- Jun 15, 2001
-
-
Bodo Möller authored
-
- Jun 11, 2001
-
-
Bodo Möller authored
-
Andy Polyakov authored
Submitted by: Reviewed by: PR:
-
Bodo Möller authored
-
Bodo Möller authored
-
Bodo Möller authored
In the new crypto/ui/, this was changed into tty (which is usually /dev/tty), i.e. the FILE * used for reading passwords from the user. However stdio buffering for read/write streams is not without pitfalls (passwords would be echoed on some systems). To avoid problems, split tty into tty_in and tty_out (which are opened separately).
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
Dr. Stephen Henson authored
-
- Jun 08, 2001
-
-
Ulf Möller authored
-
- Jun 07, 2001
-
-
Lutz Jänicke authored
-
Richard Levitte authored
Spotted by Nalin Dahyabhai <nalin@redhat.com>
-
- Jun 06, 2001
-
-
Richard Levitte authored
-
Bodo Möller authored
-
Bodo Möller authored
-
Ulf Möller authored
-
Ulf Möller authored
-
- Jun 05, 2001
-
-
Richard Levitte authored
-
Richard Levitte authored
_XOPEN_SOURCE.
-
Richard Levitte authored
(for new functions...). One might still want to be able to pass down a user-data pointer to be used by the UI. However, ex_data doesn't quite cut it, since that means the appropriate index to it might need to be shared between parts that aren't really related in that sense, and would require the currently hidden (static) index holders to be uncovered. Not a good thing. Therefore, add the possibility to add a user-data pointer to a UI.
-
Richard Levitte authored
-
- Jun 04, 2001
-
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
- Jun 01, 2001
-
-
Richard Levitte authored
-
Richard Levitte authored
-
Richard Levitte authored
-
Bodo Möller authored
(The attack against SSL 3.1 and TLS 1.0 is impractical anyway, otherwise this would be a security relevant patch.)
-
Bodo Möller authored
-
- May 31, 2001
-
-
Richard Levitte authored
links.
-
Geoff Thorpe authored
a bit of weird code in sk_new.
-
- May 30, 2001
-
-
Andy Polyakov authored
Submitted by: Reviewed by: PR:
-
Richard Levitte authored
string (some engines may have certificates protected by a PIN!) and a description to put into error messages. Also, have our own password callback that we can send both a password and some prompt info to. The default password callback in EVP assumes that the passed parameter is a password, which isn't always the right thing, and the ENGINE code (at least the nCipher one) makes other assumptions... Also, in spite of having the functions to load keys, some utilities did the loading all by themselves... That's changed too.
-
Richard Levitte authored
-
- May 29, 2001
-
-
Lutz Jänicke authored
-
- May 28, 2001
-
-
Andy Polyakov authored
details (performance numbers and accompanying discussions:-). Note that the code is not engaged in ./Configure yet. I'll add it later this week along with updates for .spec file. Submitted by: Reviewed by: PR:
-
- May 26, 2001
-
-
Richard Levitte authored
-
- May 25, 2001
-
-
Richard Levitte authored
passwords that were given to the key loading functions were completely ignored, at least in the ncipher code, and then we made the assumption that the callback wanted a prompt as user argument. All that is now changed, and the application author is forced to give a callback function of type pem_callback_cb and possibly an argument for it, just as for all other functions that want to generate password prompting. NOTE: this change creates binary and source incompatibilities with previous versions of OpenSSL [engine]. It's worth it this time, to get it right (or at least better and with a chance that it'll work).
-
- May 24, 2001
-
-
Dr. Stephen Henson authored
Add missing variable length cipher flag for Blowfish. Only use trust settings if either trust or reject settings are present, otherwise use compatibility mode. This stops root CAs being rejected if they have alias of keyid set.
-
- May 22, 2001
-
-
Richard Levitte authored
-