0d2a921916
- Revert r313616 (When we have a blocking SSL socket, respect the timeout
...
option, scottmac)
# This caused bug #55283 , we should investigate a proper solution without
# breaking anything.
2011-08-22 21:32:04 +00:00
23e438594d
- Make usage of new PHP_FE_END macro
2011-07-25 11:42:53 +00:00
4b30846b50
- Make usage of new PHP_FE_END macro
2011-07-25 11:35:02 +00:00
04c2df66a3
When we have a blocking SSL socket, respect the timeout option.
...
reading from SSL sockets could block indefinitely due to the lack
of timeout
2011-07-23 01:29:44 +00:00
ebbb2b1df1
When we have a blocking SSL socket, respect the timeout option.
...
reading from SSL sockets could block indefinitely due to the lack
of timeout
2011-07-23 01:29:44 +00:00
5dc5c26a5f
removing openssl test for bug #55169 per Scott MacVicar's request; duplicate coverage of opensssl_random_pseudo_bytes.phpt
2011-07-20 21:25:39 +00:00
530311f4ba
removing openssl test for bug #55169 per Scott MacVicar's request; duplicate coverage of opensssl_random_pseudo_bytes.phpt
2011-07-20 21:25:39 +00:00
7acdad749c
update test for bug #55169 , fix skipif
2011-07-20 21:13:03 +00:00
386abb9f5a
update test for bug #55169 , fix skipif
2011-07-20 21:13:03 +00:00
74d6fe4f00
update test for bug #55169 , don't require the extension in INI
2011-07-20 20:57:17 +00:00
08cab10dc9
update test for bug #55169 , don't require the extension in INI
2011-07-20 20:57:17 +00:00
292abd1240
tests for bug #55169 (mcrypt and openssl)
2011-07-20 18:59:05 +00:00
cd6f4bcf8d
tests for bug #55169 (mcrypt and openssl)
2011-07-20 18:59:05 +00:00
b03817afb5
- re apply the rng change specific to windows, long term it should be a std function but as this function was badly introduced in the 1st place, we have to fix the bad things here instead, pls do not revert again, bad idea.
2011-07-19 23:01:41 +00:00
591e0e446f
Revert change to use a special Windows version of openssl_random_pseudo_bytes().
...
Lets discuss this on internals first. We're advertising something from the OpenSSL library
and then subverting it with another Windows OS call.
What are the implications of this? Should we make this available in ext/standard/ instead?
2011-07-19 22:29:55 +00:00
946456425e
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
64a0c79a07
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
5fb2570742
- use php_win32_get_random_bytes instead of over slow and partially wrong openssl's version
2011-07-10 14:59:33 +00:00
ccae79a2c3
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
104cd28e95
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
15f5dd5cb3
- Fixed bug #55028 (// is abad comment)
2011-06-10 22:48:36 +00:00
0e37aa144f
- Fixed bug #55028 (// is abad comment)
2011-06-10 22:48:36 +00:00
cd7681d273
- Fixed bug #54992 : Stream not closed and error not returned when SSL CN_match
...
fails.
2011-06-08 00:23:02 +00:00
c27079d9e0
- Fixed bug #54992 : Stream not closed and error not returned when SSL CN_match
...
fails.
2011-06-08 00:23:02 +00:00
32b5f8a1a3
- Added new parameter parsing option (p - for valid path (string without null byte in the middle))
...
# The tests will be fixed in the next commits
2011-06-06 21:28:16 +00:00
30f19bd524
Allow management of your own padding in openssl_encrypt/decrypt.
...
For using mcrypt / openssl interchangeabley managing your own padding is the only solution.
2011-05-20 18:56:13 +00:00
1a4897c88e
MFH: The project calls itself OpenSSL and not openSSL, so let's keep it
...
that way in our code as well.
2011-04-25 16:51:12 +00:00
0c8438462c
The project calls itself OpenSSL and not openSSL, so let's keep it
...
that way in our code as well.
2011-04-25 16:50:30 +00:00
be3d70df4e
SSLV2 patch cleanup
2011-04-24 23:27:48 +00:00
380c3e5127
SSLV2 patch cleanup
2011-04-24 23:27:48 +00:00
e575557612
Support for openssl without SSLv2 supprot compiled in. Distros are starting to
...
remove support now and this wasn't compiling anymore on my Debian dev box.
2011-04-24 20:47:22 +00:00
f1806e67e6
Support for openssl without SSLv2 supprot compiled in. Distros are starting to
...
remove support now and this wasn't compiling anymore on my Debian dev box.
2011-04-24 20:47:22 +00:00
a286fa3523
Add the libraries we actually test and need for LDAP and OpenSSL, fixes bug #53339
...
Patch by Clint Byrum
2011-03-18 18:47:09 +00:00
5b55a18622
Add the libraries we actually test and need for LDAP and OpenSSL, fixes bug #53339
...
Patch by Clint Byrum
2011-03-18 18:47:09 +00:00
00b10c6aa3
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:50:26 +00:00
32c4a3a061
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:50:26 +00:00
69ba87b183
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:47:38 +00:00
f922e31129
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:47:38 +00:00
7deec592fd
- fix test 025
2011-02-21 10:09:50 +00:00
b526a6ef44
- fix bug #54060 , memory leak in openssl_encrypt
2011-02-21 10:07:31 +00:00
5261861d77
- fix bug #54060 , memory leak in openssl_encrypt
2011-02-21 10:07:31 +00:00
927bf09c29
- Year++
2011-01-01 02:19:59 +00:00
0203cc3d44
- Year++
2011-01-01 02:17:06 +00:00
cd34d68cdd
- Fixed bug #53592 (stream_socket_enable_crypto() busy-waits in client mode).
...
- Fixed stream_socket_enable_crypto() not honoring the socket timeout in
server mode.
2010-12-23 01:44:54 +00:00
063393f29b
- Fixed bug #53592 (stream_socket_enable_crypto() busy-waits in client mode).
...
- Fixed stream_socket_enable_crypto() not honoring the socket timeout in
server mode.
2010-12-23 01:44:54 +00:00
e87fbccfd8
MFH: implement FR #53447 (Cannot disable SessionTicket extension for servers
...
that do not support it). Includes Tony's subsequent commit to fix a segfault.
2010-12-13 08:29:44 +00:00
3722811395
make sure the stream context is present before looking for any options
...
and fix segfault
2010-12-04 21:54:20 +00:00
18ec6dae2c
Implemented FR #53447 (Cannot disable SessionTicket extension for servers that
...
do not support it).
I haven't written a test due to the need for such a test to have a HTTPS server
available which mishandles SessionTicket requests; it's likely that server
administrators will gradually fix this either intentionally or through OpenSSL
upgrades. That said, if there's a great clamoring for a test, I'll work one up.
2010-12-03 09:34:35 +00:00
3fd615cc8d
- not TS and useless on server, also not required anymore with the supported windows versions
2010-12-02 11:37:43 +00:00
cd62a70863
- not TS and useless on server, also not required anymore with the supported windows versions
2010-12-02 11:37:43 +00:00
Johannes Schlüter