| #
d4702916 |
| 06-Sep-2015 |
Jakub Zelenka |
Fix bug #60632: openssl_seal fails with AES
|
|
Revision tags: php-5.6.13, php-7.0.0RC2, php-5.5.29 |
|
| #
43b26c7b |
| 01-Sep-2015 |
Christoph M. Becker |
Fix #70395: Missing ARG_INFO for openssl_seal()
This patch adds the missing ARG_INFO for the optional 5th parameter $method.
|
|
Revision tags: php-5.4.45 |
|
| #
ad028ebc |
| 26-Aug-2015 |
Jakub Zelenka |
Use new range checks in openssl ext
|
| #
c39336d1 |
| 25-Aug-2015 |
Jakub Zelenka |
Fix bug #55259 (openssl extension does not get the DH parameters from DH key resource)
|
| #
7ad17034 |
| 20-Aug-2015 |
Jakub Zelenka |
Add overflow check for openssl_pkcs12_read
|
|
Revision tags: php-5.6.13RC1 |
|
| #
c3f0c875 |
| 19-Aug-2015 |
Jakub Zelenka |
Add overflow checks for openssl_pkey_* functions
|
| #
478ecc67 |
| 19-Aug-2015 |
Jakub Zelenka |
Move overflow checks in openssl_pbkdf2
|
| #
6a201b36 |
| 18-Aug-2015 |
Jakub Zelenka |
Use macros for openssl overflow checks
It reduces code duplications
|
|
Revision tags: php-7.0.0RC1 |
|
| #
618c327a |
| 18-Aug-2015 |
Jakub Zelenka |
Fix possible overflow in openssl_pbkdf2
Especially key_length would lead to the crash if it overflowed
to the negative value.
|
| #
c4a98e87 |
| 17-Aug-2015 |
Jakub Zelenka |
Check and use correct signature_len type for EVP_VerifyFinal
|
| #
f3abea9f |
| 16-Aug-2015 |
Jakub Zelenka |
Fix some int overflows in openssl
There might be more. I just did a quick check for enc/dec, rand
and one BN call.
|
|
Revision tags: php-5.6.12, php-5.5.28, php-7.0.0beta3, php-5.4.44 |
|
| #
16023f3e |
| 27-Jul-2015 |
Stanislav Malyshev |
Fix bug #70014 - use RAND_bytes instead of deprecated RAND_pseudo_bytes
|
|
Revision tags: php-5.6.12RC1, php-7.0.0beta2, php-7.0.0beta1, php-5.6.11, php-5.5.27, php-5.4.43 |
|
| #
b2812119 |
| 03-Jul-2015 |
Anatol Belski |
fix backport mistake
in 5.6 it has to be explicitly copied to avoid double free
|
| #
d870683d |
| 03-Jul-2015 |
Anatol Belski |
backport c01943bffc8b719e552d307f522820d50f783a4c into 5.6
|
| #
c01943bf |
| 03-Jul-2015 |
Anatol Belski |
fix improper behavior
openssl_spki_export() is documented to return string, but it's
obviously not achieved writing it to stdout :)
|
| #
4a2e40bb |
| 30-Jun-2015 |
Dmitry Stogov |
Use ZSTR_ API to access zend_string elements (this is just renaming without semantick changes).
|
| #
2ff3dafc |
| 25-Jun-2015 |
Tjerk Meesters |
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
Squashed commit of the following:
commit a64c1d9bc4c129fd946a478bdcb55101e42157b7
Au
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
Squashed commit of the following:
commit a64c1d9bc4c129fd946a478bdcb55101e42157b7
Author: Tomasz Sawicki <falundir@gmail.com>
Date: Wed Jun 24 08:49:37 2015 +0200
Fix #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
The "key values mismatch" error is triggered in openssl_pkcs12_read by
PKCS12_parse, because it uses X509_check_private_key to separate main
certificate (which corresponds to private key) from extra certificates.
Extra certificates usually comes first (p12 contents are reversed as
stack) and X509_check_private_key triggers X509_R_KEY_VALUES_MISMATCH
error.
The fix pops "key values mismatch" error from OpenSSL error stack for
each extra certificate if there are any.
show more ...
|
|
Revision tags: php-5.6.11RC1, php-5.5.27RC1, php-7.0.0alpha2 |
|
| #
5d3cf577 |
| 11-Jun-2015 |
Nikita Popov |
Make convert_to_* safe with rc>1
This only involves switching zval_dtor to zval_ptr_dtor for arrays
and making the convert_to_object for arrays a bit more generic.
All the other
Make convert_to_* safe with rc>1
This only involves switching zval_dtor to zval_ptr_dtor for arrays
and making the convert_to_object for arrays a bit more generic.
All the other changes outside zend_operators.c just make use of
this new ability (use COPY instead of DUP).
What's still missing: Proper references handling. I've seen many
convert_to* calls that will break when a reference is used.
Also fixes bug #69788.
show more ...
|
|
Revision tags: php-5.5.26, php-7.0.0alpha1, php-5.6.10, php-5.4.42, POST_PHP7_NSAPI_REMOVAL, PRE_PHP7_NSAPI_REMOVAL, php-5.6.10RC1, php-5.5.26RC1 |
|
| #
0c7634fc |
| 20-May-2015 |
Radu Brănișcan |
Corrected line comment 5256
From the text "dectupt" to "decrypt"
|
|
Revision tags: php-5.5.25, php-5.6.9, php-5.4.41 |
|
| #
c93a3606 |
| 09-May-2015 |
Anatol Belski |
fix _timezone usage for vc14
|
|
Revision tags: php-5.6.9RC1, php-5.5.25RC1, php-5.6.8, php-5.5.24, php-5.4.40, php-5.6.8RC1, php-5.5.24RC1 |
|
| #
321bafcc |
| 28-Mar-2015 |
Eric F |
Update openssl.c
Adding additional checks for sslv3.
|
| #
456f4a78 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
| #
1b2d58a3 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
| #
19360f38 |
| 23-Mar-2015 |
Anatol Belski |
cleanup mod version macros, round 3
|
|
Revision tags: php-5.6.7, php-5.5.23, php-5.4.39 |
|
| #
86336856 |
| 12-Mar-2015 |
Dmitry Stogov |
Use specialized macro for string zval creation
|
