- 26 1月, 2002 1 次提交
-
-
由 Richard Levitte 提交于
* make openssl rsa work with -engine chil * misc changes, including debug-linux-ppro Configure target and FORMAT_NETSCAPE-aware load_{,pub}key() This completes the application of his changes.
-
- 21 10月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices.
-
- 04 10月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
types.h to ossl_typ.h.
-
- 28 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
algorithms present in all loaded ENGINEs. The result is that if any of those ENGINEs successfully initialises, and the ENGINE_TABLE_FLAG_NOINIT flag isn't set, then they will always be used (and cached as defaults) in preference to software implementations. Ie. accidental auto-detection of acceleration hardware :-) This change stops all implementations being automatically registered in "openssl" sub-commands, so that the "setup_engine()" handler in apps.c controls which ENGINEs are registered for use. A special case has been added that will revert to this "auto-detect" logic, ie. if the "-engine" switch is used as; -engine auto
-
- 26 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
crypto/engine/README for details.
-
- 12 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
-
- 11 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
macros in apps.h.
-
- 02 9月, 2001 1 次提交
-
-
由 Geoff Thorpe 提交于
See the commit log message for that for more information. NB: X509_STORE_CTX's use of "ex_data" support was actually misimplemented (initialisation by "memset" won't/can't/doesn't work). This fixes that but requires that X509_STORE_CTX_init() be able to handle errors - so its prototype has been changed to return 'int' rather than 'void'. All uses of that function throughout the source code have been tracked down and adjusted.
-
- 13 7月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Initial OCSP server support, using index.txt format. This can process internal requests or behave like a mini responder. Todo: documentation, update usage info.
-
- 28 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Modify apps to use NCONF code instead of old CONF code. Add new extension functions which work with NCONF. Tidy up extension config routines and remove redundant code. Fix NCONF_get_number(). Todo: more testing of apps to see they still work...
-
- 24 6月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
-
- 23 6月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 20 6月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
prompting, even when done through the callback.
-
- 18 6月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
everywhere.
-
- 30 5月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too.
-
- 16 3月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 22 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
and make all files the depend on it include it without prefixing it with openssl/. This means that all Makefiles will have $(TOP) as one of the include directories.
-
- 20 2月, 2001 1 次提交
-
-
由 Richard Levitte 提交于
sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
-
- 23 1月, 2001 1 次提交
-
-
由 Bodo Möller 提交于
alias SSLeay_add_all_algorithms
-
- 17 1月, 2001 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Initial OCSP certificate verify. Not complete, it just supports a "trusted OCSP global root CA".
-
- 07 11月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
-
- 29 10月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
applications.
-
- 27 10月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
At the same time, add VMS support for Rijndael.
-
- 06 10月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 16 9月, 2000 1 次提交
-
-
由 Richard Levitte 提交于
it as well, especially in apps.c.
-
- 04 9月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Add DER public key routines. Add -passin argument to 'ca' utility. Document sign and verify options to dgst.
-
- 28 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
New ASN1_STRING_print_ex() and X509_NAME_print_ex() functions. These are intended to be replacements for the ancient ASN1_STRING_print() and X509_NAME_print() functions. The new functions support RFC2253 and various pretty printing options. It is also possible to display international characters if the terminal properly handles UTF8 encoding (Linux seems to tolerate this if the "unicode_start" script is run). Still needs to be documented, integrated into other utilities and extensively tested.
-
- 11 7月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
call the i2c/c2i (they were not using the content length for the headers). Fix ASN1 long form tag encoding. This never worked but it was never tested since it is only used for tags > 30. New options to smime program to allow the PKCS#7 format to be specified and the content supplied externally.
-
- 23 6月, 2000 2 次提交
-
-
由 Richard Levitte 提交于
applications. Also, have it and the certificate and key loading functions take a BIO argument for error output.
-
由 Richard Levitte 提交于
be shared by several applications.
-
- 17 2月, 2000 1 次提交
-
-
由 Dr. Stephen Henson 提交于
-
- 06 2月, 2000 2 次提交
-
-
由 Bodo Möller 提交于
macro
-
由 Bodo Möller 提交于
-
- 25 12月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
more utilities.
-
- 12 11月, 1999 2 次提交
-
-
由 Dr. Stephen Henson 提交于
Merge some common functionality in the apps, delete the encryption option in the pkcs7 utility (they never did anything) and add a couple more options to pkcs7.
-
由 Dr. Stephen Henson 提交于
pages.
-
- 11 11月, 1999 1 次提交
-
-
由 Dr. Stephen Henson 提交于
Update docs, change 'ca' to use the new callback parameter. Now moved key_callback into app.c because some other utilities will use it soon.
-
- 26 10月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
some utilities that should have used RANDFILE did not, and -rand handling was broken except in genrsa.
-
- 08 6月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
a pain to read when using 4-space tabs.
-
- 21 5月, 1999 1 次提交
-
-
由 Bodo Möller 提交于
in cryptlib.h (which is often included as "../cryptlib.h"), then the question remains relative to which directory this is to be interpreted. gcc went one further directory up, as intended; but makedepend thinks differently, and so probably do some C compilers. So the ../ must go away; thus e_os.h goes back into include/openssl (but I now use #include "openssl/e_os.h" instead of <openssl/e_os.h> to make the point) -- and we have another huge bunch of dependency changes. Argh.
-