Skip to content
  • Rich Salz's avatar
    RT2547: Tighten perms on generated privkey files · 3b061a00
    Rich Salz authored
    
    
    When generating a private key, try to make the output file be readable
    only by the owner.  Put it in CHANGES file since it might be noticeable.
    
    Add "int private" flag to apps that write private keys, and check that it's
    set whenever we do write a private key.  Checked via assert so that this
    bug (security-related) gets fixed.  Thanks to Viktor for help in tracing
    the code-paths where private keys are written.
    
    Reviewed-by: default avatarViktor Dukhovni <viktor@openssl.org>
    3b061a00
To find the state of this project's repository at the time of any of these versions, check out the tags.