aboutsummaryrefslogtreecommitdiffstats
path: root/apps
Commit message (Collapse)AuthorAgeFilesLines
* ECDSA supportBodo Möller2002-02-139-650/+1843
| | | | Submitted by: Nils Larsch <nla@trustcenter.de>
* 'make update'Richard Levitte2002-02-051-1/+4
|
* HP-UX 32bit:Lutz Jänicke2002-01-291-1/+7
| | | | | | | | | | | | | | | | | | | | * When linking against shared libraries, the absolute path is remembered. - When linking against -L.., '..' is remembered inside the executable, so it will fail after "make install" or when not called from inside the "apps/" subdirectory of the build tree. - When using the "+cdp" option of "ld", the ".." information can be exchanged against $(INSTALL_TOP)/lib. In this case the executable will however refuse to work before "make install" has been called. This makes testing the 'openssl' executable a problem. * Solution 1: Relink the "openssl" executable, when "make install" is called. This would however require significant changes to the toplevel Makefile and the apps/ Makefile. * Solution 2: Statically link against libssl and libcrypto, so that the "openssl" executable is no longer dependant on the openssl shared libraries. Select option 2 for HP-UX 32bit, as this requires the smallest change.
* Apply patch from Toomas Kiisk <vix@cyber.ee> and complete it.Richard Levitte2002-01-291-1/+1
|
* Apply the following changes by Toomas Kiisk <vix@cyber.ee>:Richard Levitte2002-01-253-58/+80
| | | | | | | | * make openssl rsa work with -engine chil * misc changes, including debug-linux-ppro Configure target and FORMAT_NETSCAPE-aware load_{,pub}key() This completes the application of his changes.
* I must learn to compile before I commit...Richard Levitte2002-01-251-1/+1
|
* Add -keyform. Document -engine.Richard Levitte2002-01-251-0/+6
|
* Prototype info function.Ben Laurie2002-01-122-2/+2
|
* make updateRichard Levitte2002-01-021-21/+22
|
* Implement speed measurement for AES.Richard Levitte2002-01-021-13/+117
| | | | | Submitted by Stephen Sprunk <stephen@sprunk.org> as part of his AES integration patch.
* RSA counter should only be defined of RSA is available.Richard Levitte2002-01-021-1/+2
|
* Change pkcs12 so the certificates coming from -in do not get tossed ifRichard Levitte2001-12-121-2/+8
| | | | -certfile is given as well.
* Improve back compatibility.Ben Laurie2001-12-091-3/+3
|
* fix warnings (one of them was clearly justified)Bodo Möller2001-12-071-3/+3
|
* Add -pubkey option to req command.Dr. Stephen Henson2001-12-011-10/+33
|
* check OPENSSL_NO_... before including header files that might beBodo Möller2001-11-221-5/+15
| | | | disabled
* In this particular error condition, the structural reference wasn't beingGeoff Thorpe2001-11-221-0/+1
| | | | released.
* Make it possible to give digest names as -evp arguments.Richard Levitte2001-11-151-27/+49
|
* If an engine isn't built in, try loading it as a shareable libraryRichard Levitte2001-11-151-2/+21
| | | | | instead. This also makes it possible for users to simply give said shareable library as argument for the -engine option.
* make updateRichard Levitte2001-11-151-26/+25
| | | | perl util/mkerr.pl -recurse -write -rebuild
* Change the order of events so the capabilities of loaded engines canRichard Levitte2001-11-141-6/+8
| | | | get listed as well.
* Implement STARTTLS for certain protocols, currently only supporting SMTP.Richard Levitte2001-11-141-2/+33
|
* more output for SSL 2.0 in our msg_callbackBodo Möller2001-11-101-0/+61
|
* Win32 fixes.Dr. Stephen Henson2001-11-061-8/+11
|
* Fix email address delete code.Dr. Stephen Henson2001-11-061-1/+1
|
* DOS and Windows do not like unistd.hRichard Levitte2001-11-052-0/+4
|
* If verify fails, say why.Ben Laurie2001-11-021-0/+1
|
* Change the shared library support so the shared libraries get builtRichard Levitte2001-10-301-1/+4
| | | | | | | | sooner and the programs get built against the shared libraries. This requires a bit more work. Things like -rpath and the possibility to still link the programs statically should be included. Some cleanup is also needed. This will be worked on.
* Addapt VMS scripts to the newer disk layout system ODS-5, which allows more ↵Richard Levitte2001-10-291-0/+1
| | | | than one period and mixed size characters in file names
* Another noemailDN fix.Dr. Stephen Henson2001-10-271-6/+3
|
* Allow ca to certify requests containing BMPStrings and UTF8Strings.Dr. Stephen Henson2001-10-271-7/+10
|
* Bugfixes for noemailDN option. Make it use theDr. Stephen Henson2001-10-271-17/+15
| | | | | | correct name (instead of NULL) if nomailDN is not set, fix memory leaks and retain DN structure when deleting emailAddress.
* New options to allow req to accept UTF8 strings as input.Dr. Stephen Henson2001-10-261-24/+44
|
* Make sure openssl speed is compilable on systems where fork() doesn'tRichard Levitte2001-10-251-1/+18
| | | | exist. For now, that's all the ones we "support" except Unix.
* Add paralellism to speed - note that this currently causes a weird memory leak.Ben Laurie2001-10-251-171/+369
|
* Add '-noemailDN' option to 'openssl ca'. This prevents inclusion ofBodo Möller2001-10-251-38/+98
| | | | | | | | the e-mail address in the DN (i.e., it will go into a certificate extension only). The new configuration file option 'email_in_dn = no' has the same effect. Submitted by: Massimiliano Pala madwolf@openca.org
* Due to an increasing number of clashes between modern OpenSSL andRichard Levitte2001-10-244-51/+54
| | | | | | | | | | | | libdes (which is still used out there) or other des implementations, the OpenSSL DES functions are renamed to begin with DES_ instead of des_. Compatibility routines are provided and declared by including openssl/des_old.h. Those declarations are the same as were in des.h when the OpenSSL project started, which is exactly how libdes looked at that time, and hopefully still looks today. The compatibility functions will be removed in some future release, at the latest in version 1.0.
* Reject certificates with unhandled critical extensions.Dr. Stephen Henson2001-10-211-0/+3
|
* Stop spurious "unable to load config info" errors in reqDr. Stephen Henson2001-10-212-2/+7
|
* New functions SSL[_CTX]_set_msg_callback().Bodo Möller2001-10-209-10/+650
| | | | | | | | | | | | | | | | | | | | | New macros SSL[_CTX]_set_msg_callback_arg(). Message callback imlementation for SSL 3.0/TLS 1.0 (no SSL 2.0 yet). New '-msg' option for 'openssl s_client' and 'openssl s_server' that enable a message callback that displays all protocol messages. In ssl3_get_client_hello (ssl/s3_srvr.c), generate a fatal alert if client_version is smaller than the protocol version in use. Also change ssl23_get_client_hello (ssl/s23_srvr.c) to select TLS 1.0 if the client demanded SSL 3.0 but only TLS 1.0 is enabled; then the client will at least see that alert. Fix SSL[_CTX]_ctrl prototype (void * instead of char * for generic pointer). Add/update some OpenSSL copyright notices.
* Add missing EVP_CIPHER_CTX_{init,cleanup}Dr. Stephen Henson2001-10-201-0/+2
|
* Modify EVP cipher behaviour in a similar wayDr. Stephen Henson2001-10-171-4/+4
| | | | to digests to retain compatibility.
* Flush buffers to prevent mixed output (Adam Back <adam@cypherspace.org>).Lutz Jänicke2001-10-161-0/+2
|
* Retain compatibility of EVP_DigestInit() and EVP_DigestFinal()Dr. Stephen Henson2001-10-162-12/+13
| | | | | | with existing code. Modify library to use digest *_ex() functions.
* Add support for md4WithRSAEncryption.Richard Levitte2001-10-101-1/+1
|
* 'make update'Richard Levitte2001-10-101-2/+2
|
* 'make update'Richard Levitte2001-10-101-2/+2
|
* 'make update'Richard Levitte2001-10-041-245/+245
|
* Because there's chances we clash with the system's types.h, rename ourRichard Levitte2001-10-041-1/+1
| | | | types.h to ossl_typ.h.
* sch isn't an array, how did this pass through gcc?Richard Levitte2001-10-021-1/+1
|
generated by cgit v1.2.3 (git 2.39.1) at 2024-09-19 22:52:34 +0000