Skip to content

O
openssl

btwise / openssl

通知 1
Star 0
Fork 0
O
openssl

体验新版 GitCode,发现更多精彩内容 >>

切换分支/标签
  1. 05 2月, 2019 1 次提交
  3. 01 2月, 2019 1 次提交
  5. 31 1月, 2019 1 次提交
  7. 30 1月, 2019 1 次提交
  9. 28 1月, 2019 1 次提交
  11. 27 1月, 2019 1 次提交
  13. 25 1月, 2019 1 次提交
  15. 24 1月, 2019 1 次提交
  17. 22 1月, 2019 2 次提交
    • R
      Build: use attributes to indicate installed script classes · 994e86a9
      Richard Levitte 提交于 
      We have two classes of scripts to be installed, those that are
installed as "normal" programs, and those that are installed as "misc"
scripts.  These classes are installed in different locations, so the
build file templates must pay attention.

Because we didn't have the tools to indicate what scripts go where, we
had these scripts hard coded in the build template files, with the
maintenance issues that may cause.  Now that we have attributes, those
can be used to classify the installed scripts, and have the build file
templates simply check the attributes to know what's what.

Furthermore, the 'tsget.pl' script exists both as 'tsget.pl' and
'tsget', which is done by installing a symbolic link (or copy).  This
link name is now given through an attribute, which results in even
less hard coding in the Unix Makefile template.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7581)
      994e86a9
    • R
      Build: Change all _NO_INST to use attributes instead. · ac6bba6f
      Richard Levitte 提交于 
      This means that all PROGRAMS_NO_INST, LIBS_NO_INST, ENGINES_NO_INST
and SCRIPTS_NO_INST are changed to be PROGRAM, LIBS, ENGINES and
SCRIPTS with the associated attribute 'noinst'.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7581)
      ac6bba6f
  19. 21 1月, 2019 1 次提交
  21. 18 1月, 2019 1 次提交
  23. 17 1月, 2019 1 次提交
  25. 23 12月, 2018 1 次提交
  27. 20 12月, 2018 1 次提交
  29. 18 12月, 2018 1 次提交
  31. 12 12月, 2018 1 次提交
  33. 11 12月, 2018 1 次提交
  35. 07 12月, 2018 1 次提交
  37. 06 12月, 2018 2 次提交
    • R
      Following the license change, modify the boilerplates in apps/ · dffa7520
      Richard Levitte 提交于 
      Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7765)
      dffa7520
    • R
      Switch to MAJOR.MINOR.PATCH versioning and version 3.0.0-dev · 3a63dbef
      Richard Levitte 提交于 
      We're strictly use version numbers of the form MAJOR.MINOR.PATCH.
Letter releases are things of days past.

The most central change is that we now express the version number with
three macros, one for each part of the version number:

    OPENSSL_VERSION_MAJOR
    OPENSSL_VERSION_MINOR
    OPENSSL_VERSION_PATCH

We also provide two additional macros to express pre-release and build
metadata information (also specified in semantic versioning):

    OPENSSL_VERSION_PRE_RELEASE
    OPENSSL_VERSION_BUILD_METADATA

To get the library's idea of all those values, we introduce the
following functions:

    unsigned int OPENSSL_version_major(void);
    unsigned int OPENSSL_version_minor(void);
    unsigned int OPENSSL_version_patch(void);
    const char *OPENSSL_version_pre_release(void);
    const char *OPENSSL_version_build_metadata(void);

Additionally, for shared library versioning (which is out of scope in
semantic versioning, but that we still need):

    OPENSSL_SHLIB_VERSION

We also provide a macro that contains the release date.  This is not
part of the version number, but is extra information that we want to
be able to display:

    OPENSSL_RELEASE_DATE

Finally, also provide the following convenience functions:

    const char *OPENSSL_version_text(void);
    const char *OPENSSL_version_text_full(void);

The following macros and functions are deprecated, and while currently
existing for backward compatibility, they are expected to disappear:

    OPENSSL_VERSION_NUMBER
    OPENSSL_VERSION_TEXT
    OPENSSL_VERSION
    OpenSSL_version_num()
    OpenSSL_version()

Also, this function is introduced to replace OpenSSL_version() for all
indexes except for OPENSSL_VERSION:

    OPENSSL_info()

For configuration, the option 'newversion-only' is added to disable all
the macros and functions that are mentioned as deprecated above.
Reviewed-by: NTim Hudson <tjh@openssl.org>
Reviewed-by: NMatthias St. Pierre <Matthias.St.Pierre@ncp-e.com>
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7724)
      3a63dbef
  39. 22 11月, 2018 1 次提交
  41. 20 11月, 2018 1 次提交
  43. 19 11月, 2018 1 次提交
    • J
      Add option to read pkeyopts interactively · 9d1bf5f7
      Johannes Bauer 提交于 
      This patch adds the ability to interactively enter passphrases for
the pkeyutl application. For example, you could use

$ openssl pkeyutl -kdf TLS1-PRF -kdflen 8 -pkeyopt md:md5
  -pkeyopt_passin secret -pkeyopt_passin seed

To have the "secret" and "seed" values read interactively from keyboard
(with hidden input). Alternatively, the pass phrase argument syntax is
also supported, e.g.:

$ openssl pkeyutl -kdf TLS1-PRF -kdflen 8 -pkeyopt md:md5
  -pkeyopt_passin secret:stdin -pkeyopt_passin seed:env:SEEDVAR

To have "secret" read from stdin and "seed" from the environment
variable SEEDVAR.
Reviewed-by: NMatt Caswell <matt@openssl.org>
Reviewed-by: NRichard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5697)
      9d1bf5f7
  45. 13 11月, 2018 1 次提交
    • V
      Added missing signature algorithm reflection functions · a51c9f63
      Viktor Dukhovni 提交于 
          SSL_get_signature_nid()      -- local signature algorithm
    SSL_get_signature_type_nid() -- local signature algorithm key type
    SSL_get_peer_tmp_key()       -- Peer key-exchange public key
    SSL_get_tmp_key              -- local key exchange public key

Aliased pre-existing SSL_get_server_tmp_key(), which was formerly
just for clients, to SSL_get_peer_tmp_key().  Changed internal
calls to use the new name.
Reviewed-by: NMatt Caswell <matt@openssl.org>
      a51c9f63
  47. 10 11月, 2018 1 次提交
  49. 02 11月, 2018 2 次提交
  51. 29 10月, 2018 1 次提交
  53. 19 10月, 2018 1 次提交
  55. 17 10月, 2018 1 次提交
  57. 13 10月, 2018 1 次提交
  59. 09 10月, 2018 1 次提交
    • B
      apps: allow empty attribute values with -subj · 3d362f19
      Benjamin Kaduk 提交于 
      Historically (i.e., OpenSSL 1.0.x), the openssl applications would
allow for empty subject attributes to be passed via the -subj argument,
e.g., `opensl req -subj '/CN=joe/O=/OU=local' ...`.  Commit
db4c08f0 applied a badly needed rewrite
to the parse_name() helper function that parses these strings, but
in the process dropped a check that would skip attributes with no
associated value.  As a result, such strings are now treated as
hard errors and the operation fails.

Restore the check to skip empty attribute values and restore
the historical behavior.

Document the behavior for empty subject attribute values in the
corresponding applications' manual pages.
Reviewed-by: NMatt Caswell <matt@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/7349)
      3d362f19
  61. 02 10月, 2018 1 次提交
  63. 01 10月, 2018 1 次提交
  65. 23 9月, 2018 1 次提交
    • B
      Create the .rnd file it it does not exist · 0f582209
      Bernd Edlinger 提交于 
      It's a bit annoying, since some commands try to read a .rnd file,
and print an error message if the file does not exist.

But previously a .rnd file was created on exit, and that does no longer
happen.

Fixed by continuing in app_RAND_load_conf regardless of the error in
RAND_load_file.

If the random number generator is still not initalized on exit, the
function RAND_write_file will fail and no .rnd file would be created.

Remove RANDFILE from openssl.cnf
Reviewed-by: NKurt Roeckx <kurt@roeckx.be>
(Merged from https://github.com/openssl/openssl/pull/7217)
      0f582209
  67. 22 9月, 2018 1 次提交
  69. 13 9月, 2018 1 次提交
  71. 12 9月, 2018 1 次提交
  73. 11 9月, 2018 1 次提交