1. 23 6月, 2001 1 次提交
  2. 20 6月, 2001 1 次提交
    • R
      - Add the possibility to control engines through control names but · 839590f5
      Richard Levitte 提交于
        with arbitrary arguments instead of just a string.
      - Change the key loaders to take a UI_METHOD instead of a callback
        function pointer.  NOTE: this breaks binary compatibility with
        earlier versions of OpenSSL [engine].
      - Addapt the nCipher code for these new conditions and add a card
        insertion callback.
      839590f5
  3. 01 6月, 2001 1 次提交
  4. 26 5月, 2001 1 次提交
    • R
      We had the password callback for ENGINEs pretty much wrong. And · 6c1a3e4f
      Richard Levitte 提交于
      passwords that were given to the key loading functions were completely
      ignored, at least in the ncipher code, and then we made the assumption
      that the callback wanted a prompt as user argument.
      
      All that is now changed, and the application author is forced to give
      a callback function of type pem_callback_cb and possibly an argument
      for it, just as for all other functions that want to generate password
      prompting.
      
      NOTE: this change creates binary and source incompatibilities with
      previous versions of OpenSSL [engine].  It's worth it this time, to
      get it right (or at least better and with a chance that it'll work).
      6c1a3e4f
  5. 26 4月, 2001 1 次提交
  6. 19 4月, 2001 2 次提交
    • G
      Some more tweaks to ENGINE code. · e2f3ae12
      Geoff Thorpe 提交于
      This change adds some basic control commands to the existing ENGINEs
      (except the software 'openssl' engine). All these engines currently load
      shared-libraries for hardware APIs, so they've all been given "SO_PATH"
      commands that will configure the chosen ENGINE to load its shared library
      from the given path. Eg. by calling;
          ENGINE_ctrl_cmd_string(e, "SO_PATH", <path>, 0).
      
      The nCipher 'chil' ENGINE has also had "FORK_CHECK" and "THREAD_LOCKING"
      commands added so these settings could be handled via application-level
      configuration rather than in application source code.
      
      Changes to "openssl engine" to test and examine these control commands will
      be made shortly. It will also provide the necessary tips to application
      programs wanting to support these dynamic control commands.
      e2f3ae12
    • G
      Some more tweaks to ENGINE code. · 59bc3126
      Geoff Thorpe 提交于
      The existing ENGINEs (including the default 'openssl' software engine) were
      static, declared inside the source file for each engine implementation. The
      reason this was not going boom was that all the ENGINEs had reference
      counts that never hit zero (once linked into the internal list, each would
      always have at least 1 lasting structural reference).
      
      To fix this so it will stay standing when an "unload" function is added to
      match ENGINE_load_builtin_engines(), the "constructor" functions for each
      ENGINE implementation have been changed to dynamically allocate and
      construct their own ENGINEs using API functions. The other benefit of this
      is that no ENGINE implementation has to include the internal "engine_int.h"
      header file any more.
      59bc3126
  7. 18 4月, 2001 1 次提交
    • G
      Some more tweaks to ENGINE code. · 404f952a
      Geoff Thorpe 提交于
      ENGINE handler functions should take the ENGINE structure as a parameter -
      this is because ENGINE structures can be copied, and like other
      structure/method setups in OpenSSL, it should be possible for init(),
      finish(), ctrl(), etc to adjust state inside the ENGINE structures rather
      than globally. This commit includes the dependant changes in the ENGINE
      implementations.
      404f952a
  8. 20 2月, 2001 1 次提交
    • R
      Make all configuration macros available for application by making · cf1b7d96
      Richard Levitte 提交于
      sure they are available in opensslconf.h, by giving them names starting
      with "OPENSSL_" to avoid conflicts with other packages and by making
      sure e_os2.h will cover all platform-specific cases together with
      opensslconf.h.
      
      I've checked fairly well that nothing breaks with this (apart from
      external software that will adapt if they have used something like
      NO_KRB5), but I can't guarantee it completely, so a review of this
      change would be a good thing.
      cf1b7d96
  9. 14 11月, 2000 1 次提交
  10. 07 11月, 2000 3 次提交
  11. 27 10月, 2000 1 次提交