aboutsummaryrefslogtreecommitdiffstats
path: root/apps/req.c
Commit message (Collapse)AuthorAgeFilesLines
* Fix warning.Ben Laurie2001-07-021-1/+1
|
* Modify apps to use NCONF code instead of old CONF code.Dr. Stephen Henson2001-06-281-60/+67
| | | | | | | | | | Add new extension functions which work with NCONF. Tidy up extension config routines and remove redundant code. Fix NCONF_get_number(). Todo: more testing of apps to see they still work...
* Call apps_shutdown() to take down what apps_startup() set up.Richard Levitte2001-06-251-0/+1
|
* Provide an application-common setup function for engines and use itRichard Levitte2001-06-181-17/+1
| | | | everywhere.
* Extend all the loading functions to take an engine pointer, a passRichard Levitte2001-05-301-33/+5
| | | | | | | | | | | | | | string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too.
* Change the EVP_somecipher() and EVP_somedigest()Dr. Stephen Henson2001-03-091-1/+1
| | | | | | | functions to return constant EVP_MD and EVP_CIPHER pointers. Update docs.
* New option '-subj arg' for 'openssl req' and 'openssl ca'. ThisBodo Möller2001-03-051-38/+171
| | | | | | | | | | sets the subject name for a new request or supersedes the subject name in a given request. Add options '-batch' and '-verbose' to 'openssl req'. Submitted by: Massimiliano Pala <madwolf@hackmasters.net> Reviewed by: Bodo Moeller
* Use new-style system-id macros everywhere possible. I hope I haven'tRichard Levitte2001-02-201-3/+3
| | | | | | | missed any. This compiles and runs on Linux, and external applications have no problems with it. The definite test will be to build this on VMS.
* Make all configuration macros available for application by makingRichard Levitte2001-02-191-12/+12
| | | | | | | | | | | | sure they are available in opensslconf.h, by giving them names starting with "OPENSSL_" to avoid conflicts with other packages and by making sure e_os2.h will cover all platform-specific cases together with opensslconf.h. I've checked fairly well that nothing breaks with this (apart from external software that will adapt if they have used something like NO_KRB5), but I can't guarantee it completely, so a review of this change would be a good thing.
* New -set_serial options to 'req' and 'x509'.Dr. Stephen Henson2001-02-191-2/+14
| | | | | | | | Remove the old broken bio read of serial numbers in the 'ca' index file. This would choke if a revoked certificate was specified with a negative serial number. Fix typo in uid.c
* don't dump coreBodo Möller2001-02-061-5/+4
|
* If CONF_get_string returns NULL and we want to tolerate thisBodo Möller2000-12-151-9/+65
| | | | (e.g., use a default), we have to call ERR_clear_error().
* Make TYPE_RSA the default type instead of just setting it when -new isRichard Levitte2000-12-091-2/+1
| | | | | given. That also allows the arguments to come in any order (-new last, for example).
* Merge from the ASN1 branch of new ASN1 codeDr. Stephen Henson2000-12-081-2/+5
| | | | | | to main trunk. Lets see if the makes it to openssl-cvs :-)
* Small documentation changeRichard Levitte2000-10-281-1/+1
|
* Merge the engine branch into the main trunk. All conflicts resolved.Richard Levitte2000-10-261-9/+49
| | | | At the same time, add VMS support for Rijndael.
* Global DirectoryString mask fix.Dr. Stephen Henson2000-10-041-2/+18
| | | | | | Add support for X509_NAME_print_ex() in req. Initial code for cutomizable X509 print routines.
* On VMS, stdout may very well lead to a file that is written to in aRichard Levitte2000-09-201-1/+15
| | | | | | | | | | | | | | | | | record-oriented fashion. That means that every write() will write a separate record, which will be read separately by the programs trying to read from it. This can be very confusing. The solution is to put a BIO filter in the way that will buffer text until a linefeed is reached, and then write everything a line at a time, so every record written will be an actual line, not chunks of lines and not (usually doesn't happen, but I've seen it once) several lines in one record. Voila, BIO_f_linebuffer() is born. Since we're so close to release time, I'm making this VMS-only for now, just to make sure no code is needlessly broken by this. After the release, this BIO method will be enabled on all other platforms as well.
* Marin Kraemer <Martin.Kraemer@MchP.Siemens.De> sent us patches to makeRichard Levitte2000-09-101-0/+7
| | | | the OpenSSL commands x50 and req work better on a EBCDIC system.
* Make req seed the PRNG if signing withDr. Stephen Henson2000-07-121-0/+5
| | | | | | an already existing DSA key. Document the new smime options.
* Undo the changes I just made. I'm not sure what I was thinking of.Richard Levitte2000-06-281-11/+2
| | | | The message to everyone is "Do not hack OpenSSL when stressed"...
* Make it possible for users of the openssl applications to specify theRichard Levitte2000-06-281-2/+11
| | | | EGD should be used as seeding input, and where the named socket is.
* Move add_oid_section to apps.c, so it can be shared by severalRichard Levitte2000-06-221-24/+1
| | | | | applications. Also, have it and the certificate and key loading functions take a BIO argument for error output.
* Change req so the new parameter '-rand file' uses the given file inRichard Levitte2000-06-221-6/+3
| | | | | addition to the file given through the RANDFILE option or environment variable.
* Forgot the self-documentation within req.Richard Levitte2000-06-221-0/+4
|
* Small change to accept the command line parameter '-rand file'. ThisRichard Levitte2000-06-221-1/+12
| | | | | parameter takes precedence over the RANDFILE option in the configuration file.
* There have been a number of complaints from a number of sources that namesRichard Levitte2000-06-011-2/+2
| | | | | | | | | like Malloc, Realloc and especially Free conflict with already existing names on some operating systems or other packages. That is reason enough to change the names of the OpenSSL memory allocation macros to something that has a better chance of being unique, like prepending them with OPENSSL_. This change includes all the name changes needed throughout all C files.
* Don't Free() password if it was read from config file.Dr. Stephen Henson2000-03-091-2/+2
|
* Rename functions for new convention.Dr. Stephen Henson2000-02-261-2/+2
|
* New functions and option to use NEW in certificate requests.Dr. Stephen Henson2000-02-181-4/+8
|
* Pass phrase reorganisation.Dr. Stephen Henson2000-02-161-27/+11
|
* Make gcc 2.95.2 happy again, even under ``-Wall -Wshadow -Wpointer-arith ↵Ralf S. Engelschall2000-02-111-0/+2
| | | | | | -Wcast-align -Wmissing-prototypes -Wmissing-declarations -Wnested-externs -Winline''.
* Finish off the X509_ATTRIBUTE string stuff.Dr. Stephen Henson2000-01-201-217/+17
|
* New function X509_CTX_rget_chain(), make SSL_SESSION_print() display return ↵Dr. Stephen Henson2000-01-091-3/+3
| | | | | | code. Remove references to 'TXT' in -inform and -outform switches.
* Make NO_RSA compile with pedantic.Ben Laurie2000-01-081-0/+4
|
* apps/openssl.cnf and the documentation say it's "nombstr",Bodo Möller2000-01-071-1/+1
| | | | but crypto/asn1/a_strnid.c had "nombchar".
* Initial automation changes to 'req' and X509_ATTRIBUTE functions.Dr. Stephen Henson2000-01-061-26/+247
|
* Fix some of the command line password stuff. New functionDr. Stephen Henson2000-01-011-6/+4
| | | | | | | that can automatically determine the type of a DER encoded "traditional" format private key and change some of the d2i functions to use it instead of requiring the application to work out the key type.
* Allow passwords to be included on command line for a fewDr. Stephen Henson1999-12-241-2/+44
| | | | more utilities.
* Add a comment.Bodo Möller1999-12-181-2/+2
|
* Change the trust and purpose code so it doesn't need initDr. Stephen Henson1999-12-021-1/+0
| | | | either and has a static and dynamic mix.
* Modify the X509 V3 extension lookup code.Dr. Stephen Henson1999-12-011-2/+0
|
* 'req' fixes. Reinstate length check one request fields.Dr. Stephen Henson1999-11-141-18/+20
| | | | | Fix to stop null being added to attributes. Modify X509_LOOKUP, X509_INFO to handle auxiliary info.
* Fix to the -revoke option in ca. It was leaking memory, crashing and justDr. Stephen Henson1999-11-081-0/+1
| | | | | | | | | plain not working :-( Also fix some memory leaks in the new X509_NAME code. Fix so new app_rand code doesn't crash 'x509' and move #include so it compiles under Win32.
* Continued multibyte character support.Dr. Stephen Henson1999-10-271-14/+14
| | | | | | | Add a bunch of functions to simplify the creation of X509_NAME structures. Change the X509_NAME_entry_add stuff in req/ca so it no longer uses X509_NAME_entry_count(): passing -1 has the same effect.
* Various randomness handling bugfixes and improvements --Bodo Möller1999-10-261-22/+4
| | | | | some utilities that should have used RANDFILE did not, and -rand handling was broken except in genrsa.
* Reinitialize global variables when necessary (for monolith application).Bodo Möller1999-09-031-0/+1
|
* Allow the extension section specified in config files to be overriddenDr. Stephen Henson1999-08-271-3/+16
| | | | on the command line for various utilities.
* Allow extensions to be added to certificate requests, update the sampleDr. Stephen Henson1999-08-251-0/+32
| | | | config file (change RAW to DER).
* Additional user data argument to pem_password_cb function typeBodo Möller1999-07-211-5/+5
| | | | | and to lots of PEM_... functions. Submitted by: Damien Miller <dmiller@ilogic.com.au>
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-28 02:15:44 +0000