Dr. Stephen Henson
89e674744d
Correct example.
2014-05-12 18:41:52 +01:00
Matt Caswell
c4afc40a9b
Fixed CRLF in file
2014-05-10 01:19:50 +01:00
mancha
8acb953880
Fix version documentation.
...
Specify -f is for compilation flags. Add -d to synopsis section.
Closes #77 .
2014-04-26 08:09:53 +01:00
Dr. Stephen Henson
0dd5b94aeb
Document -debug_decrypt option.
2014-04-16 12:15:43 +01:00
Dr. Stephen Henson
4e6c12f308
Document -verify_return_error option.
2014-04-07 13:02:39 +01:00
Dr. Stephen Henson
dbb7654dc1
Document new crl option.
2014-04-03 13:33:50 +01:00
Dr. Stephen Henson
0f817d3b27
Add initial security framework docs.
2014-03-28 16:42:18 +00:00
Dr. Stephen Henson
5693a30813
PKCS#8 support for alternative PRFs.
...
Add option to set an alternative to the default hmacWithSHA1 PRF
for PKCS#8 private key encryptions. This is used automatically
by PKCS8_encrypt if the nid specified is a PRF.
Add option to pkcs8 utility.
Update docs.
(cherry picked from commit b60272b01f
)
2014-03-01 23:16:08 +00:00
Scott Schaefer
2b4ffc659e
Fix various spelling errors
2014-02-14 22:29:12 +00:00
Scott Schaefer
856c6dfb09
Document pkcs12 -password behavior
...
apps/pkcs12.c accepts -password as an argument. The document author
almost certainly meant to write "-password, -passin".
However, that is not correct, either. Actually the code treats
-password as equivalent to -passin, EXCEPT when -export is also
specified, in which case -password as equivalent to -passout.
2014-02-14 22:28:37 +00:00
Dr. Stephen Henson
847865d0f9
Add suppot for ASCII with CRLF canonicalisation.
2014-02-13 14:35:56 +00:00
Daniel Kahn Gillmor
0ecfd920e5
update remaining documentation to move from EDH to DHE
...
change documentation and comments to indicate that we prefer the
standard "DHE" naming scheme everywhere over the older "EDH"
2014-01-09 15:43:28 +00:00
Daniel Kahn Gillmor
5a21cadbeb
use SSL_kDHE throughout instead of SSL_kEDH
...
DHE is the standard term used by the RFCs and by other TLS
implementations. It's useful to have the internal variables use the
standard terminology.
This patch leaves a synonym SSL_kEDH in place, though, so that older
code can still be built against it, since that has been the
traditional API. SSL_kEDH should probably be deprecated at some
point, though.
2014-01-09 15:43:28 +00:00
Dr. Stephen Henson
9c75461bef
Document RSAPublicKey_{in,out} options.
2013-11-09 15:09:23 +00:00
Lubomir Rintel
c8919dde09
POD: Fix item numbering
...
Newer pod2man considers =item [1-9] part of a numbered list, while =item
0 starts an unnumbered list. Add a zero effect formatting mark to override
this.
doc/apps/smime.pod around line 315: Expected text after =item, not a
number
...
PR#3146
2013-10-22 07:38:25 +01:00
Scott Deboy
36086186a9
Add callbacks supporting generation and retrieval of supplemental data entries, facilitating RFC 5878 (TLS auth extensions)
...
Removed prior audit proof logic - audit proof support was implemented using the generic TLS extension API
Tests exercising the new supplemental data registration and callback api can be found in ssltest.c.
Implemented changes to s_server and s_client to exercise supplemental data callbacks via the -auth argument, as well as additional flags to exercise supplemental data being sent only during renegotiation.
2013-09-06 13:59:13 +01:00
Veres Lajos
478b50cf67
misspellings fixes by https://github.com/vlajos/misspell_fixer
2013-09-05 21:39:42 +01:00
Carlos Alberto Lopez Perez
b98af49d97
Add an "-xmpphost" option to s_client
...
* Many XMPP servers are configured with multiple domains (virtual hosts)
* In order to establish successfully the TLS connection you have to specify
which virtual host you are trying to connect.
* Test this, for example with ::
* Fail:
openssl s_client -connect talk.google.com:5222 -starttls xmpp
* Works:
openssl s_client -connect talk.google.com:5222 -starttls xmpp -xmpphost gmail.com
2013-09-05 17:24:56 +01:00
Carlos Alberto Lopez Perez
50f307a98f
Add "xmpp" to the list of supported starttls protocols on s_client manpage
2013-09-05 17:24:56 +01:00
Dr. Stephen Henson
902efde1cc
Document -force_pubkey option.
2013-08-21 13:43:00 +01:00
Dr. Stephen Henson
dfcb42c68e
Update cms docs.
2013-08-05 16:23:22 +01:00
Dr. Stephen Henson
4bf4a6501c
Update cms docs.
...
Document use of -keyopt to use RSA-PSS and RSA-OAEP modes.
2013-06-21 23:43:06 +01:00
Trevor
9cd50f738f
Cleanup of custom extension stuff.
...
serverinfo rejects non-empty extensions.
Omit extension if no relevant serverinfo data.
Improve error-handling in serverinfo callback.
Cosmetic cleanups.
s_client documentation.
s_server documentation.
SSL_CTX_serverinfo documentation.
Cleaup -1 and NULL callback handling for custom extensions, add tests.
Cleanup ssl_rsa.c serverinfo code.
Whitespace cleanup.
Improve comments in ssl.h for serverinfo.
Whitespace.
Cosmetic cleanup.
Reject non-zero-len serverinfo extensions.
Whitespace.
Make it build.
2013-06-18 16:13:08 +01:00
Ben Laurie
3a778a2913
Documentation improvements by Chris Palmer (Google).
2012-12-14 13:28:49 +00:00
Ben Laurie
74cc3b583d
Document -pubkey.
2012-12-13 16:17:55 +00:00
Dr. Stephen Henson
13cfb04343
reorganise SSL_CONF_cmd manual page and update some links
2012-11-20 01:01:33 +00:00
Dr. Stephen Henson
095db6bdb8
correct docs
2012-11-19 20:06:44 +00:00
Dr. Stephen Henson
8dbeb110fb
document -trace and -msgfile options
2012-11-19 16:37:18 +00:00
Dr. Stephen Henson
765b413794
update docs for s_server/s_client
2012-11-19 16:07:53 +00:00
Dr. Stephen Henson
642aa226db
document -naccept option
2012-11-18 15:51:26 +00:00
Dr. Stephen Henson
63d103ea48
typo
2012-11-16 12:49:14 +00:00
Dr. Stephen Henson
999ffeca6c
update ciphers documentation to indicate implemented fixed DH ciphersuites
2012-11-16 01:15:15 +00:00
Dr. Stephen Henson
ffa4579679
initial update of ciphers doc
2012-11-16 00:42:38 +00:00
Andy Polyakov
677741f87a
doc/apps: formatting fixes.
...
PR: 2683
Submitted by: Annie Yousar
2012-01-11 21:58:19 +00:00
Dr. Stephen Henson
618eb125f0
Document RFC5114 "generation" options.
2011-12-07 00:42:22 +00:00
Dr. Stephen Henson
7e0de9e8a6
Minor documentation fixes, PR#2345
2010-10-04 13:28:46 +00:00
Dr. Stephen Henson
0d638dc1f6
Minor documentation fixes, PR#2344
2010-10-04 13:23:53 +00:00
Dr. Stephen Henson
7d3d1788a5
The meaning of the X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY and
...
X509_V_ERR_UNABLE_TO_GET_ISSUER_CERT error codes were reversed in
the verify application documentation.
2010-02-23 14:09:09 +00:00
Dr. Stephen Henson
3243698f1d
typo
2010-01-21 18:46:15 +00:00
Dr. Stephen Henson
0e0c6821fa
PR: 2136
...
Submitted by: Willy Weisz <weisz@vcpc.univie.ac.at>
Add options to output hash using older algorithm compatible with OpenSSL
versions before 1.0.0
2010-01-12 17:29:34 +00:00
Dr. Stephen Henson
6084c797a8
Remove tabs on blank lines: they produce warnings in pod2man
2010-01-05 17:16:54 +00:00
Dr. Stephen Henson
fb552ac616
Change version from 0.9.9 to 1.0.0 in docs
2009-09-30 23:43:01 +00:00
Dr. Stephen Henson
88a3dd7896
Correction: salt is now default
2009-09-04 12:27:12 +00:00
Dr. Stephen Henson
f3be6c7b7d
Update from 1.0.0-stable.
2009-06-26 11:29:26 +00:00
Dr. Stephen Henson
e5fa864f62
Updates from 1.0.0-stable.
2009-04-15 15:27:03 +00:00
Dr. Stephen Henson
14023fe352
Merge from 1.0.0-stable branch.
2009-04-03 11:45:19 +00:00
Dr. Stephen Henson
c28a9165f2
PR: 1862
...
Typo.
2009-03-12 17:13:15 +00:00
Bodo Möller
7ca1cfbac3
-hex option for openssl rand
...
PR: 1831
Submitted by: Damien Miller
2009-02-02 00:01:28 +00:00
Dr. Stephen Henson
db50661fce
X509 verification fixes.
...
Ignore self issued certificates when checking path length constraints.
Duplicate OIDs in policy tree in case they are allocated.
Use anyPolicy from certificate cache and not current tree level.
2008-07-13 14:25:36 +00:00
Lutz Jänicke
51e00db226
Document "openssl s_server" -crl_check* options
...
Submitted by: Daniel Black <daniel.subs@internode.on.net>
2008-05-19 07:52:15 +00:00
Lutz Jänicke
a92ebf2290
Provide information about "openssl dgst" -hmac option.
2008-05-19 07:43:34 +00:00
Dr. Stephen Henson
c386f8ac38
Typo.
2008-05-01 23:35:36 +00:00
Dr. Stephen Henson
4a954b56c9
Use "cont" consistently in cms-examples.pl
...
Add a -certsout option to output any certificates in a message.
Add test for example 4.11
2008-05-01 23:30:06 +00:00
Dr. Stephen Henson
41f81a0143
Update docs.
2008-03-29 00:54:24 +00:00
Dr. Stephen Henson
7122aafce5
Preliminary documentation for CMS utility.
2008-03-21 13:09:26 +00:00
Dr. Stephen Henson
0d7f6fc76a
Clarification and fix typo.
2008-02-25 18:11:47 +00:00
Lutz Jänicke
7c1722c60d
Add missing colon in manpage
...
Submitted by: Richard Hartmann <richih.mailinglist@gmail.com>
2008-01-30 08:26:59 +00:00
Dr. Stephen Henson
cec2538ca9
Submitted by: Victor B. Wagner <vitus@cryptocom.ru>, steve
...
Use default algorithms for OCSP request and response signing. New command
line option to support other digest use for OCSP certificate IDs.
2007-12-04 12:41:28 +00:00
Richard Levitte
28f7e60d47
Change submitted by Doug Kaufman. He writes:
...
I just compiled the 9.9-dev version from the 12022007 tarball under
DJGPP. There were only 2 changes needed, one for b_sock.c, since
DJGPP with WATT32 doesn't define socklen_t and one for testtsa to
handle DOS style path separators. I also noted what seems to be a
typographical error in ts.pod. The test suite passes. The patch is
attached.
Since I am in the US, I have sent notifications to the Bureau of
Industry and Security and to the NSA.
2007-12-03 09:02:29 +00:00
Dr. Stephen Henson
a529a80108
Update from stable branch.
2007-09-17 17:54:31 +00:00
Andy Polyakov
330591fdfc
Mention aes in enc.pod.
...
PR: 1529
2007-09-17 16:42:35 +00:00
Andy Polyakov
c7503f5240
Mention SHA2 in openssl.pod.
...
PR: 1575
2007-09-17 15:56:55 +00:00
Dr. Stephen Henson
d24a9c8f5a
Docs and usage messages for RFC4507bis support.
2007-08-23 11:34:48 +00:00
Dr. Stephen Henson
76b46e7707
Document streaming options.
2007-05-11 12:08:38 +00:00
Bodo Möller
96afc1cfd5
Add SEED encryption algorithm.
...
PR: 1503
Submitted by: KISA
Reviewed by: Bodo Moeller
2007-04-23 23:48:59 +00:00
Richard Levitte
85c6749216
Add STARTTLS support for IMAP and FTP.
...
Submitted by Kees Cook <kees@outflux.net>
2007-02-16 18:12:16 +00:00
Nils Larsch
bcb38217c4
add note about 56 bit ciphers
...
PR: 1461
2007-02-06 19:41:01 +00:00
Nils Larsch
0501f02b06
fix documentation
...
PR: 1466
2007-02-03 10:28:08 +00:00
Nils Larsch
ec1edeb5fa
update pkcs12 help message + manpage
...
PR: 1443
Submitted by: Artem Chuprina <ran@cryptocom.ru>
2006-12-21 20:36:15 +00:00
Dr. Stephen Henson
f1845cbee8
Typo.
2006-11-07 13:46:37 +00:00
Dr. Stephen Henson
51cc37b69d
Fix link for ASN1_generate_nconf
2006-11-07 13:44:03 +00:00
Dr. Stephen Henson
ff1b10dca1
Typo.
2006-11-07 13:17:02 +00:00
Dr. Stephen Henson
ebeb17e2e0
Add v3 ref to see also sections.
2006-11-07 13:13:14 +00:00
Dr. Stephen Henson
137de5b157
Add documentetion for noCheck extension and add a few cross references to
...
the extension documentation.
2006-11-07 12:51:27 +00:00
Dr. Stephen Henson
83357f047d
Update docs.
2006-09-13 03:28:42 +00:00
Ulf Möller
6264c9b2a9
Correct punctuation.
...
PR: 1367
2006-08-05 20:45:06 +00:00
Dr. Stephen Henson
f489ab3147
Typo.
2006-07-12 13:28:44 +00:00
Dr. Stephen Henson
e454929558
Add docs for pkeyparam. Update some existing docs.
2006-07-10 23:10:26 +00:00
Dr. Stephen Henson
0ee2166cc5
New functions to add and free up application defined signature OIDs.
2006-07-09 16:05:43 +00:00
Dr. Stephen Henson
112161bd33
Update docs.
2006-07-09 01:59:30 +00:00
Dr. Stephen Henson
8d970ca70b
Update docs with algorithm options.
2006-07-08 10:01:33 +00:00
Dr. Stephen Henson
383b8b8ca9
Typo.
2006-07-08 00:50:25 +00:00
Dr. Stephen Henson
5ce60a20f2
Initial docs for pkeyutl.
2006-07-08 00:47:04 +00:00
Dr. Stephen Henson
49131a7d94
Docs for new utilities.
2006-07-08 00:24:47 +00:00
Dr. Stephen Henson
d884c5bad1
Add documentation for new smime options.
2006-07-07 21:44:23 +00:00
Bodo Möller
75d61b33bc
documentation for "HIGH" vs. "MEDIUM" was not up-to-date
2006-06-30 22:00:13 +00:00
Bodo Möller
f3dea9a595
Camellia cipher, contributed by NTT
...
Submitted by: Masashi Fujita
Reviewed by: Bodo Moeller
2006-06-09 15:44:59 +00:00
Nils Larsch
ddac197404
add initial support for RFC 4279 PSK SSL ciphersuites
...
PR: 1191
Submitted by: Mika Kousa and Pasi Eronen of Nokia Corporation
Reviewed by: Nils Larsch
2006-03-10 23:06:27 +00:00
Dr. Stephen Henson
2932ad5677
Typo.
2006-03-05 01:19:48 +00:00
Ulf Möller
11503177d1
TS bugfixes: Do not hardcode message digest algorithms; fix ASN1 decoding.
...
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
2006-02-26 23:34:53 +00:00
Ulf Möller
21e8bbf290
*** empty log message ***
2006-02-12 23:36:58 +00:00
Ulf Möller
c7235be6e3
RFC 3161 compliant time stamp request creation, response generation
...
and response verification.
Submitted by: Zoltan Glozik <zglozik@opentsa.org>
Reviewed by: Ulf Moeller
2006-02-12 23:11:56 +00:00
Bodo Möller
13e4670c29
new option "openssl ciphers -V"
2005-10-01 04:08:48 +00:00
Nils Larsch
701d35d12f
fix typos
...
PR: 1201
2005-09-15 19:00:55 +00:00
Nils Larsch
57eb1d3250
add missing entries for "-multivalue-rdn" and "-utf8" in ca.pod and req.pod
...
PR: 1158
Submitted by: Michael Bell <michael.bell@cms.hu-berlin.de>
2005-07-15 09:49:03 +00:00
Richard Levitte
60021d9165
Someone did some cutting and pasting and didn't quite finish the job :-).
...
Notified by Steffen Pankratz <kratz00@gmx.de>
2005-06-24 05:13:08 +00:00
Dr. Stephen Henson
bbada33271
Typo.
2005-06-22 18:54:54 +00:00
Richard Levitte
b325518f45
Typo correction
2005-05-24 03:27:15 +00:00
Nils Larsch
9b62318311
fix typo
...
PR: 1054
2005-05-03 18:34:01 +00:00
Bodo Möller
c393222280
HISTORY section: point out change of default digest
2005-04-03 23:53:48 +00:00
Nils Larsch
12bdb64375
use SHA-1 as the default digest for the apps/openssl commands
2005-04-02 09:29:15 +00:00
Geoff Thorpe
627bd6709c
Fix typos in the ecparam doc.
...
Submitted by: Nils Larsch
2004-12-17 05:42:00 +00:00
Dr. Stephen Henson
5b40d7dd97
Add -passin argument to dgst command.
2004-12-03 12:26:56 +00:00
Dr. Stephen Henson
59c7029862
Typo.
2004-11-26 01:04:55 +00:00
Dr. Stephen Henson
1582a4073e
Add errstr manual page
2004-11-25 18:21:26 +00:00
Dr. Stephen Henson
401ee37a3e
Allow alternative manual sections to be embedded in .pod file comments.
2004-11-25 17:47:31 +00:00
Dr. Stephen Henson
cb26a20cb1
Update docs
2004-11-25 14:14:25 +00:00
Dr. Stephen Henson
82c4674e47
Update docs.
2004-11-25 14:11:25 +00:00
Dr. Stephen Henson
5dd87981bf
Update X509v3 doc.
2004-11-17 00:55:43 +00:00
Dr. Stephen Henson
37dccd8ff2
Update X509v3 docs.
2004-11-16 17:45:13 +00:00
Dr. Stephen Henson
826a42a088
PR: 910
...
Add command line options -certform, -keyform and -pass to s_client and
s_server. This supports the use of alternative passphrase sources, key formats
and keys handled by an ENGINE.
Update docs.
2004-11-16 17:30:59 +00:00
Dr. Stephen Henson
19f39703f7
Initial pod documentation of X509V3 config file format.
2004-11-16 14:09:12 +00:00
Richard Levitte
e544b0dc2a
'compatibility', not 'computability' :-)...
2004-08-18 15:48:33 +00:00
Dr. Stephen Henson
6446e0c3c8
Extend OID config module format.
2004-03-27 13:30:14 +00:00
Dr. Stephen Henson
f2c1812560
More autoconfig docs.
2004-03-01 19:15:24 +00:00
Dr. Stephen Henson
a30af36c77
Initial docs for the OpenSSL library configuration via openssl.cnf
2004-03-01 01:04:40 +00:00
Richard Levitte
ee3a47a994
AES is spelled AES, not ASE. Oops...
2004-02-27 02:24:49 +00:00
Richard Levitte
8bb0c8522a
Document the AES options for 'openssl smime'.
...
PR: 834
2004-02-26 21:44:41 +00:00
Lutz Jänicke
fc56b52924
Updates to s_time manual page
...
PR: #570
Submitted by: Martin Witzel <MWITZEL@de.ibm.com>
2004-01-08 07:38:15 +00:00
Lutz Jänicke
a32fc687de
Add s_time manual page
...
Submitted by: "Martin Witzel" <MWITZEL@de.ibm.com>
PR: #570
2004-01-04 18:59:14 +00:00
Bodo Möller
2c789c82be
manpages for 'openssl ec' and 'openssl ecparam'
...
Submitted by: Nils Larsch
2003-07-21 13:40:02 +00:00
Richard Levitte
94805c84d1
Add -issuer_hash and make -subject_hash the default way to get the
...
subject hash, with -hash a synonym kept around for backward
compatibility reasons.
PR: 650
2003-07-03 20:45:09 +00:00
Richard Levitte
6f2f534b58
The convenience argumetn for -nameopt and -certopt is ca_default, not
...
default_ca.
PR: 653
2003-07-03 07:46:52 +00:00
Richard Levitte
8fbb2af392
Add documentation for the new crlnumber configuration option.
2003-06-19 17:52:57 +00:00
Richard Levitte
c5aba56c5b
Typo.
2003-06-19 17:50:37 +00:00
Lutz Jänicke
4f17dfcd75
Add minimum POP3 STLS hack to s_client.c (as was provided for STARTTLS before)
...
Submitted by: dg@sunet.ru (Daniel Ginsburg)
PR: #613
2003-05-28 20:24:57 +00:00
Richard Levitte
d6df2b281f
Add documentation on the added functionality in 'openssl ca'.
2003-04-04 14:39:44 +00:00
Dr. Stephen Henson
e5b0508a14
Update ocsp usage message and docs.
2003-03-26 00:46:47 +00:00
Richard Levitte
e986704d24
Add documentation for -starttls (s_client) and -id_prefix (s_server).
...
PR: 542
2003-03-20 16:34:27 +00:00
Richard Levitte
bfa3555081
Document -engine where missing.
...
PR: 424
2003-01-30 22:02:27 +00:00
Richard Levitte
c653b56937
Correct an example that has a few typos.
...
PR: 458
2003-01-14 13:56:38 +00:00
Richard Levitte
360e506710
Typos corrected.
...
PR: 445
2003-01-10 08:54:01 +00:00
Lutz Jänicke
44fcd3ef3e
Add information about AES cipher suites to ciphers manual page.
...
If no authentication method is mentioned in the cipher suite name (e.g.
AES128-SHA), RSA authentication is used (PR #396 ).
2002-12-29 21:24:50 +00:00
Lutz Jänicke
32d21c1ef6
Better workaround to the "=head1 NAME OPTIONS" pod2latex problem:
...
NAME OPTIONS are a subset of OPTIONS, so just make it =head2!
Submitted by:
Reviewed by:
PR: 333
2002-11-18 08:15:45 +00:00
Lutz Jänicke
1f30946481
Don't declare 2 WARNINGS sections
...
Submitted by:
Reviewed by:
PR:
2002-11-14 11:13:01 +00:00
Lutz Jänicke
b1697f189b
Opportunistic change to work around pod2latex bug: rename NAME OPTIONS
...
section to SUBJECT AND ISSUER NAME OPTIONS
Submitted by:
Reviewed by:
PR: 333
2002-11-14 11:09:07 +00:00
Lutz Jänicke
17a202add7
Correct reference to section name.
...
Submitted by:
Reviewed by:
PR:
2002-11-14 11:03:30 +00:00
Lutz Jänicke
eaad02a747
Missing =back
...
Submitted by:
Reviewed by:
PR:
2002-11-14 10:51:54 +00:00
Dr. Stephen Henson
04f0a6ba39
Update docs
2002-11-13 13:18:14 +00:00
Dr. Stephen Henson
a8c125550c
Typo
2002-11-09 18:05:33 +00:00
Richard Levitte
d6257073aa
-CAcreateserial doesn't take a filename argument.
...
PR: 332
2002-11-08 21:51:09 +00:00
Dr. Stephen Henson
d618f703ec
CRL reason code docs.
2002-11-06 01:28:55 +00:00
Richard Levitte
70e96dcf59
Document should match reality :-).
...
PR: 255
2002-10-04 12:59:00 +00:00
Bodo Möller
8be4e173e8
fix a typo and clarify
2002-07-22 09:04:36 +00:00
Lutz Jänicke
c6ccf055ba
New cipher selection options COMPLEMENTOFALL and COMPLEMENTOFDEFAULT.
...
Submitted by:
Reviewed by:
PR: 127
2002-07-19 19:55:34 +00:00
Bodo Möller
cd7562091d
fix synopsis
...
Submitted by: Nils Larsch
2002-07-09 10:51:25 +00:00
Lutz Jänicke
9a26adf598
Remove item listed twice <kromJx@crosswinds.net>.
2002-05-28 17:48:54 +00:00
Lutz Jänicke
72da660ddb
Fix incorrect =over 4 location.
...
Submitted by: David Waitzman <djw@bbn.com>
Reviewed by: Lutz Jaenicke
PR: [openssl.org #38 ]
2002-05-16 17:45:37 +00:00
Lutz Jänicke
c0455cbb18
Fix escaping when using the -subj option of "openssl req", document
...
'hidden' -nameopt support. (Robert Joop <joop@fokus.gmd.de>)
2002-04-30 12:08:18 +00:00
Bodo Möller
dc4ddcd2bb
add documentation for SSLeay_version(SSLEAY_DIR) and
...
'openssl version -d'
use some descriptions from Lutz' redundant manual page
instead of the previous ones
2002-01-04 15:17:09 +00:00
Dr. Stephen Henson
21a85f1977
Add -pubkey option to req command.
2001-12-01 23:03:30 +00:00
Bodo Möller
8a0a9392ab
discuss -name and default_ca more correctly (I hope)
2001-11-26 12:13:50 +00:00
Bodo Möller
1d8634b110
msg_callback documentation
2001-11-10 02:12:09 +00:00
Dr. Stephen Henson
1fc6d41bf6
New options to allow req to accept UTF8 strings as input.
2001-10-26 12:40:38 +00:00
Bodo Möller
89da653fa6
Add '-noemailDN' option to 'openssl ca'. This prevents inclusion of
...
the e-mail address in the DN (i.e., it will go into a certificate
extension only). The new configuration file option 'email_in_dn = no'
has the same effect.
Submitted by: Massimiliano Pala madwolf@openca.org
2001-10-25 08:25:19 +00:00
Lutz Jänicke
e1c279b63d
Small documentation fixes (Howard Lum <howard@pumpkin.canada.sun.com>)
2001-10-08 08:37:24 +00:00
Ulf Möller
3b80e3aa9e
ispell
2001-09-07 06:13:40 +00:00
Bodo Möller
3f1c4e49a3
add missing link
2001-08-08 15:09:06 +00:00
Dr. Stephen Henson
534a1ed0cb
Allow OCSP server to handle multiple requests.
...
Document new OCSP options.
2001-07-13 13:13:44 +00:00
Lutz Jänicke
43f9391bcc
When only the key is given to "enc", the IV is undefined
...
(found by Andy Brown <logic@warthog.com>).
2001-07-03 10:31:11 +00:00
Lutz Jänicke
0ea659475c
Typo (reported by Petr Lancaric <Petr.Lancaric@ips-ag.cz>)
2001-04-25 15:24:47 +00:00
Dr. Stephen Henson
02ee8626fb
Fix PKCS#12 key generation bug.
2001-03-18 02:11:42 +00:00
Dr. Stephen Henson
791bd0cd2b
Add copy_extensions option to 'ca' utility.
2001-03-16 02:04:17 +00:00
Dr. Stephen Henson
e890dcdb19
Add 'align' option to nameopt.
...
Add default values for display by the 'ca' utility
to openssl.cnf
Update docs.
2001-03-15 22:45:20 +00:00
Dr. Stephen Henson
0a3ea5d34a
Document the -certopt option to the x509 utility.
...
Add no_issuer option.
Fix X509_print_ex() so it prints out newlines when
certain fields are omitted.
2001-03-15 01:15:54 +00:00
Richard Levitte
7b8250053b
Document the change.
2001-03-10 16:28:49 +00:00
Dr. Stephen Henson
cc5ba6a7b6
Update docs.
2001-03-09 13:57:14 +00:00
Bodo Möller
bad4058574
New option '-subj arg' for 'openssl req' and 'openssl ca'. This
...
sets the subject name for a new request or supersedes the
subject name in a given request.
Add options '-batch' and '-verbose' to 'openssl req'.
Submitted by: Massimiliano Pala <madwolf@hackmasters.net>
Reviewed by: Bodo Moeller
2001-03-05 11:09:43 +00:00
Lutz Jänicke
45ecfb1973
Typo, spotted by "Greg Stark" <gstark@ethentica.com>.
2001-03-01 16:50:11 +00:00
Lutz Jänicke
52b621db88
Add "-rand" option to s_client and s_server.
2001-02-15 10:22:07 +00:00
Dr. Stephen Henson
f2e5ca84d4
Option to disable standard block padding with EVP API.
...
Add -nopad option to enc command.
Update docs.
2001-02-14 02:11:52 +00:00
Dr. Stephen Henson
bfcec27d61
Update ocsp utility documentation.
2001-01-20 01:26:28 +00:00
Ulf Möller
a068630a20
link to the new manpage.
2001-01-15 22:19:30 +00:00
Bodo Möller
dfebac32c0
New '-extfile' option for 'openssl ca'.
...
This allows keeping extensions in a separate configuration file.
Submitted by: Massimiliano Pala <madwolf@comune.modena.it>
2001-01-15 11:35:24 +00:00
Dr. Stephen Henson
b4b1bdd5d3
Preliminary ocsp utility documentation.
...
Fix ocsp usage message.
2001-01-14 00:52:19 +00:00
Bodo Möller
d199858e89
New -newreq-nodes option to CA.pl.
...
Submitted by: Damien Miller <djm@mindrot.org>
2001-01-11 13:23:19 +00:00
Bodo Möller
b62a0c4cab
Add a pointer to digest options in the description of -fingerprint.
2001-01-10 14:35:20 +00:00
Bodo Möller
db70a3fd6e
Improve usability of 'openssl passwd' by including
...
password verification where it makes sense.
2000-11-17 09:03:02 +00:00
Richard Levitte
5270e7025e
Merge the engine branch into the main trunk. All conflicts resolved.
...
At the same time, add VMS support for Rijndael.
2000-10-26 21:07:28 +00:00
Ulf Möller
a2bbe59401
s_server not s_client
2000-10-23 19:13:35 +00:00
Dr. Stephen Henson
dbba890cf1
Only use the new informational verify codes if we
...
specifically ask for them.
Fix typo in docs.
2000-09-22 21:32:08 +00:00
Bodo Möller
acb5b34328
Change spelling back to "behaviour" and "flavour" instead of the
...
American variants.
2000-09-16 16:00:38 +00:00
Dr. Stephen Henson
709e85953d
Update verify docs.
...
New option to verify program to print out diagnostics.
2000-09-08 00:53:58 +00:00
Dr. Stephen Henson
84b65340e1
Two new PKCS#12 demo programs.
...
Update PKCS12_parse().
Make the keyid in certificate aux info more usable.
2000-09-07 23:14:26 +00:00
Bodo Möller
2b40660ec1
Add OAEP. Seed the PRNG.
2000-09-06 11:49:43 +00:00
Bodo Möller
34417732fa
Add rsautl.
2000-09-06 07:58:27 +00:00
Dr. Stephen Henson
bbb720034a
Fix typo in rsautl.
...
Add support for settable verify time in X509_verify_cert().
Document rsautl utility.
2000-09-05 22:30:38 +00:00
Bodo Möller
4ed601b172
Include MD4 in documentation.
2000-09-04 15:28:21 +00:00
Dr. Stephen Henson
bd08a2bd0c
Add 'rsautl' low level RSA utility.
...
Add DER public key routines.
Add -passin argument to 'ca' utility.
Document sign and verify options to dgst.
2000-09-03 23:13:48 +00:00
Dr. Stephen Henson
d428bf8c56
New option to CA.pl to sign request using CA extensions.
...
This allows intermediate CAs to be created more easily.
PKCS12_create() now checks private key matches certificate.
Fix typo in x509 app.
Update docs.
New function ASN1_STRING_to_UTF8() converts any ASN1_STRING
type to UTF8.
2000-08-24 23:24:18 +00:00
Richard Levitte
fa1194d30a
Correct the title. This also fooled the automatic documentation builder
...
that this was actually the pkcs7 document...
2000-08-15 17:35:10 +00:00
Bodo Möller
cc244b371d
Update 'openssl passwd' documentation on selection of algorithms.
2000-07-31 12:27:44 +00:00
Dr. Stephen Henson
bd4e152791
Document the new DN printing options.
...
Change a few names to be more meaningful.
Fix typos in CA.pl docs.
2000-07-30 01:27:59 +00:00
Dr. Stephen Henson
fd13f0ee52
Make req seed the PRNG if signing with
...
an already existing DSA key.
Document the new smime options.
2000-07-12 23:55:30 +00:00
Richard Levitte
fb0b844a7d
Document the change in req.
2000-06-22 09:19:59 +00:00
Dr. Stephen Henson
d3ed8ceb3d
Add support for the modified SGC key format used in IIS.
2000-06-15 23:48:05 +00:00
Dr. Stephen Henson
a91dedca48
Document EVP routines. Change EVP_SealInit() and EVP_OpenInit()
...
to support multiple calls.
New function to retrieve email address from certificates and
requests.
2000-06-11 12:18:15 +00:00
Bodo Möller
cbb6ad9d10
typo
2000-05-31 23:20:10 +00:00
Bodo Möller
727daea783
dh and gendh have been obsoleted by dhparam.
2000-05-31 23:07:48 +00:00
Richard Levitte
fbecbc8cfb
You must have an empty line between =item's
2000-05-30 08:01:24 +00:00