- Feb 28, 1999
-
-
Ben Laurie authored
-
Ben Laurie authored
-
- Feb 27, 1999
-
-
Ben Laurie authored
-
Ralf S. Engelschall authored
(Pointed out by Carlos Amengual).
-
- Feb 26, 1999
-
-
Ralf S. Engelschall authored
work correctly for the SSL_CTX_xxx situations, too. Now "make test" passes again fine.
-
Ralf S. Engelschall authored
-
Dr. Stephen Henson authored
now change it to BN_RECURSION_MONT so it isn't compiled in.
-
- Feb 25, 1999
-
-
Ben Laurie authored
-
Ralf S. Engelschall authored
-
Ralf S. Engelschall authored
private keys and/or callback functions which directly correspond to their SSL_CTX_xxx() counterparts but work on a per-connection basis. This is needed for applications which have to configure certificates on a per-connection basis (e.g. Apache+mod_ssl) instead of a per-context basis (e.g. s_server). For the RSA certificate situation is makes no difference, but for the DSA certificate situation this fixes the "no shared cipher" problem where the OpenSSL cipher selection procedure failed because the temporary keys were not overtaken from the context and the API provided no way to reconfigure them. The new functions now let applications reconfigure the stuff and they are in detail: SSL_need_tmp_RSA, SSL_set_tmp_rsa, SSL_set_tmp_dh, SSL_set_tmp_rsa_callback and SSL_set_tmp_dh_callback. Additionally a new non-public-API function ssl_cert_instantiate() is used as a helper function and also to reduce code redundancy inside ssl_rsa.c. Submitted by: Ralf S. Engelschall Reviewed by: Ben Laurie
-
Ralf S. Engelschall authored
because they are useful for the DSA situation and should be recognized by the users. Thanks to Steve for the original hint.
-
Ralf S. Engelschall authored
-
Ralf S. Engelschall authored
within SSL_MKEY_MASK or SSL_AUTH_MASK, they are within SSL_EXP_MASK. So, the original variable has to be used instead of the already masked variable. Submitted by: Richard Levitte <levitte@stacken.kth.se> Reviewed by: Ralf S. Engelschall
-
Ralf S. Engelschall authored
Submitted by: Richard Levitte <levitte@stacken.kth.se> Reviewed by: Ralf S. Engelschall
-
Ralf S. Engelschall authored
from `int' to `unsigned int' because it's a length and initialized by EVP_DigestFinal() which expects an `unsigned int *'. Submitted by: Richard Levitte <levitte@stacken.kth.se> Reviewed by: Ralf S. Engelschall
-
Ben Laurie authored
-
Ralf S. Engelschall authored
-
Ralf S. Engelschall authored
script. Instead use the usual Shell->Perl transition trick.
-
Ralf S. Engelschall authored
descriptions as pointed out by Dave Carman <carman@erols.com>
-
- Feb 24, 1999
-
-
Ralf S. Engelschall authored
addition to RSA certificates) to match the behaviour of `openssl dsa -noout -modulus' as it's already the case for `openssl rsa -noout -modulus'. For RSA the -modulus is the real "modulus" while for DSA currently the public key is printed (a decision which was already done by `openssl dsa -modulus' in the past) which serves a similar purpose. Additionally the NO_RSA no longer completely removes the whole -modulus option; it now only avoids using the RSA stuff. Same applies to NO_DSA now, too.
-
Dr. Stephen Henson authored
the first leading XXX. in the DN.
-
- Feb 23, 1999
-
-
Ben Laurie authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Ralf S. Engelschall authored
-
Ralf S. Engelschall authored
1. The dsaparam argument is mandatory and not optional 2. Add a little text what this actually is: a filename
-
Ralf S. Engelschall authored
-
Dr. Stephen Henson authored
-
- Feb 22, 1999
-
-
Ben Laurie authored
-
Dr. Stephen Henson authored
without -debug option to mk1mf.pl. Change _export to is_export (_export is a reserved word under VC++). Add yucky function prototype function pointer casts. Sanitise the included files in crypto/x509v3. Also changed ssleay.exe target to openssl.exe
-
- Feb 21, 1999
-
-
Ben Laurie authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Ben Laurie authored
-
Dr. Stephen Henson authored
info will come later... Feel free to reformat and tidy this up...
-
Dr. Stephen Henson authored
Submitted by: Ulf Moeller <ulf@fitug.de>
-
Ralf S. Engelschall authored
-
Dr. Stephen Henson authored
to include email addresses from DN and copy details from issuer certificate. Include examples in openssl.cnf, update Win32 ordinals.
-
- Feb 20, 1999
-
-
Ralf S. Engelschall authored
so we have enough time for final testing and tarball rolling.
-
Ben Laurie authored
-