#
8d9a4d83 |
| 03-Apr-2020 |
Dr. David von Oheimb |
Chunk 11 of CMP contribution to OpenSSL: CMP command-line interface Certificate Management Protocol (CMP, RFC 4210) extension to OpenSSL Also includes CRMF (RFC 4211) and HTTP transfer (
Chunk 11 of CMP contribution to OpenSSL: CMP command-line interface Certificate Management Protocol (CMP, RFC 4210) extension to OpenSSL Also includes CRMF (RFC 4211) and HTTP transfer (RFC 6712). Adds the CMP and CRMF API to libcrypto and the "cmp" app to the CLI. Adds extensive documentation and tests. Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com> (Merged from https://github.com/openssl/openssl/pull/11470)
show more ...
|
#
885a2a39 |
| 11-May-2020 |
Richard Levitte |
Fix CHANGES.md issues reported by markdownlint Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11788)
|
#
257e9d03 |
| 07-May-2020 |
Rich Salz |
Fix issues reported by markdownlint Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/
Fix issues reported by markdownlint Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/openssl/openssl/pull/11739)
show more ...
|
#
31b069ec |
| 07-May-2020 |
Shane Lontis |
Remove legacy FIPS_mode functions Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull
Remove legacy FIPS_mode functions Reviewed-by: Richard Levitte <levitte@openssl.org> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11680)
show more ...
|
#
588d5d01 |
| 28-Apr-2020 |
Pauli |
Undeprecate DH, DSA and RSA _bits() functions. These were deemed information and useful and that they should not be deprecated. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
Undeprecate DH, DSA and RSA _bits() functions. These were deemed information and useful and that they should not be deprecated. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/11669)
show more ...
|
#
852c2ed2 |
| 19-Dec-2019 |
Rich Salz |
In OpenSSL builds, declare STACK for datatypes ... ... and only *define* them in the source files that need them. Use DEFINE_OR_DECLARE which is set appropriately for internal builds
In OpenSSL builds, declare STACK for datatypes ... ... and only *define* them in the source files that need them. Use DEFINE_OR_DECLARE which is set appropriately for internal builds and not non-deprecated builds. Deprecate stack-of-block Better documentation Move some ASN1 struct typedefs to types.h Update ParseC to handle this. Most of all, ParseC needed to be more consistent. The handlers are "recursive", in so far that they are called again and again until they terminate, which depends entirely on what the "massager" returns. There's a comment at the beginning of ParseC that explains how that works. {Richard Levtte} Reviewed-by: Dmitry Belyavskiy <beldmit@gmail.com> Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10669)
show more ...
|
#
d38997af |
| 23-Apr-2020 |
Matt Caswell |
Prepare for 3.0 alpha 2 Reviewed-by: Richard Levitte <levitte@openssl.org>
|
#
05feb0a0 |
| 23-Apr-2020 |
Matt Caswell |
Prepare for release of 3.0 alpha 1 Reviewed-by: Richard Levitte <levitte@openssl.org>
|
#
e7774c28 |
| 22-Apr-2020 |
Dr. David von Oheimb |
Add info on the CMP implementation and HTTP client to NEWS.md and CHANGES.md Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11608)
|
#
07caec83 |
| 12-Apr-2020 |
Billy Brumley |
[crypto/ec] deprecate Jprojective_coordinates_GFp functions Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.co
[crypto/ec] deprecate Jprojective_coordinates_GFp functions Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11527)
show more ...
|
#
b304f856 |
| 12-Mar-2020 |
Pauli |
CHANGES: note which command line utilities are marked for deprecation but still available. Some of the utilities are much easier to use than their pkey alternatives. These have been modi
CHANGES: note which command line utilities are marked for deprecation but still available. Some of the utilities are much easier to use than their pkey alternatives. These have been modified to use the PKEY APIs but still note that they are deprecated. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/11225)
show more ...
|
#
ccb8f0c8 |
| 31-Mar-2020 |
Richard Levitte |
Fixups in CHANGES.md Fixed one ambiguous line and removed a few unnecessary backticks. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Matthias St. Pierre <Matthi
Fixups in CHANGES.md Fixed one ambiguous line and removed a few unnecessary backticks. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> Reviewed-by: Paul Dale <paul.dale@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11447)
show more ...
|
#
be19d3ca |
| 24-Mar-2020 |
Pauli |
NEWS: note OSSL_PARAM_BLD API as public. Reviewed-by: Nicola Tuveri <nic.tuv@gmail.com> (Merged from https://github.com/openssl/openssl/pull/11390)
|
#
acb90ba8 |
| 21-Mar-2020 |
Richard Levitte |
EVP: Downgrade keys rather than upgrade Upgrading EVP_PKEYs from containing legacy keys to containing provider side keys proved to be risky, with a number of unpleasant corner cases,
EVP: Downgrade keys rather than upgrade Upgrading EVP_PKEYs from containing legacy keys to containing provider side keys proved to be risky, with a number of unpleasant corner cases, and with functions like EVP_PKEY_get0_DSA() failing unexpectedly. We therefore change course, and instead of upgrading legacy internal keys to provider side internal keys, we downgrade provider side internal keys to legacy ones. To be able to do this, we add |import_from| and make it a callback function designed for evp_keymgmt_export(). This means that evp_pkey_upgrade_to_provider() is replaced with evp_pkey_downgrade(). EVP_PKEY_copy_parameters() is the most deeply affected function of this change. Fixes #11366 Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11375)
show more ...
|
#
8243d8d1 |
| 21-Mar-2020 |
Richard Levitte |
EVP: Add EVP_PKEY_set_type_by_keymgmt() and use it This function intialises an EVP_PKEY to contain a provider side internal key. We take the opportunity to also document the old
EVP: Add EVP_PKEY_set_type_by_keymgmt() and use it This function intialises an EVP_PKEY to contain a provider side internal key. We take the opportunity to also document the older EVP_PKEY_set_type() and EVP_PKEY_set_type_str(). Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11375)
show more ...
|
#
8658fedd |
| 17-Mar-2020 |
Dr. Matthias St. Pierre |
Update CHANGES and NEWS for 1.1.1e release Reviewed-by: Matt Caswell <matt@openssl.org> (Merged from https://github.com/openssl/openssl/pull/11346)
|
#
12d99aac |
| 24-Feb-2020 |
Richard Levitte |
Deprecate ASN1_sign(), ASN1_verify() and ASN1_digest() These are old functions that fell out of use with OpenSL 0.9.7. It's more than time to deprecate them. Reviewed-by: Shane
Deprecate ASN1_sign(), ASN1_verify() and ASN1_digest() These are old functions that fell out of use with OpenSL 0.9.7. It's more than time to deprecate them. Reviewed-by: Shane Lontis <shane.lontis@oracle.com> (Merged from https://github.com/openssl/openssl/pull/11161)
show more ...
|
#
f33ca114 |
| 24-Feb-2020 |
Richard Levitte |
VMS: mitigate for the C++ compiler that doesn't understand certain pragmas This only affects __DECC_INCLUDE_EPILOGUE.H and __DECC_INCLUDE_PROLOGUE.H, which are used automatically by HP a
VMS: mitigate for the C++ compiler that doesn't understand certain pragmas This only affects __DECC_INCLUDE_EPILOGUE.H and __DECC_INCLUDE_PROLOGUE.H, which are used automatically by HP and VSI C/C++ compilers. Reviewed-by: Tim Hudson <tjh@openssl.org> Reviewed-by: Matthias St. Pierre <Matthias.St.Pierre@ncp-e.com> (Merged from https://github.com/openssl/openssl/pull/11159) (cherry picked from commit 605a0c709f4d50497a1c49ee117a0ec4bb956d58)
show more ...
|
#
c50604eb |
| 25-Feb-2020 |
Dr. Matthias St. Pierre |
doc: add a fancy CHANGES entry to celebrate the new Markdown format Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10545)
|
#
44652c16 |
| 03-Dec-2019 |
Dr. Matthias St. Pierre |
doc: add missing CHANGES entries for all versions >= 1.0.0 Up to now, CHANGES entries for older releases where only added to the corresponding stable branches, so they were missing in th
doc: add missing CHANGES entries for all versions >= 1.0.0 Up to now, CHANGES entries for older releases where only added to the corresponding stable branches, so they were missing in the master branch. This commit adds the missing entries, taking them from the respective stable branches. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10545)
show more ...
|
#
5f8e6c50 |
| 28-Nov-2019 |
Dr. Matthias St. Pierre |
doc: introduce some minimalistic markdown without essential changes The goal is to transform the standard documents README, INSTALL, SUPPORT, CONTRIBUTING, ... from a p
doc: introduce some minimalistic markdown without essential changes The goal is to transform the standard documents README, INSTALL, SUPPORT, CONTRIBUTING, ... from a pure text format into markdown format, but in such a way that the documentation remains nicely formatted an easy readable when viewed with an normal text editor. To achieve this goal, we use a special form of 'minimalistic' markdown which interferes as little as possible with the reading flow. * avoid [ATX headings][] and use [setext headings][] instead (works for `<h1>` and `<h2>` headings only). * avoid [inline links][] and use [reference links][] instead. * avoid [fenced code blocks][], use [indented-code-blocks][] instead. The transformation will take place in several steps. This commit introduces mostly changes the formatting and does not chang the content significantly. [ATX headings]: https://github.github.com/gfm/#atx-headings [setext headings]: https://github.github.com/gfm/#setext-headings [inline links]: https://github.github.com/gfm/#inline-link [reference links]: https://github.github.com/gfm/#reference-link [fenced code blocks]: https://github.github.com/gfm/#fenced-code-blocks [indented code blocks]: https://github.github.com/gfm/#indented-code-blocks Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10545)
show more ...
|
#
2e07506a |
| 28-Nov-2019 |
Dr. Matthias St. Pierre |
doc: convert standard project docs to markdown In the first step, we just add the .md extension and move some files around, without changing any content. These changes will occur in
doc: convert standard project docs to markdown In the first step, we just add the .md extension and move some files around, without changing any content. These changes will occur in the following commits. Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org> (Merged from https://github.com/openssl/openssl/pull/10545)
show more ...
|