Commits · 91765e22b0792a6ea3ec300dcdaf537d202e200a · Perun / Perun ProxyIdP / v1 / simplesamlphp

Oct 07, 2019
- Properly handle privatekey_pass set to null-value · 91765e22
  Tim van Dijen authored 5 years ago
  
  91765e22
Oct 01, 2019
- PSR-12 compliancy (#1213) · 587300fa
  Tim van Dijen authored 5 years ago
```
PSR-12 compliancy
```
  587300fa
Aug 12, 2019
- Remove remnants from PHP 5.5 · 1c594a3f
  Tim van Dijen authored 5 years ago
  
  1c594a3f
Jul 29, 2019
- Documentation fix · 547ffe80
  Thijs Kinkhorst authored 5 years ago
  
  547ffe80
Mar 23, 2019

Tim van Dijen authored 6 years ago

* Update Psalm

* Ignore DocblockTypeContradiction and RedundantConditionGivenDocblockType

* Fix Psalm-errors

* Raise minimum PHP-version to 5.6

* Update lock-file accordingly

* Fix phpunit

* Suppress Psalm-issue

6eed6144

Nov 21, 2018
- s/PASSWORD_BCRYPT/PASSWORD_DEFAULT · ce29b327
  Tim van Dijen authored 6 years ago
  
  ce29b327
Oct 20, 2018
- Provide proper password hashing & deprecate old unsafe code · 3c3341c1
  Tim van Dijen authored 6 years ago
  
  3c3341c1
Oct 17, 2018
- Converted array declarations (#959) · 3b4178d6
  Arno van der Vegt authored 6 years ago
  
  3b4178d6
Aug 22, 2018
- base: PSR-2 /whitespace/indentation · c9d91224
  Tim van Dijen authored 6 years ago
  
  c9d91224
Aug 13, 2018
- base: PSR-2 /whitespace/indentation · cf86ce26
  Tim van Dijen authored 6 years ago
  
  cf86ce26
May 31, 2018
- Replace SimpleSAML_Error_* with namespaced version · a3513e46
  Tim van Dijen authored 6 years ago
  
  a3513e46
- Replace SimpleSAML_Configuration with namespaced version · 8046bb23
  Tim van Dijen authored 6 years ago
  
  8046bb23
Jan 08, 2018

Revert "Fix psalm issues." · 0621db8a
Jaime Pérez Crespo authored 7 years ago
```
This reverts commit 9ad60fe1.
```
0621db8a

Fix psalm issues. · 9ad60fe1

Jaime Pérez Crespo authored 7 years ago

Psalm is starting to get annoying. Both openssl_decrypt() and realpath() can return a string or false on error. Psalm seems to ignore the latter all of a sudden, so it assumes the returned variable will always be a string and then it fails when you check on errors. This fix explicitly declares the problematic variables with types string or false, so that psalm stops complaining.

9ad60fe1

Jan 06, 2018
- Fix build after accidentally breaking it in 9d33e884 · 1aa69fe2
  Tim van Dijen authored 7 years ago
  
  1aa69fe2
Dec 29, 2017
- Use strict comparison · 35f53fdb
  Tim van Dijen authored 7 years ago
  
  35f53fdb
Oct 25, 2017
- Make sure calls to in_array() use strict comparisons. · 4c18f450
  Jaime Pérez Crespo authored 7 years ago
  
  4c18f450
Oct 19, 2017
- removing uses of assert() with string value · f1c7754f
  fentie authored 7 years ago
  
  f1c7754f
Sep 01, 2017
- Fix build · 89ed509e
  Jaime Pérez Crespo authored 7 years ago
  
  89ed509e
- Fix multiple issues in SimpleSAML/Utils/* detected with vimeo/psalm. · 67dc1b15
  Jaime Pérez Crespo authored 7 years ago
  
  67dc1b15
May 05, 2017

Added tests for SimpleSAML\Utils\Crypto · 8e39cd49

Matt Schwager authored 7 years ago

This also required adding an additional argument to
SimpleSAML\Utils\Crypto::loadPrivateKey to ease in testing. Without
this additional argument, SimpleSAML_Configuration::getBaseDir eventually
gets called to determine the private key location. This doesn't work
well with vfsstream. This argument shouldn't cause too much trouble, and
seems cohesive enough with the function's purpose.

8e39cd49

bugfix: SimpleSAML\Utils\Crypto returns true for different strings using PHP < 5.6. · 4bc62965

Jaime Pérez Crespo authored 7 years ago

The reason was the lack of conversion to integer for each character of the strings before applying the XOR operator to them. The operator returns always an empty string when applied to two characters, and applying a binary-wise OR between 0 and an empty string, yields 0. Therefore, $diff is always 0, and the function returns true for every two strings with same length, regardless of their contents.

4bc62965

Apr 26, 2017
- The ciphertext should never be less than 48 bytes, throw an exception in such case. · eff61b3e
  Jaime Pérez Crespo authored 7 years ago
  
  eff61b3e
- bugfix: mb_strlen() needs the encoding too. · 150c1ef1
  Jaime Pérez Crespo authored 7 years ago
  
  150c1ef1
- Revert "Try to find out what’s broken with the PHP 5.3 build." · d86980b0
  Jaime Pérez Crespo authored 7 years ago
```
This reverts commit b1b0d0ef.
```
  d86980b0
- Revert "Use hex instead of base64, add also the original ciphertext." · 6c0ef58d
  Jaime Pérez Crespo authored 7 years ago
```
This reverts commit c441f9c9.
```
  6c0ef58d
- Try to fix build. · 47fb7380
  Jaime Pérez Crespo authored 7 years ago
```
It looks like mb_substr() doesn’t cope well with NULL as the third parameter in PHP 5.3.
```
  47fb7380
- Use hex instead of base64, add also the original ciphertext. · c441f9c9
  Jaime Pérez Crespo authored 7 years ago
  
  c441f9c9
- Try to find out what’s broken with the PHP 5.3 build. · b1b0d0ef
  Jaime Pérez Crespo authored 7 years ago
  
  b1b0d0ef
- Make sure data encrypted with SimpleSAML\Utils\Crypto::aesEncrypt() is also authenticated. · de298480
  Jaime Pérez Crespo authored 7 years ago
  
  de298480
Mar 30, 2017

Fix an issue with IV generation in SimpleSAML\Utils\Crypto::aesEncrypt(). · 77df6a93

Jaime Pérez Crespo authored 7 years ago

IVs must be random and one-time (never reused). Additionally, by deriving it from the key, the key length was effectively reduced to 128 bits.

77df6a93

Mar 17, 2017
- Add a SimpleSAML\Utils\Crypto::secureCompare() method. · b72c79e3
  Jaime Pérez Crespo authored 8 years ago
```
Use it when constant-time comparisons are needed to avoid side-channel attacks.
```
  b72c79e3
Jan 10, 2017
- Add a couple of methods to handle conversion between PEM and DER. · 6914263c
  Jaime Pérez authored 8 years ago
```
This resolves #476.
```
  6914263c
- Minor formatting and phpdoc fixes. · b9eecee8
  Jaime Pérez authored 8 years ago
  
  b9eecee8
Aug 05, 2016
- Deprecate the certFingerprint option. · 2cebbd34
  Thijs Kinkhorst authored 8 years ago
```
Issue a notice when the option is used nonetheless.

Closes: #432
```
  2cebbd34
Jul 31, 2015
- Be explicit when checking if there's a salt defined or not. · d48e188d
  Jaime Perez Crespo authored 9 years ago
  
  d48e188d
Jul 20, 2015

Reimplement \SimpleSAML\Utils\Crypto::aesDecrypt() and... · 3fd76a6b

Jaime Perez Crespo authored 9 years ago

Reimplement \SimpleSAML\Utils\Crypto::aesDecrypt() and \SimpleSAML\Utils\Crypto::aesEncrypt() to use openssl instead of mcrypt. This removes the direct dependency on mcrypt and closes #228.

3fd76a6b

Jun 20, 2015

Move the aes[En|De]crypt() functionality in \SimpleSAML\Utils\Crypto to... · 18d5fadc

Jaime Perez Crespo authored 9 years ago

Move the aes[En|De]crypt() functionality in \SimpleSAML\Utils\Crypto to internal methods where the secret is passed as a parameter. Then we don't need a working configuration to test the functionality.

18d5fadc

Apr 23, 2015
- Use InvalidArgumentException instead of SimpleSAML_Error_Exception when... · 7c02bdba
  Jaime Perez Crespo authored 9 years ago
```
Use InvalidArgumentException instead of SimpleSAML_Error_Exception when dealing with wrong input parameters.
```
  7c02bdba
- Move SimpleSAML_Utilities::resolveCert() to... · 27d889e9
  Jaime Perez Crespo authored 9 years ago
```
Move SimpleSAML_Utilities::resolveCert() to SimpleSAML\Utils\Config::getCertPath() and deprecate the former.
```
  27d889e9