openssl

History

Viktor Dukhovni feb2f53edc Multiple -trusted/-untrusted/-CRLfile options in verify

It is sometimes useful (especially in automated tests) to supply
multiple trusted or untrusted certificates via separate files rather
than have to prepare a single file containing them all.

To that end, change verify(1) to accept these options zero or more
times.  Also automatically set -no-CAfile and -no-CApath when
-trusted is specified.

Improve verify(1) documentation, which could still use some work.

Reviewed-by: Richard Levitte <levitte@openssl.org>

2016-01-20 19:04:33 -05:00

demoCA

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

demoSRP

Missing SRP files.

2011-03-16 11:50:33 +00:00

app_rand.c

Add a no-egd option to disable EGD-related code

2016-01-14 13:02:51 -05:00

apps.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

apps.h

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

asn1pars.c

Centralise loading default apps config file

2015-10-12 22:31:00 +01:00

ca-cert.srl

Update test server certificate in apps/server.pem (it was expired).

2000-10-16 22:56:10 +00:00

ca-key.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

ca-req.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

ca.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

CA.com

Replace "SSLeay" in API with OpenSSL

2015-10-30 17:21:42 -04:00

CA.pl.in

VMS will downcase all command parameters unless they're quoted

2016-01-13 15:23:44 +01:00

cert.pem

Import of old SSLeay release: SSLeay 0.9.0b

1998-12-21 10:56:39 +00:00

ciphers.c

Support disabling any or all TLS or DTLS versions

2016-01-19 09:57:15 -05:00

client.pem

Replace expired test server and client certificates with new ones.

2011-12-08 14:44:05 +00:00

cms.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

crl2p7.c

Fix option value parsing in crl2pkcs7 -certfile

2015-12-13 21:31:03 -05:00

crl.c

New function X509_get0_pubkey

2015-12-14 23:06:14 +00:00

dgst.c

Remove more (rest?) of FIPS build stuff.

2016-01-06 12:07:26 -05:00

dh1024.pem

Include SKIP DH parameters with OpenSSL.

2000-08-02 09:04:44 +00:00

dh2048.pem

Include SKIP DH parameters with OpenSSL.

2000-08-02 09:04:44 +00:00

dh4096.pem

Include SKIP DH parameters with OpenSSL.

2000-08-02 09:04:44 +00:00

dhparam.c

Continue standardisation of malloc handling in apps

2015-11-09 22:48:41 +00:00

dsa512.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

dsa1024.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

dsa-ca.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

dsa-pca.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

dsa.c

Avoid erroneous "assert(private)" failures.

2015-12-13 20:13:49 -05:00

dsap.pem

Import of old SSLeay release: SSLeay 0.9.0b

1998-12-21 10:56:39 +00:00

dsaparam.c

RT4227: Range-check in apps.

2016-01-12 01:00:31 -05:00

ec.c

Avoid erroneous "assert(private)" failures.

2015-12-13 20:13:49 -05:00

ecparam.c

Remove useless code

2015-10-23 19:52:08 +02:00

enc.c

Adapt all EVP_CIPHER users for it becoming opaque

2016-01-12 13:52:22 +01:00

engine.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

errstr.c

Big apps cleanup (option-parsing, etc)

2015-04-24 15:26:15 -04:00

gendsa.c

Remove useless code

2015-10-23 19:52:08 +02:00

genpkey.c

Continue standardisation of malloc handling in apps

2015-11-09 22:48:41 +00:00

genrsa.c

Remove more (rest?) of FIPS build stuff.

2016-01-06 12:07:26 -05:00

install-apps.com

After some adjustments, apply the changes OpenSSL 1.0.0d on OpenVMS

2011-03-19 10:58:14 +00:00

makeapps.com

Big apps cleanup (option-parsing, etc)

2015-04-24 15:26:15 -04:00

Makefile.in

Remove update tags

2016-01-20 09:09:14 -05:00

nseq.c

Continue standardisation of malloc handling in apps

2015-11-09 22:48:41 +00:00

ocsp.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

openssl-vms.cnf

Update to SHA256 for TSA signing digest.

2015-12-30 18:18:08 -05:00

openssl.c

Support disabling any or all TLS or DTLS versions

2016-01-19 09:57:15 -05:00

openssl.cnf

Use better defaults for TSA.

2015-11-20 13:40:53 +00:00

opt.c

For stro[ui]max require both C99 and UINTMAX_MAX/INTMAX_MAX

2016-01-13 16:12:31 -05:00

passwd.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

pca-cert.srl

Update test server certificate in apps/server.pem (it was expired).

2000-10-16 22:56:10 +00:00

pca-key.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

pca-req.pem

Fix verify(1) to report failure when verification fails

2016-01-13 17:55:17 -05:00

pkcs7.c

Centralise loading default apps config file

2015-10-12 22:31:00 +01:00

pkcs8.c

RT4227: Range-check in apps.

2016-01-12 01:00:31 -05:00

pkcs12.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

pkey.c

Avoid erroneous "assert(private)" failures.

2015-12-13 20:13:49 -05:00

pkeyparam.c

Centralise loading default apps config file

2015-10-12 22:31:00 +01:00

pkeyutl.c

Continue standardisation of malloc handling in apps

2015-11-09 22:48:41 +00:00

prime.c

Fix "primarility" typo

2015-11-21 14:37:24 +01:00

privkey.pem

PR: 1644

2009-09-06 15:49:46 +00:00

progs.h

Use ossl_inline and DEFINE_LHASH_OF

2016-01-11 17:50:42 +00:00

progs.pl

Use ossl_inline and DEFINE_LHASH_OF

2016-01-11 17:50:42 +00:00

rand.c

RT4227: Range-check in apps.

2016-01-12 01:00:31 -05:00

rehash.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

req.c

make EVP_PKEY opaque

2016-01-20 03:24:59 +00:00

req.pem

Import of old SSLeay release: SSLeay 0.9.0b

1998-12-21 10:56:39 +00:00

rsa8192.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

rsa.c

Avoid erroneous "assert(private)" failures.

2015-12-13 20:13:49 -05:00

rsautl.c

Centralise loading default apps config file

2015-10-12 22:31:00 +01:00

s512-key.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

s512-req.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

s1024key.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

s1024req.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

s_apps.h

Fix s_server problem with no-ec

2015-12-15 11:26:38 +00:00

s_cb.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

s_client.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

s_server.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

s_socket.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

s_time.c

Address Windows warnings in apps/.

2015-10-05 09:25:06 +02:00

server2.pem

Replace expired test server and client certificates with new ones.

2011-12-08 14:44:05 +00:00

server.pem

Replace expired test server and client certificates with new ones.

2011-12-08 14:44:05 +00:00

server.srl

Import of old SSLeay release: SSLeay 0.9.0b

1998-12-21 10:56:39 +00:00

sess_id.c

Fix NSS format session output

2016-01-11 10:03:27 +00:00

smime.c

Refactor apps load_certs/load_crls to work incrementally

2016-01-20 19:04:26 -05:00

speed.c

Use POSIX functions on Cygwin, not Win32 function

2016-01-18 16:16:00 +01:00

spkac.c

Continue standardisation of malloc handling in apps

2015-11-09 22:48:41 +00:00

srp.c

Rename some BUF_xxx to OPENSSL_xxx

2015-12-16 16:14:49 -05:00

testCA.pem

Import of old SSLeay release: SSLeay 0.8.1b

1998-12-21 10:52:47 +00:00

testdsa.h

Big apps cleanup (option-parsing, etc)

2015-04-24 15:26:15 -04:00

testrsa.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

timeouts.h

Run util/openssl-format-source -v -c .

2015-01-22 09:20:09 +00:00

ts.c

Cleanup: fix all sources that used EVP_MD_CTX_(create|init|destroy)

2015-12-07 17:40:20 +01:00

tsget

PR: 2031

2009-09-07 17:57:18 +00:00

verify.c

Multiple -trusted/-untrusted/-CRLfile options in verify

2016-01-20 19:04:33 -05:00

version.c

Replace "SSLeay" in API with OpenSSL

2015-10-30 17:21:42 -04:00

vms_decc_init.c

Fix some missing or faulty header file inclusions

2015-12-30 14:54:29 +01:00

winrand.c

Big apps cleanup (option-parsing, etc)

2015-04-24 15:26:15 -04:00

x509.c

make EVP_PKEY opaque

2016-01-20 03:24:59 +00:00