diff options
author | Richard Levitte <levitte@openssl.org> | 2016-01-20 18:11:51 +0100 |
---|---|---|
committer | Richard Levitte <levitte@openssl.org> | 2016-01-22 00:52:31 +0100 |
commit | d74dfafd8bfb98e77ba07c4827362836e4160e94 (patch) | |
tree | 660bf9979109d15b468700c2d4f66fc03e6d1d39 /CHANGES | |
parent | dd67493c344d9d98413d2ee7fd2b6fa9411d975c (diff) | |
download | openssl-d74dfafd8bfb98e77ba07c4827362836e4160e94.tar.gz |
Refresh the thinking of --prefix and --openssldir
--prefix is now exclusively used for software and manual installation.
--openssldir is not exclusively used as a default location for certs,
keys and the default openssl.cnf.
This change is made to bring clarity, to have the two less
intertwined, and to be more compatible with the usual ways of software
installation.
Please change your habits and scripts to use --prefix rather than
--openssldir for installation location now.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 21 |
1 files changed, 21 insertions, 0 deletions
@@ -4,6 +4,27 @@ Changes between 1.0.2e and 1.1.0 [xx XXX xxxx] + *) To clarify their intended purposes, the Configure options + --prefix and --openssldir change their semantics, and become more + straightforward and less interdependent. + + --prefix shall be used exclusively to give the location INSTALLTOP + where programs, scripts, libraries, include files and manuals are + going to be installed. The default is now /usr/local. + + --openssldir shall be used exclusively to give the default + location OPENSSLDIR where certificates, private keys, CRLs are + managed. This is also where the default openssl.cnf gets + installed. + If the directory given with this option is a relative path, the + values of both the --prefix value and the --openssldir value will + be combined to become OPENSSLDIR. + The default for --openssldir is INSTALLTOP/ssl. + + Anyone who uses --openssldir to specify where OpenSSL is to be + installed MUST change to use --prefix instead. + [Richard Levitte] + *) The GOST engine was out of date and therefore it has been removed. An up to date GOST engine is now being maintained in an external repository. See: https://wiki.openssl.org/index.php/Binaries. Libssl still retains |