- Year++

- Year++

MFB crypt fix

Avoiding strcpy, strcat, sprintf usage to make static analyzer happy

Avoiding strcpy, strcat, sprintf usage to make static analyzer happy

I'm pretty sure you didn't mean to multiple by the size of a char* there
since that makes no sense. output is an array of char, not an array of
char*
Pierre, please review

- blowfish 1.2 update, 2nd part

- blowfish 1.2 update, 2nd part

fix crypt() issue with overlong salt

Fix crypt_blowfish 8-bit chars problem (CVE-2011-2483), add tests

# See details at http://www.openwall.com/lists/announce/2011/06/21/1

- Year++

- Year++

- MFH

- Fixed bug #51435 (Missing ifdefs / logic bug in crypt code cause compile errors)

- Fixed bug #51435 (Missing ifdefs / logic bug in crypt code cause compile errors)

Don't assume the SHA-based crypt constants are registered
this is a partial fix for 51435.

- return *0/*1 on failure instead of FALSE, to avoid possible issues with bad user code

- Fix #51059, crypt can fail and return NULL, on almost all implementations

sed -i "s#1997-2009#1997-2010#g" **/*.c **/*.h **/*.php

- #50334, add CRYPT_SHA* constants and tests [DOC]

- #50334, crypt ignores sha512 and add support for sha256/512 to php's crypt [DOC]

MFH: Bump copyright year, 3 of 3.

MFH: initialize optional vars

MFH: shutdown crypt correctly and fix memleak in ZTS mode

-MFH:
- #45430, windows implementation of crypt is not TS
- add Blowfish (using implementation from Solar Designer <solar at openwal dot com>) and extended DES support
- Make crypt fea

-MFH:
- #45430, windows implementation of crypt is not TS
- add Blowfish (using implementation from Solar Designer <solar at openwal dot com>) and extended DES support
- Make crypt features portable:
- if no crypt_r, php's implemetation is used (all algo and TS), php can't be used with unsafe crypt anymore
- if one algo is missing, php's implemetation is used
- Windows always use php's implementation
- removed old code in windows/

show more ...