomask' => $nomask, 'callback' => 0, 'recurse' => TRUE, 'key' => 'uri', diff -Naur drupal-7.61/includes/file.phar.inc drupal-7.66/includes/file.phar.inc --- drupal-7.61/includes/file.phar.inc 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/includes/file.phar.inc 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,41 @@ +withAssertion(new PharExtensionInterceptor()) + ); + } + catch (\LogicException $e) { + // Continue if the PharStreamWrapperManager is already initialized. + // For example, this occurs following a drupal_static_reset(), such + // as during tests. + }; + + // To prevent file_stream_wrapper_valid_scheme() treating "phar" as a valid + // scheme, this is registered with PHP only, not with hook_stream_wrappers() + // or the internal storage of file_get_stream_wrappers(). + stream_wrapper_register('phar', '\\TYPO3\\PharStreamWrapper\\PharStreamWrapper'); +} diff -Naur drupal-7.61/includes/registry.inc drupal-7.66/includes/registry.inc --- drupal-7.61/includes/registry.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/includes/registry.inc 2019-04-17 22:20:46.000000000 +0200 @@ -19,7 +19,6 @@ * Does the work for registry_update(). */ function _registry_update() { - // The registry serves as a central autoloader for all classes, including // the database query builders. However, the registry rebuild process // requires write ability to the database, which means having access to the @@ -33,6 +32,11 @@ require_once DRUPAL_ROOT . '/includes/database/select.inc'; require_once DRUPAL_ROOT . '/includes/database/' . $driver . '/query.inc'; + // During the first registry rebuild in a request, we check all the files. + // During subsequent rebuilds, we only add new files. It makes the rebuilding + // process faster during installation of modules. + static $check_existing_files = TRUE; + // Get current list of modules and their files. $modules = db_query("SELECT * FROM {system} WHERE type = 'module'")->fetchAll(); // Get the list of files we are going to parse. @@ -55,6 +59,9 @@ $files["$filename"] = array('module' => '', 'weight' => 0); } + // Initialize an empty array for the unchanged files. + $unchanged_files = array(); + $transaction = db_transaction(); try { // Allow modules to manually modify the list of files before the registry @@ -63,10 +70,19 @@ // list can then be added to the list of files that the registry will parse, // or modify attributes of a file. drupal_alter('registry_files', $files, $modules); + foreach (registry_get_parsed_files() as $filename => $file) { // Add the hash for those files we have already parsed. if (isset($files[$filename])) { - $files[$filename]['hash'] = $file['hash']; + if ($check_existing_files === TRUE) { + $files[$filename]['hash'] = $file['hash']; + } + else { + // Ignore that file for this request, it has been parsed previously + // and it is unlikely it has changed. + unset($files[$filename]); + $unchanged_files[$filename] = $file; + } } else { // Flush the registry of resources in files that are no longer on disc @@ -79,8 +95,12 @@ ->execute(); } } + $parsed_files = _registry_parse_files($files); + // Add unchanged files to the files. + $files += $unchanged_files; + $unchanged_resources = array(); $lookup_cache = array(); if ($cache = cache_get('lookup_cache', 'cache_bootstrap')) { @@ -89,12 +109,10 @@ foreach ($lookup_cache as $key => $file) { // If the file for this cached resource is carried over unchanged from // the last registry build, then we can safely re-cache it. - if ($file && in_array($file, array_keys($files)) && !in_array($file, $parsed_files)) { + if ($file && isset($files[$file]) && !in_array($file, $parsed_files, TRUE)) { $unchanged_resources[$key] = $file; } } - module_implements('', FALSE, TRUE); - _registry_check_code(REGISTRY_RESET_LOOKUP_CACHE); } catch (Exception $e) { $transaction->rollback(); @@ -102,6 +120,13 @@ throw $e; } + module_implements('', FALSE, TRUE); + _registry_check_code(REGISTRY_RESET_LOOKUP_CACHE); + + // During the next run in this request, don't bother re-checking existing + // files. + $check_existing_files = FALSE; + // We have some unchanged resources, warm up the cache - no need to pay // for looking them up again. if (count($unchanged_resources) > 0) { diff -Naur drupal-7.61/misc/jquery-extend-3.4.0.js drupal-7.66/misc/jquery-extend-3.4.0.js --- drupal-7.61/misc/jquery-extend-3.4.0.js 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/jquery-extend-3.4.0.js 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,112 @@ +/** + * For jQuery versions less than 3.4.0, this replaces the jQuery.extend + * function with the one from jQuery 3.4.0, slightly modified (documented + * below) to be compatible with older jQuery versions and browsers. + * + * This provides the Object.prototype pollution vulnerability fix to Drupal + * installations running older jQuery versions, including the versions shipped + * with Drupal core and https://www.drupal.org/project/jquery_update. + * + * @see https://github.com/jquery/jquery/pull/4333 + */ + +(function (jQuery) { + +// Do not override jQuery.extend() if the jQuery version is already >=3.4.0. +var versionParts = jQuery.fn.jquery.split('.'); +var majorVersion = parseInt(versionParts[0]); +var minorVersion = parseInt(versionParts[1]); +var patchVersion = parseInt(versionParts[2]); +var isPreReleaseVersion = (patchVersion.toString() !== versionParts[2]); +if ( + (majorVersion > 3) || + (majorVersion === 3 && minorVersion > 4) || + (majorVersion === 3 && minorVersion === 4 && patchVersion > 0) || + (majorVersion === 3 && minorVersion === 4 && patchVersion === 0 && !isPreReleaseVersion) +) { + return; +} + +/** + * This is almost verbatim copied from jQuery 3.4.0. + * + * Only two minor changes have been made: + * - The call to isFunction() is changed to jQuery.isFunction(). + * - The two calls to Array.isArray() is changed to jQuery.isArray(). + * + * The above two changes ensure compatibility with all older jQuery versions + * (1.4.4 - 3.3.1) and older browser versions (e.g., IE8). + */ +jQuery.extend = jQuery.fn.extend = function() { + var options, name, src, copy, copyIsArray, clone, + target = arguments[ 0 ] || {}, + i = 1, + length = arguments.length, + deep = false; + + // Handle a deep copy situation + if ( typeof target === "boolean" ) { + deep = target; + + // Skip the boolean and the target + target = arguments[ i ] || {}; + i++; + } + + // Handle case when target is a string or something (possible in deep copy) + if ( typeof target !== "object" && !jQuery.isFunction( target ) ) { + target = {}; + } + + // Extend jQuery itself if only one argument is passed + if ( i === length ) { + target = this; + i--; + } + + for ( ; i < length; i++ ) { + + // Only deal with non-null/undefined values + if ( ( options = arguments[ i ] ) != null ) { + + // Extend the base object + for ( name in options ) { + copy = options[ name ]; + + // Prevent Object.prototype pollution + // Prevent never-ending loop + if ( name === "__proto__" || target === copy ) { + continue; + } + + // Recurse if we're merging plain objects or arrays + if ( deep && copy && ( jQuery.isPlainObject( copy ) || + ( copyIsArray = jQuery.isArray( copy ) ) ) ) { + src = target[ name ]; + + // Ensure proper type for the source value + if ( copyIsArray && !jQuery.isArray( src ) ) { + clone = []; + } else if ( !copyIsArray && !jQuery.isPlainObject( src ) ) { + clone = {}; + } else { + clone = src; + } + copyIsArray = false; + + // Never move original objects, clone them + target[ name ] = jQuery.extend( deep, clone, copy ); + + // Don't bring in undefined values + } else if ( copy !== undefined ) { + target[ name ] = copy; + } + } + } + } + + // Return the modified object + return target; +}; + +})(jQuery); diff -Naur drupal-7.61/misc/typo3/drupal-security/PharExtensionInterceptor.php drupal-7.66/misc/typo3/drupal-security/PharExtensionInterceptor.php --- drupal-7.61/misc/typo3/drupal-security/PharExtensionInterceptor.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/drupal-security/PharExtensionInterceptor.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,79 @@ +baseFileContainsPharExtension($path)) { + return TRUE; + } + throw new Exception( + sprintf( + 'Unexpected file extension in "%s"', + $path + ), + 1535198703 + ); + } + + /** + * Determines if a path has a .phar extension or invoked execution. + * + * @param string $path + * The path of the phar file to check. + * + * @return bool + * TRUE if the file has a .phar extension or if the execution has been + * invoked by the phar file. + */ + private function baseFileContainsPharExtension($path) { + $baseFile = Helper::determineBaseFile($path); + if ($baseFile === NULL) { + return FALSE; + } + // If the stream wrapper is registered by invoking a phar file that does + // not not have .phar extension then this should be allowed. For + // example, some CLI tools recommend removing the extension. + $backtrace = debug_backtrace(DEBUG_BACKTRACE_IGNORE_ARGS); + // Find the last entry in the backtrace containing a 'file' key as + // sometimes the last caller is executed outside the scope of a file. For + // example, this occurs with shutdown functions. + do { + $caller = array_pop($backtrace); + } while (empty($caller['file']) && !empty($backtrace)); + if (isset($caller['file']) && $baseFile === Helper::determineBaseFile($caller['file'])) { + return TRUE; + } + $fileExtension = pathinfo($baseFile, PATHINFO_EXTENSION); + return strtolower($fileExtension) === 'phar'; + } + +} diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/LICENSE drupal-7.66/misc/typo3/phar-stream-wrapper/LICENSE --- drupal-7.61/misc/typo3/phar-stream-wrapper/LICENSE 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/LICENSE 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,21 @@ +MIT License + +Copyright (c) 2018 TYPO3 project - https://typo3.org/ + +Permission is hereby granted, free of charge, to any person obtaining a copy +of this software and associated documentation files (the "Software"), to deal +in the Software without restriction, including without limitation the rights +to use, copy, modify, merge, publish, distribute, sublicense, and/or sell +copies of the Software, and to permit persons to whom the Software is +furnished to do so, subject to the following conditions: + +The above copyright notice and this permission notice shall be included in all +copies or substantial portions of the Software. + +THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR +IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, +FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE +AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER +LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, +OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE +SOFTWARE. diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/README.md drupal-7.66/misc/typo3/phar-stream-wrapper/README.md --- drupal-7.61/misc/typo3/phar-stream-wrapper/README.md 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/README.md 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,155 @@ +[![Scrutinizer Code Quality](https://scrutinizer-ci.com/g/TYPO3/phar-stream-wrapper/badges/quality-score.png?b=v2)](https://scrutinizer-ci.com/g/TYPO3/phar-stream-wrapper/?branch=v2) +[![Travis CI Build Status](https://travis-ci.org/TYPO3/phar-stream-wrapper.svg?branch=v2)](https://travis-ci.org/TYPO3/phar-stream-wrapper) + +# PHP Phar Stream Wrapper + +## Abstract & History + +Based on Sam Thomas' findings concerning +[insecure deserialization in combination with obfuscation strategies](https://blog.secarma.co.uk/labs/near-phar-dangerous-unserialization-wherever-you-are) +allowing to hide Phar files inside valid image resources, the TYPO3 project +decided back then to introduce a `PharStreamWrapper` to intercept invocations +of the `phar://` stream in PHP and only allow usage for defined locations in +the file system. + +Since the TYPO3 mission statement is **inspiring people to share**, we thought +it would be helpful for others to release our `PharStreamWrapper` as standalone +package to the PHP community. + +The mentioned security issue was reported to TYPO3 on 10th June 2018 by Sam Thomas +and has been addressed concerning the specific attack vector and for this generic +`PharStreamWrapper` in TYPO3 versions 7.6.30 LTS, 8.7.17 LTS and 9.3.1 on 12th +July 2018. + +* https://typo3.org/security/advisory/typo3-core-sa-2018-002/ +* https://blog.secarma.co.uk/labs/near-phar-dangerous-unserialization-wherever-you-are +* https://youtu.be/GePBmsNJw6Y + +## License + +In general the TYPO3 core is released under the GNU General Public License version +2 or any later version (`GPL-2.0-or-later`). In order to avoid licensing issues and +incompatibilities this `PharStreamWrapper` is licenced under the MIT License. In case +you duplicate or modify source code, credits are not required but really appreciated. + +## Credits + +Thanks to [Alex Pott](https://github.com/alexpott), Drupal for creating +back-ports of all sources in order to provide compatibility with PHP v5.3. + +## Installation + +The `PharStreamWrapper` is provided as composer package `typo3/phar-stream-wrapper` +and has minimum requirements of PHP v5.3 ([`v2`](https://github.com/TYPO3/phar-stream-wrapper/tree/v2) branch) and PHP v7.0 ([`master`](https://github.com/TYPO3/phar-stream-wrapper) branch). + +### Installation for PHP v7.0 + +``` +composer require typo3/phar-stream-wrapper ^3.0 +``` + +### Installation for PHP v5.3 + +``` +composer require typo3/phar-stream-wrapper ^2.0 +``` + +## Example + +The following example is bundled within this package, the shown +`PharExtensionInterceptor` denies all stream wrapper invocations files +not having the `.phar` suffix. Interceptor logic has to be individual and +adjusted to according requirements. + +``` +$behavior = new \TYPO3\PharStreamWrapper\Behavior(); +Manager::initialize( + $behavior->withAssertion(new PharExtensionInterceptor()) +); + +if (in_array('phar', stream_get_wrappers())) { + stream_wrapper_unregister('phar'); + stream_wrapper_register('phar', 'TYPO3\\PharStreamWrapper\\PharStreamWrapper'); +} +``` + +* `PharStreamWrapper` defined as class reference will be instantiated each time + `phar://` streams shall be processed. +* `Manager` as singleton pattern being called by `PharStreamWrapper` instances + in order to retrieve individual behavior and settings. +* `Behavior` holds reference to interceptor(s) that shall assert correct/allowed + invocation of a given `$path` for a given `$command`. Interceptors implement + the interface `Assertable`. Interceptors can act individually on following + commands or handle all of them in case not defined specifically: + + `COMMAND_DIR_OPENDIR` + + `COMMAND_MKDIR` + + `COMMAND_RENAME` + + `COMMAND_RMDIR` + + `COMMAND_STEAM_METADATA` + + `COMMAND_STREAM_OPEN` + + `COMMAND_UNLINK` + + `COMMAND_URL_STAT` + +## Interceptor + +The following interceptor is shipped with the package and ready to use in order +to block any Phar invocation of files not having a `.phar` suffix. Besides that +individual interceptors are possible of course. + +``` +class PharExtensionInterceptor implements Assertable +{ + /** + * Determines whether the base file name has a ".phar" suffix. + * + * @param string $path + * @param string $command + * @return bool + * @throws Exception + */ + public function assert($path, $command) + { + if ($this->baseFileContainsPharExtension($path)) { + return true; + } + throw new Exception( + sprintf( + 'Unexpected file extension in "%s"', + $path + ), + 1535198703 + ); + } + + /** + * @param string $path + * @return bool + */ + private function baseFileContainsPharExtension($path) + { + $baseFile = Helper::determineBaseFile($path); + if ($baseFile === null) { + return false; + } + $fileExtension = pathinfo($baseFile, PATHINFO_EXTENSION); + return strtolower($fileExtension) === 'phar'; + } +} +``` + +## Helper + +* `Helper::determineBaseFile(string $path)`: Determines base file that can be + accessed using the regular file system. For instance the following path + `phar:///home/user/bundle.phar/content.txt` would be resolved to + `/home/user/bundle.phar`. +* `Helper::resetOpCache()`: Resets PHP's OPcache if enabled as work-around for + issues in `include()` or `require()` calls and OPcache delivering wrong + results. More details can be found in PHP's bug tracker, for instance like + https://bugs.php.net/bug.php?id=66569 + +## Security Contact + +In case of finding additional security issues in the TYPO3 project or in this +`PharStreamWrapper` package in particular, please get in touch with the +[TYPO3 Security Team](mailto:security@typo3.org). diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/composer.json drupal-7.66/misc/typo3/phar-stream-wrapper/composer.json --- drupal-7.61/misc/typo3/phar-stream-wrapper/composer.json 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/composer.json 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,24 @@ +{ + "name": "typo3/phar-stream-wrapper", + "description": "Interceptors for PHP's native phar:// stream handling", + "type": "library", + "license": "MIT", + "homepage": "https://typo3.org/", + "keywords": ["php", "phar", "stream-wrapper", "security"], + "require": { + "php": "^5.3.3|^7.0" + }, + "require-dev": { + "phpunit/phpunit": "^4.8.36" + }, + "autoload": { + "psr-4": { + "TYPO3\\PharStreamWrapper\\": "src/" + } + }, + "autoload-dev": { + "psr-4": { + "TYPO3\\PharStreamWrapper\\Tests\\": "tests/" + } + } +} diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/src/Assertable.php drupal-7.66/misc/typo3/phar-stream-wrapper/src/Assertable.php --- drupal-7.61/misc/typo3/phar-stream-wrapper/src/Assertable.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/src/Assertable.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,22 @@ +assertCommands($commands); + $commands = $commands ?: $this->availableCommands; + + $target = clone $this; + foreach ($commands as $command) { + $target->assertions[$command] = $assertable; + } + return $target; + } + + /** + * @param string $path + * @param string $command + * @return bool + */ + public function assert($path, $command) + { + $this->assertCommand($command); + $this->assertAssertionCompleteness(); + + return $this->assertions[$command]->assert($path, $command); + } + + /** + * @param array $commands + */ + private function assertCommands(array $commands) + { + $unknownCommands = array_diff($commands, $this->availableCommands); + if (empty($unknownCommands)) { + return; + } + throw new \LogicException( + sprintf( + 'Unknown commands: %s', + implode(', ', $unknownCommands) + ), + 1535189881 + ); + } + + private function assertCommand($command) + { + if (in_array($command, $this->availableCommands, true)) { + return; + } + throw new \LogicException( + sprintf( + 'Unknown command "%s"', + $command + ), + 1535189882 + ); + } + + private function assertAssertionCompleteness() + { + $undefinedAssertions = array_diff( + $this->availableCommands, + array_keys($this->assertions) + ); + if (empty($undefinedAssertions)) { + return; + } + throw new \LogicException( + sprintf( + 'Missing assertions for commands: %s', + implode(', ', $undefinedAssertions) + ), + 1535189883 + ); + } +} diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/src/Exception.php drupal-7.66/misc/typo3/phar-stream-wrapper/src/Exception.php --- drupal-7.61/misc/typo3/phar-stream-wrapper/src/Exception.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/src/Exception.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,16 @@ += 1) { + // Rremove this and previous element + array_splice($pathParts, $partCount - 1, 2); + $partCount -= 2; + $pathPartsLength -= 2; + } elseif ($absolutePathPrefix) { + // can't go higher than root dir + // simply remove this part and continue + array_splice($pathParts, $partCount, 1); + $partCount--; + $pathPartsLength--; + } + } + } + + return $absolutePathPrefix . implode('/', $pathParts); + } + + /** + * Checks if the $path is absolute or relative (detecting either '/' or + * 'x:/' as first part of string) and returns TRUE if so. + * + * @param string $path File path to evaluate + * @return bool + */ + private static function isAbsolutePath($path) + { + // Path starting with a / is always absolute, on every system + // On Windows also a path starting with a drive letter is absolute: X:/ + return (isset($path[0]) ? $path[0] : null) === '/' + || static::isWindows() && ( + strpos($path, ':/') === 1 + || strpos($path, ':\\') === 1 + ); + } + + /** + * @return bool + */ + private static function isWindows() + { + return stripos(PHP_OS, 'WIN') === 0; + } +} \ No newline at end of file diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/src/Interceptor/PharExtensionInterceptor.php drupal-7.66/misc/typo3/phar-stream-wrapper/src/Interceptor/PharExtensionInterceptor.php --- drupal-7.61/misc/typo3/phar-stream-wrapper/src/Interceptor/PharExtensionInterceptor.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/src/Interceptor/PharExtensionInterceptor.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,55 @@ +baseFileContainsPharExtension($path)) { + return true; + } + throw new Exception( + sprintf( + 'Unexpected file extension in "%s"', + $path + ), + 1535198703 + ); + } + + /** + * @param string $path + * @return bool + */ + private function baseFileContainsPharExtension($path) + { + $baseFile = Helper::determineBaseFile($path); + if ($baseFile === null) { + return false; + } + $fileExtension = pathinfo($baseFile, PATHINFO_EXTENSION); + return strtolower($fileExtension) === 'phar'; + } +} diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/src/Manager.php drupal-7.66/misc/typo3/phar-stream-wrapper/src/Manager.php --- drupal-7.61/misc/typo3/phar-stream-wrapper/src/Manager.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/src/Manager.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,85 @@ +behavior = $behaviour; + } + + /** + * @param string $path + * @param string $command + * @return bool + */ + public function assert($path, $command) + { + return $this->behavior->assert($path, $command); + } +} diff -Naur drupal-7.61/misc/typo3/phar-stream-wrapper/src/PharStreamWrapper.php drupal-7.66/misc/typo3/phar-stream-wrapper/src/PharStreamWrapper.php --- drupal-7.61/misc/typo3/phar-stream-wrapper/src/PharStreamWrapper.php 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/misc/typo3/phar-stream-wrapper/src/PharStreamWrapper.php 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,477 @@ +internalResource)) { + return false; + } + + $this->invokeInternalStreamWrapper( + 'closedir', + $this->internalResource + ); + return !is_resource($this->internalResource); + } + + /** + * @param string $path + * @param int $options + * @return bool + */ + public function dir_opendir($path, $options) + { + $this->assert($path, Behavior::COMMAND_DIR_OPENDIR); + $this->internalResource = $this->invokeInternalStreamWrapper( + 'opendir', + $path, + $this->context + ); + return is_resource($this->internalResource); + } + + /** + * @return string|false + */ + public function dir_readdir() + { + return $this->invokeInternalStreamWrapper( + 'readdir', + $this->internalResource + ); + } + + /** + * @return bool + */ + public function dir_rewinddir() + { + if (!is_resource($this->internalResource)) { + return false; + } + + $this->invokeInternalStreamWrapper( + 'rewinddir', + $this->internalResource + ); + return is_resource($this->internalResource); + } + + /** + * @param string $path + * @param int $mode + * @param int $options + * @return bool + */ + public function mkdir($path, $mode, $options) + { + $this->assert($path, Behavior::COMMAND_MKDIR); + return $this->invokeInternalStreamWrapper( + 'mkdir', + $path, + $mode, + (bool) ($options & STREAM_MKDIR_RECURSIVE), + $this->context + ); + } + + /** + * @param string $path_from + * @param string $path_to + * @return bool + */ + public function rename($path_from, $path_to) + { + $this->assert($path_from, Behavior::COMMAND_RENAME); + $this->assert($path_to, Behavior::COMMAND_RENAME); + return $this->invokeInternalStreamWrapper( + 'rename', + $path_from, + $path_to, + $this->context + ); + } + + /** + * @param string $path + * @param int $options + * @return bool + */ + public function rmdir($path, $options) + { + $this->assert($path, Behavior::COMMAND_RMDIR); + return $this->invokeInternalStreamWrapper( + 'rmdir', + $path, + $this->context + ); + } + + /** + * @param int $cast_as + */ + public function stream_cast($cast_as) + { + throw new Exception( + 'Method stream_select() cannot be used', + 1530103999 + ); + } + + public function stream_close() + { + $this->invokeInternalStreamWrapper( + 'fclose', + $this->internalResource + ); + } + + /** + * @return bool + */ + public function stream_eof() + { + return $this->invokeInternalStreamWrapper( + 'feof', + $this->internalResource + ); + } + + /** + * @return bool + */ + public function stream_flush() + { + return $this->invokeInternalStreamWrapper( + 'fflush', + $this->internalResource + ); + } + + /** + * @param int $operation + * @return bool + */ + public function stream_lock($operation) + { + return $this->invokeInternalStreamWrapper( + 'flock', + $this->internalResource, + $operation + ); + } + + /** + * @param string $path + * @param int $option + * @param string|int $value + * @return bool + */ + public function stream_metadata($path, $option, $value) + { + $this->assert($path, Behavior::COMMAND_STEAM_METADATA); + if ($option === STREAM_META_TOUCH) { + return call_user_func_array( + array($this, 'invokeInternalStreamWrapper'), + array_merge(array('touch', $path), (array) $value) + ); + } + if ($option === STREAM_META_OWNER_NAME || $option === STREAM_META_OWNER) { + return $this->invokeInternalStreamWrapper( + 'chown', + $path, + $value + ); + } + if ($option === STREAM_META_GROUP_NAME || $option === STREAM_META_GROUP) { + return $this->invokeInternalStreamWrapper( + 'chgrp', + $path, + $value + ); + } + if ($option === STREAM_META_ACCESS) { + return $this->invokeInternalStreamWrapper( + 'chmod', + $path, + $value + ); + } + return false; + } + + /** + * @param string $path + * @param string $mode + * @param int $options + * @param string|null $opened_path + * @return bool + */ + public function stream_open( + $path, + $mode, + $options, + &$opened_path = null + ) { + $this->assert($path, Behavior::COMMAND_STREAM_OPEN); + $arguments = array($path, $mode, (bool) ($options & STREAM_USE_PATH)); + // only add stream context for non include/require calls + if (!($options & static::STREAM_OPEN_FOR_INCLUDE)) { + $arguments[] = $this->context; + // work around https://bugs.php.net/bug.php?id=66569 + // for including files from Phar stream with OPcache enabled + } else { + Helper::resetOpCache(); + } + $this->internalResource = call_user_func_array( + array($this, 'invokeInternalStreamWrapper'), + array_merge(array('fopen'), $arguments) + ); + if (!is_resource($this->internalResource)) { + return false; + } + if ($opened_path !== null) { + $metaData = stream_get_meta_data($this->internalResource); + $opened_path = $metaData['uri']; + } + return true; + } + + /** + * @param int $count + * @return string + */ + public function stream_read($count) + { + return $this->invokeInternalStreamWrapper( + 'fread', + $this->internalResource, + $count + ); + } + + /** + * @param int $offset + * @param int $whence + * @return bool + */ + public function stream_seek($offset, $whence = SEEK_SET) + { + return $this->invokeInternalStreamWrapper( + 'fseek', + $this->internalResource, + $offset, + $whence + ) !== -1; + } + + /** + * @param int $option + * @param int $arg1 + * @param int $arg2 + * @return bool + */ + public function stream_set_option($option, $arg1, $arg2) + { + if ($option === STREAM_OPTION_BLOCKING) { + return $this->invokeInternalStreamWrapper( + 'stream_set_blocking', + $this->internalResource, + $arg1 + ); + } + if ($option === STREAM_OPTION_READ_TIMEOUT) { + return $this->invokeInternalStreamWrapper( + 'stream_set_timeout', + $this->internalResource, + $arg1, + $arg2 + ); + } + if ($option === STREAM_OPTION_WRITE_BUFFER) { + return $this->invokeInternalStreamWrapper( + 'stream_set_write_buffer', + $this->internalResource, + $arg2 + ) === 0; + } + return false; + } + + /** + * @return array + */ + public function stream_stat() + { + return $this->invokeInternalStreamWrapper( + 'fstat', + $this->internalResource + ); + } + + /** + * @return int + */ + public function stream_tell() + { + return $this->invokeInternalStreamWrapper( + 'ftell', + $this->internalResource + ); + } + + /** + * @param int $new_size + * @return bool + */ + public function stream_truncate($new_size) + { + return $this->invokeInternalStreamWrapper( + 'ftruncate', + $this->internalResource, + $new_size + ); + } + + /** + * @param string $data + * @return int + */ + public function stream_write($data) + { + return $this->invokeInternalStreamWrapper( + 'fwrite', + $this->internalResource, + $data + ); + } + + /** + * @param string $path + * @return bool + */ + public function unlink($path) + { + $this->assert($path, Behavior::COMMAND_UNLINK); + return $this->invokeInternalStreamWrapper( + 'unlink', + $path, + $this->context + ); + } + + /** + * @param string $path + * @param int $flags + * @return array|false + */ + public function url_stat($path, $flags) + { + $this->assert($path, Behavior::COMMAND_URL_STAT); + $functionName = $flags & STREAM_URL_STAT_QUIET ? '@stat' : 'stat'; + return $this->invokeInternalStreamWrapper($functionName, $path); + } + + /** + * @param string $path + * @param string $command + */ + protected function assert($path, $command) + { + if ($this->resolveAssertable()->assert($path, $command) === true) { + return; + } + + throw new Exception( + sprintf( + 'Denied invocation of "%s" for command "%s"', + $path, + $command + ), + 1535189880 + ); + } + + /** + * @return Assertable + */ + protected function resolveAssertable() + { + return Manager::instance(); + } + + /** + * Invokes commands on the native PHP Phar stream wrapper. + * + * @param string $functionName + * @param mixed ...$arguments + * @return mixed + */ + private function invokeInternalStreamWrapper($functionName) + { + $arguments = func_get_args(); + array_shift($arguments); + $silentExecution = $functionName{0} === '@'; + $functionName = ltrim($functionName, '@'); + $this->restoreInternalSteamWrapper(); + + try { + if ($silentExecution) { + $result = @call_user_func_array($functionName, $arguments); + } else { + $result = call_user_func_array($functionName, $arguments); + } + } catch (\Exception $exception) { + $this->registerStreamWrapper(); + throw $exception; + } catch (\Throwable $throwable) { + $this->registerStreamWrapper(); + throw $throwable; + } + + $this->registerStreamWrapper(); + return $result; + } + + private function restoreInternalSteamWrapper() + { + stream_wrapper_restore('phar'); + } + + private function registerStreamWrapper() + { + stream_wrapper_unregister('phar'); + stream_wrapper_register('phar', get_class($this)); + } +} diff -Naur drupal-7.61/modules/aggregator/aggregator.info drupal-7.66/modules/aggregator/aggregator.info --- drupal-7.61/modules/aggregator/aggregator.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/aggregator/aggregator.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ configure = admin/config/services/aggregator/settings stylesheets[all][] = aggregator.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/aggregator/tests/aggregator_test.info drupal-7.66/modules/aggregator/tests/aggregator_test.info --- drupal-7.61/modules/aggregator/tests/aggregator_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/aggregator/tests/aggregator_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/block/block.info drupal-7.66/modules/block/block.info --- drupal-7.61/modules/block/block.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/block/block.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = block.test configure = admin/structure/block -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/block/tests/block_test.info drupal-7.66/modules/block/tests/block_test.info --- drupal-7.61/modules/block/tests/block_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/block/tests/block_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/block/tests/themes/block_test_theme/block_test_theme.info drupal-7.66/modules/block/tests/themes/block_test_theme/block_test_theme.info --- drupal-7.61/modules/block/tests/themes/block_test_theme/block_test_theme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/block/tests/themes/block_test_theme/block_test_theme.info 2019-04-17 22:39:36.000000000 +0200 @@ -13,7 +13,7 @@ regions[highlighted] = Highlighted regions[help] = Help -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/blog/blog.info drupal-7.66/modules/blog/blog.info --- drupal-7.61/modules/blog/blog.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/blog/blog.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = blog.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/book/book.info drupal-7.66/modules/book/book.info --- drupal-7.61/modules/book/book.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/book/book.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ configure = admin/content/book/settings stylesheets[all][] = book.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/color/color.info drupal-7.66/modules/color/color.info --- drupal-7.61/modules/color/color.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/color/color.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = color.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/comment/comment.info drupal-7.66/modules/comment/comment.info --- drupal-7.61/modules/comment/comment.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/comment/comment.info 2019-04-17 22:39:36.000000000 +0200 @@ -9,7 +9,7 @@ configure = admin/content/comment stylesheets[all][] = comment.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/contact/contact.info drupal-7.66/modules/contact/contact.info --- drupal-7.61/modules/contact/contact.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/contact/contact.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = contact.test configure = admin/structure/contact -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/contextual/contextual.info drupal-7.66/modules/contextual/contextual.info --- drupal-7.61/modules/contextual/contextual.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/contextual/contextual.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = contextual.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/dashboard/dashboard.info drupal-7.66/modules/dashboard/dashboard.info --- drupal-7.61/modules/dashboard/dashboard.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/dashboard/dashboard.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ dependencies[] = block configure = admin/dashboard/customize -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/dblog/dblog.info drupal-7.66/modules/dblog/dblog.info --- drupal-7.61/modules/dblog/dblog.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/dblog/dblog.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = dblog.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/field.info drupal-7.66/modules/field/field.info --- drupal-7.61/modules/field/field.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/field.info 2019-04-17 22:39:36.000000000 +0200 @@ -11,7 +11,7 @@ required = TRUE stylesheets[all][] = theme/field.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/field_sql_storage/field_sql_storage.info drupal-7.66/modules/field/modules/field_sql_storage/field_sql_storage.info --- drupal-7.61/modules/field/modules/field_sql_storage/field_sql_storage.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/field_sql_storage/field_sql_storage.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ files[] = field_sql_storage.test required = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/list/list.info drupal-7.66/modules/field/modules/list/list.info --- drupal-7.61/modules/field/modules/list/list.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/list/list.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ dependencies[] = options files[] = tests/list.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/list/tests/list_test.info drupal-7.66/modules/field/modules/list/tests/list_test.info --- drupal-7.61/modules/field/modules/list/tests/list_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/list/tests/list_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/number/number.info drupal-7.66/modules/field/modules/number/number.info --- drupal-7.61/modules/field/modules/number/number.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/number/number.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = field files[] = number.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/number/number.test drupal-7.66/modules/field/modules/number/number.test --- drupal-7.61/modules/field/modules/number/number.test 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/field/modules/number/number.test 2019-04-17 22:20:46.000000000 +0200 @@ -69,7 +69,7 @@ preg_match('|test-entity/manage/(\d+)/edit|', $this->url, $match); $id = $match[1]; $this->assertRaw(t('test_entity @id has been created.', array('@id' => $id)), 'Entity was created'); - $this->assertRaw(round($value, 2), 'Value is displayed.'); + $this->assertRaw($value, 'Value is displayed.'); // Try to create entries with more than one decimal separator; assert fail. $wrong_entries = array( diff -Naur drupal-7.61/modules/field/modules/options/options.info drupal-7.66/modules/field/modules/options/options.info --- drupal-7.61/modules/field/modules/options/options.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/options/options.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = field files[] = options.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/modules/text/text.info drupal-7.66/modules/field/modules/text/text.info --- drupal-7.61/modules/field/modules/text/text.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/modules/text/text.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ files[] = text.test required = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field/tests/field_test.info drupal-7.66/modules/field/tests/field_test.info --- drupal-7.61/modules/field/tests/field_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field/tests/field_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/field_ui/field_ui.info drupal-7.66/modules/field_ui/field_ui.info --- drupal-7.61/modules/field_ui/field_ui.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/field_ui/field_ui.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = field files[] = field_ui.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/file/file.field.inc drupal-7.66/modules/file/file.field.inc --- drupal-7.61/modules/file/file.field.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/file/file.field.inc 2019-04-17 22:20:46.000000000 +0200 @@ -599,7 +599,7 @@ // If the display field is present make sure its unchecked value is saved. $field = field_widget_field($element, $form_state); if (empty($input['display'])) { - $input['display'] = $field['settings']['display_field'] ? 0 : 1; + $input['display'] = !empty($field['settings']['display_field']) ? 0 : 1; } } diff -Naur drupal-7.61/modules/file/file.info drupal-7.66/modules/file/file.info --- drupal-7.61/modules/file/file.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/file/file.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = field files[] = tests/file.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/file/tests/file.test drupal-7.66/modules/file/tests/file.test --- drupal-7.61/modules/file/tests/file.test 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/file/tests/file.test 2019-04-17 22:20:46.000000000 +0200 @@ -1875,3 +1875,60 @@ } } + +/** + * Tests the file_scan_directory() function. + */ +class FileScanDirectory extends FileFieldTestCase { + + /** + * @var string + */ + protected $path; + + /** + * {@inheritdoc} + */ + public static function getInfo() { + return array( + 'name' => 'File ScanDirectory', + 'description' => 'Tests the file_scan_directory() function.', + 'group' => 'File', + ); + } + + /** + * {@inheritdoc} + */ + function setUp() { + parent::setUp(); + + $this->path = 'modules/file/tests/fixtures/file_scan_ignore'; + } + + /** + * Tests file_scan_directory() obeys 'file_scan_ignore_directories' setting. + * If nomask is not passed as argument, it should use the default settings. + * If nomask is passed as argument, it should obey this rule. + */ + public function testNoMask() { + $files = file_scan_directory($this->path, '/\.txt$/'); + $this->assertEqual(3, count($files), '3 text files found when not ignoring directories.'); + + global $conf; + $conf['file_scan_ignore_directories'] = array('frontend_framework'); + + $files = file_scan_directory($this->path, '/\.txt$/'); + $this->assertEqual(1, count($files), '1 text files found when ignoring directories called "frontend_framework".'); + + // Make that directories specified by default still work when a new nomask is provided. + $files = file_scan_directory($this->path, '/\.txt$/', array('nomask' => '/^c.txt/')); + $this->assertEqual(2, count($files), '2 text files found when an "nomask" option is passed in.'); + + // Ensure that the directories in file_scan_ignore_directories are escaped using preg_quote. + $conf['file_scan_ignore_directories'] = array('frontend.*'); + $files = file_scan_directory($this->path, '/\.txt$/'); + $this->assertEqual(3, count($files), '2 text files found when ignoring a directory that is not there.'); + } + +} diff -Naur drupal-7.61/modules/file/tests/file_module_test.info drupal-7.66/modules/file/tests/file_module_test.info --- drupal-7.61/modules/file/tests/file_module_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/file/tests/file_module_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/filter/filter.info drupal-7.66/modules/filter/filter.info --- drupal-7.61/modules/filter/filter.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/filter/filter.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ required = TRUE configure = admin/config/content/formats -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/forum/forum.info drupal-7.66/modules/forum/forum.info --- drupal-7.61/modules/forum/forum.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/forum/forum.info 2019-04-17 22:39:36.000000000 +0200 @@ -9,7 +9,7 @@ configure = admin/structure/forum stylesheets[all][] = forum.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/help/help.info drupal-7.66/modules/help/help.info --- drupal-7.61/modules/help/help.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/help/help.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = help.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/image/image.info drupal-7.66/modules/image/image.info --- drupal-7.61/modules/image/image.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/image/image.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ files[] = image.test configure = admin/config/media/image-styles -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/image/tests/image_module_test.info drupal-7.66/modules/image/tests/image_module_test.info --- drupal-7.61/modules/image/tests/image_module_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/image/tests/image_module_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = image_module_test.module hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/locale/locale.info drupal-7.66/modules/locale/locale.info --- drupal-7.61/modules/locale/locale.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/locale/locale.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = locale.test configure = admin/config/regional/language -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/locale/tests/locale_test.info drupal-7.66/modules/locale/tests/locale_test.info --- drupal-7.61/modules/locale/tests/locale_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/locale/tests/locale_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/menu/menu.info drupal-7.66/modules/menu/menu.info --- drupal-7.61/modules/menu/menu.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/menu/menu.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = menu.test configure = admin/structure/menu -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/node/node.info drupal-7.66/modules/node/node.info --- drupal-7.61/modules/node/node.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/node/node.info 2019-04-17 22:39:36.000000000 +0200 @@ -9,7 +9,7 @@ configure = admin/structure/types stylesheets[all][] = node.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/node/tests/node_access_test.info drupal-7.66/modules/node/tests/node_access_test.info --- drupal-7.61/modules/node/tests/node_access_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/node/tests/node_access_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/node/tests/node_test.info drupal-7.66/modules/node/tests/node_test.info --- drupal-7.61/modules/node/tests/node_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/node/tests/node_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/node/tests/node_test_exception.info drupal-7.66/modules/node/tests/node_test_exception.info --- drupal-7.61/modules/node/tests/node_test_exception.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/node/tests/node_test_exception.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/openid/openid.info drupal-7.66/modules/openid/openid.info --- drupal-7.61/modules/openid/openid.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/openid/openid.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = openid.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/openid/tests/openid_test.info drupal-7.66/modules/openid/tests/openid_test.info --- drupal-7.61/modules/openid/tests/openid_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/openid/tests/openid_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = openid hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/overlay/overlay.info drupal-7.66/modules/overlay/overlay.info --- drupal-7.61/modules/overlay/overlay.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/overlay/overlay.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ version = VERSION core = 7.x -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/path/path.info drupal-7.66/modules/path/path.info --- drupal-7.61/modules/path/path.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/path/path.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = path.test configure = admin/config/search/path -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/php/php.info drupal-7.66/modules/php/php.info --- drupal-7.61/modules/php/php.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/php/php.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = php.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/poll/poll.info drupal-7.66/modules/poll/poll.info --- drupal-7.61/modules/poll/poll.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/poll/poll.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = poll.test stylesheets[all][] = poll.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/profile/profile.info drupal-7.66/modules/profile/profile.info --- drupal-7.61/modules/profile/profile.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/profile/profile.info 2019-04-17 22:39:36.000000000 +0200 @@ -11,7 +11,7 @@ ; See user_system_info_alter(). hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/rdf/rdf.info drupal-7.66/modules/rdf/rdf.info --- drupal-7.61/modules/rdf/rdf.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/rdf/rdf.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x files[] = rdf.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/rdf/tests/rdf_test.info drupal-7.66/modules/rdf/tests/rdf_test.info --- drupal-7.61/modules/rdf/tests/rdf_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/rdf/tests/rdf_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE dependencies[] = blog -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/search/search.info drupal-7.66/modules/search/search.info --- drupal-7.61/modules/search/search.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/search/search.info 2019-04-17 22:39:36.000000000 +0200 @@ -8,7 +8,7 @@ configure = admin/config/search/settings stylesheets[all][] = search.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/search/tests/search_embedded_form.info drupal-7.66/modules/search/tests/search_embedded_form.info --- drupal-7.61/modules/search/tests/search_embedded_form.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/search/tests/search_embedded_form.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/search/tests/search_extra_type.info drupal-7.66/modules/search/tests/search_extra_type.info --- drupal-7.61/modules/search/tests/search_extra_type.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/search/tests/search_extra_type.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/search/tests/search_node_tags.info drupal-7.66/modules/search/tests/search_node_tags.info --- drupal-7.61/modules/search/tests/search_node_tags.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/search/tests/search_node_tags.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/shortcut/shortcut.info drupal-7.66/modules/shortcut/shortcut.info --- drupal-7.61/modules/shortcut/shortcut.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/shortcut/shortcut.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = shortcut.test configure = admin/config/user-interface/shortcut -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/drupal_web_test_case.php drupal-7.66/modules/simpletest/drupal_web_test_case.php --- drupal-7.61/modules/simpletest/drupal_web_test_case.php 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/simpletest/drupal_web_test_case.php 2019-04-17 22:20:46.000000000 +0200 @@ -3012,7 +3012,7 @@ if (!$message) { $message = t('Raw "@raw" found', array('@raw' => $raw)); } - return $this->assert(strpos($this->drupalGetContent(), $raw) !== FALSE, $message, $group); + return $this->assert(strpos($this->drupalGetContent(), (string) $raw) !== FALSE, $message, $group); } /** @@ -3032,7 +3032,7 @@ if (!$message) { $message = t('Raw "@raw" not found', array('@raw' => $raw)); } - return $this->assert(strpos($this->drupalGetContent(), $raw) === FALSE, $message, $group); + return $this->assert(strpos($this->drupalGetContent(), (string) $raw) === FALSE, $message, $group); } /** diff -Naur drupal-7.61/modules/simpletest/files/phar-1.phar drupal-7.66/modules/simpletest/files/phar-1.phar --- drupal-7.61/modules/simpletest/files/phar-1.phar 1970-01-01 01:00:00.000000000 +0100 +++ drupal-7.66/modules/simpletest/files/phar-1.phar 2019-04-17 22:20:46.000000000 +0200 @@ -0,0 +1,301 @@ + 2, +'c' => 'text/plain', +'cc' => 'text/plain', +'cpp' => 'text/plain', +'c++' => 'text/plain', +'dtd' => 'text/plain', +'h' => 'text/plain', +'log' => 'text/plain', +'rng' => 'text/plain', +'txt' => 'text/plain', +'xsd' => 'text/plain', +'php' => 1, +'inc' => 1, +'avi' => 'video/avi', +'bmp' => 'image/bmp', +'css' => 'text/css', +'gif' => 'image/gif', +'htm' => 'text/html', +'html' => 'text/html', +'htmls' => 'text/html', +'ico' => 'image/x-ico', +'jpe' => 'image/jpeg', +'jpg' => 'image/jpeg', +'jpeg' => 'image/jpeg', +'js' => 'application/x-javascript', +'midi' => 'audio/midi', +'mid' => 'audio/midi', +'mod' => 'audio/mod', +'mov' => 'movie/quicktime', +'mp3' => 'audio/mp3', +'mpg' => 'video/mpeg', +'mpeg' => 'video/mpeg', +'pdf' => 'application/pdf', +'png' => 'image/png', +'swf' => 'application/shockwave-flash', +'tif' => 'image/tiff', +'tiff' => 'image/tiff', +'wav' => 'audio/wav', +'xbm' => 'image/xbm', +'xml' => 'text/xml', +); + +header("Cache-Control: no-cache, must-revalidate"); +header("Pragma: no-cache"); + +$basename = basename(__FILE__); +if (!strpos($_SERVER['REQUEST_URI'], $basename)) { +chdir(Extract_Phar::$temp); +include $web; +return; +} +$pt = substr($_SERVER['REQUEST_URI'], strpos($_SERVER['REQUEST_URI'], $basename) + strlen($basename)); +if (!$pt || $pt == '/') { +$pt = $web; +header('HTTP/1.1 301 Moved Permanently'); +header('Location: ' . $_SERVER['REQUEST_URI'] . '/' . $pt); +exit; +} +$a = realpath(Extract_Phar::$temp . DIRECTORY_SEPARATOR . $pt); +if (!$a || strlen(dirname($a)) < strlen(Extract_Phar::$temp)) { +header('HTTP/1.0 404 Not Found'); +echo "\n \n File Not Found<title>\n </head>\n <body>\n <h1>404 - File Not Found</h1>\n </body>\n</html>"; +exit; +} +$b = pathinfo($a); +if (!isset($b['extension'])) { +header('Content-Type: text/plain'); +header('Content-Length: ' . filesize($a)); +readfile($a); +exit; +} +if (isset($mimes[$b['extension']])) { +if ($mimes[$b['extension']] === 1) { +include $a; +exit; +} +if ($mimes[$b['extension']] === 2) { +highlight_file($a); +exit; +} +header('Content-Type: ' .$mimes[$b['extension']]); +header('Content-Length: ' . filesize($a)); +readfile($a); +exit; +} +} + +class Extract_Phar +{ +static $temp; +static $origdir; +const GZ = 0x1000; +const BZ2 = 0x2000; +const MASK = 0x3000; +const START = 'index.php'; +const LEN = 6643; + +static function go($return = false) +{ +$fp = fopen(__FILE__, 'rb'); +fseek($fp, self::LEN); +$L = unpack('V', $a = fread($fp, 4)); +$m = ''; + +do { +$read = 8192; +if ($L[1] - strlen($m) < 8192) { +$read = $L[1] - strlen($m); +} +$last = fread($fp, $read); +$m .= $last; +} while (strlen($last) && strlen($m) < $L[1]); + +if (strlen($m) < $L[1]) { +die('ERROR: manifest length read was "' . +strlen($m) .'" should be "' . +$L[1] . '"'); +} + +$info = self::_unpack($m); +$f = $info['c']; + +if ($f & self::GZ) { +if (!function_exists('gzinflate')) { +die('Error: zlib extension is not enabled -' . +' gzinflate() function needed for zlib-compressed .phars'); +} +} + +if ($f & self::BZ2) { +if (!function_exists('bzdecompress')) { +die('Error: bzip2 extension is not enabled -' . +' bzdecompress() function needed for bz2-compressed .phars'); +} +} + +$temp = self::tmpdir(); + +if (!$temp || !is_writable($temp)) { +$sessionpath = session_save_path(); +if (strpos ($sessionpath, ";") !== false) +$sessionpath = substr ($sessionpath, strpos ($sessionpath, ";")+1); +if (!file_exists($sessionpath) || !is_dir($sessionpath)) { +die('Could not locate temporary directory to extract phar'); +} +$temp = $sessionpath; +} + +$temp .= '/pharextract/'.basename(__FILE__, '.phar'); +self::$temp = $temp; +self::$origdir = getcwd(); +@mkdir($temp, 0777, true); +$temp = realpath($temp); + +if (!file_exists($temp . DIRECTORY_SEPARATOR . md5_file(__FILE__))) { +self::_removeTmpFiles($temp, getcwd()); +@mkdir($temp, 0777, true); +@file_put_contents($temp . '/' . md5_file(__FILE__), ''); + +foreach ($info['m'] as $path => $file) { +$a = !file_exists(dirname($temp . '/' . $path)); +@mkdir(dirname($temp . '/' . $path), 0777, true); +clearstatcache(); + +if ($path[strlen($path) - 1] == '/') { +@mkdir($temp . '/' . $path, 0777); +} else { +file_put_contents($temp . '/' . $path, self::extractFile($path, $file, $fp)); +@chmod($temp . '/' . $path, 0666); +} +} +} + +chdir($temp); + +if (!$return) { +include self::START; +} +} + +static function tmpdir() +{ +if (strpos(PHP_OS, 'WIN') !== false) { +if ($var = getenv('TMP') ? getenv('TMP') : getenv('TEMP')) { +return $var; +} +if (is_dir('/temp') || mkdir('/temp')) { +return realpath('/temp'); +} +return false; +} +if ($var = getenv('TMPDIR')) { +return $var; +} +return realpath('/tmp'); +} + +static function _unpack($m) +{ +$info = unpack('V', substr($m, 0, 4)); + $l = unpack('V', substr($m, 10, 4)); +$m = substr($m, 14 + $l[1]); +$s = unpack('V', substr($m, 0, 4)); +$o = 0; +$start = 4 + $s[1]; +$ret['c'] = 0; + +for ($i = 0; $i < $info[1]; $i++) { + $len = unpack('V', substr($m, $start, 4)); +$start += 4; + $savepath = substr($m, $start, $len[1]); +$start += $len[1]; + $ret['m'][$savepath] = array_values(unpack('Va/Vb/Vc/Vd/Ve/Vf', substr($m, $start, 24))); +$ret['m'][$savepath][3] = sprintf('%u', $ret['m'][$savepath][3] +& 0xffffffff); +$ret['m'][$savepath][7] = $o; +$o += $ret['m'][$savepath][2]; +$start += 24 + $ret['m'][$savepath][5]; +$ret['c'] |= $ret['m'][$savepath][4] & self::MASK; +} +return $ret; +} + +static function extractFile($path, $entry, $fp) +{ +$data = ''; +$c = $entry[2]; + +while ($c) { +if ($c < 8192) { +$data .= @fread($fp, $c); +$c = 0; +} else { +$c -= 8192; +$data .= @fread($fp, 8192); +} +} + +if ($entry[4] & self::GZ) { +$data = gzinflate($data); +} elseif ($entry[4] & self::BZ2) { +$data = bzdecompress($data); +} + +if (strlen($data) != $entry[0]) { +die("Invalid internal .phar file (size error " . strlen($data) . " != " . +$stat[7] . ")"); +} + +if ($entry[3] != sprintf("%u", crc32($data) & 0xffffffff)) { +die("Invalid internal .phar file (checksum error)"); +} + +return $data; +} + +static function _removeTmpFiles($temp, $origdir) +{ +chdir($temp); + +foreach (glob('*') as $f) { +if (file_exists($f)) { +is_dir($f) ? @rmdir($f) : @unlink($f); +if (file_exists($f) && is_dir($f)) { +self::_removeTmpFiles($f, getcwd()); +} +} +} + +@rmdir($temp); +clearstatcache(); +chdir($origdir); +} +} + +Extract_Phar::go(); +__HALT_COMPILER(); ?>7������������������ ���index.phpµ���8!¾[µ���u‰¾¶������<?php +/** + * @file + * This test file is used to test Drupal's phar stream wrapper functionality. + * + * @see \Drupal\KernelTests\Core\File\PharWrapperTest + */ + +echo 'Hello, world!'; +å1qV«5õ['áyß R£CØA���GBMB \ No newline at end of file diff -Naur drupal-7.61/modules/simpletest/simpletest.info drupal-7.66/modules/simpletest/simpletest.info --- drupal-7.61/modules/simpletest/simpletest.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/simpletest.info 2019-04-17 22:39:36.000000000 +0200 @@ -57,7 +57,7 @@ files[] = tests/upgrade/update.field.test files[] = tests/upgrade/update.user.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/actions_loop_test.info drupal-7.66/modules/simpletest/tests/actions_loop_test.info --- drupal-7.61/modules/simpletest/tests/actions_loop_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/actions_loop_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/ajax_forms_test.info drupal-7.66/modules/simpletest/tests/ajax_forms_test.info --- drupal-7.61/modules/simpletest/tests/ajax_forms_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/ajax_forms_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/ajax_test.info drupal-7.66/modules/simpletest/tests/ajax_test.info --- drupal-7.61/modules/simpletest/tests/ajax_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/ajax_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/batch_test.info drupal-7.66/modules/simpletest/tests/batch_test.info --- drupal-7.61/modules/simpletest/tests/batch_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/batch_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/boot_test_1.info drupal-7.66/modules/simpletest/tests/boot_test_1.info --- drupal-7.61/modules/simpletest/tests/boot_test_1.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/boot_test_1.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/boot_test_2.info drupal-7.66/modules/simpletest/tests/boot_test_2.info --- drupal-7.61/modules/simpletest/tests/boot_test_2.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/boot_test_2.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/bootstrap.test drupal-7.66/modules/simpletest/tests/bootstrap.test --- drupal-7.61/modules/simpletest/tests/bootstrap.test 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/bootstrap.test 2019-04-17 22:20:46.000000000 +0200 @@ -729,16 +729,12 @@ * Tests that the drupal_check_memory_limit() function works as expected. */ function testCheckMemoryLimit() { - $memory_limit = ini_get('memory_limit'); // Test that a very reasonable amount of memory is available. $this->assertTrue(drupal_check_memory_limit('30MB'), '30MB of memory tested available.'); - // Get the available memory and multiply it by two to make it unreasonably - // high. - $twice_avail_memory = ($memory_limit * 2) . 'MB'; - + // Test an unlimited memory limit. // The function should always return true if the memory limit is set to -1. - $this->assertTrue(drupal_check_memory_limit($twice_avail_memory, -1), 'drupal_check_memory_limit() returns TRUE when a limit of -1 (none) is supplied'); + $this->assertTrue(drupal_check_memory_limit('9999999999YB', -1), 'drupal_check_memory_limit() returns TRUE when a limit of -1 (none) is supplied'); // Test that even though we have 30MB of memory available - the function // returns FALSE when given an upper limit for how much memory can be used. diff -Naur drupal-7.61/modules/simpletest/tests/common_test.info drupal-7.66/modules/simpletest/tests/common_test.info --- drupal-7.61/modules/simpletest/tests/common_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/common_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ stylesheets[print][] = common_test.print.css hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/common_test_cron_helper.info drupal-7.66/modules/simpletest/tests/common_test_cron_helper.info --- drupal-7.61/modules/simpletest/tests/common_test_cron_helper.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/common_test_cron_helper.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/database_test.info drupal-7.66/modules/simpletest/tests/database_test.info --- drupal-7.61/modules/simpletest/tests/database_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/database_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/drupal_autoload_test/drupal_autoload_test.info drupal-7.66/modules/simpletest/tests/drupal_autoload_test/drupal_autoload_test.info --- drupal-7.61/modules/simpletest/tests/drupal_autoload_test/drupal_autoload_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/drupal_autoload_test/drupal_autoload_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info drupal-7.66/modules/simpletest/tests/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info --- drupal-7.61/modules/simpletest/tests/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info drupal-7.66/modules/simpletest/tests/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info --- drupal-7.61/modules/simpletest/tests/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/entity_cache_test.info drupal-7.66/modules/simpletest/tests/entity_cache_test.info --- drupal-7.61/modules/simpletest/tests/entity_cache_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/entity_cache_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ dependencies[] = entity_cache_test_dependency hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/entity_cache_test_dependency.info drupal-7.66/modules/simpletest/tests/entity_cache_test_dependency.info --- drupal-7.61/modules/simpletest/tests/entity_cache_test_dependency.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/entity_cache_test_dependency.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/entity_crud_hook_test.info drupal-7.66/modules/simpletest/tests/entity_crud_hook_test.info --- drupal-7.61/modules/simpletest/tests/entity_crud_hook_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/entity_crud_hook_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/entity_query_access_test.info drupal-7.66/modules/simpletest/tests/entity_query_access_test.info --- drupal-7.61/modules/simpletest/tests/entity_query_access_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/entity_query_access_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/error_test.info drupal-7.66/modules/simpletest/tests/error_test.info --- drupal-7.61/modules/simpletest/tests/error_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/error_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/file.test drupal-7.66/modules/simpletest/tests/file.test --- drupal-7.61/modules/simpletest/tests/file.test 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/file.test 2019-04-17 22:20:46.000000000 +0200 @@ -957,6 +957,15 @@ $path = file_create_filename($basename, $directory); $this->assertEqual($path, $expected, format_string('Creating a new filepath from %original equals %new.', array('%new' => $path, '%original' => $original)), 'File'); + try { + $filename = "a\xFFtest\x80€.txt"; + file_create_filename($filename, $directory); + $this->fail('Expected exception not thrown'); + } + catch (RuntimeException $e) { + $this->assertEqual("Invalid filename '$filename'", $e->getMessage()); + } + // @TODO: Finally we copy a file into a directory several times, to ensure a properly iterating filename suffix. } @@ -989,6 +998,14 @@ $this->assertNotEqual($path, $destination, 'A new filepath destination is created when filepath destination already exists with FILE_EXISTS_RENAME.', 'File'); $path = file_destination($destination, FILE_EXISTS_ERROR); $this->assertEqual($path, FALSE, 'An error is returned when filepath destination already exists with FILE_EXISTS_ERROR.', 'File'); + + try { + file_destination("core/misc/a\xFFtest\x80€.txt", FILE_EXISTS_REPLACE); + $this->fail('Expected exception not thrown'); + } + catch (RuntimeException $e) { + $this->assertEqual("Invalid filename 'a\xFFtest\x80€.txt'", $e->getMessage()); + } } /** @@ -2766,4 +2783,64 @@ $this->assertTrue(file_stream_wrapper_valid_scheme(file_uri_scheme('public://asdf')), 'Got a valid stream scheme from public://asdf'); $this->assertFalse(file_stream_wrapper_valid_scheme(file_uri_scheme('foo://asdf')), 'Did not get a valid stream scheme from foo://asdf'); } + + /** + * Tests that phar stream wrapper is registered as expected. + * + * @see file_get_stream_wrappers() + */ + public function testPharStreamWrapperRegistration() { + if (!class_exists('Phar', FALSE)) { + $this->assertFalse(in_array('phar', stream_get_wrappers(), TRUE), 'PHP is compiled without phar support. Therefore, no phar stream wrapper is registered.'); + } + elseif (version_compare(PHP_VERSION, '5.3.3', '<')) { + $this->assertFalse(in_array('phar', stream_get_wrappers(), TRUE), 'The PHP version is <5.3.3. The built-in phar stream wrapper has been unregistered and not replaced.'); + } + else { + $this->assertTrue(in_array('phar', stream_get_wrappers(), TRUE), 'A phar stream wrapper is registered.'); + $this->assertFalse(file_stream_wrapper_valid_scheme('phar'), 'The phar scheme is not a valid scheme for Drupal File API usage.'); + } + + // Ensure that calling file_get_stream_wrappers() multiple times, both + // without and with a drupal_static_reset() in between, does not create + // errors due to the PharStreamWrapperManager singleton. + file_get_stream_wrappers(); + file_get_stream_wrappers(); + drupal_static_reset('file_get_stream_wrappers'); + file_get_stream_wrappers(); + } + + /** + * Tests that only valid phar files can be used. + */ + public function testPharFile() { + if (!in_array('phar', stream_get_wrappers(), TRUE)) { + $this->pass('There is no phar stream wrapper registered.'); + // Nothing else in this test is relevant when there's no phar stream + // wrapper. testPharStreamWrapperRegistration() is sufficient for testing + // the conditions of when the stream wrapper should or should not be + // registered. + return; + } + + $base = dirname(dirname(__FILE__)) . '/files'; + + // Ensure that file operations via the phar:// stream wrapper work for phar + // files with the .phar extension. + $this->assertFalse(file_exists("phar://$base/phar-1.phar/no-such-file.php")); + $this->assertTrue(file_exists("phar://$base/phar-1.phar/index.php")); + $file_contents = file_get_contents("phar://$base/phar-1.phar/index.php"); + $expected_hash = 'c7e7904ea573c5ebea3ef00bb08c1f86af1a45961fbfbeb1892ff4a98fd73ad5'; + $this->assertIdentical($expected_hash, hash('sha256', $file_contents)); + + // Ensure that file operations via the phar:// stream wrapper throw an + // exception for files without the .phar extension. + try { + file_exists("phar://$base/image-2.jpg/index.php"); + $this->fail('Expected exception failed to be thrown when accessing an invalid phar file.'); + } + catch (Exception $e) { + $this->assertEqual(get_class($e), 'TYPO3\PharStreamWrapper\Exception', 'Expected exception thrown when accessing an invalid phar file.'); + } + } } diff -Naur drupal-7.61/modules/simpletest/tests/file_test.info drupal-7.66/modules/simpletest/tests/file_test.info --- drupal-7.61/modules/simpletest/tests/file_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/file_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = file_test.module hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/filter_test.info drupal-7.66/modules/simpletest/tests/filter_test.info --- drupal-7.61/modules/simpletest/tests/filter_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/filter_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/form_test.info drupal-7.66/modules/simpletest/tests/form_test.info --- drupal-7.61/modules/simpletest/tests/form_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/form_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/image_test.info drupal-7.66/modules/simpletest/tests/image_test.info --- drupal-7.61/modules/simpletest/tests/image_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/image_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/menu_test.info drupal-7.66/modules/simpletest/tests/menu_test.info --- drupal-7.61/modules/simpletest/tests/menu_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/menu_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/module_test.info drupal-7.66/modules/simpletest/tests/module_test.info --- drupal-7.61/modules/simpletest/tests/module_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/module_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/path_test.info drupal-7.66/modules/simpletest/tests/path_test.info --- drupal-7.61/modules/simpletest/tests/path_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/path_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/psr_0_test/psr_0_test.info drupal-7.66/modules/simpletest/tests/psr_0_test/psr_0_test.info --- drupal-7.61/modules/simpletest/tests/psr_0_test/psr_0_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/psr_0_test/psr_0_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ hidden = TRUE package = Testing -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/psr_4_test/psr_4_test.info drupal-7.66/modules/simpletest/tests/psr_4_test/psr_4_test.info --- drupal-7.61/modules/simpletest/tests/psr_4_test/psr_4_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/psr_4_test/psr_4_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ hidden = TRUE package = Testing -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/requirements1_test.info drupal-7.66/modules/simpletest/tests/requirements1_test.info --- drupal-7.61/modules/simpletest/tests/requirements1_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/requirements1_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/requirements2_test.info drupal-7.66/modules/simpletest/tests/requirements2_test.info --- drupal-7.61/modules/simpletest/tests/requirements2_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/requirements2_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/session_test.info drupal-7.66/modules/simpletest/tests/session_test.info --- drupal-7.61/modules/simpletest/tests/session_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/session_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_dependencies_test.info drupal-7.66/modules/simpletest/tests/system_dependencies_test.info --- drupal-7.61/modules/simpletest/tests/system_dependencies_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_dependencies_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE dependencies[] = _missing_dependency -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_incompatible_core_version_dependencies_test.info drupal-7.66/modules/simpletest/tests/system_incompatible_core_version_dependencies_test.info --- drupal-7.61/modules/simpletest/tests/system_incompatible_core_version_dependencies_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_incompatible_core_version_dependencies_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE dependencies[] = system_incompatible_core_version_test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_incompatible_core_version_test.info drupal-7.66/modules/simpletest/tests/system_incompatible_core_version_test.info --- drupal-7.61/modules/simpletest/tests/system_incompatible_core_version_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_incompatible_core_version_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 5.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_incompatible_module_version_dependencies_test.info drupal-7.66/modules/simpletest/tests/system_incompatible_module_version_dependencies_test.info --- drupal-7.61/modules/simpletest/tests/system_incompatible_module_version_dependencies_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_incompatible_module_version_dependencies_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ ; system_incompatible_module_version_test declares version 1.0 dependencies[] = system_incompatible_module_version_test (>2.0) -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_incompatible_module_version_test.info drupal-7.66/modules/simpletest/tests/system_incompatible_module_version_test.info --- drupal-7.61/modules/simpletest/tests/system_incompatible_module_version_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_incompatible_module_version_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_project_namespace_test.info drupal-7.66/modules/simpletest/tests/system_project_namespace_test.info --- drupal-7.61/modules/simpletest/tests/system_project_namespace_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_project_namespace_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE dependencies[] = drupal:filter -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/system_test.info drupal-7.66/modules/simpletest/tests/system_test.info --- drupal-7.61/modules/simpletest/tests/system_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/system_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = system_test.module hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/taxonomy_test.info drupal-7.66/modules/simpletest/tests/taxonomy_test.info --- drupal-7.61/modules/simpletest/tests/taxonomy_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/taxonomy_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE dependencies[] = taxonomy -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/theme_test.info drupal-7.66/modules/simpletest/tests/theme_test.info --- drupal-7.61/modules/simpletest/tests/theme_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/theme_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info drupal-7.66/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info --- drupal-7.61/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/themes/test_basetheme/test_basetheme.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ settings[basetheme_only] = base theme value settings[subtheme_override] = base theme value -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info drupal-7.66/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info --- drupal-7.61/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/themes/test_subtheme/test_subtheme.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ settings[subtheme_override] = subtheme value -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/themes/test_theme/test_theme.info drupal-7.66/modules/simpletest/tests/themes/test_theme/test_theme.info --- drupal-7.61/modules/simpletest/tests/themes/test_theme/test_theme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/themes/test_theme/test_theme.info 2019-04-17 22:39:36.000000000 +0200 @@ -17,7 +17,7 @@ settings[theme_test_setting] = default value -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/themes/test_theme_nyan_cat/test_theme_nyan_cat.info drupal-7.66/modules/simpletest/tests/themes/test_theme_nyan_cat/test_theme_nyan_cat.info --- drupal-7.61/modules/simpletest/tests/themes/test_theme_nyan_cat/test_theme_nyan_cat.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/themes/test_theme_nyan_cat/test_theme_nyan_cat.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ hidden = TRUE engine = nyan_cat -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/update_script_test.info drupal-7.66/modules/simpletest/tests/update_script_test.info --- drupal-7.61/modules/simpletest/tests/update_script_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/update_script_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/update_test_1.info drupal-7.66/modules/simpletest/tests/update_test_1.info --- drupal-7.61/modules/simpletest/tests/update_test_1.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/update_test_1.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/update_test_2.info drupal-7.66/modules/simpletest/tests/update_test_2.info --- drupal-7.61/modules/simpletest/tests/update_test_2.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/update_test_2.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/update_test_3.info drupal-7.66/modules/simpletest/tests/update_test_3.info --- drupal-7.61/modules/simpletest/tests/update_test_3.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/update_test_3.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/url_alter_test.info drupal-7.66/modules/simpletest/tests/url_alter_test.info --- drupal-7.61/modules/simpletest/tests/url_alter_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/url_alter_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/simpletest/tests/xmlrpc_test.info drupal-7.66/modules/simpletest/tests/xmlrpc_test.info --- drupal-7.61/modules/simpletest/tests/xmlrpc_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/simpletest/tests/xmlrpc_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/statistics/statistics.info drupal-7.66/modules/statistics/statistics.info --- drupal-7.61/modules/statistics/statistics.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/statistics/statistics.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = statistics.test configure = admin/config/system/statistics -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/syslog/syslog.info drupal-7.66/modules/syslog/syslog.info --- drupal-7.61/modules/syslog/syslog.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/syslog/syslog.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = syslog.test configure = admin/config/development/logging -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/system/system.info drupal-7.66/modules/system/system.info --- drupal-7.61/modules/system/system.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/system/system.info 2019-04-17 22:39:36.000000000 +0200 @@ -12,7 +12,7 @@ required = TRUE configure = admin/config/system -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/system/system.install drupal-7.66/modules/system/system.install --- drupal-7.61/modules/system/system.install 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/system/system.install 2019-04-17 22:20:46.000000000 +0200 @@ -2870,7 +2870,7 @@ if (!db_table_exists('system_update_7061')) { $table = array( 'description' => t('Stores temporary data for system_update_7061.'), - 'fields' => array('vid' => array('type' => 'int')), + 'fields' => array('vid' => array('type' => 'int', 'not null' => TRUE)), 'primary key' => array('vid'), ); db_create_table('system_update_7061', $table); @@ -3286,6 +3286,13 @@ } /** + * Add 'jquery-extend-3.4.0.js' to the 'jquery' library. + */ +function system_update_7082() { + // Empty update to force a rebuild of hook_library() and JS aggregates. +} + +/** * @} End of "defgroup updates-7.x-extra". * The next series of updates should start at 8000. */ diff -Naur drupal-7.61/modules/system/system.module drupal-7.66/modules/system/system.module --- drupal-7.61/modules/system/system.module 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/system/system.module 2019-04-17 22:20:46.000000000 +0200 @@ -1182,6 +1182,9 @@ 'version' => '1.4.4', 'js' => array( 'misc/jquery.js' => array('group' => JS_LIBRARY, 'weight' => -20), + // This includes a security fix, so assign a weight that makes this load + // as soon after jquery.js is loaded as possible. + 'misc/jquery-extend-3.4.0.js' => array('group' => JS_LIBRARY, 'weight' => -19), ), ); diff -Naur drupal-7.61/modules/system/system.tar.inc drupal-7.66/modules/system/system.tar.inc --- drupal-7.61/modules/system/system.tar.inc 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/modules/system/system.tar.inc 2019-04-17 22:20:46.000000000 +0200 @@ -41,7 +41,7 @@ /** * Note on Drupal 8 porting. - * This file origin is Tar.php, release 1.4.3 (stable) with some code + * This file origin is Tar.php, release 1.4.5 (stable) with some code * from PEAR.php, release 1.10.5 (stable) both at http://pear.php.net. * To simplify future porting from pear of this file, you should not * do cosmetic or other non significant changes to this file. @@ -1406,10 +1406,22 @@ if ($p_stored_filename == '') { $p_stored_filename = $p_filename; } - $v_reduce_filename = $this->_pathReduction($p_stored_filename); - if (strlen($v_reduce_filename) > 99) { - if (!$this->_writeLongHeader($v_reduce_filename)) { + $v_reduced_filename = $this->_pathReduction($p_stored_filename); + + if (strlen($v_reduced_filename) > 99) { + if (!$this->_writeLongHeader($v_reduced_filename, false)) { + return false; + } + } + + $v_linkname = ''; + if (@is_link($p_filename)) { + $v_linkname = readlink($p_filename); + } + + if (strlen($v_linkname) > 99) { + if (!$this->_writeLongHeader($v_linkname, true)) { return false; } } @@ -1418,14 +1430,10 @@ $v_uid = sprintf("%07s", DecOct($v_info[4])); $v_gid = sprintf("%07s", DecOct($v_info[5])); $v_perms = sprintf("%07s", DecOct($v_info['mode'] & 000777)); - $v_mtime = sprintf("%011s", DecOct($v_info['mtime'])); - $v_linkname = ''; - if (@is_link($p_filename)) { $v_typeflag = '2'; - $v_linkname = readlink($p_filename); $v_size = sprintf("%011s", DecOct(0)); } elseif (@is_dir($p_filename)) { $v_typeflag = "5"; @@ -1437,7 +1445,6 @@ } $v_magic = 'ustar '; - $v_version = ' '; if (function_exists('posix_getpwuid')) { @@ -1452,14 +1459,12 @@ } $v_devmajor = ''; - $v_devminor = ''; - $v_prefix = ''; $v_binary_data_first = pack( "a100a8a8a8a12a12", - $v_reduce_filename, + $v_reduced_filename, $v_perms, $v_uid, $v_gid, @@ -1499,7 +1504,7 @@ $this->_writeBlock($v_binary_data_first, 148); // ----- Write the calculated checksum - $v_checksum = sprintf("%06s ", DecOct($v_checksum)); + $v_checksum = sprintf("%06s\0 ", DecOct($v_checksum)); $v_binary_data = pack("a8", $v_checksum); $this->_writeBlock($v_binary_data, 8); @@ -1531,7 +1536,7 @@ $p_filename = $this->_pathReduction($p_filename); if (strlen($p_filename) > 99) { - if (!$this->_writeLongHeader($p_filename)) { + if (!$this->_writeLongHeader($p_filename, false)) { return false; } } @@ -1627,36 +1632,31 @@ * @param string $p_filename * @return bool */ - public function _writeLongHeader($p_filename) + public function _writeLongHeader($p_filename, $is_link = false) { - $v_size = sprintf("%11s ", DecOct(strlen($p_filename))); - - $v_typeflag = 'L'; - + $v_uid = sprintf("%07s", 0); + $v_gid = sprintf("%07s", 0); + $v_perms = sprintf("%07s", 0); + $v_size = sprintf("%'011s", DecOct(strlen($p_filename))); + $v_mtime = sprintf("%011s", 0); + $v_typeflag = ($is_link ? 'K' : 'L'); $v_linkname = ''; - - $v_magic = ''; - - $v_version = ''; - + $v_magic = 'ustar '; + $v_version = ' '; $v_uname = ''; - $v_gname = ''; - $v_devmajor = ''; - $v_devminor = ''; - $v_prefix = ''; $v_binary_data_first = pack( "a100a8a8a8a12a12", '././@LongLink', - 0, - 0, - 0, + $v_perms, + $v_uid, + $v_gid, $v_size, - 0 + $v_mtime ); $v_binary_data_last = pack( "a1a100a6a2a32a32a8a8a155a12", @@ -1691,7 +1691,7 @@ $this->_writeBlock($v_binary_data_first, 148); // ----- Write the calculated checksum - $v_checksum = sprintf("%06s ", DecOct($v_checksum)); + $v_checksum = sprintf("%06s\0 ", DecOct($v_checksum)); $v_binary_data = pack("a8", $v_checksum); $this->_writeBlock($v_binary_data, 8); @@ -1836,10 +1836,13 @@ */ private function _maliciousFilename($file) { - if (strpos($file, '/../') !== false) { + if (strpos($file, 'phar://') === 0) { return true; } - if (strpos($file, '../') === 0) { + if (strpos($file, DIRECTORY_SEPARATOR . '..' . DIRECTORY_SEPARATOR) !== false) { + return true; + } + if (strpos($file, '..' . DIRECTORY_SEPARATOR) === 0) { return true; } return false; @@ -1904,11 +1907,20 @@ continue; } - // ----- Look for long filename - if ($v_header['typeflag'] == 'L') { - if (!$this->_readLongHeader($v_header)) { - return null; - } + switch ($v_header['typeflag']) { + case 'L': { + if (!$this->_readLongHeader($v_header)) { + return null; + } + } break; + + case 'K': { + $v_link_header = $v_header; + if (!$this->_readLongHeader($v_link_header)) { + return null; + } + $v_header['link'] = $v_link_header['filename']; + } break; } if ($v_header['filename'] == $p_filename) { @@ -2009,11 +2021,20 @@ continue; } - // ----- Look for long filename - if ($v_header['typeflag'] == 'L') { - if (!$this->_readLongHeader($v_header)) { - return false; - } + switch ($v_header['typeflag']) { + case 'L': { + if (!$this->_readLongHeader($v_header)) { + return null; + } + } break; + + case 'K': { + $v_link_header = $v_header; + if (!$this->_readLongHeader($v_link_header)) { + return null; + } + $v_header['link'] = $v_link_header['filename']; + } break; } // ignore extended / pax headers diff -Naur drupal-7.61/modules/system/tests/cron_queue_test.info drupal-7.66/modules/system/tests/cron_queue_test.info --- drupal-7.61/modules/system/tests/cron_queue_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/system/tests/cron_queue_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/system/tests/system_cron_test.info drupal-7.66/modules/system/tests/system_cron_test.info --- drupal-7.61/modules/system/tests/system_cron_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/system/tests/system_cron_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/taxonomy/taxonomy.info drupal-7.66/modules/taxonomy/taxonomy.info --- drupal-7.61/modules/taxonomy/taxonomy.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/taxonomy/taxonomy.info 2019-04-17 22:39:36.000000000 +0200 @@ -8,7 +8,7 @@ files[] = taxonomy.test configure = admin/structure/taxonomy -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/toolbar/toolbar.info drupal-7.66/modules/toolbar/toolbar.info --- drupal-7.61/modules/toolbar/toolbar.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/toolbar/toolbar.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ package = Core version = VERSION -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/tracker/tracker.info drupal-7.66/modules/tracker/tracker.info --- drupal-7.61/modules/tracker/tracker.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/tracker/tracker.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ core = 7.x files[] = tracker.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/translation/tests/translation_test.info drupal-7.66/modules/translation/tests/translation_test.info --- drupal-7.61/modules/translation/tests/translation_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/translation/tests/translation_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ version = VERSION hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/translation/translation.info drupal-7.66/modules/translation/translation.info --- drupal-7.61/modules/translation/translation.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/translation/translation.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ core = 7.x files[] = translation.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/trigger/tests/trigger_test.info drupal-7.66/modules/trigger/tests/trigger_test.info --- drupal-7.61/modules/trigger/tests/trigger_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/trigger/tests/trigger_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/trigger/trigger.info drupal-7.66/modules/trigger/trigger.info --- drupal-7.61/modules/trigger/trigger.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/trigger/trigger.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = trigger.test configure = admin/structure/trigger -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/aaa_update_test.info drupal-7.66/modules/update/tests/aaa_update_test.info --- drupal-7.61/modules/update/tests/aaa_update_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/aaa_update_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/bbb_update_test.info drupal-7.66/modules/update/tests/bbb_update_test.info --- drupal-7.61/modules/update/tests/bbb_update_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/bbb_update_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/ccc_update_test.info drupal-7.66/modules/update/tests/ccc_update_test.info --- drupal-7.61/modules/update/tests/ccc_update_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/ccc_update_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/themes/update_test_admintheme/update_test_admintheme.info drupal-7.66/modules/update/tests/themes/update_test_admintheme/update_test_admintheme.info --- drupal-7.61/modules/update/tests/themes/update_test_admintheme/update_test_admintheme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/themes/update_test_admintheme/update_test_admintheme.info 2019-04-17 22:39:36.000000000 +0200 @@ -3,7 +3,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/themes/update_test_basetheme/update_test_basetheme.info drupal-7.66/modules/update/tests/themes/update_test_basetheme/update_test_basetheme.info --- drupal-7.61/modules/update/tests/themes/update_test_basetheme/update_test_basetheme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/themes/update_test_basetheme/update_test_basetheme.info 2019-04-17 22:39:36.000000000 +0200 @@ -3,7 +3,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/themes/update_test_subtheme/update_test_subtheme.info drupal-7.66/modules/update/tests/themes/update_test_subtheme/update_test_subtheme.info --- drupal-7.61/modules/update/tests/themes/update_test_subtheme/update_test_subtheme.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/themes/update_test_subtheme/update_test_subtheme.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ base theme = update_test_basetheme hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/tests/update_test.info drupal-7.66/modules/update/tests/update_test.info --- drupal-7.61/modules/update/tests/update_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/tests/update_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/update/update.info drupal-7.66/modules/update/update.info --- drupal-7.61/modules/update/update.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/update/update.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ files[] = update.test configure = admin/reports/updates/settings -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/user/tests/user_form_test.info drupal-7.66/modules/user/tests/user_form_test.info --- drupal-7.61/modules/user/tests/user_form_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/user/tests/user_form_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/modules/user/user.info drupal-7.66/modules/user/user.info --- drupal-7.61/modules/user/user.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/modules/user/user.info 2019-04-17 22:39:36.000000000 +0200 @@ -9,7 +9,7 @@ configure = admin/config/people stylesheets[all][] = user.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/profiles/minimal/minimal.info drupal-7.66/profiles/minimal/minimal.info --- drupal-7.61/profiles/minimal/minimal.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/profiles/minimal/minimal.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ dependencies[] = block dependencies[] = dblog -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/profiles/standard/standard.info drupal-7.66/profiles/standard/standard.info --- drupal-7.61/profiles/standard/standard.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/profiles/standard/standard.info 2019-04-17 22:39:36.000000000 +0200 @@ -24,7 +24,7 @@ dependencies[] = file dependencies[] = rdf -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info drupal-7.66/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info --- drupal-7.61/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/profiles/testing/modules/drupal_system_listing_compatible_test/drupal_system_listing_compatible_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -6,7 +6,7 @@ hidden = TRUE files[] = drupal_system_listing_compatible_test.test -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info drupal-7.66/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info --- drupal-7.61/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/profiles/testing/modules/drupal_system_listing_incompatible_test/drupal_system_listing_incompatible_test.info 2019-04-17 22:39:36.000000000 +0200 @@ -8,7 +8,7 @@ core = 6.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/profiles/testing/testing.info drupal-7.66/profiles/testing/testing.info --- drupal-7.61/profiles/testing/testing.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/profiles/testing/testing.info 2019-04-17 22:39:36.000000000 +0200 @@ -4,7 +4,7 @@ core = 7.x hidden = TRUE -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/sites/default/default.settings.php drupal-7.66/sites/default/default.settings.php --- drupal-7.61/sites/default/default.settings.php 2018-11-08 14:18:15.000000000 +0100 +++ drupal-7.66/sites/default/default.settings.php 2019-04-17 22:20:46.000000000 +0200 @@ -645,3 +645,17 @@ * @see drupal_clean_css_identifier() */ # $conf['allow_css_double_underscores'] = TRUE; + +/** + * The default list of directories that will be ignored by Drupal's file API. + * + * By default ignore node_modules and bower_components folders to avoid issues + * with common frontend tools and recursive scanning of directories looking for + * extensions. + * + * @see file_scan_directory() + */ +$conf['file_scan_ignore_directories'] = array( + 'node_modules', + 'bower_components', +); diff -Naur drupal-7.61/themes/bartik/bartik.info drupal-7.66/themes/bartik/bartik.info --- drupal-7.61/themes/bartik/bartik.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/themes/bartik/bartik.info 2019-04-17 22:39:36.000000000 +0200 @@ -34,7 +34,7 @@ settings[shortcut_module_link] = 0 -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/themes/garland/garland.info drupal-7.66/themes/garland/garland.info --- drupal-7.61/themes/garland/garland.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/themes/garland/garland.info 2019-04-17 22:39:36.000000000 +0200 @@ -7,7 +7,7 @@ stylesheets[print][] = print.css settings[garland_width] = fluid -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/themes/seven/seven.info drupal-7.66/themes/seven/seven.info --- drupal-7.61/themes/seven/seven.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/themes/seven/seven.info 2019-04-17 22:39:36.000000000 +0200 @@ -13,7 +13,7 @@ regions[sidebar_first] = First sidebar regions_hidden[] = sidebar_first -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576" diff -Naur drupal-7.61/themes/stark/stark.info drupal-7.66/themes/stark/stark.info --- drupal-7.61/themes/stark/stark.info 2018-11-08 14:38:42.000000000 +0100 +++ drupal-7.66/themes/stark/stark.info 2019-04-17 22:39:36.000000000 +0200 @@ -5,7 +5,7 @@ core = 7.x stylesheets[all][] = layout.css -; Information added by Drupal.org packaging script on 2018-11-08 -version = "7.61" +; Information added by Drupal.org packaging script on 2019-04-17 +version = "7.66" project = "drupal" -datestamp = "1541684322" +datestamp = "1555533576"