| Commit message (Collapse) | Author | Age | Files | Lines |
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
When parsing a frame header, validate that the frame_size is less than
or equal to INT32_MAX. Given frame_max is limited between 0 and
INT32_MAX in amqp_login and friends, this does not change the API.
This prevents a potential buffer overflow when a malicious client sends
a frame_size that is close to UINT32_MAX, in which causes an overflow
when computing state->target_size resulting in a small value there. A
buffer is then allocated with the small amount, then memcopy copies the
frame_size writing to memory beyond the end of the buffer.
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Exposes DLLs generated by the build in appveyor to be downloaded.
|
|
|
|
|
|
|
|
|
| |
RabbitMQ set a new default limit of 2048 channels to prevent buggy
clients from consuming too many broker resources with open channels.
This change matches the default set in the Java client. See:
https://github.com/rabbitmq/rabbitmq-server/issues/1593
Fixes: #513
|
|
|
|
|
|
|
| |
When initializing OpenSSL in v1.1.0 or later, tell OpenSSL to ignore
missing openssl.cnf.
Fixes #523
|
|
|
| |
The order of arguments were incorrect, --build must directly specify the directory afterwards.
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
| |
Fixes #488
|
| |
|
| |
|
| |
|
| |
|
| |
|
| |
|
|
|
|
|
| |
After commit b80de27b, users have to explicitly un-initialize
OpenSSL if they care to.
|
| |
|
| |
|
|
|
|
|
|
| |
Check encoded table length isn't longer than the encoded buffer.
Fixes CID 1383630 caught by Coverity.
|
|
|
|
|
|
|
| |
Check that the encoded array length doesn't go past the available
encoded data.
Fixes defect CID 1383632 found by Coverity.
|
|
|
|
|
|
| |
amqp_open_socket_inner will leak the socket when sockfd == 0.
Fixes CID: 1383631 caught by Coverity.
|
|
|
|
|
|
|
| |
amqps_* examples only differ in the connection, and are otherwise
duplicates of the amqp_* examples. Delete these examples and rename
amqps_connection_timeout.c to amqp_ssl_connect.c to demonstrate how to
connect over SSL.
|
|
|
|
|
|
|
|
|
|
|
| |
Instead of un-initializing OpenSSL when the connection count reaches 0
require API users to explicitly un-initialize OpenSSL if they care to.
In the common case this will require much less work to start a new SSL
connection.
As a side effect: cleanup and simplify the OpenSSL initialization
routines, including removing the thread-safety checks done for the BIO
since they will be called under the OpenSSL locking.
|
|
|
|
|
|
|
|
|
| |
Remove the option to disable thread-safety in the parts of rabbitmq-c
that use OpenSSL, making it a requirement for thread-safety to use SSL
with rabbitmq-c.
The existing #ifdef's are a source of additional complexity and the
non-thread-safe version is not well tested.
|
|
|
|
|
|
| |
Add a check that validates that running clang-format across the codebase
does not produce diffs. This will (hopefully) reduce the amount of
effort spent formatting stuff during PR reviews.
|
| |
|
|
|
|
| |
They're hard to keep in sync with .clang-format or other tools.
|
|
|
|
|
| |
amqp_framing.h is included by amqp.h, user code should not need to
include this.
|
|
|
|
| |
500ms is too short, and regularly times out when running on travis.
|
| |
|
|
|
|
|
| |
This builds rabbitmq-c with coverage enabled, and runs the tests,
uploading the results to coveralls.io.
|
|
|
|
| |
Add integration tests that run against a locally running broker.
|
|
|
| |
Fixes #451
|
| |
|
|
|
|
|
|
| |
CMake based system works on the 3 platforms that we target, and
maintaining a parallel build-system isn't worth it for this sized
project.
|
|
|
|
|
| |
HAVE_HTONLL was used for the byteswap code, which no longer uses htonll,
this can be removed.
|
| |
|
| |
|
|
|
|
|
|
| |
compatible int.
Signed-off-by: kokan <peter.kokai@balabit.com>
|
|
|
|
|
|
|
|
|
|
|
|
| |
Autotools configure steps fails, when clang is used with -Werror option.
autoreconf (GNU Autoconf) 2.69
clang version 4.0.0-1ubuntu1 (tags/RELEASE_400/rc1)
More details:
The `AC_SEARCH_LIBS` creates a dummy function definition, with empty argument list, but in clang it is a warning unless void is given as parameter.
Signed-off-by: kokan <peter.kokai@balabit.com>
|
| |
|
| |
|
|
|
|
|
|
| |
Add a #define for AMQP_DEFAULT_VHOST pointing to "/", which is the
default vhost used by the RabbitMQ broker. This makes the code a bit
more readable, especially in example code.
|