#
d4702916 |
| 06-Sep-2015 |
Jakub Zelenka |
Fix bug #60632: openssl_seal fails with AES
|
Revision tags: php-5.6.13, php-7.0.0RC2, php-5.5.29 |
|
#
43b26c7b |
| 01-Sep-2015 |
Christoph M. Becker |
Fix #70395: Missing ARG_INFO for openssl_seal() This patch adds the missing ARG_INFO for the optional 5th parameter $method.
|
Revision tags: php-5.4.45 |
|
#
ad028ebc |
| 26-Aug-2015 |
Jakub Zelenka |
Use new range checks in openssl ext
|
#
c39336d1 |
| 25-Aug-2015 |
Jakub Zelenka |
Fix bug #55259 (openssl extension does not get the DH parameters from DH key resource)
|
#
7ad17034 |
| 20-Aug-2015 |
Jakub Zelenka |
Add overflow check for openssl_pkcs12_read
|
Revision tags: php-5.6.13RC1 |
|
#
c3f0c875 |
| 19-Aug-2015 |
Jakub Zelenka |
Add overflow checks for openssl_pkey_* functions
|
#
478ecc67 |
| 19-Aug-2015 |
Jakub Zelenka |
Move overflow checks in openssl_pbkdf2
|
#
6a201b36 |
| 18-Aug-2015 |
Jakub Zelenka |
Use macros for openssl overflow checks It reduces code duplications
|
Revision tags: php-7.0.0RC1 |
|
#
618c327a |
| 18-Aug-2015 |
Jakub Zelenka |
Fix possible overflow in openssl_pbkdf2 Especially key_length would lead to the crash if it overflowed to the negative value.
|
#
c4a98e87 |
| 17-Aug-2015 |
Jakub Zelenka |
Check and use correct signature_len type for EVP_VerifyFinal
|
#
f3abea9f |
| 16-Aug-2015 |
Jakub Zelenka |
Fix some int overflows in openssl There might be more. I just did a quick check for enc/dec, rand and one BN call.
|
Revision tags: php-5.6.12, php-5.5.28, php-7.0.0beta3, php-5.4.44 |
|
#
16023f3e |
| 27-Jul-2015 |
Stanislav Malyshev |
Fix bug #70014 - use RAND_bytes instead of deprecated RAND_pseudo_bytes
|
Revision tags: php-5.6.12RC1, php-7.0.0beta2, php-7.0.0beta1, php-5.6.11, php-5.5.27, php-5.4.43 |
|
#
b2812119 |
| 03-Jul-2015 |
Anatol Belski |
fix backport mistake in 5.6 it has to be explicitly copied to avoid double free
|
#
d870683d |
| 03-Jul-2015 |
Anatol Belski |
backport c01943bffc8b719e552d307f522820d50f783a4c into 5.6
|
#
c01943bf |
| 03-Jul-2015 |
Anatol Belski |
fix improper behavior openssl_spki_export() is documented to return string, but it's obviously not achieved writing it to stdout :)
|
#
4a2e40bb |
| 30-Jun-2015 |
Dmitry Stogov |
Use ZSTR_ API to access zend_string elements (this is just renaming without semantick changes).
|
#
2ff3dafc |
| 25-Jun-2015 |
Tjerk Meesters |
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs Squashed commit of the following: commit a64c1d9bc4c129fd946a478bdcb55101e42157b7 Au
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs Squashed commit of the following: commit a64c1d9bc4c129fd946a478bdcb55101e42157b7 Author: Tomasz Sawicki <falundir@gmail.com> Date: Wed Jun 24 08:49:37 2015 +0200 Fix #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs The "key values mismatch" error is triggered in openssl_pkcs12_read by PKCS12_parse, because it uses X509_check_private_key to separate main certificate (which corresponds to private key) from extra certificates. Extra certificates usually comes first (p12 contents are reversed as stack) and X509_check_private_key triggers X509_R_KEY_VALUES_MISMATCH error. The fix pops "key values mismatch" error from OpenSSL error stack for each extra certificate if there are any.
show more ...
|
Revision tags: php-5.6.11RC1, php-5.5.27RC1, php-7.0.0alpha2 |
|
#
5d3cf577 |
| 11-Jun-2015 |
Nikita Popov |
Make convert_to_* safe with rc>1 This only involves switching zval_dtor to zval_ptr_dtor for arrays and making the convert_to_object for arrays a bit more generic. All the other
Make convert_to_* safe with rc>1 This only involves switching zval_dtor to zval_ptr_dtor for arrays and making the convert_to_object for arrays a bit more generic. All the other changes outside zend_operators.c just make use of this new ability (use COPY instead of DUP). What's still missing: Proper references handling. I've seen many convert_to* calls that will break when a reference is used. Also fixes bug #69788.
show more ...
|
Revision tags: php-5.5.26, php-7.0.0alpha1, php-5.6.10, php-5.4.42, POST_PHP7_NSAPI_REMOVAL, PRE_PHP7_NSAPI_REMOVAL, php-5.6.10RC1, php-5.5.26RC1 |
|
#
0c7634fc |
| 20-May-2015 |
Radu Brănișcan |
Corrected line comment 5256 From the text "dectupt" to "decrypt"
|
Revision tags: php-5.5.25, php-5.6.9, php-5.4.41 |
|
#
c93a3606 |
| 09-May-2015 |
Anatol Belski |
fix _timezone usage for vc14
|
Revision tags: php-5.6.9RC1, php-5.5.25RC1, php-5.6.8, php-5.5.24, php-5.4.40, php-5.6.8RC1, php-5.5.24RC1 |
|
#
321bafcc |
| 28-Mar-2015 |
Eric F |
Update openssl.c Adding additional checks for sslv3.
|
#
456f4a78 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
#
1b2d58a3 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
#
19360f38 |
| 23-Mar-2015 |
Anatol Belski |
cleanup mod version macros, round 3
|
Revision tags: php-5.6.7, php-5.5.23, php-5.4.39 |
|
#
86336856 |
| 12-Mar-2015 |
Dmitry Stogov |
Use specialized macro for string zval creation
|