summaryrefslogtreecommitdiff
path: root/ext/openssl
Commit message (Collapse)AuthorAgeFilesLines
* Merge branch 'PHP-7.0' into PHP-7.1Jakub Zelenka2016-09-132-3/+51
|\
| * Merge branch 'PHP-5.6' into PHP-7.0Jakub Zelenka2016-09-132-3/+51
| |\
| | * Fix bug #73072 (Invalid path SNI_server_certs causes segfault)Jakub Zelenka2016-09-132-3/+51
| | |
* | | Fix #72948: Uncatchable "Catchable" fatal error for class to string conversionsChristoph M. Becker2016-09-031-1/+1
| | | | | | | | | | | | | | | | | | | | | E_RECOVERABLE errors are reported as "Catchable fatal error". This is misleading, because they actually can't be caught via try-catch statements. Therefore we change the wording to "Recoverable fatal error" as suggested by Nikita.
* | | Do not expect error 0407006A in openssl_private_(en|de)cryptJakub Zelenka2016-08-211-1/+1
| | | | | | | | | | | | It makes the test work with OpenSSL 1.1
* | | Set DSA or DH key only if pub key suppliedJakub Zelenka2016-08-141-10/+4
| | |
* | | Return false if tag is not supplied or cannot be retrieved in AEADJakub Zelenka2016-08-142-2/+15
| | | | | | | | | | | | | | | It doesn't make sense to return just encoded string as it cannot be used anyway (decryption without a tag will not work).
* | | Do not add already added object to the internal OpenSSL tableJakub Zelenka2016-08-031-1/+2
| | | | | | | | | | | | | | | This fixes OpenSSL 1.1 where adding object with OID that has been already added causes an error - preventing of duplication.
* | | Use OPENSSL_RAW_DATA in raw data decryption testsNikita Popov2016-07-222-6/+12
| | |
* | | Require strict base64 in openssl_decodeLauri Kenttä2016-07-221-1/+1
| | | | | | | | | | | | | | | | | | Using invalid data in a security-related context makes no sense, and there's even a test which depends on invalid base64 data failing, even though it currently fails for the wrong reasons by sheer luck.
* | | Fix test: Use valid base64 even for invalid OpenSSL dataLauri Kenttä2016-07-221-1/+1
| | |
* | | Add missing X509_get_signature_nid for 1.0.1Jakub Zelenka2016-07-191-0/+9
| | |
* | | Use always non const SSL cipher version stringJakub Zelenka2016-07-191-2/+19
| | |
* | | Update authors of openssl.cJakub Zelenka2016-07-171-0/+1
| | |
* | | Use opaque EVP_PKEY for new EC logic in openssl_pkey_newJakub Zelenka2016-07-171-1/+1
| | |
* | | Use opaque RSA, DSA and DHJakub Zelenka2016-07-172-69/+256
| | |
* | | Add missing creating of md_ctx in openssl_digestJakub Zelenka2016-07-171-0/+1
| | |
* | | Change sign method from ecdsa-with-SHA1 to SHA1Jakub Zelenka2016-07-171-1/+1
| | | | | | | | | | | | | | | There are no message digest methods for public key (e.g. ecdsa-with-SHA1, dsa*, DSA*) MD methods in OpenSSL 1.1.
* | | Add missing break in php_openssl_is_private_keyJakub Zelenka2016-07-171-0/+1
| | |
* | | Use SHA1 instead of DSS1 in test for bug #41033Jakub Zelenka2016-07-171-2/+2
| | |
* | | Hide setting server ECDH curve for OpenSSL 1.1Jakub Zelenka2016-07-171-2/+2
| | | | | | | | | | | | It seems to be done automatically
* | | Do not use tmp_rsa_cb for OpenSSL 1.1Jakub Zelenka2016-07-171-3/+3
| | | | | | | | | | | | The SSL_CTX_set_tmp_rsa_callback has been removed
* | | The DSS1 is not available in OpenSSL 1.1Jakub Zelenka2016-07-171-0/+6
| | |
* | | Move and use opaque pkey in openssl_dh_compute_keyJakub Zelenka2016-07-171-42/+47
| | |
* | | Use opaque pkey in openssl_pkey_get_detailsJakub Zelenka2016-07-171-59/+65
| | |
* | | Use EVP_PKEY_base_id where possibleJakub Zelenka2016-07-171-3/+3
| | |
* | | Use opaque EVP_PKEY in php_openssl_is_private_keyJakub Zelenka2016-07-172-17/+24
| | |
* | | Do not use X509 props directly in openssl_x509_parseJakub Zelenka2016-07-171-6/+8
| | |
* | | Do not use X509_EXTENSION data directly as it is opaqueJakub Zelenka2016-07-171-2/+4
| | |
* | | Wrap pkey id and rsa gettersJakub Zelenka2016-07-172-8/+12
| | |
* | | Use opaque md ctx in openssl_sign and openssl_verifyJakub Zelenka2016-07-171-10/+14
| | |
* | | Use opaque cipher ctx in openssl_seal and openssl_openJakub Zelenka2016-07-171-15/+17
| | |
* | | Use opaque EVP_MD_CTX in openssl_digestJakub Zelenka2016-07-171-4/+6
| | |
* | | Bump minimal OpenSSL version to 1.0.1Jakub Zelenka2016-07-173-67/+7
| | |
* | | force SSL_OP_NO_SSLv2Remi Collet2016-07-171-0/+3
| | |
* | | Cleanup all SSLv2 code, whatever OpenSSL version isRemi Collet2016-07-172-35/+2
| | |
* | | Remove openssl test 029 as it is incompleteJakub Zelenka2016-06-291-254/+0
| | |
* | | Revert "Skip new OpenSSL ECC tests on 32bit"Dmitry Stogov2016-06-292-5/+1
| | | | | | | | | | | | This reverts commit 0a4f89bc292c3c82ff719cd79e66ef96c2079526.
* | | Skip new OpenSSL ECC tests on 32bitJakub Zelenka2016-06-282-1/+5
| | | | | | | | | | | | | | | There has been reported that they fail on 32bit so they will be skipped till the issue is investigated.
* | | Fixed compilation warningsDmitry Stogov2016-06-281-1/+1
| | |
* | | Improve openssl ecc keypair support implementationJakub Zelenka2016-06-261-19/+43
| | |
* | | Adds initial support to generate and work with ECC public key pairDominic Luechinger2016-06-265-28/+588
| | | | | | | | | | | | | | | | | | | | | | | | | | | | | | New features: - openssl_get_curve_names => list ECC curve names - generate a ECC public key pair - generate an CSR with an ECC key - export x,y,d params of ECC public/private key Thanks to @bukka for the review and feedback
* | | Fixed compilation warningsDmitry Stogov2016-06-222-7/+7
| | |
* | | Added ZEND_ATTRIBUTE_FORMAT to some middind functions.Dmitry Stogov2016-06-211-1/+1
| | | | | | | | | | | | | | | "%p" replaced by ZEND_LONG_FMT to avoid compilation warnings. Fixed most incorrect use cases of format specifiers.
* | | Merge branch 'openssl_error_store' into openssl_aeadJakub Zelenka2016-06-191-17/+0
|\ \ \
| * | | Remove test for incorrect fix of bug #69882Jakub Zelenka2016-06-191-17/+0
| | | | | | | | | | | | | | | | The fix just cleared the errors without storing which was wrong
* | | | Merge branch 'openssl_error_store' into openssl_aeadJakub Zelenka2016-06-1914-345/+486
|\ \ \ \ | |/ / /
| * | | Remove expected openssl errors that are not needed anymoreJakub Zelenka2016-06-191-2/+2
| | | |
| * | | Merge branch 'master' into openssl_error_storeJakub Zelenka2016-06-197-37/+37
| |\ \ \
| | * | | fix test portabilityAnatol Belski2016-06-174-6/+6
| | | | |
View Lorry Controller Status