Fix #50713: openssl_pkcs7_verify() may ignore untrusted CAs

Closes GH-12499

Fix GH-12489: Missing sigbio creation checking in openssl_cms_verify

Closes GH-12490

Add missing error check on PEM_write_bio_PKCS7()

Closes GH-10752.

Add missing error check on PEM_write_bio_CMS()

On failure, this function returns 0. 2 other callers of this function
already check the return value, but this one was missed.

Add missing error check on i2d_PKCS12_bio()

This function returns 0 on error and 1 on success. The error case was
not checked and the function therefore would've returned true.
The o

Add missing error check on i2d_PKCS12_bio()

This function returns 0 on error and 1 on success. The error case was
not checked and the function therefore would've returned true.
The only other caller of i2d_PKCS12_bio() in the file has
a correct error check.

Closes GH-10761.

show more ...

Revert "Merge branch 'PHP-8.0' into PHP-8.1"

This reverts commit 0116864cd312f9756f38a0ee0f83bb302a7e367b, reversing
changes made to 1f715f5658f5909a9346f56812fa605744d23880.

Revert "Make build work with newer OpenSSL"

This reverts commit 5f90134bb69a345c7edb5013e6461e84caa32dbc.

Make build work with newer OpenSSL

Fix GH-10000: Test failures when OpenSSL compiled with no-dsa

Fix GH-9064: PHP fails to build if openssl was built with no-ec

Fix GH-8430: OpenSSL compiled with old disgests does not build

Specifically no-md2, no-md4 or no-rmd160 were not supported

Fix GH-9339: OpenSSL oid_file path check warning contains uninitialized path

Merge branch 'PHP-8.0' into PHP-8.1

Fix bug #50293 and #81713: file path checking in OpenSSL functions

It introduces a single function to check file paths passed to OpenSSL
functions. It expands the path, check null bytes

Fix bug #50293 and #81713: file path checking in OpenSSL functions

It introduces a single function to check file paths passed to OpenSSL
functions. It expands the path, check null bytes and finally does
an open basedir check.

show more ...

Fixed bug #81502

Allow $tag to be null. This is the value that openssl_encrypt()
sets it to for non-AEAD ciphers, so we should also accept this
as an input to openssl_decrypt().

Fixed bug #81502

Allow $tag to be null. This is the value that openssl_encrypt()
sets it to for non-AEAD ciphers, so we should also accept this
as an input to openssl_decrypt().

Prior to PHP 8.1, null was accepted in weak mode due to the special
treatment of null arguments to internal functions.

show more ...

fix [-Wmaybe-uninitialized] build warnings

Switch default PKCS7/CMS cipher to AES-128-CBC

Switch default cipher for openssl_pkcs7_encrypt() and
openssl_cms_encrypt() from RC2-40 to AES-128-CBC.

The RC2-40 cipher is consi

Switch default PKCS7/CMS cipher to AES-128-CBC

Switch default cipher for openssl_pkcs7_encrypt() and
openssl_cms_encrypt() from RC2-40 to AES-128-CBC.

The RC2-40 cipher is considered insecure and is not loaded by
default in OpenSSL 3, which means that these functions will
always fail with default arguments.

As the used algorithm is embedded in the result (which makes this
different from the openssl_encrypt() case) changing the default
algorithm should be safe.

Closes GH-7357.

show more ...

implement openssl_256 and openssl_512 for phar singatures

Fix openssl memory leaks

Some leaks that snuck in during refactorings.

Use param API to create RSA key

Instead of deprecated low-level API.

A caveat here is that when using the high-level API, OpenSSL 3
requires that if the prime factors are set, t

Use param API to create RSA key

Instead of deprecated low-level API.

A caveat here is that when using the high-level API, OpenSSL 3
requires that if the prime factors are set, the CRT parameters
are also set. See https://github.com/openssl/openssl/issues/16271.

As such, add CRT parameters to the manual construction test.

This fixes the last deprecation warnings in openssl.c, but there
are more elsewhere.

show more ...

Add missing unsigned qualifier

This previously got lost in the deprecation warning noise.

Use param API for openssl_pkey_get_details()

Now that the DSA/DH/EC keys are not created using the legacy API,
we can fetch the details using the param API as well, and not
run into

Use param API for openssl_pkey_get_details()

Now that the DSA/DH/EC keys are not created using the legacy API,
we can fetch the details using the param API as well, and not
run into buggy priv_key handling.

show more ...

Extract public key portion via PEM roundtrip

The workaround with cloning the X509_REQ no longer works in
OpenSSL 3. Instead extract the public key portion by round
tripping through P

Extract public key portion via PEM roundtrip

The workaround with cloning the X509_REQ no longer works in
OpenSSL 3. Instead extract the public key portion by round
tripping through PEM.

show more ...

Use param API for creating EC keys

Rather than the deprecated low level APIs.

Extract EC key initialization