| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
|
|
| |
Add missing -camellia*/-idea description to genrsa section.
ok jmc@
|
| |
|
|
| |
ok tb@ jsing@
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
- dsa : add missing -pvk-none, -pvk-strong and -pvk-weak
add pvk format to -inform and -outform
- ocsp : add missing -header, -ignore_err, -no_explicit and -timeout
- rsa : add missing -pvk-none, -pvk-strong and -pvk-weak
add missing -RSAPublicKey_in and -RSAPublicKey_out
add pvk format to -inform and -outform
- smime : add missing -nosmimecap
- add pvk description at common format part
ok jmc@
|
| |
|
|
|
|
|
|
|
|
| |
- For pkcs12, add -camellia*/-idea, -LMK and -password
- For req, add -multivalue-rdn, -pkeyopt and -sigopt
- For verify, add -CRLfile and -trusted, and down -check_ss_sig description
- For x509, add -next_serial and -sigopt
- Remove the escape in -multivalue-rdn from ca section
ok jmc@
|
| |
|
|
|
|
|
|
| |
- For ec, add -param_out description
- For enc, add -v usage and description
- For pkcs7, add -print usage and description
ok jmc@
|
| |
|
|
|
|
| |
- Add undocumented option -r
ok jmc@
|
| |
|
|
|
|
| |
- Add undocumented options -crlnumber, -hash_old, -nameopt and -verify
ok jmc@
|
| |
|
|
|
|
|
| |
- Add undocumented options -crlsec and -sigopt
- Sync argument name between usage and options description
ok jmc@
|
| | |
|
| |
|
|
|
|
| |
value < 0. errno is only updated in this case. Change all (most?)
callers of syscalls to follow this better, and let's see if this strictness
helps us in the future.
|
| |
|
|
|
|
|
| |
- Move local variables in genrsa_main() to struct genrsa_config
- Leave long lines more than 80, still
ok bcook@
|
| | |
|
| |
|
|
|
|
|
|
| |
- Adapt openssl(1) gendsa command to new option handling.
- Add lacking ciphers and passout description in openssl.1 manpage.
- Describe paramfile as argument in openssl.1 manpage.
ok bcook@
|
| | |
|
| |
|
|
| |
Diff from Steven Roberts <sroberts at fenderq dot com> - thanks!
|
| |
|
|
|
| |
Patch from Daniel Wyatt
ok inoguchi, jsing
|
| |
|
|
| |
ok jsing@ tb@
|
| |
|
|
| |
ok jsing@ tb@
|
| |
|
|
| |
ok tb@ jsing@
|
| |
|
|
|
| |
suggested by jsing@
ok tb@
|
| |
|
|
| |
ok jsing@
|
| |
|
|
| |
ok jsing, "looks good!" jmc
|
| | |
|
| |
|
|
| |
ok beck@ inoguchi@ tb@
|
| |
|
|
|
|
| |
from code and manual in 2017).
Reported by KEINOS in github issue #101.
|
| | |
|
| |
|
|
|
|
|
| |
Found thanks to BoringSSL's commit 53409ee3d7595ed37da472bc73b010cd2c8a5ffd
by David Benjamin.
ok djm, jsing
|
| |
|
|
|
|
|
|
| |
openssl x509 -fingerprint
openssl crl -fingerprint
from sha1 to sha256
ok jsing@
|
| |
|
|
| |
ok deraadt@
|
| |
|
|
|
|
| |
Reorder option descriptions so -iter and -pbkdf2 show up alphabetically.
Add missing argument name for -iter.
ok jmc@
|
| | |
|
| | |
|
| |
|
|
|
| |
pbkdf2 with OpenSSL compatible flags
ok jsing@
|
| |
|
|
| |
ok jmc@, jsing@
|
| |
|
|
| |
From Edgar Pettijohn III
|
| |
|
|
| |
ok beck inoguchi
|
| |
|
|
|
|
|
|
|
|
|
|
|
|
| |
This implements automatic thread support initialization in libcrypto.
This does not remove any functions from the ABI, but does turn them into
no-ops. Stub implementations of pthread_mutex_(init|lock|unlock) are
provided for ramdisks.
This does not implement the new OpenSSL 1.1 thread API internally,
keeping the original CRYTPO_lock / CRYPTO_add_lock functions for library
locking. For -portable, crypto_lock.c can be reimplemented with
OS-specific primitives as needed.
ok beck@, tb@, looks sane guenther@
|
| |
|
|
| |
Reported by Katherine <luigi30 at gmail dot com> on tech@
|
| |
|
|
|
|
| |
to uncompressed rather than compressed.
From Jacqueline Jolicoeur
|
| | |
|
| |
|
|
|
|
|
| |
No need to check for SSLv2/3 sessions when printing the tally mark.
Also do SSLv23_client_method -> TLS_client_method.
ok jsing@
|
| |
|
|
|
|
|
|
|
|
| |
jsing@ notes that this is not a complete solution, as we don't
account for retries or partial writes, but that this is a step
in a right direction.
May want to revisit this later to provide a complete solution.
ok jsing@
|
| |
|
|
| |
ok tb
|
| |
|
|
|
|
| |
are no longer supported. Remove their documentation.
ok jsing
|
| |
|
|
| |
ok jsing
|
| |
|
|
|
|
|
|
| |
While here, we don't need the app_timer_* wrapper function, it only
obfuscates things, so delete it. Also while here, totalTime only needs
to be assigned once.
ok tb@
|
| |
|
|
|
|
|
|
|
|
|
|
| |
We need to then remove the shadow i from the GET block. While there,
move retval's declaration to the beginning of the function.
As doConnection() now executes the body of the benchmark's test, rename
it to "run_test".
Shadow variable spotted by tb@.
ok tb@
|
| |
|
|
|
|
| |
CID #154702.
input & ok inoguchi, ok mestre on first version
|
| |
|
|
|
|
|
|
|
|
|
|
|
| |
Move SSL_new/SSL_free up into benchmark() to restrict the responsibility
for the SSL object to a single scope. Make doConnection() return an int,
openssl-style. Some miscellaneous cleanup, too.
Discussed with tb, jsing, and jca. Basic idea from jsing, lots of patch
input from tb.
ok deraadt on an earlier version
ok tb jsing
|
| |
|
|
|
|
| |
from r1.45 and thereby avoid a use-after-free spotted by schwarze.
ok schwarze
|
