Richard Levitte
3d4bb90138
Merge in the 0.9.6-stable branch once more and hope for better
...
results.
2001-03-13 06:49:18 +00:00
Richard Levitte
ca7fcc65ef
In preparation for the coming release of 0.9.6a, prepare a branch for
...
engine-0.9.6-stable.
There's no need to update this with the new bug fixes, it will get
updated from the changes in OpenSSL_0_9_6-stable, just like any normal
merge.
2001-03-08 23:59:19 +00:00
cvs2svn
cd9bed6d1d
This commit was manufactured by cvs2svn to create branch 'OpenSSL-engine-
...
0_9_6-stable'.
2001-02-23 21:05:57 +00:00
Lutz Jänicke
2c1571b4ff
SSL_get_version() was an easy one :-)
2001-02-23 21:05:56 +00:00
Ulf Möller
335c4f0966
BN_rand_range() needs a BN_rand() variant that doesn't set the MSB.
2001-02-20 00:23:07 +00:00
Richard Levitte
cf1b7d9664
Make all configuration macros available for application by making
...
sure they are available in opensslconf.h, by giving them names starting
with "OPENSSL_" to avoid conflicts with other packages and by making
sure e_os2.h will cover all platform-specific cases together with
opensslconf.h.
I've checked fairly well that nothing breaks with this (apart from
external software that will adapt if they have used something like
NO_KRB5), but I can't guarantee it completely, so a review of this
change would be a good thing.
2001-02-19 16:06:34 +00:00
Ulf Möller
52d160d85d
ispell
2001-02-16 02:09:53 +00:00
Ulf Möller
54ff1e6ae5
pod format error
2001-02-16 01:44:24 +00:00
Lutz Jänicke
52b621db88
Add "-rand" option to s_client and s_server.
2001-02-15 10:22:07 +00:00
Dr. Stephen Henson
f2e5ca84d4
Option to disable standard block padding with EVP API.
...
Add -nopad option to enc command.
Update docs.
2001-02-14 02:11:52 +00:00
Lutz Jänicke
8e495e4ac7
Finish first round of session cache documentation.
2001-02-13 14:00:09 +00:00
Lutz Jänicke
f282ca7413
New manual page: SSL_CTX_set_mode.
2001-02-13 11:43:11 +00:00
Lutz Jänicke
41ecaba97e
More about session caching.
2001-02-11 17:01:36 +00:00
Lutz Jänicke
96dfab9e0e
Include information that automatic query is a new feature.
2001-02-10 19:10:36 +00:00
Lutz Jänicke
1b65ce7db3
Update for 0.9.7 with SSL_OP_CIPHER_SERVER_PREFERENCE.
2001-02-10 16:21:38 +00:00
Lutz Jänicke
7b9cb4a224
Manual page for SSL_CTX_set_options(). Unfortunately for some of the
...
options someone much longer working with OpenSSL/SSLeay is needed.
2001-02-10 16:18:35 +00:00
Bodo Möller
e306892994
Simplify BN_rand_range
2001-02-10 00:34:02 +00:00
Lutz Jänicke
b5f6d9dc6e
Fix "wierd" typo as submitted by Jeroen Ruigrok/Asmodai <asmodai@wxs.nl>.
2001-02-09 19:03:53 +00:00
Ulf Möller
466e4249ab
Note that EGD is used automatically.
2001-02-08 17:16:44 +00:00
Ulf Möller
9fbc45b159
cleanup
2001-02-08 17:14:07 +00:00
Bodo Möller
35ed8cb8b6
Integrate my implementation of a countermeasure against
...
Bleichenbacher's DSA attack. With this implementation, the expected
number of iterations never exceeds 2.
New semantics for BN_rand_range():
BN_rand_range(r, min, range) now generates r such that
min <= r < min+range.
(Previously, BN_rand_range(r, min, max) generated r such that
min <= r < max.
It is more convenient to have the range; also the previous
prototype was misleading because max was larger than
the actual maximum.)
2001-02-08 12:14:51 +00:00
Lutz Jänicke
420125f996
Update documentation to match the state at 0.9.6 _and_ the recent changes.
2001-02-08 10:42:01 +00:00
Ulf Möller
57e7d3ce15
Bleichenbacher's DSA attack
2001-02-07 22:24:35 +00:00
Lutz Jänicke
0bc6597d4d
Documenting session caching, 2nd step.
2001-02-04 18:05:27 +00:00
Lutz Jänicke
7403c34b0b
Clarify why SSL_CTX_use_certificate_chain_file() should be preferred.
2001-02-03 15:15:00 +00:00
Lutz Jänicke
9022f2403b
Typo: on my screen it nicely wrapped around at 80 :-)
2001-02-03 11:02:02 +00:00
Lutz Jänicke
8cbceba610
Document session caching, first step.
2001-02-02 14:40:52 +00:00
Lutz Jänicke
cd6aa710b5
New manual page for a hardly known but important item :-)
2001-01-31 14:14:20 +00:00
Geoff Thorpe
67c3cf0675
Insert a missing space to stop pod2man giving stroppy "malformed" warnings.
2001-01-25 02:26:58 +00:00
Lutz Jänicke
e58d808a4c
Copy over just written manpage to the ones still missing.
2001-01-23 11:04:52 +00:00
Lutz Jänicke
751b5e8ff2
Add entries for new manpages...
2001-01-23 10:47:41 +00:00
Ulf Möller
9756da13dd
Use the correct number of arguments in the example.
2001-01-21 19:46:50 +00:00
Lutz Jänicke
b5a6f0a92d
Documentation about SSL_get_ex_data_X509_STORE_CTX_idx and
...
SSL_get_ex_new_index() functionality. Extended verify_callback()
example to show the usage.
2001-01-20 16:22:43 +00:00
Dr. Stephen Henson
bfcec27d61
Update ocsp utility documentation.
2001-01-20 01:26:28 +00:00
Ulf Möller
a068630a20
link to the new manpage.
2001-01-15 22:19:30 +00:00
Bodo Möller
dfebac32c0
New '-extfile' option for 'openssl ca'.
...
This allows keeping extensions in a separate configuration file.
Submitted by: Massimiliano Pala <madwolf@comune.modena.it>
2001-01-15 11:35:24 +00:00
Geoff Thorpe
ab5db00717
Update the LHASH man page.
...
* Correct some prototypes and macros with respect to "const"ness.
* Add the extra macros and examples due to the lh_doall[_arg] modifications
made recently. The existing example is also reworked for consistency.
* Rewrite, tweak, and supplement bits of the existing comments that seemed
(IMHO) to be a little convoluted and misleading.
* Add a NOTE section that explains the use of macros and avoiding function
casts (ie. generate a wrapper as with the macros, or prototype any
callback functions exactly to not require casting). Also, explain the
"const" approach taken in LHASH for the purposes of API comprehensibility
and also application code auditing.
2001-01-14 23:37:42 +00:00
Dr. Stephen Henson
b4b1bdd5d3
Preliminary ocsp utility documentation.
...
Fix ocsp usage message.
2001-01-14 00:52:19 +00:00
Bodo Möller
d199858e89
New -newreq-nodes option to CA.pl.
...
Submitted by: Damien Miller <djm@mindrot.org>
2001-01-11 13:23:19 +00:00
Bodo Möller
b62a0c4cab
Add a pointer to digest options in the description of -fingerprint.
2001-01-10 14:35:20 +00:00
Bodo Möller
a0aae68cf6
Fix SSL_peek and SSL_pending.
2000-12-25 18:40:46 +00:00
Ulf Möller
4ce7894c4a
c&p error spotted by Martin Forssen
2000-12-13 23:00:33 +00:00
Lutz Jänicke
cc93ae3ef4
Add description of SSL_[CTX_]_check_private_key().
2000-12-12 21:06:29 +00:00
Lutz Jänicke
66ebbb6a56
Add manual pages for certficate/key loading and friends.
2000-12-08 14:29:13 +00:00
Richard Levitte
1435ccfba1
Update the internal docs.
2000-12-05 19:18:51 +00:00
Lutz Jänicke
d766a23deb
Typo and additional information about cert-chain building.
2000-12-05 16:47:22 +00:00
Lutz Jänicke
b1e21f8fac
Add EXAMPLES for SSL_CIPHER_description() output.
2000-12-05 16:45:26 +00:00
Geoff Thorpe
ebff44b83a
Sync up with a minor change in lhash.h
2000-12-04 04:54:59 +00:00
Geoff Thorpe
733777275b
Update the documentation to the current state of the LHASH changes. There
...
will probably be more when the lh_doall[_arg] callbacks are similarly
tidied up, but this 'pod' should now be current.
2000-12-04 04:35:04 +00:00
Richard Levitte
862e973b50
Write a first HOWTO on how to create certificates. This is currently
...
a draft.
2000-12-01 17:44:33 +00:00