| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| |
|
|
|
|
|
| |
This also restructures the SSL code to use the modern OpenSSL equivalent
of these functions simplifying internal code to be more readable.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
OpenSSL v1.1.1 is the minimum version that rabbitmq-c supports and the
API that it's programmed against.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
Fixes: alanxz/rabbitmq-c#733
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
| |
This makes the rabbitmq-c-config.cmake package config correctly find
the OpenSSL library dependency when required.
Fixes: #725
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
| |
We're observing ENETUNREACH, the thought is that something about name
lookup is returning something that we cannot connect to, which makes
connect fail eith ENETUNREACH.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
Shows oss-fuzz status at a glance.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
| |
This is the version that is installed on Ubuntu 22.04-LTS, and what is
possible to regularly test with the current infrastructure. 3.19+ is
needed to allow for use of CMakePresets.json.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
Set the compatibility and current version strings on Mach-O (Apple)
platforms. The compatibility version remains the same as the SOVERSION,
the current version is SOVERSION.AGE.REVISION, which matches the
previous libtool semantics for this.
Fixes #758
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
The idea is to give a bit more information about what is calling
exit in the fuzz test.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
| |
This corrects what was done in 903b6b5 to correctly limit array
recursion in addition recursion within a table.
Fixes: https://crbug.com/oss-fuzz/56949
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Limit depth of table and arrays when decoding to 100. This is done to
prevent stack overflows from potentially adversial input. 100 is picked
as its high enough that its unlikely that a valid input would be that
big.
Fixes: https://crbug.com/oss-fuzz/56296
Fixes: https://crbug.com/oss-fuzz/56204
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
v1 was deprecated as of Jan 18, 2023, see:
https://github.blog/changelog/2023-01-18-code-scanning-codeql-action-v1-is-now-deprecated/
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
1. Always null-terminate the string provided, this is a requirement of
the API itself (fixes: https://crbug.com/oss-fuzz/56157).
2. Provide a string that amqp_parse_url can modify. This API modifies
its input (fixes: https://crbug.com/oss-fuzz/56162).
3. Always return 0 from the fuzzing function. It is expected that
amqp_parse_url will return non-0 when it fails to parse the input.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
|
| |
1. The amqp_pool_t must be emptied after use using empty_amqp_pool
(which should correct the obvious issue with a leak detected in:
https://bugs.chromium.org/p/oss-fuzz/issues/detail?id=56161).
2. The return value of amqp_decode_table will be non-zero when it cannot
decode the table, this is working as expected. So this value should
not be returned out of a single loop.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
This file is long obsolete.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
| |
Make amqp_ssl_socket_set_key_buffer return AMQP_STATUS_OK on success. It
currently returns the status of the underlying OpenSSL call, which isn't
correct.
Fixes: alanxz/rabbitmq-c#723
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
|
| |
Starting with OpenSSL v1.1.0, library init/uninit is automatically
handled by the library. This removes unnecessary code from rabbitmq-c
and marks the initialization functions as deprecated.
Fixed: alanxz/rabbitmq-c#737
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
This workaround was needed for OpenSSL v1.1.0 and older. rabbitmq-c
requires v1.1.1 or newer, so this workaround can be removed.
Signed-off-by: GitHub <noreply@github.com>
|
| | |
|
| |
|
|
|
| |
* support of oss-fuzz
Signed-off-by: 0x34d <ajsinghyadav00@gmail.com>
|
| | |
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
| |
This should stop warnings about deprecated APIs. RabbitMQ-c will adopt
OpenSSL 3.x APIs in a future version.
Fixed: #729
Signed-off-by: GitHub <noreply@github.com>
|
| | |
|
| |
|
|
|
| |
* fuzzer deployment
Signed-off-by: 0x34d <ajsinghyadav00@gmail.com>
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
| |
Fixes: #708
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
This appears to be unused.
Signed-off-by: GitHub <noreply@github.com>
|
| | |
|
| |
|
|
|
|
| |
This is the latest RabbitMQ release, there are no changes to framing,
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
This makes license detection machine-readable, and makes source files more concise and easier
to read and understand.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
This does not change the license or copyright of rabbitmq-c. This tweaks the LICENSE file
so that github properly detects the license.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
This does not change the license, rabbitmq-c is still licensed under the
the MIT license.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
Instead of defining OpenSSL dependency via Requires.private use Libs.private instead.
This removes the requirement of a .pc file for OpenSSL which not all distributions ship such as FreeBSD.
Signed-off-by: Daniel Engberg <daniel.engberg.lists@pyret.net>
|
| |
|
|
|
|
| |
Also use find_package(... REQUIRED) pattern to be a bit more concise.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
| |
msinttypes was a workaround for MSVC not supplying a working stdint.h
and inttypes.h. MSVC 2013 and newer supply these headers. Older versions
of MSVC are not supported by Microsoft, so it seems reasonable to drop
these at this point.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
C99 supports the inline keyword, this is now not useful.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
|
|
| |
It is believed that enough maintained platforms (Linux, MacOS, Win32)
have a compiler that supports a compiler that can compile in C99. This
also removes the need to maintain a number of workarounds, as well as
awkward coding patterns.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
| |
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
|
| |
While this wasn't causing any errors, it did have the potential to cause
a bug if the error codes ever were positive.
Signed-off-by: GitHub <noreply@github.com>
|
| |
|
|
|
|
| |
Found using clang-tidy
Signed-off-by: GitHub <noreply@github.com>
|
