Richard Levitte
4aca9297dc
The mix of CFLAGS and LDFLAGS is a bit confusing in my opinion, and
...
Makefile.shared was a bit overcomplicated.
Make the shell variables LDFLAGS and SHAREDFLAGS in Makefile.shared
get the values of $(CFLAGS) or $(LDFLAGS) as appropriate depending on
the value the shell variables LDCMD and SHAREDCMD get. That leaves
much less chance of confusion, since those pairs of shell variables
always are defined together.
2005-01-26 23:51:20 +00:00
Andy Polyakov
fbdce13e5a
Please BSD make...
2005-01-25 22:09:11 +00:00
Andy Polyakov
02a00bb054
DJGPP update.
...
PR: 989
Submitted by: Doug Kaufman
2005-01-04 10:28:38 +00:00
Andy Polyakov
3ffb8d42bc
Remove naming conflict between variable and label.
2004-12-30 11:10:11 +00:00
Dr. Stephen Henson
e90faddaf8
Prompt for passphrases for PKCS12 input format
2004-12-29 01:07:14 +00:00
Richard Levitte
6951c23afd
Add functionality needed to process proxy certificates.
2004-12-28 00:21:35 +00:00
Dr. Stephen Henson
abbc186bd2
Fix s_client so it works without a certificate again.
2004-12-13 18:02:23 +00:00
Richard Levitte
de6859e442
Propagate a few more variables to Makefile.shared when linking
...
programs.
2004-12-13 17:28:44 +00:00
Dr. Stephen Henson
a37e22d866
Use X509_cmp_time() in -checkend option, to support GeneralizedTime.
2004-12-05 18:26:19 +00:00
Dr. Stephen Henson
5b40d7dd97
Add -passin argument to dgst command.
2004-12-03 12:26:56 +00:00
Richard Levitte
30b415b076
Make an explicit check during certificate validation to see that the
...
CA setting in each certificate on the chain is correct. As a side-
effect always do the following basic checks on extensions, not just
when there's an associated purpose to the check:
- if there is an unhandled critical extension (unless the user has
chosen to ignore this fault)
- if the path length has been exceeded (if one is set at all)
- that certain extensions fit the associated purpose (if one has been
given)
2004-11-29 11:28:08 +00:00
Dr. Stephen Henson
3fee255102
Typo.
2004-11-23 21:40:10 +00:00
Dr. Stephen Henson
16df5f066a
Fix memory leak.
2004-11-23 21:22:21 +00:00
Dr. Stephen Henson
00dd8f6d6e
In "req" exit immediately if configuration file is needed and it can't
...
be loaded instead of giving the misleading:
"unable to find 'distinguised_name' in config"
error message.
2004-11-17 18:36:13 +00:00
Dr. Stephen Henson
826a42a088
PR: 910
...
Add command line options -certform, -keyform and -pass to s_client and
s_server. This supports the use of alternative passphrase sources, key formats
and keys handled by an ENGINE.
Update docs.
2004-11-16 17:30:59 +00:00
Dr. Stephen Henson
151368ccba
PR: 940
...
Typo: use prompt_info, not cb_data->prompt_info.
2004-11-14 15:40:00 +00:00
Dr. Stephen Henson
5fee606442
Zap obsolete der_chop script.
2004-11-14 00:08:36 +00:00
Dr. Stephen Henson
78df5a2f1e
Fix x509.c so it creates serial number file again if no
...
serial number is supplied on command line.
2004-11-13 13:26:06 +00:00
Richard Levitte
6c9f57d629
Cut'n'paste mistake. All tested OK now...
2004-11-11 19:36:08 +00:00
Richard Levitte
382342ce1d
Whoops, syntactic mistake...
2004-11-11 18:58:01 +00:00
Richard Levitte
69c922f5d2
Some find it confusing that environment variables are set when shared
...
libraries aren't built or used. I can see the point, so I'm
reorganising a little for clarity.
2004-11-11 18:18:43 +00:00
Dr. Stephen Henson
10c8505734
Use the default_md config file value when signing CRLs.
...
PR:662
2004-11-11 13:47:06 +00:00
Dr. Stephen Henson
10f92aac33
Don't return an error with crl -noout.
...
PR:917
Sumbmitted by: Michael Konietzka <konietzka@schlund.de>
2004-11-11 02:13:08 +00:00
Richard Levitte
8de69cf2c6
Make sure LD_PRELOAD is only set when we build shared libraries (and
...
therefore link with them). Add LD_PRELOAD setting code where it was
still missing.
PR: 966
2004-11-05 09:12:10 +00:00
Geoff Thorpe
58ae65cd1a
Update ECDSA and ECDH for OPENSSL_NO_ENGINE.
...
Reported by: Maxim Masiutin
Submitted by: Nils Larsch
2004-10-21 00:06:14 +00:00
Richard Levitte
d813ff2ac1
make update
2004-09-10 10:30:33 +00:00
Dr. Stephen Henson
c431798e82
Reformat smime utility.
...
Add support for policy checking in verify utility.
2004-09-07 18:38:46 +00:00
Dr. Stephen Henson
fb80794568
Don't use 'explicit' for variable name.
2004-09-07 00:31:08 +00:00
Dr. Stephen Henson
4ec3d785e5
Reformat smime.c
2004-09-07 00:28:17 +00:00
Dr. Stephen Henson
5d7c222db8
New X509_VERIFY_PARAM structure and associated functionality.
...
This tidies up verify parameters and adds support for integrated policy
checking.
Add support for policy related command line options. Currently only in smime
application.
WARNING: experimental code subject to change.
2004-09-06 18:43:01 +00:00
Richard Levitte
2549564009
On systems that use case-insensitive symbol names (i.e. they're all
...
converted to upper case or something like that), the application-
level bio_dump_cb() has a name clash with the new library function
BIO_dump_cb(). The easiest fix is to rename the function at the
application level.
2004-08-12 08:58:55 +00:00
Dr. Stephen Henson
b5a93e2250
Call setup_engine after autoconfig.
2004-08-06 12:44:34 +00:00
Dr. Stephen Henson
c128bb0fa2
Don't ignore return value of EVP_DigestInit_ex() in md BIOs and dgst utility.
2004-08-05 18:09:50 +00:00
Andy Polyakov
c88f8f76b5
'apps/openssl dgst -help' update and minor apps/speed.c update.
2004-07-25 18:57:35 +00:00
Dr. Stephen Henson
0efea28dcb
Don't try to parse non string types.
2004-07-01 18:15:33 +00:00
Richard Levitte
28a8003467
Changes for VOS, submitted by Paul Green <Paul.Green@stratus.com>.
...
PR: 499
2004-06-28 22:01:37 +00:00
Richard Levitte
563cd0f2b0
Make the tests of EVP operations without padding. As a consequence,
...
there's no need for a larger BUFSIZE any more...
PR: 904
2004-06-28 16:32:12 +00:00
Richard Levitte
3ac0f28837
Make sure that the buffers are large enough to contain padding.
...
PR: 904
2004-06-28 12:23:35 +00:00
Richard Levitte
47c1735acd
NetWare fixes provided by Verdon Walker for OpenSSL 0.9.8-dev.
...
The changes have been mailed to <crypt@bis.doc.gov> as well.
PR: 903
2004-06-28 11:55:28 +00:00
Dr. Stephen Henson
8a60547896
Reformat pkcs8 source.
2004-06-24 13:10:54 +00:00
Andy Polyakov
bc1ca8605c
Working on HP-UX shared support...
2004-05-31 14:50:19 +00:00
Andy Polyakov
63ba7e293f
Make sha-256/-512 naming in speed.c consistent with their names as they
...
will appear at EVP leyer.
2004-05-31 12:40:22 +00:00
Andy Polyakov
46ceb15c39
SHA-256/-512 test and benchmark.
2004-05-20 21:49:38 +00:00
Geoff Thorpe
9c52d2cc75
After the latest round of header-hacking, regenerate the dependencies in
...
the Makefiles. NB: this commit is probably going to generate a huge posting
and it is highly uninteresting to read.
2004-05-17 19:26:06 +00:00
Geoff Thorpe
f0eae953e2
Remove some unnecessary recursive includes from the internal apps.h header,
...
and include bn.h in those C files that need bignum functionality.
2004-05-17 19:05:32 +00:00
Richard Levitte
d1739eb2d6
make update
2004-05-13 21:38:47 +00:00
Dr. Stephen Henson
df368ecce4
Make self signing option of 'x509' use random serial numbers too.
2004-05-12 18:20:37 +00:00
Geoff Thorpe
bcfea9fb25
Allow RSA key-generation to specify an arbitrary public exponent. Jelte
...
proposed the change and submitted the patch, I jiggled it slightly and
adjusted the other parts of openssl that were affected.
PR: 867
Submitted by: Jelte Jansen
Reviewed by: Geoff Thorpe
2004-04-26 15:31:35 +00:00
Dr. Stephen Henson
77475142ec
New option to 'x509' -next_serial. This outputs the certificate
...
serial number plus 1 to the output file. Its purpose is to allow
serial number files to be initialized when random serial numbers
are used.
2004-04-21 12:46:20 +00:00
Dr. Stephen Henson
90fac84066
Use X509_get_serialNumber() instead of accessing internals in x509.c
2004-04-21 12:43:21 +00:00