0fe07a0e74
Fix missing type checks in various functions
2014-07-31 15:36:24 +02:00
c1224573c7
Fix CVE-2013-6420 - memory corruption in openssl_x509_parse
2013-12-10 11:03:49 -08:00
c1c49d6e39
fix using wrong buffer pointer
2013-08-19 01:02:12 -07:00
dcea4ec698
Fix CVE-2013-4073 - handling of certs with null bytes
2013-08-13 22:24:11 -07:00
a2045ff332
Happy New Year~
2013-01-01 16:02:16 +08:00
270a406ac9
Fix bug #61413 ext\openssl\tests\openssl_encrypt_crash.phpt fails 5.3 only
2012-04-24 14:05:35 +02:00
f424fe8aed
Fixed bug #61124 (Crash when decoding an invalid base64 encoded string).
2012-02-23 01:26:46 +00:00
e4ca0ed09f
- Year++
2012-01-01 13:15:04 +00:00
095cbc48a8
Fix segfault in older versions of OpenSSL (before 0.9.8i)
2011-12-18 05:14:32 +00:00
23e438594d
- Make usage of new PHP_FE_END macro
2011-07-25 11:42:53 +00:00
946456425e
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
ccae79a2c3
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
1a4897c88e
MFH: The project calls itself OpenSSL and not openSSL, so let's keep it
...
that way in our code as well.
2011-04-25 16:51:12 +00:00
be3d70df4e
SSLV2 patch cleanup
2011-04-24 23:27:48 +00:00
69ba87b183
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:47:38 +00:00
7deec592fd
- fix test 025
2011-02-21 10:09:50 +00:00
5261861d77
- fix bug #54060 , memory leak in openssl_encrypt
2011-02-21 10:07:31 +00:00
927bf09c29
- Year++
2011-01-01 02:19:59 +00:00
cd62a70863
- not TS and useless on server, also not required anymore with the supported windows versions
2010-12-02 11:37:43 +00:00
ce96fd6b07
- fix #39863 , do not accept paths with NULL in them. See http://news.php.net/php.internals/50191 , trunk will have the patch later (adding a macro and/or changing (some) APIs. Patch by Rasmus
2010-11-18 15:22:22 +00:00
c095bec250
- Fixed bug #53136 (Invalid read on openssl_csr_new())
2010-11-12 23:34:03 +00:00
db633fb71d
Fix vim marker folds.
2010-10-13 09:23:39 +00:00
a4252ab2be
Fixed extrenous warning inside openssl_encrypt() for cases where iv not provided, but algo does not require an iv
2010-10-07 12:32:00 +00:00
e64734f986
- Fixed bug #52183 (Reflectionfunction reports invalid number of arguments for function aliases)
2010-06-26 16:03:39 +00:00
797bb31e24
fix ZTS build
2010-05-20 11:20:44 +00:00
2655e63e10
MFH: Add IV to openssl_(en|de)crypt()
...
Add openssl_cipher_iv_length()
2010-05-19 21:18:16 +00:00
c7a553a7fb
Removed double allocation of buffer inside openssl_random_pseudo_bytes() and cleanup code
2010-05-11 14:31:00 +00:00
af6dd192b3
Fix for bug #51647 Certificate file without private key (pk in another file) doesn't work
2010-04-23 13:54:40 +00:00
c996aea40d
revert most of the Andrey's patch that causes segfaults
...
(as agreed with Pierre)
2010-04-22 15:59:44 +00:00
a1f753c8e3
initialize variable. this code still segfaults in OpenSSL, no idea why
2010-04-22 11:56:08 +00:00
dd9fc198ce
Fix for bug#49234 method not found ssl_set
...
Patch was tested and compiles on Windows. (Thanks Kalle)
2010-04-15 11:01:30 +00:00
eb1dc0babf
Fixed bug #50859 (build fails with openssl 1.0 due to md2 deprecation)
2010-01-27 12:55:01 +00:00
9ba1e81665
sed -i "s#1997-2009#1997-2010#g" **/*.c **/*.h **/*.php
2010-01-03 09:23:27 +00:00
7c0803a8ca
merge from trunk: openssl sni support (rev 289831)
2009-11-30 13:31:53 +00:00
04448f215b
added timezone define for NetWare.
2009-11-03 21:26:39 +00:00
361d6789f1
- Fixed memory leak in openssl_pkcs12_export_to_file()
2009-10-27 21:37:03 +00:00
62d78d7ccc
Fixed certificate validation inside php_openssl_apply_verification_policy
2009-09-14 12:50:30 +00:00
96a053288f
- Fixed compile failure with older openssl libs (< 0.9.8), fixes bug #49012
2009-07-30 11:32:08 +00:00
f37fabb803
- #48116 , restore 0.x compability, thx config.cache.
2009-07-06 23:26:23 +00:00
c82245dea7
- #48116 , fix build against openssl 1.0
2009-07-06 23:02:18 +00:00
8e0a3c21a3
MFH: Closes #47991 SSL streams fail if error stack contains items
2009-04-20 09:44:29 +00:00
04566e106a
MFH Fix bug #47828 - Converting to UTF-8 can sometimes fail, check error codes and avoid segfault.
2009-03-29 23:32:34 +00:00
08659c2dcd
MFH: Bump copyright year, 3 of 3.
2008-12-31 11:15:49 +00:00
d543e3d987
- #41033 , enable signing with DSA keys
2008-11-18 01:56:12 +00:00
1858b25407
MFH Add openssl_random_pseudo_bytes() in order to expose access to a PRG, this wraps around whatever the OS provides.
...
- OpenBSD uses arc4random()
- Windows uses the Windows Crypto API
- FreeBSD, Linux, etc use /dev/random or /dev/urandom if available
[DOC]
2008-11-17 21:54:25 +00:00
fc2fb50d09
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-11-17 11:28:01 +00:00
7a37fa2d6b
- Revert ZEND_BEGIN_ARG_INFO change
2008-11-02 21:19:39 +00:00
8bd2943877
Fixed compiler warning
2008-10-26 14:35:41 +00:00
df10005563
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-10-24 14:35:40 +00:00
1d5ba8bb21
MFH: initialize optional vars
2008-10-21 23:39:15 +00:00
Stanislav Malyshev