61b043bfd7
MFB
2006-09-16 12:05:43 +00:00
a98f411f80
remove a leftover
2006-09-12 10:53:51 +00:00
49f7759c27
implement feature request #38731 (openssl_pkey_new does not support DSA key generation)
...
patch by marci at balabit dot hu
2006-09-08 20:09:08 +00:00
cb1ba9379d
MFB: Fixed memory leaks in openssl test #004
2006-09-07 14:16:54 +00:00
6c977ee076
add new test for multiple leaks in openssl_csr_new()
2006-09-05 14:04:36 +00:00
4c6db31984
init variables
2006-09-05 13:59:08 +00:00
ac978370c9
fix test
2006-09-05 13:58:47 +00:00
3aca07552a
fix test
2006-08-31 13:49:39 +00:00
3b62798018
fix problem with mixed arguments accepted as zval* causing leaks/segfaults when converting to other types
2006-08-31 13:47:32 +00:00
c3890b0044
fix segfault/leak, add test
2006-08-30 21:50:29 +00:00
2229e563e4
fix segfault in openssl_seal(), add test
2006-08-30 20:49:46 +00:00
270a5b8bb1
MFB: Fixed compiler warning.
2006-07-31 03:41:43 +00:00
7cd4c92c1a
- MFB: #36732 , add req_extensions support to openssl_csr_new and _sign
...
(ben at psc dot edu)
- MFB: fix leaks in openssl_csr_new and sig
2006-07-31 00:36:10 +00:00
6dc7a18d7c
- #28382 , add support for x509 extensions
2006-07-30 17:02:28 +00:00
30901dc4cd
- MFB: #38261 , openssl_x509_parse leaks with invalid certs
2006-07-30 16:27:03 +00:00
33cfa68757
- MFB: silent compiler warnins (signess)
2006-07-30 09:18:24 +00:00
9d93ae55c6
- MFB: vi happiness
2006-07-30 08:28:49 +00:00
5016f0d0e9
- make the test more obvious and add an explanation
2006-07-29 23:03:38 +00:00
9941fd7185
MFB: improve test
2006-07-29 22:41:35 +00:00
3a2fb91020
- #38255 , fails on array as well
2006-07-29 22:39:52 +00:00
cd314aea49
- MFH: #38255 , fix possible leak in php_openssl_evp_from_zval
2006-07-29 22:24:49 +00:00
1329f72f90
- #37820 , add support for algorithm type in openssl_verify()
2006-07-29 21:54:46 +00:00
1902e8973c
- MFB: fix leaks in openssl context options
2006-05-26 01:48:25 +00:00
021e1a3255
merge from branch: peer certificate capture context options.
2006-04-30 23:45:14 +00:00
0f1209ab3d
Portable unicode string API:
...
- use the same type (int) for zval.value.usr.len and zval.value.str.len
- use union "zstr" as char*/UChar* mixture instead of void*
- Z_UNISTR() and Z_UNILEN() no longer check for Z_TYPE()
- nuke int32_t from ZE (not finisned)
2006-02-21 20:12:43 +00:00
ac1e7362b3
- More safe_mode nuking
2006-02-19 03:07:39 +00:00
e94e25e621
Start nuking safe_mode. Still a lot of work to do...
2006-02-19 00:55:22 +00:00
251c5173fd
bump year and license version
2006-01-01 13:10:10 +00:00
18685ea039
MFB51: Improve "skip" checks
2005-12-27 17:17:11 +00:00
a208d9a966
- Nuke php3 legacy
2005-12-06 02:28:26 +00:00
9aa88e7e43
fix bug #35381 - ensure library is initialized before use
2005-11-28 10:28:17 +00:00
7eeb91187b
Fixed memory allocation bug
2005-09-07 15:34:50 +00:00
03cec74a0d
Nuked EOLs from error messages
2005-08-18 13:34:04 +00:00
23e671a51e
- Bumber up year
2005-08-03 14:08:58 +00:00
efc6ccaa01
Add optional parameter to openssl_pkcs7_verify() which specifies the name
...
of a file that will be filled with the verified data, but with the signature
information stripped.
Patch by Marton Kenyeres, mkenyeres (at) konvergencia dot hu
2005-06-30 14:25:41 +00:00
b8ac8eeca6
- Never use Z_TYPE* macros on non-zvals.
2005-04-19 22:04:28 +00:00
8c38ac19bf
Fixed possible usage of str without being initialized.
2005-03-15 00:27:52 +00:00
005b2d77bf
- Fixed bug #18613 (Multiple OUs in x509 certificate not handled properly)
2005-03-14 21:00:03 +00:00
126e524635
Fix build...
2005-01-01 14:32:59 +00:00
5ac375a40d
- Fixed bug #31101 (missing kerberos header file path with --with-openssl)
2004-12-30 14:50:06 +00:00
843807c647
When a socket is non-blocking, don't block ssl enabled sockets.
...
Allow for non-blocking negotiation when calling stream_socket_enable_crypto().
That function will return the foolowing values:
false - negotiation failed
0 - try again when more data is available (only for non-blocking sockets)
true - ssl was enabled
2004-12-25 02:02:56 +00:00
ee39ec7d0a
Remove unused variable.
2004-11-03 13:12:41 +00:00
c8cc96e6fe
Fix possible crash; patch by Kamesh Jayachandran
2004-10-27 11:07:26 +00:00
0a4127a610
Fix for Bug #29418 (double free when openssl_csr_new fails).
...
Also hook up MSHUTDOWN function which appears to have never been enabled.
Patch by Kamesh Jayachandran
2004-10-26 09:24:07 +00:00
7387db4366
Included select.h for NetWare
2004-09-29 10:28:17 +00:00
99e290f882
Fix for Bug #24189 : possibly unsafe select(2) usage.
...
We avoid the problem by using poll(2).
On systems without poll(2) (older bsd-ish systems, and win32), we emulate
poll(2) using select(2) and check for valid descriptors before attempting
to access them via the descriptor sets.
If an out-of-range descriptor is detected, an E_WARNING is raised suggesting
that PHP should be recompiled with a larger FD_SETSIZE (and also with a
suggested value).
Most uses of select(2) in the source are to poll a single descriptor, so
a couple of handy wrapper functions have been added to make this easier.
A configure option --enable-fd-setsize has been added to both the unix and
win32 builds; on unix we default to 16384 and on windows we default to 256.
Windows FD_SETSIZE imposes a limit on the maximum number of descriptors that
can be select()ed at once, whereas the unix FD_SETSIZE limit is based on the
highest numbered descriptor; 256 should be plenty for PHP scripts under windows
(the default OS setting is 64).
The win32 specific parts are untested; will do that now.
2004-09-17 12:44:56 +00:00
17c77a54bf
Add missing stream unregister for sslv2 and 3.
2004-09-13 18:30:30 +00:00
0bc0ccce2b
Fix Bug #29296 : add explicit sslv2 and sslv3 transports
2004-09-10 11:43:47 +00:00
d725f3af91
NetWare specific openssl build file
2004-07-16 08:59:24 +00:00
ad99c124c4
Finally a fix for #23220 : IIS does not cleanly close SSL connections.
...
Also enable the safe and recommended bug work around options in the SSL
context.
2004-05-23 10:36:08 +00:00
Nuno Lopes