[PHP-CVS] svn: /php/php-src/branches/ PHP_5_3/ext/openssl/xp_ssl.c PHP_5_4/ext/openssl/xp_ssl.c
shm Sat, 12 Nov 2011 10:36:55 +
Revision: http://svn.php.net/viewvc?view=revisionrevision=319095
Log:
- Fixed NULL pointer dereference in stream_socket_enable_crypto, case when
ssl_handle of session_stream is not initialized.
Changed paths:
U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
U php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c
Modified: php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
===
--- php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-11-12 08:57:13 UTC
(rev 319094)
+++ php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-11-12 10:36:55 UTC
(rev 319095)
@@ -406,6 +406,8 @@
if (cparam-inputs.session) {
if (cparam-inputs.session-ops != php_openssl_socket_ops) {
php_error_docref(NULL TSRMLS_CC, E_WARNING, supplied
session stream must be an SSL enabled stream);
+ } else if
(((php_openssl_netstream_data_t*)cparam-inputs.session-abstract)-ssl_handle
== NULL) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, supplied
SSL session stream is not initialized);
} else {
SSL_copy_session_id(sslsock-ssl_handle,
((php_openssl_netstream_data_t*)cparam-inputs.session-abstract)-ssl_handle);
}
Modified: php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c
===
--- php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c 2011-11-12 08:57:13 UTC
(rev 319094)
+++ php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c 2011-11-12 10:36:55 UTC
(rev 319095)
@@ -406,6 +406,8 @@
if (cparam-inputs.session) {
if (cparam-inputs.session-ops != php_openssl_socket_ops) {
php_error_docref(NULL TSRMLS_CC, E_WARNING, supplied
session stream must be an SSL enabled stream);
+ } else if
(((php_openssl_netstream_data_t*)cparam-inputs.session-abstract)-ssl_handle
== NULL) {
+ php_error_docref(NULL TSRMLS_CC, E_WARNING, supplied
SSL session stream is not initialized);
} else {
SSL_copy_session_id(sslsock-ssl_handle,
((php_openssl_netstream_data_t*)cparam-inputs.session-abstract)-ssl_handle);
}
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-CVS] svn: /php/php-src/branches/ PHP_5_3/ext/openssl/xp_ssl.c PHP_5_4/ext/openssl/xp_ssl.c
On Sat, 2011-11-12 at 10:36 +, Mateusz Kocielski wrote: Log: - Fixed NULL pointer dereference in stream_socket_enable_crypto, case when ssl_handle of session_stream is not initialized. Changed paths: U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c U php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c I see this had been applied to trunk before. Any bug ID or other entry for NEWS? johannes -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
Re: [PHP-CVS] svn: /php/php-src/branches/ PHP_5_3/ext/openssl/xp_ssl.c PHP_5_4/ext/openssl/xp_ssl.c
#60279 2011/11/12 Johannes Schlüter johan...@schlueters.de: On Sat, 2011-11-12 at 10:36 +, Mateusz Kocielski wrote: Log: - Fixed NULL pointer dereference in stream_socket_enable_crypto, case when ssl_handle of session_stream is not initialized. Changed paths: U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c U php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c I see this had been applied to trunk before. Any bug ID or other entry for NEWS? johannes -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php -- Pierre @pierrejoye | http://blog.thepimp.net | http://www.libgd.org -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
[PHP-CVS] svn: /php/php-src/branches/PHP_5_3/ext/openssl/ xp_ssl.c
johannes Mon, 22 Aug 2011 21:32:04 +
Revision: http://svn.php.net/viewvc?view=revisionrevision=315310
Log:
- Revert r313616 (When we have a blocking SSL socket, respect the timeout
option, scottmac)
# This caused bug #55283, we should investigate a proper solution without
# breaking anything.
Bug: https://bugs.php.net/55283 (Verified) SSL options set by mysqli_ssl_set
ignored for MySQLi persistent connections
Changed paths:
U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
Modified: php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
===
--- php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-08-22 20:28:33 UTC
(rev 315309)
+++ php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-08-22 21:32:04 UTC
(rev 315310)
@@ -204,36 +204,6 @@
return didwrite;
}
-static void php_openssl_stream_wait_for_data(php_stream *stream,
php_netstream_data_t *sock TSRMLS_DC)
-{
- int retval;
- struct timeval *ptimeout;
-
- if (sock-socket == -1) {
- return;
- }
-
- sock-timeout_event = 0;
-
- if (sock-timeout.tv_sec == -1)
- ptimeout = NULL;
- else
- ptimeout = sock-timeout;
-
- while(1) {
- retval = php_pollfd_for(sock-socket, PHP_POLLREADABLE,
ptimeout);
-
- if (retval == 0)
- sock-timeout_event = 1;
-
- if (retval = 0)
- break;
-
- if (php_socket_errno() != EINTR)
- break;
- }
-}
-
static size_t php_openssl_sockop_read(php_stream *stream, char *buf, size_t
count TSRMLS_DC)
{
php_openssl_netstream_data_t *sslsock =
(php_openssl_netstream_data_t*)stream-abstract;
@@ -243,13 +213,6 @@
int retry = 1;
do {
- if (sslsock-s.is_blocked) {
- php_openssl_stream_wait_for_data(stream,
(sslsock-s) TSRMLS_CC);
- if (sslsock-s.timeout_event) {
- break;
- }
- /* there is no guarantee that there is
application data available but something is there */
- }
nr_bytes = SSL_read(sslsock-ssl_handle, buf, count);
if (nr_bytes = 0) {
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP-CVS] svn: /php/php-src/ branches/PHP_5_3/ext/openssl/xp_ssl.c branches/PHP_5_4/ext/openssl/xp_ssl.c trunk/ext/openssl/xp_ssl.c
felipe Fri, 10 Jun 2011 22:48:36 +
Revision: http://svn.php.net/viewvc?view=revisionrevision=312031
Log:
- Fixed bug #55028 (// is abad comment)
Bug: http://bugs.php.net/55028 (Open) // is abad comment
Changed paths:
U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
U php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c
U php/php-src/trunk/ext/openssl/xp_ssl.c
Modified: php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c
===
--- php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-06-10 22:13:08 UTC
(rev 312030)
+++ php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-06-10 22:48:36 UTC
(rev 312031)
@@ -145,7 +145,7 @@
default:
do {
- // NULL is automatically added
+ /* NULL is automatically added
*/
ERR_error_string_n(ecode,
esbuf, sizeof(esbuf));
if (ebuf.c) {
smart_str_appendc(ebuf, '\n');
Modified: php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c
===
--- php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c 2011-06-10 22:13:08 UTC
(rev 312030)
+++ php/php-src/branches/PHP_5_4/ext/openssl/xp_ssl.c 2011-06-10 22:48:36 UTC
(rev 312031)
@@ -145,7 +145,7 @@
default:
do {
- // NULL is automatically added
+ /* NULL is automatically added
*/
ERR_error_string_n(ecode,
esbuf, sizeof(esbuf));
if (ebuf.c) {
smart_str_appendc(ebuf, '\n');
Modified: php/php-src/trunk/ext/openssl/xp_ssl.c
===
--- php/php-src/trunk/ext/openssl/xp_ssl.c 2011-06-10 22:13:08 UTC (rev
312030)
+++ php/php-src/trunk/ext/openssl/xp_ssl.c 2011-06-10 22:48:36 UTC (rev
312031)
@@ -145,7 +145,7 @@
default:
do {
- // NULL is automatically added
+ /* NULL is automatically added
*/
ERR_error_string_n(ecode,
esbuf, sizeof(esbuf));
if (ebuf.c) {
smart_str_appendc(ebuf, '\n');
--
PHP CVS Mailing List (http://www.php.net/)
To unsubscribe, visit: http://www.php.net/unsub.php
[PHP-CVS] svn: /php/php-src/ branches/PHP_5_3/ext/openssl/xp_ssl.c trunk/ext/openssl/xp_ssl.c
rasmus Sun, 24 Apr 2011 20:47:22 + Revision: http://svn.php.net/viewvc?view=revisionrevision=310456 Log: Support for openssl without SSLv2 supprot compiled in. Distros are starting to remove support now and this wasn't compiling anymore on my Debian dev box. Changed paths: U php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c U php/php-src/trunk/ext/openssl/xp_ssl.c Modified: php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c === --- php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-04-24 13:25:01 UTC (rev 310455) +++ php/php-src/branches/PHP_5_3/ext/openssl/xp_ssl.c 2011-04-24 20:47:22 UTC (rev 310456) @@ -329,9 +329,14 @@ method = SSLv23_client_method(); break; case STREAM_CRYPTO_METHOD_SSLv2_CLIENT: +#ifdef OPENSSL_NO_SSL2 +php_error_docref(NULL TSRMLS_CC, E_WARNING, SSLv2 support is not compiled in openSSL); +return -1; +#else sslsock-is_client = 1; method = SSLv2_client_method(); break; +#endif case STREAM_CRYPTO_METHOD_SSLv3_CLIENT: sslsock-is_client = 1; method = SSLv3_client_method(); @@ -349,9 +354,14 @@ method = SSLv3_server_method(); break; case STREAM_CRYPTO_METHOD_SSLv2_SERVER: +#ifdef OPENSSL_NO_SSL2 +php_error_docref(NULL TSRMLS_CC, E_WARNING, SSLv2 support is not compiled in openSSL); +return -1; +#else sslsock-is_client = 0; method = SSLv2_server_method(); break; +#endif case STREAM_CRYPTO_METHOD_TLS_SERVER: sslsock-is_client = 0; method = TLSv1_server_method(); Modified: php/php-src/trunk/ext/openssl/xp_ssl.c === --- php/php-src/trunk/ext/openssl/xp_ssl.c 2011-04-24 13:25:01 UTC (rev 310455) +++ php/php-src/trunk/ext/openssl/xp_ssl.c 2011-04-24 20:47:22 UTC (rev 310456) @@ -329,9 +329,14 @@ method = SSLv23_client_method(); break; case STREAM_CRYPTO_METHOD_SSLv2_CLIENT: +#ifdef OPENSSL_NO_SSL2 +php_error_docref(NULL TSRMLS_CC, E_WARNING, SSLv2 support is not compiled in openSSL); +return -1; +#else sslsock-is_client = 1; method = SSLv2_client_method(); break; +#endif case STREAM_CRYPTO_METHOD_SSLv3_CLIENT: sslsock-is_client = 1; method = SSLv3_client_method(); @@ -349,9 +354,14 @@ method = SSLv3_server_method(); break; case STREAM_CRYPTO_METHOD_SSLv2_SERVER: +#ifdef OPENSSL_NO_SSL2 +php_error_docref(NULL TSRMLS_CC, E_WARNING, SSLv2 support is not compiled in openSSL); +return -1; +#else sslsock-is_client = 0; method = SSLv2_server_method(); break; +#endif case STREAM_CRYPTO_METHOD_TLS_SERVER: sslsock-is_client = 0; method = TLSv1_server_method(); -- PHP CVS Mailing List (http://www.php.net/) To unsubscribe, visit: http://www.php.net/unsub.php
