How to prevent Warning: POST Content-Length and memory size

php post file-upload filesize max-size
37,222

Solution 1

So after searching instead of working today I finally got an idea how to solve this, it worked, and even didnt cause much damage. But please first understand what you are doing, before doing it. :) As I suggested in one of my comments it is really possible to turn off PHP errors in .htacess - just turn off the PHP startup warnings.

Before you apply the solution:

Note that: after you insert this code to your .htaccess you won't be able to see any startup error

Also note that: there are more start up errors on line "0" than this one.

Do before: Before you do this you should prepare your script in the way that it should check the uploaded content size and give user a proper information message. The fact that the warning doesnt show DOES NOT mean that you should do nothing about it. It means the EXACT oposite - you should do all that you can to make something at least near-equal to the warning raise - check, double check if you can, handle error and raise your own error message.

Add this to your .htaccess:

php_flag display_startup_errors off

It is not that evil as it seems to be:

Please note that this turns off startup errors only.
So all the regular PHP errors/warnings/notices stays ON :)

Even XAMPP's PHP "itself" recommends it for production:

The php.ini file literaly says:

; display_startup_errors
;   Default Value: Off
;   Development Value: On
;   Production Value: Off

PS: "startup error" seems to be those errors before PHP script is executed itself - these errors are usually trying to "persuade" you that they are on the line 0.

Thanks to my idea and this answer: How to disable notice and warning in PHP within .htaccess file?

EDIT: As this is a php_flag setting, you can of course also set it by default in your php.ini if you have custom instalation of PHP :)

Solution 2

The question is

How to prevent Warning: POST Content-Length

the answer is, without edit any config value, put this code at the very start of the file that will receive the form to be processed:

 <?php // here start your php file
 ob_get_contents();
 ob_end_clean();

That is. No more warning, as well anything else you do not want as output on your page. After, as suggested elsewhere you can decide what to do with:

if($_SERVER['REQUEST_METHOD'] == 'POST' && empty($_POST) && empty($_FILES) && $_SERVER['CONTENT_LENGTH'] > 0){ echo"WoW your file is too big!"; }

Maybe also chunk the file, if in another way you pass correct values about file to be processed by Php.

as explained here Warning: POST Content-Lenght ...

Solution 3

Here is the REAL solution to prevent this error properly.

Set this parameters in your php.ini :

enable_post_data_reading = On
upload_max_size=0
post_max_size=0

Warning : be sure to have this line in your form

<input type="hidden" name="MAX_FILE_SIZE" value="2048576" />

AND the MOST IMPORTANT :

  • be sure to check the code errors of $_FILES['file']['error']

  • be sure to check size of your upload in PHP too

Solution 4

I've got a similar problem to you, and wondered if you'd found a satisfactory solution. Currently, my 'PHP Warning: POST Content-Length of 21010354 bytes exceeds the limit of 8388608' is in the log, and I don't think there is much I can do about it.

I've working within a Zend framework, and when a user uploads a file as above, it basically kills all the usual POST data parsing, so the response to getParams() contains none of the usual POST parameters. This means the users is getting a validation error, saying one of the fields is missing, which is misleading.

In researching this, I've found a few interesting php_ini settings you might want to look at, notably enable_post_data_reading and always_populate_raw_post_data. In my case, I'm uploading a 20M file, with a 8M post max and a 10M uploaded file max, and the result from php://input seems to be a full on 20M file, even though the post data is now empty.

So I'm going to manually check if the raw data exceeds the limit, and assume everything failed if it did (and bail). I suggest you could write your own code to parse the raw data, to populate the $_POST data. Then you can startup your code, as you wish, and only when you're ready, check if the user has uploaded more data than the limit. It's down to you, to then return an error before parsing it, or if it's ok, to parse it. As long as you set the PHP post and upload limits, to above your user limit, it should allow the user to break the rules, allowing your code to detect the breech and complain about it.

Share:
37,222
jave.web
Author by

jave.web

I am a web-developer. I mean, that is my main.focus() :) I do stuff in: • PHP min. 5.4, mainly 7.3/7.4, hopeful for 8.x, wondering what 9/10 will bring • Python 3 (preferrably 3.7+), which I had to get used to and actually find it kinda similar to PHP, but don't get me even started on those docs... it's a shame. What I would like to see is a merge of a modern PHP with a modern Python - both have nice features but both lack some other features. • JavaScript (jQuery &amp; AJAX helps sometimes a lot ;) ) nowadays I try to not use unnecessary libraries for modern applications, since modern JavaScript had brought many shorteners. Still not convinced about a good browser support for all the cool modern features ... • HTML (I tend to use 5+) • Times changed, and you should really only use CSS3+ today! not cross-browser as-is: google-TIP: CSS PIE!) • XML (mostly for (transfering || storing || working with) data) • SQL (MySQL/MariaDB, PostgreSQL, Oracle, ...) - if PHP then PDO, else some other DB lib I sometimes do stuff in: • C++ • C • LUA script macros for WoW • And I dont really know if it is a good thing but I also know how to do some stuff in Pascal      • We call it Packal = Bungler

Updated on July 29, 2022

Comments

  • jave.web
    jave.web over 1 year

    Currently when user uploads a photo the page says "Warning: POST Content-Length of XXX bytes exceeds the limit of 21000000 bytes in Unknown on line 0".

    I know what that means and I am NOT looking for the solultions like the increasing the max_upload values or even memory_size_limit... Because users may and users will upload terabytes of nonsense even if you explicitly tell them only max 20MB files and only images are allowed.

    I am looking for a solution on:

    • How to prevent this warning(s) to even happen?
      OR at least:
    • How to prevent displaying of this warning(s)?

    EDIT: PLEASE READ ! - Please understand that of course I am handling the error/warning after (since line 1) , problem is this happens on a virtual "line 0" that is why I need to hide the error or prevent it to raise - because I cant put any code before the place where the error happens.

    EDIT2: Finally after a very long research and digging I got an idea - it worked - see my own answer.

  • N.B.
    N.B. about 10 years
    4) You can actually use the web server, those nice shiny things that have been in development for decades and deny retardedly-large requests ever getting to the php side of play.
  • jave.web
    jave.web about 10 years
    Well I belive that would help. But it is a WARNING, and over all - all common PHP errors are not worth recompiling PHP... I personally know only one type of error that is worth considering recompiling the whole PHP... and it is not any of the common thrown Errors/Warnings/Notices :)
  • jave.web
    jave.web about 10 years
    It is a warning. Not error (but sorry I made this typo first so I might have confused you). I normally dont do that, but in this case there is no way of preventing it (besides recompiling PHP). So hiding it and solving the problem by yourself seems to be better.
  • Byson
    Byson over 9 years
    This is both not what the OP asked, and it does not actually work. Startup errors can never be hidden through code (because they are thrown before any code is run).
  • jave.web
    jave.web over 7 years
    Can you explain how this would safely work? Because enable_post_data_reading is On by default (Off would mean there would be no $_POST and $_FILES populated) and setting the latter 2 to 0 will turn off server-layer-limit completely so you are basically allowing to put in process files of ANY size...
  • Cloud
    Cloud almost 7 years
    Its cannot check as you said.

Recents

Why Is PNG file with Drop Shadow in Flutter Web App Grainy?
How to troubleshoot crashes detected by Google Play Store for Flutter app
Cupertino DateTime picker interfering with scroll behaviour
Why does awk -F work for most letters, but not for the letter "t"?
Flutter change focus color and icon color but not works
How to print and connect to printer using flutter desktop via usb?
Critical issues have been reported with the following SDK versions: com.google.android.gms:play-services-safetynet:17.0.0
Flutter Dart - get localized country name from country code
navigatorState is null when using pushNamed Navigation onGenerateRoutes of GetMaterialPage
Android Sdk manager not found- Flutter doctor error
Flutter Laravel Push Notification without using any third party like(firebase,onesignal..etc)
How to change the color of ElevatedButton when entering text in TextField

Related

Upload a file with App Inventor 2 to a server through PHP
How to recieve an image (file) with PHP that was submitted over a POST request
Check file size before upload
Is there a way of making a flutter webview use android camera for file upload? How to open file picker in webview_flutter flutter?
PHP and Ajax file upload - Can't get the tmp_name with $_FILES
Laravel 5 file upload validation
HTTP 500 Internal Server error when uploading files
How to read header of a file uploaded in PHP?
jquery ajax submit form uploading image
Arrays from multiple upload form, Upload images then insert to database (PHP, MySQL)