Branch: refs/heads/master
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: 20640592f03239e11053d507c68e6093144f8bbc
https://github.com/phpmyadmin/phpmyadmin/commit/20640592f03239e11053d507c68…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
M test/classes/plugin/auth/PMA_AuthenticationCookie_test.php
Log Message:
-----------
Always use phpseclib for cookie encryption
- it provides fallback in case mcrypt is not found
- we now use AES in both mcrypt and PHP code case
- cleanup the code by removing mcrypt conditials
- rename some methods and cookies so that they don't refer to
implementation details
- switching encryption implementations no longer invalidates the
credentials
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Branch: refs/heads/master
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: d69f8bdd09df47a882391422666e3d948c735712
https://github.com/phpmyadmin/phpmyadmin/commit/d69f8bdd09df47a882391422666…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/phpseclib/Crypt/AES.php
A libraries/phpseclib/Crypt/Base.php
A libraries/phpseclib/Crypt/Random.php
M libraries/phpseclib/Crypt/Rijndael.php
Log Message:
-----------
Update phpseclib to latest Git snapshot
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: c6e76422c41e1c573c0c0163376a61d4556083b2
https://github.com/phpmyadmin/phpmyadmin/commit/c6e76422c41e1c573c0c0163376…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M doc/vendors.rst
M libraries/plugins/auth/AuthenticationCookie.class.php
M libraries/vendor_config.php
Log Message:
-----------
Allow to use system phpseclib
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: bc603150239888637f21b3fef821d9cde8f65565
https://github.com/phpmyadmin/phpmyadmin/commit/bc603150239888637f21b3fef82…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
M test/classes/plugin/auth/PMA_AuthenticationCookie_test.php
Log Message:
-----------
Adjust tests to new IV logic
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: 0652ca9ccd98454fcdb2bb175a4273b317353ef5
https://github.com/phpmyadmin/phpmyadmin/commit/0652ca9ccd98454fcdb2bb175a4…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
M test/classes/plugin/auth/PMA_AuthenticationCookie_test.php
Log Message:
-----------
Merge remote-tracking branch 'origin/QA_4_2'
Compare: https://github.com/phpmyadmin/phpmyadmin/compare/716f6d4c553e...0652ca9ccd98
Branch: refs/heads/QA_4_2
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: bc603150239888637f21b3fef821d9cde8f65565
https://github.com/phpmyadmin/phpmyadmin/commit/bc603150239888637f21b3fef82…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
M test/classes/plugin/auth/PMA_AuthenticationCookie_test.php
Log Message:
-----------
Adjust tests to new IV logic
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Branch: refs/heads/QA_4_2
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: 953c7415ad548820f605c3beea9c556629f137e2
https://github.com/phpmyadmin/phpmyadmin/commit/953c7415ad548820f605c3beea9…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Separate check for password cookie
Otherwise it would not be possible to recall user name.
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Branch: refs/heads/master
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: e9f7dafd21f0c4c8e8e594191d837c32e9b5dfca
https://github.com/phpmyadmin/phpmyadmin/commit/e9f7dafd21f0c4c8e8e594191d8…
Author: Domen <mitenem(a)outlook.com>
Date: 2014-06-10 (Tue, 10 Jun 2014)
Changed paths:
M po/sl.po
Log Message:
-----------
Translated using Weblate (Slovenian)
Currently translated at 100.0% (2770 of 2770)
Commit: 59bb241cf13fd9a02626eb73daf5a5ca8476b29e
https://github.com/phpmyadmin/phpmyadmin/commit/59bb241cf13fd9a02626eb73daf…
Author: Kristjan Räts <kristjanrats(a)gmail.com>
Date: 2014-06-11 (Wed, 11 Jun 2014)
Changed paths:
M po/et.po
Log Message:
-----------
Translated using Weblate (Estonian)
Currently translated at 100.0% (2770 of 2770)
Commit: b252cb99812f33f76a27e596fa559a14c5a4b6e6
https://github.com/phpmyadmin/phpmyadmin/commit/b252cb99812f33f76a27e596fa5…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Use better source of entropy for mcrypt IV
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: 7cba81de271d62bdf93ded7598709702a96f92d7
https://github.com/phpmyadmin/phpmyadmin/commit/7cba81de271d62bdf93ded75987…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M ChangeLog
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Regenerate cookie encryption IV for every session
The IV for cookie encryption was generated just once for every browser
and kept in a cookie. Generating it for every session is much better to
avoid information leaks (eg. that same user has logged in).
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: 29094da2043956059bd4eb897db4f033912869b7
https://github.com/phpmyadmin/phpmyadmin/commit/29094da2043956059bd4eb897db…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/cs.po
Log Message:
-----------
Translated using Weblate (Czech)
Currently translated at 100.0% (2770 of 2770)
Commit: 88910393e5e2b1d7cbc5c64cd8b68febaf524b4d
https://github.com/phpmyadmin/phpmyadmin/commit/88910393e5e2b1d7cbc5c64cd8b…
Author: Dieter Adriaenssens <ruleant(a)users.sourceforge.net>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/nl.po
Log Message:
-----------
Translated using Weblate (Dutch)
Currently translated at 99.9% (2768 of 2770)
Commit: ffb543b6e347e49d73142c52112edf1a44d1464a
https://github.com/phpmyadmin/phpmyadmin/commit/ffb543b6e347e49d73142c52112…
Author: Marc Delisle <marc(a)infomarc.info>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/fr.po
Log Message:
-----------
Translated using Weblate (French)
Currently translated at 100.0% (2770 of 2770)
Commit: bfb0f98a918589227023bfb0e6185241fdb01b49
https://github.com/phpmyadmin/phpmyadmin/commit/bfb0f98a918589227023bfb0e61…
Author: Giovanni Sora <g.sora(a)tiscali.it>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/ia.po
Log Message:
-----------
Translated using Weblate (Interlingua)
Currently translated at 51.1% (1417 of 2770)
Commit: 480b992aae4e0a312c64f90ebb2b994b082bf16d
https://github.com/phpmyadmin/phpmyadmin/commit/480b992aae4e0a312c64f90ebb2…
Author: Matías Bellone <matiasbellone+weblate(a)gmail.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/es.po
Log Message:
-----------
Translated using Weblate (Spanish)
Currently translated at 100.0% (2770 of 2770)
Commit: e664c931d27d65ee62d84d957126fadcb4fa3337
https://github.com/phpmyadmin/phpmyadmin/commit/e664c931d27d65ee62d84d95712…
Author: Burak Yavuz <hitowerdigit(a)hotmail.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M po/tr.po
Log Message:
-----------
Translated using Weblate (Turkish)
Currently translated at 100.0% (2770 of 2770)
Commit: 76c051bcea0bcb5d897c8dc16a4718e3a14da134
https://github.com/phpmyadmin/phpmyadmin/commit/76c051bcea0bcb5d897c8dc16a4…
Author: Weblate <noreply(a)weblate.org>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M ChangeLog
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Merge remote-tracking branch 'origin/QA_4_2' into QA_4_2
Commit: 1cd945e548f28aa8cbead2ff07fda982269fd78c
https://github.com/phpmyadmin/phpmyadmin/commit/1cd945e548f28aa8cbead2ff07f…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Log Message:
-----------
Merge commit '59bb241cf13fd9a02626eb73daf5a5ca8476b29e'
Commit: 5d39998a86eed57dcc8e9a9d9120eaf986ba1455
https://github.com/phpmyadmin/phpmyadmin/commit/5d39998a86eed57dcc8e9a9d912…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M ChangeLog
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Merge commit '7cba81de271d62bdf93ded7598709702a96f92d7'
Conflicts:
libraries/plugins/auth/AuthenticationCookie.class.php
Commit: bd482546bc27531533863f733e5c5b78ca8e9d22
https://github.com/phpmyadmin/phpmyadmin/commit/bd482546bc27531533863f733e5…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Log Message:
-----------
Merge remote-tracking branch 'origin/QA_4_2'
Compare: https://github.com/phpmyadmin/phpmyadmin/compare/a6d379caf2d4...bd482546bc27
Branch: refs/heads/QA_4_2
Home: https://github.com/phpmyadmin/phpmyadmin
Commit: b252cb99812f33f76a27e596fa559a14c5a4b6e6
https://github.com/phpmyadmin/phpmyadmin/commit/b252cb99812f33f76a27e596fa5…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Use better source of entropy for mcrypt IV
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Commit: 7cba81de271d62bdf93ded7598709702a96f92d7
https://github.com/phpmyadmin/phpmyadmin/commit/7cba81de271d62bdf93ded75987…
Author: Michal Čihař <michal(a)cihar.com>
Date: 2014-06-12 (Thu, 12 Jun 2014)
Changed paths:
M ChangeLog
M libraries/plugins/auth/AuthenticationCookie.class.php
Log Message:
-----------
Regenerate cookie encryption IV for every session
The IV for cookie encryption was generated just once for every browser
and kept in a cookie. Generating it for every session is much better to
avoid information leaks (eg. that same user has logged in).
Signed-off-by: Michal Čihař <michal(a)cihar.com>
Compare: https://github.com/phpmyadmin/phpmyadmin/compare/59bb241cf13f...7cba81de271d