- 22 2月, 2002 1 次提交
-
-
由 Dr. Stephen Henson 提交于
CONF_modules_unload() now calls CONF_modules_finish() automatically. Default use of section openssl_conf moved to CONF_modules_load() Load config file in several openssl utilities. Most utilities now load modules from the config file, though in a few (such as version) this isn't done because it couldn't be used for anything. In the case of ca and req the config file used is the same as the utility itself: that is the -config command line option can be used to specify an alternative file.
-
- 26 1月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
* make openssl rsa work with -engine chil * misc changes, including debug-linux-ppro Configure target and FORMAT_NETSCAPE-aware load_{,pub}key() This completes the application of his changes.
-
- 22 11月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
released.
-
- 16 11月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
instead. This also makes it possible for users to simply give said shareable library as argument for the -engine option.
-
- 21 10月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices.
-
- 28 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
algorithms present in all loaded ENGINEs. The result is that if any of those ENGINEs successfully initialises, and the ENGINE_TABLE_FLAG_NOINIT flag isn't set, then they will always be used (and cached as defaults) in preference to software implementations. Ie. accidental auto-detection of acceleration hardware :-) This change stops all implementations being automatically registered in "openssl" sub-commands, so that the "setup_engine()" handler in apps.c controls which ENGINEs are registered for use. A special case has been added that will revert to this "auto-detect" logic, ie. if the "-engine" switch is used as; -engine auto
-
- 26 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
crypto/engine/README for details.
-
- 12 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
-
- 18 8月, 2001 1 次提交
-
-
由 Ben Laurie 提交于
-
- 17 8月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Make -passin -passout etc work again. Fix leak in ca.c when using -passin.
-
- 28 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Modify apps to use NCONF code instead of old CONF code. Add new extension functions which work with NCONF. Tidy up extension config routines and remove redundant code. Fix NCONF_get_number(). Todo: more testing of apps to see they still work...
-
- 24 6月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
password callbak doesn't need to check for sizes any more.
-
- 23 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 20 6月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
prompting, even when done through the callback.
-
- 18 6月, 2001 2 次提交
-
-
由 Richard Levitte 提交于
-
由 Richard Levitte 提交于
everywhere.
-
- 30 5月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too.
-
- 16 3月, 2001 3 次提交
-
-
由 Dr. Stephen Henson 提交于
-
由 Dr. Stephen Henson 提交于
Add default values for display by the 'ca' utility to openssl.cnf Update docs.
-
由 Dr. Stephen Henson 提交于
Overhaul the display of certificate details in the 'ca' utility. This can now be extensively customised in the configuration file and handles multibyte strings and extensions properly. This is required when extensions copying from certificate requests is supported: the user must be able to view the extensions before allowing a certificate to be issued.
-
- 15 3月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Document the -certopt option to the x509 utility. Add no_issuer option. Fix X509_print_ex() so it prints out newlines when certain fields are omitted.
-
- 22 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
make strcasecmp a macro to _stricmp.
-
- 21 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
strings.h according to X/Open.
-
- 20 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS.
-
- 10 2月, 2001 2 次提交
-
-
由 Bodo Möller 提交于
-
由 Bodo Möller 提交于
(similar to how arguments such as -inform/-outform specifications are treated)
-
- 17 1月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Initial OCSP certificate verify. Not complete, it just supports a "trusted OCSP global root CA".
-
- 16 12月, 2000 1 次提交
-
-
由 Bodo Möller 提交于
(e.g., use a default), we have to call ERR_clear_error().
-
- 29 10月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
applications.
-
- 27 10月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
At the same time, add VMS support for Rijndael.
-
- 06 10月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 18 9月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
of complaints from the compiler about data pointers and function pointers not being compatible with each other.
-
- 04 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Add DER public key routines. Add -passin argument to 'ca' utility. Document sign and verify options to dgst.
-
- 30 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Document the new DN printing options. Change a few names to be more meaningful. Fix typos in CA.pl docs.
-
- 28 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
New ASN1_STRING_print_ex() and X509_NAME_print_ex() functions. These are intended to be replacements for the ancient ASN1_STRING_print() and X509_NAME_print() functions. The new functions support RFC2253 and various pretty printing options. It is also possible to display international characters if the terminal properly handles UTF8 encoding (Linux seems to tolerate this if the "unicode_start" script is run). Still needs to be documented, integrated into other utilities and extensively tested.
-
- 11 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
call the i2c/c2i (they were not using the content length for the headers). Fix ASN1 long form tag encoding. This never worked but it was never tested since it is only used for tags > 30. New options to smime program to allow the PKCS#7 format to be specified and the content supplied externally.
-
- 23 6月, 2000 2 次提交
-
-
由 Richard Levitte 提交于
applications. Also, have it and the certificate and key loading functions take a BIO argument for error output.
-
由 Richard Levitte 提交于
be shared by several applications.
-
- 02 6月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
like Malloc, Realloc and especially Free conflict with already existing names on some operating systems or other packages. That is reason enough to change the names of the OpenSSL memory allocation macros to something that has a better chance of being unique, like prepending them with OPENSSL_. This change includes all the name changes needed throughout all C files.
-
- 17 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-