Scott MacVicar
aadf59dfa4
Add PBKDF2 support via openssl()
...
Summary:
No easy way to put these in the hash extension since we don't really support optional
parameters to certain algorithms. Implemented in openssl for now since it has it already
and is pretty stable.
Only SHA1 is confirmed to work as an algorithm but openssl has a parameter so it can be
changed in the future.
Will backport to 5.4 potentially with Stas' approval.
Test Plan:
Ran newly added tests which came from RFC 6070
2012-06-11 15:59:58 -07:00
Scott MacVicar
bccd1e672f
Rename openssl_pkcs5_pbkdf2_hmac() to something that doesn't sound like a spell.
...
Summary:
Stas pointed out that this is named pretty poorly. Go for openssl_pbkdf2()
2012-06-11 15:41:41 -07:00
Scott MacVicar
b5b8ea1050
Add PBKDF2 support via openssl()
...
Summary:
No easy way to put these in the hash extension since we don't really support optional
parameters to certain algorithms. Implemented in openssl for now since it has it already
and is pretty stable.
Only SHA1 is confirmed to work as an algorithm but openssl has a parameter so it can be
changed in the future.
Will backport to 5.4 potentially with Stas' approval.
Test Plan:
Ran newly added tests which came from RFC 6070
2012-06-11 13:35:25 -07:00
Scott MacVicar
b481ebae55
Rename openssl_pkcs5_pbkdf2_hmac() to something that doesn't sound like a spell.
...
Summary:
Stas pointed out that this is named pretty poorly. Go for openssl_pbkdf2()
2012-06-11 12:38:54 -07:00
Felipe Pena
733aaf23b1
- Fixed build (PKCS5_PBKDF2_HMAC is from 1.0.0)
2012-06-11 14:08:38 -03:00
Scott MacVicar
32040b574e
Merge branch '5.4'
...
* 5.4:
Add PBKDF2 support via openssl()
2012-06-11 00:29:02 -07:00
Scott MacVicar
f4847efc5d
Add PBKDF2 support via openssl()
...
Summary:
No easy way to put these in the hash extension since we don't really support optional
parameters to certain algorithms. Implemented in openssl for now since it has it already
and is pretty stable.
Only SHA1 is confirmed to work as an algorithm but openssl has a parameter so it can be
changed in the future.
Will backport to 5.4 potentially with Stas' approval.
Test Plan:
Ran newly added tests which came from RFC 6070
2012-06-11 00:24:44 -07:00
Anatoliy Belsky
270a406ac9
Fix bug #61413 ext\openssl\tests\openssl_encrypt_crash.phpt fails 5.3 only
2012-04-24 14:05:35 +02:00
Anatoliy Belsky
40bbc7a1ed
Merge branch 'PHP-5.4'
...
* PHP-5.4:
Fix bug #61401 ext\openssl\tests\004.phpt fails
Fix bug #61404 ext\openssl\tests\021.phpt fails
Fix bug #61404 ext\openssl\tests\021.phpt fails
Fix bug #61448 intl tests fail with icu >= 4.8
2012-03-28 17:25:23 +02:00
Anatoliy Belsky
fa0d507923
Merge branch 'PHP-5.3' into PHP-5.4
...
* PHP-5.3:
Fix bug #61401 ext\openssl\tests\004.phpt fails
Fix bug #61404 ext\openssl\tests\021.phpt fails
Fix bug #61448 intl tests fail with icu >= 4.8
2012-03-28 17:13:16 +02:00
Anatoliy Belsky
bff8152565
Fix bug #61401 ext\openssl\tests\004.phpt fails
2012-03-28 17:11:58 +02:00
Anatoliy Belsky
b905167458
Fix bug #61404 ext\openssl\tests\021.phpt fails
2012-03-28 16:23:46 +02:00
Anatoliy Belsky
4c5b427124
Fix bug #61404 ext\openssl\tests\021.phpt fails
2012-03-28 16:15:36 +02:00
Anatoliy Belsky
bd7bb973b1
Fix bug #61404 ext\openssl\tests\021.phpt fails
2012-03-28 16:04:56 +02:00
Anatoliy Belsky
fe8494d781
Merge branch '5.4'
...
* 5.4:
Fix bug #61405 ext\openssl\tests\022.phpt fails
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 16:32:14 +02:00
Anatoliy Belsky
8d7a489b97
Merge branch '5.3' into 5.4
...
* 5.3:
Fix bug #61405 ext\openssl\tests\022.phpt fails
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 16:15:15 +02:00
Anatoliy Belsky
b638d3020c
Fix bug #61405 ext\openssl\tests\022.phpt fails
2012-03-27 16:07:59 +02:00
Anatoliy Belsky
e55718b091
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 16:07:59 +02:00
Anatoliy Belsky
7fdd35d697
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 16:07:25 +02:00
Anatoliy Belsky
686effc677
Merge branch '5.4'
...
* 5.4:
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 15:34:57 +02:00
Anatoliy Belsky
5f3ba55a3c
Merge branch '5.3' into 5.4
...
* 5.3:
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 15:27:20 +02:00
Anatoliy Belsky
5f6bed180e
Fix bug #61412 ext\openssl\tests\bug28382.phpt fails
2012-03-27 15:23:01 +02:00
Olivier DOUCET
ad832abba1
test for bug #61124
2012-02-25 13:27:57 +00:00
Olivier DOUCET
118dd43555
test for bug #61124
2012-02-25 13:27:57 +00:00
Olivier DOUCET
f14a1e0aed
test for bug #61124
2012-02-25 13:27:57 +00:00
Scott MacVicar
5ef66f2cf5
Fixed bug #61124 (Crash when decoding an invalid base64 encoded string).
2012-02-23 01:26:46 +00:00
Scott MacVicar
6c331093b4
Fixed bug #61124 (Crash when decoding an invalid base64 encoded string).
2012-02-23 01:26:46 +00:00
Scott MacVicar
f424fe8aed
Fixed bug #61124 (Crash when decoding an invalid base64 encoded string).
2012-02-23 01:26:46 +00:00
Christopher Jones
b0678ea229
Fix OpenSSL version-dependent diff. "Time Stamp signing" is not in openssl 0.9. Skip current test for 0.9. New test for 0.9 approved by Stas
2012-02-07 01:15:13 +00:00
Christopher Jones
73ccc0a5e9
Fix OpenSSL version-dependent diff. "Time Stamp signing" is not in openssl 0.9. Skip current test for 0.9. New test for 0.9 approved by Stas
2012-02-07 01:15:13 +00:00
Christopher Jones
df02fbae3e
Fix OpenSSL version-dependent diff. "Time Stamp signing" is not in openssl 0.9. Skip current test for 0.9. New test for 0.9 approved by Stas
2012-02-07 01:15:13 +00:00
Rasmus Lerdorf
f6f283c3e2
Another openssl test that is dependent on the openssl version. The output has
...
changed in more recent versions. Synch with newer output and consider changing
the test to only pick out the more stable fields instead of all of them.
2012-02-05 10:08:16 +00:00
Rasmus Lerdorf
8d5f83dde5
Another openssl test that is dependent on the openssl version. The output has
...
changed in more recent versions. Synch with newer output and consider changing
the test to only pick out the more stable fields instead of all of them.
2012-02-05 10:08:16 +00:00
Rasmus Lerdorf
38c3fd63e7
Another openssl test that is dependent on the openssl version. The output has
...
changed in more recent versions. Synch with newer output and consider changing
the test to only pick out the more stable fields instead of all of them.
2012-02-05 10:08:16 +00:00
Rasmus Lerdorf
60df9abf95
Need EXPECTF here, of course
2012-02-05 09:52:41 +00:00
Rasmus Lerdorf
db65a539a1
Need EXPECTF here, of course
2012-02-05 09:52:41 +00:00
Rasmus Lerdorf
e4fb44c8b6
Need EXPECTF here, of course
2012-02-05 09:52:41 +00:00
Rasmus Lerdorf
e24b6cdf56
Getting different hashes here. But this test isn't testing the hashes,
...
it is just making sure we actually get a hash and don't crash.
2012-02-05 09:50:14 +00:00
Rasmus Lerdorf
d99600ee4d
Getting different hashes here. But this test isn't testing the hashes,
...
it is just making sure we actually get a hash and don't crash.
2012-02-05 09:50:14 +00:00
Rasmus Lerdorf
f3a7ba75cf
Getting different hashes here. But this test isn't testing the hashes,
...
it is just making sure we actually get a hash and don't crash.
2012-02-05 09:50:14 +00:00
Rasmus Lerdorf
21c776850c
According to the reports on qa this test is failing the same way for everyone.
...
See: http://qa.php.net/reports/viewreports.php?version=5.3.10&test=%2Fext%2Fopenssl%2Ftests%2Fbug28382.phpt
I'm not sure if this is due to a change in the openssl library or in the extension, so perhaps the test
itself needs to change, but for now synch it with the new output and watch for failures.
2012-02-05 09:32:20 +00:00
Rasmus Lerdorf
ee19012eab
According to the reports on qa this test is failing the same way for everyone.
...
See: http://qa.php.net/reports/viewreports.php?version=5.3.10&test=%2Fext%2Fopenssl%2Ftests%2Fbug28382.phpt
I'm not sure if this is due to a change in the openssl library or in the extension, so perhaps the test
itself needs to change, but for now synch it with the new output and watch for failures.
2012-02-05 09:32:20 +00:00
Rasmus Lerdorf
a06e8ca56d
According to the reports on qa this test is failing the same way for everyone.
...
See: http://qa.php.net/reports/viewreports.php?version=5.3.10&test=%2Fext%2Fopenssl%2Ftests%2Fbug28382.phpt
I'm not sure if this is due to a change in the openssl library or in the extension, so perhaps the test
itself needs to change, but for now synch it with the new output and watch for failures.
2012-02-05 09:32:20 +00:00
Scott MacVicar
398c6e6d11
MFH r322485
...
Fix possible attack in SSL sockets with SSL 3.0 / TLS 1.0.
CVE-2011-3389
2012-01-26 05:15:57 +00:00
Scott MacVicar
96aa2eb234
Fix CVE-2011-3389. Possible attack on CBC mode with TLS 1.0.
...
See http://www.openssl.org/~bodo/tls-cbc.txt
The biggest reason for this mode being in SSL_OP_ALL was older versions
of IE (2002) talking to servers using OpenSSL.
Can hopefully get this into 5.4.
2012-01-20 05:31:53 +00:00
Felipe Pena
e4ca0ed09f
- Year++
2012-01-01 13:15:04 +00:00
Felipe Pena
8775a37559
- Year++
2012-01-01 13:15:04 +00:00
Felipe Pena
4e19825281
- Year++
2012-01-01 13:15:04 +00:00
Stanislav Malyshev
d705b11a1e
fix uninitialized var that may lead to crash
2011-12-26 02:16:37 +00:00
Stanislav Malyshev
2f15c1d717
fix uninitialized var that may lead to crash
2011-12-26 02:16:37 +00:00
Scott MacVicar
6c841dfda3
Add tests for OpenSSL crash.
2011-12-19 03:09:05 +00:00
Scott MacVicar
a020456d0b
Add tests for OpenSSL crash.
2011-12-19 03:09:05 +00:00
Scott MacVicar
c36926ba4c
Add tests for OpenSSL crash.
2011-12-19 03:09:05 +00:00
Scott MacVicar
095cbc48a8
Fix segfault in older versions of OpenSSL (before 0.9.8i)
2011-12-18 05:14:32 +00:00
Scott MacVicar
61f3d36ac1
Fix segfault in older versions of OpenSSL (before 0.9.8i)
2011-12-18 05:14:32 +00:00
Scott MacVicar
beda5efd41
Fix segfault in older versions of OpenSSL (before 0.9.8i)
2011-12-18 05:14:32 +00:00
Scott MacVicar
b69cfde570
Make sure that we set the strong crypto result to false as well as returning false.
2011-12-07 20:50:33 +00:00
Scott MacVicar
287e1917cf
Make sure that we set the strong crypto result to false as well as returning false.
2011-12-07 20:50:33 +00:00
Mateusz Kocielski
2c970a52e8
- Fixed NULL pointer dereference in stream_socket_enable_crypto, case when
...
ssl_handle of session_stream is not initialized.
2011-11-12 10:36:55 +00:00
Mateusz Kocielski
a9482367f8
- Fixed NULL pointer dereference in stream_socket_enable_crypto, case when
...
ssl_handle of session_stream is not initialized.
2011-11-12 10:36:55 +00:00
Mateusz Kocielski
aaa59efafc
Fixed NULL pointer dereference in stream_socket_enable_crypto, case when
...
ssl_handle of session_stream is not initialized.
2011-11-10 10:33:07 +00:00
Pierre Joye
2f3adeb083
- Revert r313616 (When we have a blocking SSL socket, respect the timeout
...
option, scottmac)
# This caused bug #55283 and #55848 , we should investigate a proper solution without
# breaking anything.
2011-10-05 05:20:51 +00:00
Pierre Joye
abf58318d2
- Revert r313616 (When we have a blocking SSL socket, respect the timeout
...
option, scottmac)
# This caused bug #55283 and #55848 , we should investigate a proper solution without
# breaking anything.
2011-10-05 05:20:51 +00:00
Gustavo André dos Santos Lopes
da4a27333d
- ext/openssl/tests/bug36732.phpt more portable.
2011-09-14 10:55:46 +00:00
Gustavo André dos Santos Lopes
4de9123b85
- ext/openssl/tests/bug36732.phpt more portable.
2011-09-14 10:55:46 +00:00
Gustavo André dos Santos Lopes
0a74551c26
- ext/openssl/tests/bug36732.phpt more portable.
2011-09-14 10:55:46 +00:00
Gustavo André dos Santos Lopes
428ef23067
- Fixed test ext/openssl/tests/004.phpt.
...
- Made ext/openssl/tests/bug55646.phpt more reproducible by giving it a custom
openssl.cnf.
2011-09-14 09:56:59 +00:00
Gustavo André dos Santos Lopes
8bf8989a4c
- Fixed test ext/openssl/tests/004.phpt.
...
- Made ext/openssl/tests/bug55646.phpt more reproducible by giving it a custom
openssl.cnf.
2011-09-14 09:56:59 +00:00
Gustavo André dos Santos Lopes
d7c7fe3587
- Test for bug #55646 .
2011-09-12 20:05:07 +00:00
Gustavo André dos Santos Lopes
b6aabaae59
- Test for bug #55646 .
2011-09-12 20:05:07 +00:00
Gustavo André dos Santos Lopes
1d5028be3d
- Fixed bug #55646 : textual data is returned in UTF-8, but is input in
...
another encoding. 5.4 only as this implies a BC break.
2011-09-12 17:23:10 +00:00
Gustavo André dos Santos Lopes
1fbf911905
- Fixed bug #55646 : textual data is returned in UTF-8, but is input in
...
another encoding. 5.4 only as this implies a BC break.
2011-09-12 17:23:10 +00:00
Hannes Magnusson
41db75ccbe
Fix the path to the .pem
2011-09-08 09:27:47 +00:00
Hannes Magnusson
cf11413db3
Fix the path to the .pem
2011-09-08 09:27:47 +00:00
Hannes Magnusson
7e986b2a46
Fix the path to the .pem
2011-09-08 09:27:47 +00:00
Johannes Schlüter
0d2a921916
- Revert r313616 (When we have a blocking SSL socket, respect the timeout
...
option, scottmac)
# This caused bug #55283 , we should investigate a proper solution without
# breaking anything.
2011-08-22 21:32:04 +00:00
Felipe Pena
23e438594d
- Make usage of new PHP_FE_END macro
2011-07-25 11:42:53 +00:00
Felipe Pena
4b30846b50
- Make usage of new PHP_FE_END macro
2011-07-25 11:35:02 +00:00
Felipe Pena
da376383e8
- Make usage of new PHP_FE_END macro
2011-07-25 11:35:02 +00:00
Scott MacVicar
04c2df66a3
When we have a blocking SSL socket, respect the timeout option.
...
reading from SSL sockets could block indefinitely due to the lack
of timeout
2011-07-23 01:29:44 +00:00
Scott MacVicar
ebbb2b1df1
When we have a blocking SSL socket, respect the timeout option.
...
reading from SSL sockets could block indefinitely due to the lack
of timeout
2011-07-23 01:29:44 +00:00
Scott MacVicar
39988d1263
When we have a blocking SSL socket, respect the timeout option.
...
reading from SSL sockets could block indefinitely due to the lack
of timeout
2011-07-23 01:29:44 +00:00
Ryan Biesemeyer
5dc5c26a5f
removing openssl test for bug #55169 per Scott MacVicar's request; duplicate coverage of opensssl_random_pseudo_bytes.phpt
2011-07-20 21:25:39 +00:00
Ryan Biesemeyer
530311f4ba
removing openssl test for bug #55169 per Scott MacVicar's request; duplicate coverage of opensssl_random_pseudo_bytes.phpt
2011-07-20 21:25:39 +00:00
Ryan Biesemeyer
ce771a2883
removing openssl test for bug #55169 per Scott MacVicar's request; duplicate coverage of opensssl_random_pseudo_bytes.phpt
2011-07-20 21:25:39 +00:00
Ryan Biesemeyer
7acdad749c
update test for bug #55169 , fix skipif
2011-07-20 21:13:03 +00:00
Ryan Biesemeyer
386abb9f5a
update test for bug #55169 , fix skipif
2011-07-20 21:13:03 +00:00
Ryan Biesemeyer
7b21ee9b3f
update test for bug #55169 , fix skipif
2011-07-20 21:13:03 +00:00
Ryan Biesemeyer
74d6fe4f00
update test for bug #55169 , don't require the extension in INI
2011-07-20 20:57:17 +00:00
Ryan Biesemeyer
08cab10dc9
update test for bug #55169 , don't require the extension in INI
2011-07-20 20:57:17 +00:00
Ryan Biesemeyer
2ac4cd97c8
update test for bug #55169 , don't require the extension in INI
2011-07-20 20:57:17 +00:00
Ryan Biesemeyer
292abd1240
tests for bug #55169 (mcrypt and openssl)
2011-07-20 18:59:05 +00:00
Ryan Biesemeyer
cd6f4bcf8d
tests for bug #55169 (mcrypt and openssl)
2011-07-20 18:59:05 +00:00
Ryan Biesemeyer
80cff0c0e9
tests for bug #55169 (mcrypt and openssl)
2011-07-20 18:59:05 +00:00
Pierre Joye
b03817afb5
- re apply the rng change specific to windows, long term it should be a std function but as this function was badly introduced in the 1st place, we have to fix the bad things here instead, pls do not revert again, bad idea.
2011-07-19 23:01:41 +00:00
Pierre Joye
69c3f8cbba
- re apply the rng change specific to windows, long term it should be a std function but as this function was badly introduced in the 1st place, we have to fix the bad things here instead, pls do not revert again, bad idea.
2011-07-19 23:01:41 +00:00
Scott MacVicar
591e0e446f
Revert change to use a special Windows version of openssl_random_pseudo_bytes().
...
Lets discuss this on internals first. We're advertising something from the OpenSSL library
and then subverting it with another Windows OS call.
What are the implications of this? Should we make this available in ext/standard/ instead?
2011-07-19 22:29:55 +00:00
Scott MacVicar
25fb19764a
Revert change to use a special Windows version of openssl_random_pseudo_bytes().
...
Lets discuss this on internals first. We're advertising something from the OpenSSL library
and then subverting it with another Windows OS call.
What are the implications of this? Should we make this available in ext/standard/ instead?
2011-07-19 22:29:55 +00:00
Scott MacVicar
946456425e
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
Scott MacVicar
64a0c79a07
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
Scott MacVicar
02581a0052
openssl_encrypt() / openssl_decrypt() were flawed and truncated the key to the default size for the case of a variable key length cipher.
...
The result is a key of 448 bits being passed to the blowfish algorithm would be truncated to 128 bit.
Also fixed an error in the zend_parse_parameters() having an invalid character being used.
2011-07-19 22:15:56 +00:00
Pierre Joye
8278f831a5
- use php_win32_get_random_bytes instead of over slow and partially wrong openssl's version
2011-07-10 14:59:33 +00:00
Pierre Joye
5fb2570742
- use php_win32_get_random_bytes instead of over slow and partially wrong openssl's version
2011-07-10 14:59:33 +00:00
Pierre Joye
ccae79a2c3
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
Pierre Joye
3c8bd9ebb6
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
Pierre Joye
104cd28e95
- did I not kill that already? (do not use rand_screen, pointless on server and not TS)
2011-06-16 13:06:41 +00:00
Felipe Pena
ddd88ff93c
- Fixed bug #55028 (// is abad comment)
2011-06-10 22:48:36 +00:00
Felipe Pena
15f5dd5cb3
- Fixed bug #55028 (// is abad comment)
2011-06-10 22:48:36 +00:00
Felipe Pena
0e37aa144f
- Fixed bug #55028 (// is abad comment)
2011-06-10 22:48:36 +00:00
Gustavo André dos Santos Lopes
cd7681d273
- Fixed bug #54992 : Stream not closed and error not returned when SSL CN_match
...
fails.
2011-06-08 00:23:02 +00:00
Gustavo André dos Santos Lopes
c27079d9e0
- Fixed bug #54992 : Stream not closed and error not returned when SSL CN_match
...
fails.
2011-06-08 00:23:02 +00:00
Gustavo André dos Santos Lopes
2b72c6e7df
- Fixed bug #54992 : Stream not closed and error not returned when SSL CN_match
...
fails.
2011-06-08 00:23:02 +00:00
Felipe Pena
32b5f8a1a3
- Added new parameter parsing option (p - for valid path (string without null byte in the middle))
...
# The tests will be fixed in the next commits
2011-06-06 21:28:16 +00:00
Felipe Pena
4737910b69
- Added new parameter parsing option (p - for valid path (string without null byte in the middle))
...
# The tests will be fixed in the next commits
2011-06-06 21:28:16 +00:00
Scott MacVicar
30f19bd524
Allow management of your own padding in openssl_encrypt/decrypt.
...
For using mcrypt / openssl interchangeabley managing your own padding is the only solution.
2011-05-20 18:56:13 +00:00
Scott MacVicar
9e7ae3b2d0
Allow management of your own padding in openssl_encrypt/decrypt.
...
For using mcrypt / openssl interchangeabley managing your own padding is the only solution.
2011-05-20 18:56:13 +00:00
Martin Jansen
1a4897c88e
MFH: The project calls itself OpenSSL and not openSSL, so let's keep it
...
that way in our code as well.
2011-04-25 16:51:12 +00:00
Martin Jansen
0c8438462c
The project calls itself OpenSSL and not openSSL, so let's keep it
...
that way in our code as well.
2011-04-25 16:50:30 +00:00
Rasmus Lerdorf
be3d70df4e
SSLV2 patch cleanup
2011-04-24 23:27:48 +00:00
Rasmus Lerdorf
380c3e5127
SSLV2 patch cleanup
2011-04-24 23:27:48 +00:00
Rasmus Lerdorf
e575557612
Support for openssl without SSLv2 supprot compiled in. Distros are starting to
...
remove support now and this wasn't compiling anymore on my Debian dev box.
2011-04-24 20:47:22 +00:00
Rasmus Lerdorf
f1806e67e6
Support for openssl without SSLv2 supprot compiled in. Distros are starting to
...
remove support now and this wasn't compiling anymore on my Debian dev box.
2011-04-24 20:47:22 +00:00
Raphael Geissert
a286fa3523
Add the libraries we actually test and need for LDAP and OpenSSL, fixes bug #53339
...
Patch by Clint Byrum
2011-03-18 18:47:09 +00:00
Raphael Geissert
5b55a18622
Add the libraries we actually test and need for LDAP and OpenSSL, fixes bug #53339
...
Patch by Clint Byrum
2011-03-18 18:47:09 +00:00
Pierre Joye
00b10c6aa3
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:50:26 +00:00
Pierre Joye
32c4a3a061
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:50:26 +00:00
Pierre Joye
69ba87b183
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:47:38 +00:00
Pierre Joye
f922e31129
- fix bug #54061 , memory leak in openssl_decrypt
2011-02-21 12:47:38 +00:00
Pierre Joye
7deec592fd
- fix test 025
2011-02-21 10:09:50 +00:00
Pierre Joye
b526a6ef44
- fix bug #54060 , memory leak in openssl_encrypt
2011-02-21 10:07:31 +00:00
Pierre Joye
5261861d77
- fix bug #54060 , memory leak in openssl_encrypt
2011-02-21 10:07:31 +00:00
Felipe Pena
927bf09c29
- Year++
2011-01-01 02:19:59 +00:00
Felipe Pena
0203cc3d44
- Year++
2011-01-01 02:17:06 +00:00
Gustavo André dos Santos Lopes
cd34d68cdd
- Fixed bug #53592 (stream_socket_enable_crypto() busy-waits in client mode).
...
- Fixed stream_socket_enable_crypto() not honoring the socket timeout in
server mode.
2010-12-23 01:44:54 +00:00
Gustavo André dos Santos Lopes
063393f29b
- Fixed bug #53592 (stream_socket_enable_crypto() busy-waits in client mode).
...
- Fixed stream_socket_enable_crypto() not honoring the socket timeout in
server mode.
2010-12-23 01:44:54 +00:00
Adam Harvey
e87fbccfd8
MFH: implement FR #53447 (Cannot disable SessionTicket extension for servers
...
that do not support it). Includes Tony's subsequent commit to fix a segfault.
2010-12-13 08:29:44 +00:00
Antony Dovgal
3722811395
make sure the stream context is present before looking for any options
...
and fix segfault
2010-12-04 21:54:20 +00:00
Adam Harvey
18ec6dae2c
Implemented FR #53447 (Cannot disable SessionTicket extension for servers that
...
do not support it).
I haven't written a test due to the need for such a test to have a HTTPS server
available which mishandles SessionTicket requests; it's likely that server
administrators will gradually fix this either intentionally or through OpenSSL
upgrades. That said, if there's a great clamoring for a test, I'll work one up.
2010-12-03 09:34:35 +00:00
Pierre Joye
3fd615cc8d
- not TS and useless on server, also not required anymore with the supported windows versions
2010-12-02 11:37:43 +00:00
Pierre Joye
cd62a70863
- not TS and useless on server, also not required anymore with the supported windows versions
2010-12-02 11:37:43 +00:00
Pierre Joye
ce96fd6b07
- fix #39863 , do not accept paths with NULL in them. See http://news.php.net/php.internals/50191 , trunk will have the patch later (adding a macro and/or changing (some) APIs. Patch by Rasmus
2010-11-18 15:22:22 +00:00
Felipe Pena
6e8c2ba690
- Fixed bug #53136 (Invalid read on openssl_csr_new())
2010-11-12 23:34:03 +00:00
Felipe Pena
c095bec250
- Fixed bug #53136 (Invalid read on openssl_csr_new())
2010-11-12 23:34:03 +00:00
Adam Harvey
db633fb71d
Fix vim marker folds.
2010-10-13 09:23:39 +00:00
Adam Harvey
86944b47a6
Fix vim marker folds.
2010-10-13 09:23:39 +00:00
Ilia Alshanetsky
a4252ab2be
Fixed extrenous warning inside openssl_encrypt() for cases where iv not provided, but algo does not require an iv
2010-10-07 12:32:00 +00:00
Ilia Alshanetsky
412d151681
Fixed extrenous warning inside openssl_encrypt() for cases where iv not provided, but algo does not require an iv
2010-10-07 12:32:00 +00:00
Felipe Pena
a5459c09c9
- Fixed bug #52947 (segfault when ssl stream option capture_peer_cert_chain used)
2010-09-29 01:25:35 +00:00
Felipe Pena
2d8a4ea299
- Fixed bug #52947 (segfault when ssl stream option capture_peer_cert_chain used)
2010-09-29 01:25:35 +00:00
Pierre Joye
aa0ed267a2
- use TSRMLS_*C instead of TSRMLS_FETCH in zend_list_insert
2010-09-16 09:13:19 +00:00
Felipe Pena
80926568f1
- Fixed bug #52183 (Reflectionfunction reports invalid number of arguments for function aliases)
2010-06-26 16:03:39 +00:00
Felipe Pena
e64734f986
- Fixed bug #52183 (Reflectionfunction reports invalid number of arguments for function aliases)
2010-06-26 16:03:39 +00:00
Pierre Joye
276f9a8678
- #48632 , ssl AES support
2010-06-21 08:47:25 +00:00
Pierre Joye
6ee4060bfa
- #45808 , stream_socket_enable_crypto() blocks and eats CPU
2010-06-20 16:33:16 +00:00
Pierre Joye
abde405f1d
- #45808 , stream_socket_enable_crypto() blocks and eats CPU
2010-06-20 16:33:16 +00:00
Antony Dovgal
797bb31e24
fix ZTS build
2010-05-20 11:20:44 +00:00
Antony Dovgal
4463284456
fix ZTS build
2010-05-20 11:20:44 +00:00
Sara Golemon
2655e63e10
MFH: Add IV to openssl_(en|de)crypt()
...
Add openssl_cipher_iv_length()
2010-05-19 21:18:16 +00:00
Sara Golemon
340d57b13a
Add parameter to openssl_(en|de)crypt
2010-05-19 20:05:09 +00:00
Ilia Alshanetsky
5d9b0a4a6f
Removed double allocation of buffer inside openssl_random_pseudo_bytes() and cleanup code
2010-05-11 14:31:00 +00:00
Ilia Alshanetsky
c7a553a7fb
Removed double allocation of buffer inside openssl_random_pseudo_bytes() and cleanup code
2010-05-11 14:31:00 +00:00
Rob Richards
0a34d10783
revert change #298288 : Remove old dsp/dsw/makefile files
2010-04-28 14:41:51 +00:00
Kalle Sommer Nielsen
dd8e59da8f
Removed safe_mode
...
* Removed ini options, safe_mode*
* Removed --enable-safe-mode --with-exec-dir configure options on Unix
* Updated extensions, SAPI's and core
* php_get_current_user() is now declared in main.c, thrus no need to include safe_mode.h anymore
2010-04-26 23:53:30 +00:00
Andrey Hristov
af6dd192b3
Fix for bug #51647 Certificate file without private key (pk in another file) doesn't work
2010-04-23 13:54:40 +00:00
Andrey Hristov
e9f9f66f2e
Fix for bug #51647 Certificate file without private key (pk in another file) doesn't work
2010-04-23 13:54:40 +00:00
Felipe Pena
a5142d18cb
- Fixed compiler warnings
2010-04-23 13:32:03 +00:00
Felipe Pena
6a1ad16066
- Fixed compiler warnings
2010-04-23 13:32:03 +00:00
Antony Dovgal
4646062956
fix typo
2010-04-22 16:00:45 +00:00
Antony Dovgal
c996aea40d
revert most of the Andrey's patch that causes segfaults
...
(as agreed with Pierre)
2010-04-22 15:59:44 +00:00
Antony Dovgal
a15efa6979
revert most of the Andrey's patch that causes segfaults
...
(as agreed with Pierre)
2010-04-22 15:59:44 +00:00
Antony Dovgal
a1f753c8e3
initialize variable. this code still segfaults in OpenSSL, no idea why
2010-04-22 11:56:08 +00:00
Antony Dovgal
64a97ee663
initialize variable. this code still segfaults in OpenSSL, no idea why
2010-04-22 11:56:08 +00:00
Kalle Sommer Nielsen
518a17e7bf
Remove old dsp/dsw/makefile files, these arent used by the build system anymore and are barely updated nor available for all extensions
2010-04-21 23:36:49 +00:00
Antony Dovgal
9c97c26832
fix infinite loop in the test
2010-04-20 10:04:26 +00:00
Antony Dovgal
f151e24218
fix infinite loop in the test
2010-04-20 10:04:26 +00:00
Andrey Hristov
dd9fc198ce
Fix for bug#49234 method not found ssl_set
...
Patch was tested and compiles on Windows. (Thanks Kalle)
2010-04-15 11:01:30 +00:00
Andrey Hristov
c04f752625
Fix for bug#49234 method not found ssl_set
...
Patch was tested and compiles on Windows. (Thanks Kalle)
2010-04-15 11:01:30 +00:00
Kalle Sommer Nielsen
7ef4cdf471
Remove a couple TSRMLS_FETCH() calls around ext/main/sapi
2010-04-13 11:02:15 +00:00
Ilia Alshanetsky
eb1dc0babf
Fixed bug #50859 (build fails with openssl 1.0 due to md2 deprecation)
2010-01-27 12:55:01 +00:00
Sebastian Bergmann
9ba1e81665
sed -i "s#1997-2009#1997-2010#g" **/*.c **/*.h **/*.php
2010-01-03 09:23:27 +00:00
Arnaud Le Blanc
7c0803a8ca
merge from trunk: openssl sni support (rev 289831)
2009-11-30 13:31:53 +00:00
Guenter Knauf
04448f215b
added timezone define for NetWare.
2009-11-03 21:26:39 +00:00
Felipe Pena
361d6789f1
- Fixed memory leak in openssl_pkcs12_export_to_file()
2009-10-27 21:37:03 +00:00
Dmitry Stogov
bb81ef5d71
Fixed test (it failed from time to time because of very small timeouts)
2009-09-22 10:15:10 +00:00
Ilia Alshanetsky
62d78d7ccc
Fixed certificate validation inside php_openssl_apply_verification_policy
2009-09-14 12:50:30 +00:00
Sriram Natarajan
ac2d3990f2
- Fixed bug #49447 (php engine need to correctly check for socket API
...
return status on windows). (Sriram Natarajan)
2009-09-04 07:59:48 +00:00
Mikko Koppanen
e4c11010f1
Fixes a memory leak in ssl streams. The context was not properly freed
2009-08-22 02:31:23 +00:00
Jani Taskinen
96a053288f
- Fixed compile failure with older openssl libs (< 0.9.8), fixes bug #49012
2009-07-30 11:32:08 +00:00
Sriram Natarajan
34d8ee27cc
- 48182 ssl handshake fails during asynchronous socket connection
2009-07-28 19:28:08 +00:00
Pierre Joye
f37fabb803
- #48116 , restore 0.x compability, thx config.cache.
2009-07-06 23:26:23 +00:00
Pierre Joye
c82245dea7
- #48116 , fix build against openssl 1.0
2009-07-06 23:02:18 +00:00
Mikko Koppanen
8e0a3c21a3
MFH: Closes #47991 SSL streams fail if error stack contains items
2009-04-20 09:44:29 +00:00
Pierre Joye
012cd06023
- MFB: better test case, it crashes on more architecture
2009-03-30 18:06:50 +00:00
Scott MacVicar
0570455374
MFH Add test for bug #47828
2009-03-30 09:17:57 +00:00
Scott MacVicar
04566e106a
MFH Fix bug #47828 - Converting to UTF-8 can sometimes fail, check error codes and avoid segfault.
2009-03-29 23:32:34 +00:00
Sebastian Bergmann
08659c2dcd
MFH: Bump copyright year, 3 of 3.
2008-12-31 11:15:49 +00:00
Scott MacVicar
15a212b259
MFH Fix bug #46748 , segfault when SSL has more than one error message.
2008-12-08 11:54:22 +00:00
Pierre Joye
d316c3e0d1
- MFB: fix title
2008-11-18 02:03:38 +00:00
Pierre Joye
d543e3d987
- #41033 , enable signing with DSA keys
2008-11-18 01:56:12 +00:00
Scott MacVicar
4525c2d41e
Missed test for previous commit
2008-11-17 21:54:47 +00:00
Scott MacVicar
1858b25407
MFH Add openssl_random_pseudo_bytes() in order to expose access to a PRG, this wraps around whatever the OS provides.
...
- OpenBSD uses arc4random()
- Windows uses the Windows Crypto API
- FreeBSD, Linux, etc use /dev/random or /dev/urandom if available
[DOC]
2008-11-17 21:54:25 +00:00
Felipe Pena
fc2fb50d09
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-11-17 11:28:01 +00:00
Pierre Joye
df3dc8d974
- MFB: skip if pcntl is not present
2008-11-16 23:22:43 +00:00
Pierre Joye
569a48922e
- MFH: #46127 , php_openssl_tcp_sockop_accept forgets to set context on accepted stream
2008-11-16 23:14:12 +00:00
Felipe Pena
7a37fa2d6b
- Revert ZEND_BEGIN_ARG_INFO change
2008-11-02 21:19:39 +00:00
Ilia Alshanetsky
8bd2943877
Fixed compiler warning
2008-10-26 14:35:41 +00:00
Felipe Pena
df10005563
- MFH: Added 'static' into ZEND_BEGIN_ARG_INFO_EX macro
2008-10-24 14:35:40 +00:00
Arnaud Le Blanc
1d5ba8bb21
MFH: initialize optional vars
2008-10-21 23:39:15 +00:00
Ilia Alshanetsky
7b57c9e6e1
Fixed bug #46271 (local_cert option is not resolved to full path)
2008-10-14 23:38:41 +00:00
Rob Richards
2e4989cc50
MFH: initialize keyresource
2008-09-30 14:41:49 +00:00
Scott MacVicar
ba2f507871
MFH: Show the library version currently loaded as well as the version the extension was compiled with. Useful for checking PHP is using the latest version.
2008-09-18 16:09:19 +00:00
Ilia Alshanetsky
4c6db91b87
Fixed bug #45382 (timeout bug in stream_socket_enable_crypto).
2008-09-11 23:56:43 +00:00
Antony Dovgal
8127bc0d6b
fix folding
2008-07-30 11:59:05 +00:00
Henrique do Nascimento Angelo
158239004e
New tests
2008-07-18 23:52:01 +00:00
Antony Dovgal
56ba1f9e80
fix test
2008-07-15 09:14:28 +00:00
Henrique do Nascimento Angelo
0890b92f86
Fix error message
2008-07-15 03:20:44 +00:00
Henrique do Nascimento Angelo
d3538f427a
Fix uninitilized variables in openssl_pkcs7_encrypt() and openssl_pkcs7_sign()
2008-07-15 02:59:56 +00:00
Henrique do Nascimento Angelo
8e2248c8b1
Fix segfault caused by openssl_pkey_new() in ext/openssl/tests/006.phpt
2008-07-15 02:43:30 +00:00
Antony Dovgal
cf7e15c3a0
MFH: manage references of stream context properly
2008-07-11 10:25:15 +00:00
Henrique do Nascimento Angelo
4776dfb296
Fix a memory leak on openssl_decrypt()
2008-06-28 09:17:39 +00:00
Hannes Magnusson
0f6e76e502
fix arginfo and proto
2008-06-01 18:24:38 +00:00
Hannes Magnusson
e610609556
Add arginfo & fix protos
2008-06-01 17:54:02 +00:00
Etienne Kneuss
94697acff9
MFH: Fix protos
2008-05-04 21:17:33 +00:00
Hannes Magnusson
72080950ab
Fixed bug#44716 (Progress notifications incorrect)
2008-04-14 12:16:07 +00:00
Joe Orton
c3474b9116
MFH: Fixed bug #32979 (OpenSSL stream->fd casts broken in 64-bit build)
...
(stotty at tvnet dot hu)
MFH: Fix another case of a broken stream->fd cast in 64-bit builds.
2008-04-04 13:02:48 +00:00
Antony Dovgal
e96d5501f8
MFH: initialize variable
2008-04-02 14:35:29 +00:00
Felipe Pena
84a8bb038a
MFH: New way for check void parameters
2008-03-10 22:15:36 +00:00
Rob Richards
de777461c5
MFH: fix memleak in sign and verify functions
2008-01-15 15:12:47 +00:00
Rob Richards
3aa9268976
MFH: fix crash when using default algorithm
2008-01-09 16:47:25 +00:00
Sebastian Bergmann
d1dded8751
MFH: Bump copyright year, 2 of 2.
2007-12-31 07:17:19 +00:00
Jani Taskinen
f552f91618
MFH: - Fixed bug #43137 (rmdir() and rename() do not clear statcache)
2007-10-31 13:22:45 +00:00
Nuno Lopes
887d439404
use FREE_ZVAL() instead of free() to free a zval
2007-09-29 11:24:05 +00:00
Nuno Lopes
e029a0ee59
fix a few compiler warnings (mostly use of unitialized values)
2007-09-29 11:18:42 +00:00
Dmitry Stogov
6c810b0d4c
Improved memory usage by movig constants to read only memory. (Dmitry, Pierre)
2007-09-27 18:00:48 +00:00
Dmitry Stogov
65741beb79
MFH: Improved ext/openssl
...
. Added support for OpenSSL digest functions
. Added support for OpenSSL cipher functions
. Added access to internal values of DSA, RSA and DH keys
2007-09-27 08:46:00 +00:00
Pierre Joye
e507b4c4ce
- fix regression introduced with #42222 (thx to tony and mattias for the
...
head up)
2007-08-08 06:29:46 +00:00
Pierre Joye
455cd3d837
- #42222 , forgot this one (thanks mattias)
2007-08-06 19:49:45 +00:00
Pierre Joye
bca0912296
- #42222 , truncate the _default to the buffer size (was 200 since day #1 , we don't need dynamic alloc here)
2007-08-06 19:11:20 +00:00
Dmitry Stogov
1ad841d53a
mproced openssl_x509_parse() to return extensions in readable form
2007-07-11 12:18:14 +00:00
Dmitry Stogov
f765f73e5f
Fixed memory leak
2007-07-11 07:36:12 +00:00
Dmitry Stogov
2821378c33
Fixed crash on non-string passphrase
2007-07-11 07:26:52 +00:00
Ilia Alshanetsky
921294e0d7
Fixed bug #41770 (SSL: fatal protocol error due to buffer issues).
2007-07-02 16:42:10 +00:00
Ilia Alshanetsky
e2b093bfcb
Fixed a memory leak inside load_all_certs_file()
2007-06-19 22:09:49 +00:00
Antony Dovgal
df057bf78d
fix test names
2007-05-30 15:40:26 +00:00
Pierre Joye
f2e130c145
- add missing cert (thx Tony)
2007-05-30 15:16:31 +00:00
Antony Dovgal
97e9bd1da0
fix test names
2007-05-28 20:03:54 +00:00
Pierre Joye
b49e70f946
- MFH:
...
- tests for #39217
- skip test if openssl is too old
2007-05-28 13:55:30 +00:00
Ilia Alshanetsky
d2ec6b60da
Fixed bug #41236 (Regression in timeout handling of non-blocking SSL
...
connections during reads and writes).
2007-05-27 17:05:51 +00:00
Pierre Joye
26e22f34fa
- #41423 . PHP assumes wrongly that certain ciphers are enabled in OpenSSL
2007-05-19 22:05:08 +00:00
Ilia Alshanetsky
f752fd4836
Fixed bug #41353 (crash in openssl_pkcs12_read() on invalid input).
2007-05-13 17:37:32 +00:00
Rob Richards
3530b8a2c6
fix win32 build
2007-04-05 18:08:42 +00:00
Pierre Joye
e3bc12631b
- MFB: import the right data 005_crt.txt
2007-04-05 09:38:45 +00:00
Pierre Joye
1ace1904e4
- MFH: add missing data for 005.phpt
2007-04-05 09:00:07 +00:00
Antony Dovgal
e0318e21fb
fix test
2007-04-05 07:23:56 +00:00
Antony Dovgal
90a277d0ce
fix ZTS build
2007-04-05 07:10:07 +00:00
Pierre Joye
6e5875b025
- nuke c++ comments
2007-04-04 22:00:51 +00:00
Pierre Joye
d4fb0108bc
- implement #39867 , PKCS#12 support
...
- Fix possible multibyte issues issue in the add_assoc function
- add test for openssl_csr_get_subject
2007-04-04 21:24:01 +00:00
Antony Dovgal
e07b83afb2
MFH: fix leak on error
2007-04-04 10:44:55 +00:00
Antony Dovgal
f9d54cbb75
MFH: fix #40750 (openssl stream wrapper ignores default_stream_timeout)
2007-03-14 19:22:14 +00:00
Marcus Boerger
50ea26760d
- Avoid sprintf, even when checked copy'n'paste or changes lead to errors
2007-02-24 02:17:47 +00:00
Rob Richards
75fdefba0c
MFH: fix accessing public key from x509 resource
...
add test
fix test under win32
2007-01-20 22:08:29 +00:00
Ilia Alshanetsky
8df326e003
Fixed bug #39394 (Missing check for older variants of openssl).
2007-01-07 18:38:22 +00:00
Sebastian Bergmann
4223aa4d5e
MFH: Bump year.
2007-01-01 09:36:18 +00:00
Rob Richards
cf4c83dd2b
Fix win32 build
2006-12-06 13:18:36 +00:00
Ilia Alshanetsky
53a1403b53
Fixed bug #39571 (timeout ssl:// connections).
2006-12-05 01:39:07 +00:00
Pierre Joye
c412409164
- MFH: #39217 , serialNumber might be -1 when the value is too big
2006-11-15 23:28:06 +00:00
Antony Dovgal
268984b478
fix compile warning
2006-10-15 21:09:27 +00:00
Hannes Magnusson
942b11a581
fix test
2006-10-13 09:59:21 +00:00
Pierre Joye
fa8f1151aa
- fix possible segfault (see test 004) always exists and returns NULL on
...
error
2006-10-09 00:04:11 +00:00
Ilia Alshanetsky
0d9f9b67b7
Fixed bug #39039 (SSL: fatal protocol error when fetching HTTPS from
...
servers running Google web server).
2006-10-05 00:38:02 +00:00
Nuno Lopes
e197ecd16e
fix mem leak. hash keys dont need to be strdup'ed
2006-09-16 12:05:13 +00:00
Antony Dovgal
1a6cd5162e
remove a leftover
2006-09-12 10:54:01 +00:00
Antony Dovgal
5c6f438319
implement feature request #38731 (openssl_pkey_new does not support DSA key generation)
...
patch by marci at balabit dot hu
2006-09-08 20:10:47 +00:00
Ilia Alshanetsky
7f2cf9b373
Fixed memory leaks in openssl test #004
2006-09-07 14:11:06 +00:00
Antony Dovgal
c57bfd9a66
add test
2006-09-05 14:04:41 +00:00
Antony Dovgal
52d0f82dc3
MFH: init variables
2006-09-05 13:59:26 +00:00
Pierre Joye
532f577fe9
- add OPENSSL_VERSION_TEXT and OPENSSL_VERSION_NUMBER constants
...
- skip tests if openssl version < 0.9.7j (known to work)
2006-09-03 15:31:01 +00:00
Antony Dovgal
821674720a
fix test
2006-08-31 13:50:11 +00:00
Antony Dovgal
fb21b5d059
MFH: fix problem with mixed arguments accepted as zval* causing leaks/segfaults when converting to other types
2006-08-31 13:48:17 +00:00
Antony Dovgal
1dd6ee3f6d
fix segfault/leak, add test
2006-08-30 21:51:08 +00:00
Antony Dovgal
1f138e7e01
MFH: fix segfault in openssl_seal(), add test
2006-08-30 20:50:04 +00:00
Antony Dovgal
efbb2a4838
fix #38486 (openssl extension does not build correctly)
2006-08-18 13:02:38 +00:00
Pierre Joye
8dc61360c6
- add openssl_csr_get_subject() and openssl_csr_get_public_key()
2006-08-15 20:27:22 +00:00
Pierre Joye
9a79a2f37c
- add OPENSSL_KEYTYPE_EC constant
...
- openssl_pkey_get_details(), returns the key details
2006-08-15 00:38:05 +00:00
Ilia Alshanetsky
610b633096
Fixed compiler warning.
2006-07-31 03:41:20 +00:00
Pierre Joye
3786f956e6
- #36732 , add req_extensions support to openssl_csr_new and _sign
...
(ben at psc dot edu)
- fix leaks in openssl_csr_new and sign
2006-07-31 00:33:42 +00:00
Pierre Joye
769174c2dc
- #28382 , add support for x509 extensions
2006-07-30 17:03:13 +00:00
Pierre Joye
5def392ce1
- 38261: openssl_x509_parse leaks with invalid certs
2006-07-30 16:26:20 +00:00
Pierre Joye
509761f96d
- silent compiler warnings (signess)
2006-07-30 09:18:07 +00:00
Pierre Joye
3a75600dbb
- MFH: make the test more obvious and add an explanation
2006-07-29 23:03:56 +00:00
Pierre Joye
3fe91ed83f
- vi happiness++
2006-07-29 22:52:49 +00:00
Antony Dovgal
9d3233651d
improve test
2006-07-29 22:41:20 +00:00
Pierre Joye
47db124cda
- #38255 , fails on array as well
2006-07-29 22:39:34 +00:00
Pierre Joye
06bd78d720
- forgot the tests
2006-07-29 22:27:55 +00:00
Pierre Joye
46b3f37810
- fix leak when the key is not a valid key (like false or an array)
2006-07-29 22:10:50 +00:00
Pierre Joye
59ddb74938
- fix leaks in openssl context options
2006-05-26 00:32:07 +00:00
Wez Furlong
8f87235107
Add two new context options for ssl:
...
"capture_peer_cert" and "capture_peer_cert_chain"
If true, the peer certificate and peer certificate chain respectively will be
captured and made available in the ssl context variables "peer_certificate" and
"peer_certificate_chain" respectively. The certificates are exposed as x509
certificate resources and can be inspected using the existing openssl extension
functions.
This allows applications to perform extended validation.
2006-04-30 23:43:46 +00:00
foobar
5bd93221a8
bump year and license version
2006-01-01 12:51:34 +00:00
Ilia Alshanetsky
f34a85bc58
Improve "skip" checks
2005-12-27 17:16:41 +00:00
foobar
3e669bc950
MFH: nuke php3 legacy
2005-12-06 02:28:41 +00:00