1. 02 Feb, 2018 1 commit
  2. 09 Oct, 2017 1 commit
  3. 18 Sep, 2017 2 commits
  4. 28 Aug, 2017 1 commit
  5. 18 Aug, 2017 2 commits
  6. 17 Aug, 2017 2 commits
  7. 16 Aug, 2017 5 commits
  8. 15 Aug, 2017 1 commit
    • Simon Giesecke's avatar
      Problem: Possible buffer overruns related to metadata in various mechanisms (#2683) · 4a18f620
      Simon Giesecke authored
      * Problem: no test case with CURVE encryption and large identity
      
      Solution: added test case (currently crashing)
      
      * Problem: possible buffer overflow in mechanism_t::add_property
      
      Solution: add target buffer length parameter and check the buffer is sufficiently large
      
      * Problem: test cases accidentally excluded from build
      
      Solution: remove #if/#endif
      
      * Problem: possible buffer overruns related to metadata at various locations
      
      Solution: allocate buffer large enough for actual metadata, reduce code duplication
      
      * Problem: syntax error related to pointer type conversion
      
      Solution: change argument type of make_command_with_basic_properties to const char *
      
      * Problem: large metadata may cause an assertion in produce_initiate
      
      Solution: Allow metadata of arbitrary size in produce_initiate
      4a18f620
  9. 04 Aug, 2017 1 commit
  10. 13 Jun, 2017 1 commit
  11. 30 Mar, 2017 1 commit
  12. 29 Mar, 2017 3 commits
  13. 14 May, 2016 1 commit
  14. 18 Feb, 2016 1 commit
  15. 28 Jan, 2016 1 commit
  16. 02 Jun, 2015 1 commit
  17. 22 Apr, 2015 1 commit
  18. 22 Jan, 2015 1 commit
  19. 14 May, 2014 3 commits
  20. 12 May, 2014 1 commit
  21. 06 May, 2014 1 commit
  22. 05 May, 2014 1 commit
  23. 02 May, 2014 1 commit
  24. 01 May, 2014 1 commit
  25. 29 Apr, 2014 1 commit
  26. 12 Jan, 2014 1 commit
  27. 02 Jan, 2014 1 commit
  28. 09 Sep, 2013 1 commit
    • Pieter Hintjens's avatar
      Added ZMQ_ZAP_DOMAIN socket option · 6725c464
      Pieter Hintjens authored
      * This is passed to the ZAP handler in the 'domain' field
      
      * If not set, or empty, then NULL security does not call the ZAP handler
      
      * This resolves the phantom ZAP request syndrome seen with sockets where
        security was never intended (e.g. in test cases)
      
      * This means if you install a ZAP handler, it will not get any requests
        for new connections until you take some explicit action, which can be
        setting a username/password for PLAIN, a key for CURVE, or the domain
        for NULL.
      6725c464
  29. 04 Sep, 2013 1 commit
    • Pieter Hintjens's avatar
      Updated libzmq to match RFC 23, 24, 25, 26 · 28b0a5fa
      Pieter Hintjens authored
      * Command names changed from null terminated to length-specified
      * Command frames use the correct flag (bit 2)
      * test_stream acts as test case for command frames
      * Some code cleanups
      28b0a5fa