generic-library/openssl
1
0
Fork 0
Code Issues Pull Requests Releases Wiki Activity

Make PKCS#8 the standard write format for private keys, replacing the

Browse Source 
ancient SSLeay format.
This commit is contained in:
Dr. Stephen Henson 2009-01-15 12:52:38 +00:00
parent 8e6925b0cd
commit 8125d9f99c
2 changed files with 6 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
CHANGES
View File

@ -4,6 +4,11 @@
Changes between 0.9.8j and 0.9.9 [xx XXX xxxx] Changes between 0.9.8j and 0.9.9 [xx XXX xxxx]
*) Make PKCS#8 the default write format for private keys, replacing the
traditional format. This form is standardised, more secure and doesn't
include an implicit MD5 dependency.
[Steve Henson]
*) Add a $gcc_devteam_warn option to Configure. The idea is that any code *) Add a $gcc_devteam_warn option to Configure. The idea is that any code
committed to OpenSSL should pass this lot as a minimum. committed to OpenSSL should pass this lot as a minimum.
[Steve Henson] [Steve Henson]

2
crypto/pem/pem_pkey.c
View File

@ -142,7 +142,7 @@ int PEM_write_bio_PrivateKey(BIO *bp, EVP_PKEY *x, const EVP_CIPHER *enc,
pem_password_cb *cb, void *u) pem_password_cb *cb, void *u)
{ {
char pem_str[80]; char pem_str[80];
if (!x->ameth || !x->ameth->old_priv_encode) if (!x->ameth || x->ameth->priv_encode)
return PEM_write_bio_PKCS8PrivateKey(bp, x, enc, return PEM_write_bio_PKCS8PrivateKey(bp, x, enc,
(char *)kstr, klen, (char *)kstr, klen,
cb, u); cb, u);