| #
0dadd661 |
| 12-May-2023 |
Eno <895183594@qq.com> |
Improve openssl ext to generate EC keys with custom EC parameters
This change extends supported parameter when generating EC keys.
Specifically following parameters are now supporte
Improve openssl ext to generate EC keys with custom EC parameters
This change extends supported parameter when generating EC keys.
Specifically following parameters are now supported: p, a, b, order,
generator, seed, cofactory, g_x, g_y, x, y and d.
Those parameters can be passed to ec field in openssl_pkey_new options.
It also fixes some issues openssl_pkey_get_details related to SM2
support.
Closes GH-9991
show more ...
|
| #
4d4b9604 |
| 10-Apr-2023 |
Florian Moser |
Fix GH-11054: Reset OpenSSL errors when using a PEM public key
The error happens when the PEM contains a public key, as it will be
first tried to be parsed as a certificate. The parsing
Fix GH-11054: Reset OpenSSL errors when using a PEM public key
The error happens when the PEM contains a public key, as it will be
first tried to be parsed as a certificate. The parsing as a certificate
fails, which then leads to a corresponding error tracked by PHP with
the next call to php_openssl_store_errors().
This change introduces an error marking to be able to reset the stored
errors to the state before trying the certificate.
Closes GH-11055
show more ...
|
| #
22c9e7e2 |
| 04-Mar-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Add missing error check on PEM_write_bio_PKCS7()
Closes GH-10752.
|
| #
51ea4a68 |
| 02-Mar-2023 |
nielsdos <7771979+nielsdos@users.noreply.github.com> |
Add missing error check on PEM_write_bio_CMS()
On failure, this function returns 0. 2 other callers of this function
already check the return value, but this one was missed.
|
| #
d2ef1561 |
| 03-Mar-2023 |
nielsdos <7771979+nielsdos@users.noreply.github.com> |
Add missing error check on i2d_PKCS12_bio()
This function returns 0 on error and 1 on success. The error case was
not checked and the function therefore would've returned true.
The o
Add missing error check on i2d_PKCS12_bio()
This function returns 0 on error and 1 on success. The error case was
not checked and the function therefore would've returned true.
The only other caller of i2d_PKCS12_bio() in the file has
a correct error check.
Closes GH-10761.
show more ...
|
| #
f13d541c |
| 28-Feb-2023 |
George Peter Banyard |
Fix GCC 12 compiler warnings (#10713)
* Fix -Wunused-but-set-variable compiler warning in ext/mysqli
* Fix -Wstrict-prototypes compiler warning in ext/mysqlnd
* Fix -Wstric
Fix GCC 12 compiler warnings (#10713)
* Fix -Wunused-but-set-variable compiler warning in ext/mysqli
* Fix -Wstrict-prototypes compiler warning in ext/mysqlnd
* Fix -Wstrict-prototypes compiler warning in ext/soap
* Fix -Wunused-but-set-variable compiler warning in ext/exif
However, this code looks really sketchy...
* Fix -Wstrict-prototypes compiler warning in ext/openssl
* Fix -Wstrict-prototypes compiler warning in ext/dba
Add void to our bundled libraries
* Refactor bundled BCMath library
Fix -Wdeprecated-non-prototype compiler warnings
Use bool instead of char/int
Cleanup some useless header includes
show more ...
|
| #
f0cfebc2 |
| 25-Feb-2023 |
Niels Dossche <7771979+nielsdos@users.noreply.github.com> |
Use zend_result where appropriate in ext/openssl
Remove dead code
s is always NULL, so the check is always false.
Closes GH-10704.
|
| #
0d011e46 |
| 16-Jan-2023 |
Dmitry Stogov |
Revert "Merge branch 'PHP-8.0' into PHP-8.1"
This reverts commit 0116864cd312f9756f38a0ee0f83bb302a7e367b, reversing
changes made to 1f715f5658f5909a9346f56812fa605744d23880.
|
| #
255e08ac |
| 03-Jan-2023 |
Gabriel Caruso |
Revert "Make build work with newer OpenSSL"
This reverts commit 5f90134bb69a345c7edb5013e6461e84caa32dbc.
|
| #
5f90134b |
| 19-Dec-2022 |
Stanislav Malyshev |
Make build work with newer OpenSSL
|
| #
500b28ad |
| 25-Nov-2022 |
Jakub Zelenka |
Fix GH-10000: Test failures when OpenSSL compiled with no-dsa
|
| #
ce572213 |
| 25-Nov-2022 |
Jakub Zelenka |
Fix GH-9064: PHP fails to build if openssl was built with no-ec
|
| #
3d90a24e |
| 24-Nov-2022 |
Jakub Zelenka |
Fix GH-9997: OpenSSL engine clean up segfault
|
| #
3e2184f7 |
| 22-Oct-2022 |
Jakub Zelenka |
Fix OpenSSL conflicting merge for compilation issue with old digests
|
| #
fa1b6ab5 |
| 22-Oct-2022 |
Jakub Zelenka |
Fix GH-8430: OpenSSL compiled with old disgests does not build
Specifically no-md2, no-md4 or no-rmd160 were not supported
|
| #
1ef65c1c |
| 17-Oct-2022 |
Jakub Zelenka |
Clean up OpenSSL engine list when OpenSSL 1.0.2 used
Attempt to fix GH-8620.
|
| #
a01dd9fe |
| 14-Sep-2022 |
Bob Weinand |
Revert "Port all internally used classes to use default_object_handlers"
This reverts commit 94ee4f9834743ca74f6c9653863273277ce6c61a.
The commit was a bit too late to be included i
Revert "Port all internally used classes to use default_object_handlers"
This reverts commit 94ee4f9834743ca74f6c9653863273277ce6c61a.
The commit was a bit too late to be included in PHP 8.2 RC1. Given it's a massive ABI break, we decide to postpone the change to PHP 8.3.
show more ...
|
| #
f126769a |
| 11-Sep-2022 |
Jakub Zelenka |
Fix bug GH-9517: Compilation error in openssl extension
|
|
Revision tags: php-8.2.0RC1, php-8.1.10, php-8.0.23 |
|
| #
94ee4f98 |
| 24-Aug-2022 |
Bob Weinand |
Port all internally used classes to use default_object_handlers
Signed-off-by: Bob Weinand <bobwei9@hotmail.com>
|
| #
35e2a25d |
| 18-Aug-2022 |
Jakub Zelenka |
Add openssl_cipher_key_length function
This function works in exactly the same way as openssl_cipher_iv_length
but for a key length. This is especially useful to make sure that the
r
Add openssl_cipher_key_length function
This function works in exactly the same way as openssl_cipher_iv_length
but for a key length. This is especially useful to make sure that the
right key length is provided to openssl_encrypt and openssl_decrypt.
In addtion the change also updates implementation of
openssl_cipher_iv_length and adds a test for it.
show more ...
|
| #
14079688 |
| 18-Aug-2022 |
Jakub Zelenka |
Implement FR #76935: OpenSSL chacha20-poly1305 AEAD support
This adds support for ChaCha20-Poly1305 AEAD algorithm so it is possible
to use it in the same way as AES GCM and other AEAD a
Implement FR #76935: OpenSSL chacha20-poly1305 AEAD support
This adds support for ChaCha20-Poly1305 AEAD algorithm so it is possible
to use it in the same way as AES GCM and other AEAD algorithms. This is
available in OpenSSL 1.1.0+.
show more ...
|
|
Revision tags: php-8.0.23RC1, php-8.1.10RC1, php-8.2.0beta3 |
|
| #
505e8d2a |
| 12-Aug-2022 |
Jakub Zelenka |
Fix GH-9310: SSL local_cert and local_pk do not respect open_basedir restriction
|
| #
84dcf578 |
| 15-Aug-2022 |
Jakub Zelenka |
Fix GH-9339: OpenSSL oid_file path check warning contains uninitialized path
|
|
Revision tags: php-8.2.0beta2, php-8.1.9, php-8.0.22 |
|
| #
60cc3763 |
| 26-Jul-2022 |
Christoph M. Becker |
Drop Windows specific implementation of openssl_random_pseudo_bytes()
Despite commit 69c3f8c[1] claiming otherwise, there is no need for any
Windows specific implementation here. Users
Drop Windows specific implementation of openssl_random_pseudo_bytes()
Despite commit 69c3f8c[1] claiming otherwise, there is no need for any
Windows specific implementation here. Users can use random_bytes(), if
they desire so.
[1] <https://github.com/php/php-src/commit/69c3f8cbbabf313b74fbd29bb2ed268ff7c3e9e1>
Closes GH-9153.
show more ...
|
| #
5d62cfbc |
| 27-Jul-2022 |
Christoph M. Becker |
Tweak openssl_random_pseudo_bytes() upper bound error message
As suggested by @guilliamxavier.
|
