| #
478ecc67 |
| 19-Aug-2015 |
Jakub Zelenka |
Move overflow checks in openssl_pbkdf2
|
| #
6a201b36 |
| 18-Aug-2015 |
Jakub Zelenka |
Use macros for openssl overflow checks
It reduces code duplications
|
| #
618c327a |
| 18-Aug-2015 |
Jakub Zelenka |
Fix possible overflow in openssl_pbkdf2
Especially key_length would lead to the crash if it overflowed
to the negative value.
|
| #
c4a98e87 |
| 17-Aug-2015 |
Jakub Zelenka |
Check and use correct signature_len type for EVP_VerifyFinal
|
| #
f3abea9f |
| 16-Aug-2015 |
Jakub Zelenka |
Fix some int overflows in openssl
There might be more. I just did a quick check for enc/dec, rand
and one BN call.
|
| #
16023f3e |
| 27-Jul-2015 |
Stanislav Malyshev |
Fix bug #70014 - use RAND_bytes instead of deprecated RAND_pseudo_bytes
|
| #
907476f3 |
| 05-Jul-2015 |
Aaron Piotrowski |
Convert E_ERROR to thrown Error in extensions
|
| #
b2812119 |
| 03-Jul-2015 |
Anatol Belski |
fix backport mistake
in 5.6 it has to be explicitly copied to avoid double free
|
| #
d870683d |
| 03-Jul-2015 |
Anatol Belski |
backport c01943bffc8b719e552d307f522820d50f783a4c into 5.6
|
| #
c01943bf |
| 03-Jul-2015 |
Anatol Belski |
fix improper behavior
openssl_spki_export() is documented to return string, but it's
obviously not achieved writing it to stdout :)
|
| #
4a2e40bb |
| 30-Jun-2015 |
Dmitry Stogov |
Use ZSTR_ API to access zend_string elements (this is just renaming without semantick changes).
|
| #
2ff3dafc |
| 25-Jun-2015 |
Tjerk Meesters |
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
Squashed commit of the following:
commit a64c1d9bc4c129fd946a478bdcb55101e42157b7
Au
Fixed #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
Squashed commit of the following:
commit a64c1d9bc4c129fd946a478bdcb55101e42157b7
Author: Tomasz Sawicki <falundir@gmail.com>
Date: Wed Jun 24 08:49:37 2015 +0200
Fix #69882: OpenSSL error "key values mismatch" after openssl_pkcs12_read with extra certs
The "key values mismatch" error is triggered in openssl_pkcs12_read by
PKCS12_parse, because it uses X509_check_private_key to separate main
certificate (which corresponds to private key) from extra certificates.
Extra certificates usually comes first (p12 contents are reversed as
stack) and X509_check_private_key triggers X509_R_KEY_VALUES_MISMATCH
error.
The fix pops "key values mismatch" error from OpenSSL error stack for
each extra certificate if there are any.
show more ...
|
| #
5d3cf577 |
| 11-Jun-2015 |
Nikita Popov |
Make convert_to_* safe with rc>1
This only involves switching zval_dtor to zval_ptr_dtor for arrays
and making the convert_to_object for arrays a bit more generic.
All the other
Make convert_to_* safe with rc>1
This only involves switching zval_dtor to zval_ptr_dtor for arrays
and making the convert_to_object for arrays a bit more generic.
All the other changes outside zend_operators.c just make use of
this new ability (use COPY instead of DUP).
What's still missing: Proper references handling. I've seen many
convert_to* calls that will break when a reference is used.
Also fixes bug #69788.
show more ...
|
| #
0c7634fc |
| 20-May-2015 |
Radu Brănișcan |
Corrected line comment 5256
From the text "dectupt" to "decrypt"
|
| #
c93a3606 |
| 09-May-2015 |
Anatol Belski |
fix _timezone usage for vc14
|
| #
321bafcc |
| 28-Mar-2015 |
Eric F |
Update openssl.c
Adding additional checks for sslv3.
|
| #
456f4a78 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
| #
1b2d58a3 |
| 27-Mar-2015 |
Leigh |
Add RAND_egd check for compiling against LibreSSL
|
| #
19360f38 |
| 23-Mar-2015 |
Anatol Belski |
cleanup mod version macros, round 3
|
| #
86336856 |
| 12-Mar-2015 |
Dmitry Stogov |
Use specialized macro for string zval creation
|
| #
0928bad9 |
| 06-Mar-2015 |
Daniel Lowrey |
Fixed bug #69197 (openssl_pkcs7_sign handles default value incorrectly)
|
| #
e892f538 |
| 05-Mar-2015 |
Daniel Lowrey |
Fix ZTS build
|
| #
94140afa |
| 05-Mar-2015 |
Daniel Lowrey |
Fix bug #67403 (Add signatureType to openssl_x509_parse)
|
| #
a39b1898 |
| 28-Feb-2015 |
Daniel Lowrey |
Misc updates/cleanup
|
| #
3ff36c26 |
| 28-Feb-2015 |
Daniel Lowrey |
Update for OpenSSL 1.0.2 compatibility
|
