Dr. Stephen Henson
9c1d63540f
Clarify CMS_decrypt behaviour.
...
(cherry picked from commit 5f8e9a477a
)
2014-04-15 18:19:26 +01:00
Dr. Stephen Henson
db34be4224
Add new key fingerprint.
...
(cherry picked from commit 3143a332e8
)
2014-04-11 02:51:34 +01:00
Dr. Stephen Henson
a4896327e3
Document -verify_return_error option.
...
(cherry picked from commit 4e6c12f308
)
2014-04-07 13:03:54 +01:00
Dr. Stephen Henson
04f35a8909
Document new crl option.
...
(cherry picked from commit dbb7654dc1
)
2014-04-03 13:35:48 +01:00
Dr. Stephen Henson
1f44dac24d
Add -no_resumption_on_reneg to SSL_CONF.
2014-03-27 15:51:25 +00:00
Dr. Stephen Henson
2dd6976f6d
Update chain building function.
...
Don't clear verification errors from the error queue unless
SSL_BUILD_CHAIN_FLAG_CLEAR_ERROR is set.
If errors occur during verification and SSL_BUILD_CHAIN_FLAG_IGNORE_ERROR
is set return 2 so applications can issue warnings.
2014-03-27 14:23:46 +00:00
Dr. Stephen Henson
12c56e4888
Sync crypto documentation with master branch.
2014-03-03 15:12:17 +00:00
Dr. Stephen Henson
b60272b01f
PKCS#8 support for alternative PRFs.
...
Add option to set an alternative to the default hmacWithSHA1 PRF
for PKCS#8 private key encryptions. This is used automatically
by PKCS8_encrypt if the nid specified is a PRF.
Add option to pkcs8 utility.
Update docs.
2014-03-01 23:14:08 +00:00
Dr. Stephen Henson
c5ea65b157
New chain building flags.
...
New flags to build certificate chains. The can be used to rearrange
the chain so all an application needs to do is add all certificates
in arbitrary order and then build the chain to check and correct them.
Add verify error code when building chain.
Update docs.
(cherry picked from commit 13dc3ce9ab
)
2014-02-23 13:49:21 +00:00
Dr. Stephen Henson
58b86e4235
Option to set current cert to server certificate.
...
(cherry picked from commit daddd9a950
)
2014-02-23 13:49:21 +00:00
Kurt Roeckx
b3d8de7903
Fix additional pod errors with numbered items.
...
(cherry picked from commit e547c45f1c
)
2014-02-14 22:35:15 +00:00
Scott Schaefer
0413ea5801
Fix various spelling errors
...
(cherry picked from commit 2b4ffc659e
)
2014-02-14 22:35:15 +00:00
Scott Schaefer
2f6fba6772
Document pkcs12 -password behavior
...
apps/pkcs12.c accepts -password as an argument. The document author
almost certainly meant to write "-password, -passin".
However, that is not correct, either. Actually the code treats
-password as equivalent to -passin, EXCEPT when -export is also
specified, in which case -password as equivalent to -passout.
(cherry picked from commit 856c6dfb09
)
2014-02-14 22:35:15 +00:00
Scott Deboy
038bec784e
Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions)
...
Removed prior audit proof logic - audit proof support was implemented using the generic TLS extension API
Tests exercising the new supplemental data registration and callback api can be found in ssltest.c.
Implemented changes to s_server and s_client to exercise supplemental data callbacks via the -auth argument, as well as additional flags to exercise supplemental data being sent only during renegotiation.
(cherry picked from commit 36086186a9
)
Conflicts:
Configure
apps/s_client.c
apps/s_server.c
ssl/ssl.h
ssl/ssl3.h
ssl/ssltest.c
2014-02-08 16:12:15 -08:00
Dr. Stephen Henson
e2f06800bc
New ctrl to set current certificate.
...
New ctrl sets current certificate based on certain criteria. Currently
two options: set the first valid certificate as current and set the
next valid certificate as current. Using these an application can
iterate over all certificates in an SSL_CTX or SSL structure.
(cherry picked from commit 0f78819c8c
)
2014-02-02 23:12:06 +00:00
Dr. Stephen Henson
f2d678e6e8
Clarify docs.
...
Remove reference to ERR_TXT_MALLOCED in the error library as that is
only used internally. Indicate that returned error data must not be
freed.
2014-01-29 00:59:35 +00:00
Dr. Stephen Henson
aabfee601e
Certificate callback doc.
...
(cherry picked from commit 46ab9bbd7f
)
2014-01-28 13:38:55 +00:00
Jeff Trawick
ae6fbb5df0
typo
...
(cherry picked from commit 5edce5685f
)
2014-01-10 23:02:46 +00:00
Jeff Trawick
f9c1f03754
typo
...
(cherry picked from commit 4b64e0cbdb
)
2014-01-10 23:02:20 +00:00
Dr. Stephen Henson
b9fa413a08
Use algorithm specific chains for certificates.
...
Fix a limitation in SSL_CTX_use_certificate_chain_file(): use algorithm
specific chains instead of the shared chain.
Update docs.
(cherry picked from commit a4339ea3ba
)
Conflicts:
CHANGES
2014-01-03 22:45:20 +00:00
Dr. Stephen Henson
2a1b7bd380
New functions to retrieve certificate from SSL_CTX
...
New functions to retrieve current certificate or private key
from an SSL_CTX.
Constify SSL_get_private_key().
(cherry picked from commit a25f9adc77
)
2013-11-18 18:59:18 +00:00
Dr. Stephen Henson
1abfa78a8b
Constify.
2013-11-14 21:00:40 +00:00
Rob Stradling
dc4bdf592f
Additional "chain_cert" functions.
...
PR#3169
This patch, which currently applies successfully against master and
1_0_2, adds the following functions:
SSL_[CTX_]select_current_cert() - set the current certificate without
disturbing the existing structure.
SSL_[CTX_]get0_chain_certs() - get the current certificate's chain.
SSL_[CTX_]clear_chain_certs() - clear the current certificate's chain.
The patch also adds these functions to, and fixes some existing errors
in, SSL_CTX_add1_chain_cert.pod.
(cherry picked from commit 2f56c9c015dbca45379c9a725915b3b8e765a119)
2013-11-13 23:47:37 +00:00
Dr. Stephen Henson
024dbfd44c
Document RSAPublicKey_{in,out} options.
...
(cherry picked from commit 7040d73d22987532faa503630d6616cf2788c975)
2013-11-09 15:09:22 +00:00
Dr. Stephen Henson
233069f8db
Add CMS_SignerInfo_get0_signature function.
...
Add function to retrieve the signature from a CMS_SignerInfo structure:
applications can then read or modify it.
(cherry picked from commit e8df6cec4c09b9a94c4c07abcf0402d31ec82cc1)
2013-11-09 15:09:22 +00:00
Dr. Stephen Henson
0b33466b3f
Add SSL_CONF command to set DH Parameters.
...
(cherry picked from commit c557f921dc
)
2013-11-02 13:42:03 +00:00
Dr. Stephen Henson
044f8ca87d
Extend SSL_CONF
...
Extend SSL_CONF to return command value types.
Add certificate and key options.
Update documentation.
(cherry picked from commit ec2f7e568e
)
2013-11-02 13:41:19 +00:00
Dr. Stephen Henson
a78b21fc67
Update cms docs.
...
(cherry picked from commit dfcb42c68e
)
2013-10-01 14:01:19 +01:00
Dr. Stephen Henson
dddb38834e
Update cms docs.
...
Document use of -keyopt to use RSA-PSS and RSA-OAEP modes.
(cherry picked from commit 4bf4a6501c
)
2013-10-01 14:01:18 +01:00
Ben Laurie
4f8a706dc7
Merge remote-tracking branch 'trevp/pemfix' into trev-pem-fix
2013-09-20 15:39:08 -07:00
Rob Stradling
07df5018be
Don't prefer ECDHE-ECDSA ciphers when the client appears to be Safari on OS X.
...
OS X 10.8..10.8.3 has broken support for ECDHE-ECDSA ciphers.
2013-09-16 14:03:21 +01:00
Dr. Stephen Henson
593605d3ec
Document supported curve functions.
...
(cherry picked from commit c3eb33763b
)
2013-09-03 15:43:59 +01:00
Dr. Stephen Henson
c9ea4df8f9
Document -force_pubkey option.
...
(cherry picked from commit b093a06866bf632a97a9a0286e2d08f69c3cf7dd)
2013-08-21 13:41:17 +01:00
Dr. Stephen Henson
89ff56faf1
Correct ECDSA example.
...
(cherry picked from commit 3a918ea2bbf4175d9461f81be1403d3781b2c0dc)
2013-08-20 17:30:16 +01:00
Dr. Stephen Henson
df430489cf
Add documentation.
...
Preliminary documentation for chain and verify stores and certificate chain
setting functions.
(cherry picked from commit eeb15452a0
)
2013-08-18 13:53:32 +01:00
Trevor
e27711cfdd
Trying cherrypick:
...
Add support for arbitrary TLS extensions.
Contributed by Trevor Perrin.
Conflicts:
CHANGES
ssl/ssl.h
ssl/ssltest.c
test/testssl
Fix compilation due to #endif.
Cherrypicking more stuff.
Cleanup of custom extension stuff.
serverinfo rejects non-empty extensions.
Omit extension if no relevant serverinfo data.
Improve error-handling in serverinfo callback.
Cosmetic cleanups.
s_client documentation.
s_server documentation.
SSL_CTX_serverinfo documentation.
Cleaup -1 and NULL callback handling for custom extensions, add tests.
Cleanup ssl_rsa.c serverinfo code.
Whitespace cleanup.
Improve comments in ssl.h for serverinfo.
Whitespace.
Cosmetic cleanup.
Reject non-zero-len serverinfo extensions.
Whitespace.
Make it build.
Conflicts:
test/testssl
2013-07-03 11:53:30 +01:00
Dr. Stephen Henson
e1dee801b9
Add function CMS_RecipientInfo_encrypt
...
Add CMS_RecipientInfo_encrypt: this function encrypts an existing content
encryption key to match the key in the RecipientInfo structure: this is
useful if a new recpient is added to and existing enveloped data structure.
Add documentation.
(cherry picked from commit e1f1d28f34
)
2013-02-26 17:06:08 +00:00
Dr. Stephen Henson
1510b1f4c2
Update SSL_CONF docs.
...
Fix some typos and update version number first added: it has now been
backported to OpenSSL 1.0.2.
(cherry picked from commit 4365e4aad9
)
2013-02-26 15:29:49 +00:00
Nick Alcock
ae5c1ca377
Fix POD errors to stop make install_docs dying with pod2man 2.5.0+
...
podlators 2.5.0 has switched to dying on POD syntax errors. This means
that a bunch of long-standing erroneous POD in the openssl documentation
now leads to fatal errors from pod2man, halting installation.
Unfortunately POD constraints mean that you have to sort numeric lists
in ascending order if they start with 1: you cannot do 1, 0, 2 even if
you want 1 to appear first. I've reshuffled such (alas, I wish there
were a better way but I don't know of one).
(cherry picked from commit 5cc2707742
)
2013-02-15 19:39:59 +01:00
Ben Laurie
010ac38a98
Correct EVP_PKEY_verifyrecover to EVP_PKEY_verify_recover (RT 2955).
2013-01-12 12:51:58 +00:00
Dr. Stephen Henson
49ef33fa34
add SSL_CONF functions and documentation (backport from HEAD)
2012-12-29 13:30:56 +00:00
Ben Laurie
4e72220fd6
Documentation improvements by Chris Palmer (Google).
2012-12-14 13:29:17 +00:00
Ben Laurie
5dca1e338c
Document -pubkey option.
2012-12-13 16:16:48 +00:00
Dr. Stephen Henson
1d5f3f4640
correct docs
2012-11-19 20:06:57 +00:00
Richard Levitte
8baf604a39
Correct environment variable is OPENSSL_ALLOW_PROXY_CERTS.
2012-05-04 10:43:24 +00:00
Dr. Stephen Henson
b344a826ad
update rather ancient EVP digest documentation
2012-04-10 22:28:13 +00:00
Dr. Stephen Henson
cdb41713a4
Document RFC5114 "generation" options.
...
(backport from HEAD)
2012-04-07 20:42:17 +00:00
Andy Polyakov
1fb07a7de8
doc/apps: formatting fixes [from HEAD].
...
PR: 2683
Submitted by: Annie Yousar
2012-01-11 21:58:42 +00:00
Andy Polyakov
c6706a6f6c
ecdsa.pod: typo.
...
PR: 2678
Submitted by: Annie Yousar
2012-01-11 21:41:50 +00:00
Dr. Stephen Henson
efbb7ee432
PR: 1794
...
Submitted by: Peter Sylvester <peter.sylvester@edelweb.fr>
Reviewed by: steve
Document unknown_psk_identify alert, remove pre-RFC 5054 string from
ssl_stat.c
2011-11-13 13:13:14 +00:00
Bodo Möller
79571bb1ca
Clarify warning
2011-10-13 13:25:03 +00:00
Bodo Möller
1dc4c8c727
Fix typo.
...
Submitted by: Jim Morrison
2011-07-11 12:13:56 +00:00
Bodo Möller
346601bc32
CVE-2010-4180 fix (from OpenSSL_1_0_0-stable)
2011-02-03 10:42:00 +00:00
Dr. Stephen Henson
61c10d42f6
fix doc typos
2010-12-02 13:45:25 +00:00
Dr. Stephen Henson
0172ad2902
Minor documentation fixes, PR#2345
2010-10-04 13:28:27 +00:00
Dr. Stephen Henson
d9aa352ff0
Minor documentation fixes, PR#2344
2010-10-04 13:24:07 +00:00
Dr. Stephen Henson
ca91057d50
PR: 2252
...
Submitted By: Ger Hobbelt <ger@hobbelt.com>
Update docs to BIO_f_buffer()
2010-05-03 15:29:51 +00:00
Andy Polyakov
336d1ee733
bss_file.c: reserve for option to encode file name in UTF-8 on Windows
...
[from HEAD].
2010-04-28 20:04:37 +00:00
Dr. Stephen Henson
acc9938ba5
Add SHA2 algorithms to SSL_library_init(). Although these aren't used
...
directly by SSL/TLS SHA2 certificates are becoming more common and
applications that only call SSL_library_init() and not
OpenSSL_add_all_alrgorithms() will fail when verifying certificates.
Update docs.
2010-04-07 13:18:30 +00:00
Dr. Stephen Henson
f6d13ac8cf
Remove obsolete PRNG note. Add comment about use of SHA256 et al.
2010-04-06 15:05:47 +00:00
Dr. Stephen Henson
24cb653c6b
PR: 2209
...
Submitted Daniel Mentz <danielml@sent.com>
Documentation typo.
2010-04-06 14:45:31 +00:00
Dr. Stephen Henson
6507653e72
The meaning of the X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY and
...
X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT error codes were reversed in
the verify application documentation.
2010-02-23 14:09:22 +00:00
Dr. Stephen Henson
4f3d52fedc
clarify documentation
2010-02-18 12:41:50 +00:00
Dr. Stephen Henson
989238802a
Allow renegotiation if SSL_OP_LEGACY_SERVER_CONNECT is set as well as
...
initial connection to unpatched servers. There are no additional security
concerns in doing this as clients don't see renegotiation during an
attack anyway.
2010-02-17 18:38:10 +00:00
Dr. Stephen Henson
81d87a2a28
update references to new RI RFC
2010-02-12 21:59:57 +00:00
Dr. Stephen Henson
5a6ae115f8
reword RI description
2010-01-27 18:53:49 +00:00
Dr. Stephen Henson
5e5df40b9b
update documentation to reflect new renegotiation options
2010-01-27 17:50:20 +00:00
Dr. Stephen Henson
a758f61793
PR: 2157
...
Submitted by: "Green, Paul" <Paul.Green@stratus.com>
Typo.
2010-01-27 12:55:52 +00:00
Dr. Stephen Henson
1699389a46
Tolerate PKCS#8 DSA format with negative private key.
2010-01-22 20:17:30 +00:00
Dr. Stephen Henson
39f0a4d8e9
typo
2010-01-21 18:46:28 +00:00
Dr. Stephen Henson
93fac08ec3
PR: 2136
...
Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at>
Add options to output hash using older algorithm compatible with OpenSSL
versions before 1.0.0
2010-01-12 17:27:11 +00:00
Dr. Stephen Henson
4359b88bbe
Typo
2010-01-05 17:50:01 +00:00
Dr. Stephen Henson
6e94156199
Remove tabs on blank lines: they produce warnings in pod2man
2010-01-05 17:17:20 +00:00
Dr. Stephen Henson
730f5752ff
clarify docs
2009-12-09 18:17:09 +00:00
Dr. Stephen Henson
a88c73b43a
Document option clearning functions.
...
Initial secure renegotiation documentation.
2009-12-09 18:00:52 +00:00
Dr. Stephen Henson
e274c8fb72
typo
2009-11-29 13:45:18 +00:00
Dr. Stephen Henson
67bcde9ba8
PR: 2078
...
Submitted by: Dale Anderson <dra@redevised.net>
Approved by: steve@openssl.org
Corrections to bn_internal documentation.
2009-10-28 13:51:56 +00:00
Dr. Stephen Henson
5b2b60ae98
Document additions for X509 chain verification from HEAD
2009-10-18 15:28:59 +00:00
Dr. Stephen Henson
164c263b5c
PR: 2074
...
Submitted by: Bram Neijt <bneijt@gmail.com>
Approved by: steve@openssl.org
Typo: "contet".
2009-10-16 15:29:34 +00:00
Dr. Stephen Henson
50425bc137
Change version from 0.9.9 to 1.0.0 in docs
2009-09-30 23:40:52 +00:00
Dr. Stephen Henson
3333428b44
PR: 2023
...
Submitted by: James Beckett <jmb.openssl@nospam.hackery.net>, steve
Approved by: steve@openssl.org
Fix documentation errors in d2i_X509 manual pages.
2009-09-12 23:34:56 +00:00
Dr. Stephen Henson
a131de9bb2
PR: 2025
...
Submitted by: Tomas Mraz <tmraz@redhat.com>
Approved by: steve@openssl.org
Constify SSL_CIPHER_description
2009-09-12 23:18:09 +00:00
Dr. Stephen Henson
7483896e15
Correction: salt is now default
2009-09-04 12:27:01 +00:00
Dr. Stephen Henson
f1ad8fb627
Doc update from HEAD.
2009-07-24 13:02:55 +00:00
Dr. Stephen Henson
1546de87f0
Fix from 0.9.8-stable.
2009-07-11 22:36:27 +00:00
Dr. Stephen Henson
710c1c34d1
Allow checking of self-signed certifictes if a flag is set.
2009-06-26 11:28:52 +00:00
Dr. Stephen Henson
0cb76e79df
PR: 1748
...
Fix nasty SSL BIO pop bug. Since this changes the behaviour of SSL BIOs and
will break applications that worked around the bug only included in 1.0.0 and
later.
2009-06-25 11:26:45 +00:00
Dr. Stephen Henson
bfd502f027
Updates from HEAD.
2009-06-16 16:39:20 +00:00
Dr. Stephen Henson
3e53c86001
Update from HEAD.
2009-06-02 11:06:28 +00:00
Dr. Stephen Henson
66b7e42790
PR: 1599
...
Reformat PKCS12_parse manual page, document return values.
2009-05-17 14:48:02 +00:00
Dr. Stephen Henson
9990cb75c1
PR: 1894
...
Submitted by: Ger Hobbelt <ger@hobbelt.com>
Approved by: steve@openssl.org
Fix various typos and stuff.
2009-04-16 17:22:51 +00:00
Dr. Stephen Henson
6fda4d7e5d
PR: 1887
...
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org
Document/clarify use of some options and include details of GOST algorihthm
usage.
2009-04-10 16:42:28 +00:00
Dr. Stephen Henson
36a252ea46
Typo.
2009-04-10 11:35:31 +00:00
Dr. Stephen Henson
a31a195246
PR: 1887 (part, modified)
...
Submitted by: "Victor B. Wagner" <vitus@cryptocom.ru>
Approved by: steve@openssl.org
Use correct command names in -engine description and fix typo.
2009-04-10 11:25:54 +00:00
Dr. Stephen Henson
81be661ae2
PR: 1626
...
Submitted by: Cerutti Pietro <pietro.cerutti@bfh.ch>
Fix manual page.
2009-04-06 15:16:41 +00:00
Dr. Stephen Henson
fab4447179
PR: 1880
...
Document -ocsp_uri command line switch to x509 utility.
2009-04-01 15:06:28 +00:00
cvs2svn
3d11b8f896
This commit was manufactured by cvs2svn to create branch
...
'OpenSSL_1_0_0-stable'.
2009-03-31 19:54:52 +00:00
Dr. Stephen Henson
c28a9165f2
PR: 1862
...
Typo.
2009-03-12 17:13:15 +00:00
Dr. Stephen Henson
2a0ff7ad20
Typo.
2009-03-08 12:01:20 +00:00
Dr. Stephen Henson
477fd4596f
PR: 1835
...
Submitted by: Damien Miller <djm@mindrot.org>
Approved by: steve@openssl.org
Fix various typos.
2009-02-14 21:49:38 +00:00
Bodo Möller
7ca1cfbac3
-hex option for openssl rand
...
PR: 1831
Submitted by: Damien Miller
2009-02-02 00:01:28 +00:00
Lutz Jänicke
706c5a4d35
Clarify (non-)blocking behavior of EGD socket interface used by RAND_egd().
2008-11-10 11:26:44 +00:00
Dr. Stephen Henson
87d52468aa
Update HMAC functions to return an error where relevant.
2008-11-02 16:00:39 +00:00
Geoff Thorpe
ab9c689ad3
Correct the FAQ and the threads man page re: CRYPTO_THREADID changes.
2008-08-06 16:41:50 +00:00
Geoff Thorpe
4c3296960d
Remove the dual-callback scheme for numeric and pointer thread IDs,
...
deprecate the original (numeric-only) scheme, and replace with the
CRYPTO_THREADID object. This hides the platform-specifics and should reduce
the possibility for programming errors (where failing to explicitly check
both thread ID forms could create subtle, platform-specific bugs).
Thanks to Bodo, for invaluable review and feedback.
2008-08-06 15:54:15 +00:00
Lutz Jänicke
787287af40
Refer to SSL_pending from the man page for SSL_read
2008-08-01 15:03:20 +00:00
Dr. Stephen Henson
db50661fce
X509 verification fixes.
...
Ignore self issued certificates when checking path length constraints.
Duplicate OIDs in policy tree in case they are allocated.
Use anyPolicy from certificate cache and not current tree level.
2008-07-13 14:25:36 +00:00
Geoff Thorpe
5f834ab123
Revert my earlier CRYPTO_THREADID commit, I will commit a reworked
...
version some time soon.
2008-07-03 19:59:25 +00:00
Ben Laurie
8671b89860
Memory saving patch.
2008-06-03 02:48:34 +00:00
Ben Laurie
3c1d6bbc92
LHASH revamp. make depend.
2008-05-26 11:24:29 +00:00
Lutz Jänicke
51e00db226
Document "openssl s_server" -crl_check* options
...
Submitted by: Daniel Black <daniel.subs@internode.on.net>
2008-05-19 07:52:15 +00:00
Lutz Jänicke
a92ebf2290
Provide information about "openssl dgst" -hmac option.
2008-05-19 07:43:34 +00:00
Dr. Stephen Henson
19048b5c8d
New function CMS_add1_crl().
2008-05-02 17:27:01 +00:00
Dr. Stephen Henson
c386f8ac38
Typo.
2008-05-01 23:35:36 +00:00
Dr. Stephen Henson
4a954b56c9
Use "cont" consistently in cms-examples.pl
...
Add a -certsout option to output any certificates in a message.
Add test for example 4.11
2008-05-01 23:30:06 +00:00
Dr. Stephen Henson
a12a6b9962
Correct argument order for CMS_decrypt() in docs.
2008-04-11 23:49:03 +00:00
Dr. Stephen Henson
a5db50d005
Revert argument swap change... oops CMS_uncompress() was consistent...
2008-04-11 23:23:18 +00:00
Dr. Stephen Henson
529d329ce1
Make CMS_uncompress() argument order consistent with other functions.
2008-04-11 17:34:13 +00:00
Dr. Stephen Henson
38d3a73808
Reformat, fix typos and clarify CMS API docs.
2008-04-10 23:28:25 +00:00
Dr. Stephen Henson
73b3c2d861
Correct HISTORY reference.
2008-04-10 15:59:40 +00:00
Dr. Stephen Henson
4670e00ff5
Typo.
2008-04-10 15:56:27 +00:00
Dr. Stephen Henson
287df2fe49
Add docs for CMS_final() and BIO_new_CMS().
2008-04-10 11:55:57 +00:00
Dr. Stephen Henson
43d9e9d07f
Add CMS signed receipt genration and verification docs.
2008-04-10 11:00:47 +00:00
Dr. Stephen Henson
c420fab52b
Spellcheck CMS docs.
2008-04-10 10:46:11 +00:00
Dr. Stephen Henson
6469a1fda3
Signed receipt request function documentation.
2008-04-09 23:13:49 +00:00
Dr. Stephen Henson
da6ea110b5
Update docs.
2008-04-09 20:59:45 +00:00
Dr. Stephen Henson
fb777e1f79
Add CMS_uncompress manual page.
2008-04-09 20:55:55 +00:00
Dr. Stephen Henson
360bb61d86
Add CMS_compress() docs.
2008-04-09 17:04:36 +00:00
Dr. Stephen Henson
847e551f39
More CMS API documentation.
2008-04-09 16:08:16 +00:00
Dr. Stephen Henson
86173db853
Fix various typos, update SMIMECapabilities description.
2008-04-08 22:44:56 +00:00
Dr. Stephen Henson
9034c56c6c
Correct d2i/i2d typos.
2008-04-08 22:35:32 +00:00
Dr. Stephen Henson
e33ffaca12
Initial CMS API documentation.
2008-04-08 22:27:10 +00:00
Dr. Stephen Henson
41f81a0143
Update docs.
2008-03-29 00:54:24 +00:00
Geoff Thorpe
f7ccba3edf
There was a need to support thread ID types that couldn't be reliably cast
...
to 'unsigned long' (ie. odd platforms/compilers), so a pointer-typed
version was added but it required portable code to check *both* modes to
determine equality. This commit maintains the availability of both thread
ID types, but deprecates the type-specific accessor APIs that invoke the
callbacks - instead a single type-independent API is used. This simplifies
software that calls into this interface, and should also make it less
error-prone - as forgetting to call and compare *both* thread ID accessors
could have led to hard-to-debug/infrequent bugs (that might only affect
certain platforms or thread implementations). As the CHANGES note says,
there were corresponding deprecations and replacements in the
thread-related functions for BN_BLINDING and ERR too.
2008-03-28 02:49:43 +00:00
Dr. Stephen Henson
7122aafce5
Preliminary documentation for CMS utility.
2008-03-21 13:09:26 +00:00
Dr. Stephen Henson
0d7f6fc76a
Clarification and fix typo.
2008-02-25 18:11:47 +00:00
Bodo Möller
d9e427f09c
Make sure to set indent-tabs-mode so that we get tabs, not spaces.
2008-02-21 07:24:12 +00:00
Lutz Jänicke
7c1722c60d
Add missing colon in manpage
...
Submitted by: Richard Hartmann <richih.mailinglist@gmail.com>
2008-01-30 08:26:59 +00:00
Dr. Stephen Henson
3b979c5450
Clarify BITLIST format and include an example.
2008-01-23 19:10:53 +00:00
Dr. Stephen Henson
cec2538ca9
Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve
...
Use default algorithms for OCSP request and response signing. New command
line option to support other digest use for OCSP certificate IDs.
2007-12-04 12:41:28 +00:00
Richard Levitte
28f7e60d47
Change submitted by Doug Kaufman. He writes:
...
I just compiled the 9.9-dev version from the 12022007 tarball under
DJGPP. There were only 2 changes needed, one for b_sock.c, since
DJGPP with WATT32 doesn't define socklen_t and one for testtsa to
handle DOS style path separators. I also noted what seems to be a
typographical error in ts.pod. The test suite passes. The patch is
attached.
Since I am in the US, I have sent notifications to the Bureau of
Industry and Security and to the NSA.
2007-12-03 09:02:29 +00:00
Lutz Jänicke
b6a338cb29
Typos in man pages: dependant->dependent
...
Submitted by: Tobias Stoeckmann <tobias@bugol.de>
2007-11-19 09:18:03 +00:00
Bodo Möller
15bd07e923
fix typos
...
Submitted by: Ernst G. Giessmann
2007-11-19 07:24:08 +00:00
Lutz Jänicke
5f0477f47b
Typos
...
PR: 1578
Submitted by: Charles Longeau <chl@tuxfamily.org>
2007-09-24 11:22:58 +00:00
Lutz Jänicke
7bbce69721
Port from 0.9.8-stable
2007-09-24 11:01:18 +00:00
Dr. Stephen Henson
a529a80108
Update from stable branch.
2007-09-17 17:54:31 +00:00
Andy Polyakov
330591fdfc
Mention aes in enc.pod.
...
PR: 1529
2007-09-17 16:42:35 +00:00
Andy Polyakov
c7503f5240
Mention SHA2 in openssl.pod.
...
PR: 1575
2007-09-17 15:56:55 +00:00
Dr. Stephen Henson
f3fef74b09
Document ticket disabling option.
2007-08-23 22:49:13 +00:00
Dr. Stephen Henson
d24a9c8f5a
Docs and usage messages for RFC4507bis support.
2007-08-23 11:34:48 +00:00