![[BACK]](/icons/back.gif){kind=icon}
Up to [local] / src / usr.bin / openssl
Request diff between arbitrary revisions
Default branch: MAIN
Revision 1.156 / (download) - annotate - [select for diffs], Tue May 7 21:00:18 2024 UTC (11 days, 17 hours ago) by tb
Branch: MAIN
CVS Tags: HEAD
Changes since 1.155: +3 -3 lines
Diff to previous 1.155 (colored)
openssl: toolkit implementing the TLS v1 protocol is weird Well, it's a toolkit alright, and a terrible one at that, but TLS v1 (which is this beloved toolkit's name for TLS v1.0) is a thing firmly from the past, so drop the v1.
Revision 1.155 / (download) - annotate - [select for diffs], Fri Jan 26 11:58:37 2024 UTC (3 months, 3 weeks ago) by job
Branch: MAIN
CVS Tags: OPENBSD_7_5_BASE,
OPENBSD_7_5
Changes since 1.154: +21 -2 lines
Diff to previous 1.154 (colored)
Add 'openssl x509 -new' functionality to the libcrypto CLI utility The ability to generate a new certificate is useful for testing and experimentation with rechaining PKIs. While there, alias '-key' to '-signkey' for compatibility. with and OK tb@
Revision 1.154 / (download) - annotate - [select for diffs], Fri Jan 12 11:24:03 2024 UTC (4 months ago) by job
Branch: MAIN
Changes since 1.153: +44 -4 lines
Diff to previous 1.153 (colored)
Add -force_pubkey -multivalue-rdn -set_issuer -set_subject -utf8 to x509 app The -set_issuer, -set_subject, and -force_pubkey features can be used to 'rechain' PKIs, for more information see https://labs.apnic.net/nro-ta/ and https://blog.apnic.net/2023/12/14/models-of-trust-for-the-rpki/ OK tb@
Revision 1.153 / (download) - annotate - [select for diffs], Fri Dec 29 12:06:48 2023 UTC (4 months, 2 weeks ago) by tb
Branch: MAIN
Changes since 1.152: +2 -5 lines
Diff to previous 1.152 (colored)
s_client: pause hasn't worked in ages. Just ignore it ok jsing
Revision 1.152 / (download) - annotate - [select for diffs], Thu Jul 27 07:01:50 2023 UTC (9 months, 3 weeks ago) by tb
Branch: MAIN
CVS Tags: OPENBSD_7_4_BASE,
OPENBSD_7_4
Changes since 1.151: +3 -5 lines
Diff to previous 1.151 (colored)
Remove antiquated options output This is uninteresting and rather meaningless except for the implementer. No need to have several hundred lines of code backing half a dozen symbols in the public API for this. ok jsing
Revision 1.151 / (download) - annotate - [select for diffs], Sun Jul 23 11:20:11 2023 UTC (9 months, 3 weeks ago) by tb
Branch: MAIN
Changes since 1.150: +1 -8 lines
Diff to previous 1.150 (colored)
Remove -stats option from openssl(1) errstr. This is the only consumer of ERR_get_string_table(), which will go away. ok jsing
Revision 1.150 / (download) - annotate - [select for diffs], Mon Jul 3 08:37:22 2023 UTC (10 months, 2 weeks ago) by jmc
Branch: MAIN
Changes since 1.149: +6 -6 lines
Diff to previous 1.149 (colored)
some minor fix up;
Revision 1.149 / (download) - annotate - [select for diffs], Mon Jul 3 06:22:07 2023 UTC (10 months, 2 weeks ago) by beck
Branch: MAIN
Changes since 1.148: +11 -26 lines
Diff to previous 1.148 (colored)
Remove the tls1.0 and 1.1 related options from the openssl(1) toolkit ok tb@
Revision 1.148 / (download) - annotate - [select for diffs], Thu Jun 8 09:40:17 2023 UTC (11 months, 1 week ago) by schwarze
Branch: MAIN
Changes since 1.147: +9 -130 lines
Diff to previous 1.147 (colored)
From the description of "openssl verify", delete the duplicate and outdated list of error messages. Instead, refer to the master copy of that list in X509_STORE_CTX_get_error(3). Suggested by and OK tb@, and beck@ also agrees with the idea.
Revision 1.147 / (download) - annotate - [select for diffs], Wed Jun 7 10:53:30 2023 UTC (11 months, 1 week ago) by schwarze
Branch: MAIN
Changes since 1.146: +9 -3 lines
Diff to previous 1.146 (colored)
Refer to the field "thisUpdate" instead of the non-existent "lastUpdate". Similar to X509_get0_notBefore(3) rev. 1.6. Requested by and OK tb@.
Revision 1.146 / (download) - annotate - [select for diffs], Sat May 20 15:57:40 2023 UTC (11 months, 4 weeks ago) by tb
Branch: MAIN
Changes since 1.145: +3 -3 lines
Diff to previous 1.145 (colored)
Remove a space that I thought I had already deleted. Makes mandoc -Tlint happier
Revision 1.145 / (download) - annotate - [select for diffs], Sat May 20 12:03:02 2023 UTC (12 months ago) by tb
Branch: MAIN
Changes since 1.144: +10 -2 lines
Diff to previous 1.144 (colored)
openssl speed: add an '-unaligned n' option All hashes and ciphers covered by speed should be able to handle unaligned input and output. The buffers used in openssl speed are well aligned since they are large, so will never exercise the more problematic unaligned case. I wished something like this was available on various occasions. It would have been useful to point more easily at OpenSSL's broken T4 assembly. Yesterday there were two independent reasons for wanting it, so I sat down and did it. It's trivial: make the allocations a bit larger and use buffers starting at an offset inside these allocations. Despite the trivality, I managed to have a stupid bug. Thanks miod. discussed with jsing ok miod
Revision 1.144 / (download) - annotate - [select for diffs], Fri May 5 18:01:27 2023 UTC (12 months, 2 weeks ago) by tb
Branch: MAIN
Changes since 1.143: +9 -5 lines
Diff to previous 1.143 (colored)
Reinstate X9.31 padding mode support in rsautl
Revision 1.143 / (download) - annotate - [select for diffs], Tue Apr 25 16:11:02 2023 UTC (12 months, 3 weeks ago) by tb
Branch: MAIN
Changes since 1.142: +2 -33 lines
Diff to previous 1.142 (colored)
Remove the nseq command
Revision 1.142 / (download) - annotate - [select for diffs], Sat Apr 22 20:51:26 2023 UTC (12 months, 3 weeks ago) by tb
Branch: MAIN
Changes since 1.141: +5 -2 lines
Diff to previous 1.141 (colored)
Document the change in default to comma plus space but leave out the compat nonsense
Revision 1.141 / (download) - annotate - [select for diffs], Sun Apr 9 18:33:26 2023 UTC (13 months, 1 week ago) by tb
Branch: MAIN
Changes since 1.140: +5 -9 lines
Diff to previous 1.140 (colored)
Remove X9.31 support from openssl(1) The X9.31 standard has long been retired and deprecated and libcrypto will drop support for it soon. This prepares userland. ok jsing
Revision 1.140 / (download) - annotate - [select for diffs], Thu Dec 22 19:53:23 2022 UTC (16 months, 3 weeks ago) by kn
Branch: MAIN
CVS Tags: OPENBSD_7_3_BASE,
OPENBSD_7_3
Changes since 1.139: +4 -4 lines
Diff to previous 1.139 (colored)
Denote multiple arguments with 'arg ...' not 'args' A few programs used the plural in their synopsis which doesn't read as clear as the obvious triple-dot notation. mdoc(7) .Ar defaults to "file ..." if no arguments are given and consistent use of 'arg ...' matches that behaviour. Cleanup a few markups of the same argument so the text keeps reading naturally; omit unhelpful parts like 'if optional arguments are given, they are passed along' for tools like time(1) and timeout(1) that obviously execute commands with whatever arguments where given -- just like doas(1) which doesn't mention arguments in its DESCRIPTION in the first place. For expr(1) the difference between 'expressions' and 'expression ...' is crucial, as arguments must be passed as individual words. Feedback millert jmc schwarze deraadt OK jmc
Revision 1.139 / (download) - annotate - [select for diffs], Tue Jul 19 16:08:09 2022 UTC (22 months ago) by tb
Branch: MAIN
CVS Tags: OPENBSD_7_2_BASE,
OPENBSD_7_2
Changes since 1.138: +11 -2 lines
Diff to previous 1.138 (colored)
Document -tls1_{1,2,3} in openssl ciphers
ok jsing
Revision 1.138 / (download) - annotate - [select for diffs], Thu Jul 14 08:08:26 2022 UTC (22 months ago) by tb
Branch: MAIN
Changes since 1.137: +5 -3 lines
Diff to previous 1.137 (colored)
Document openssl ciphers -s ok beck jsing
Revision 1.137 / (download) - annotate - [select for diffs], Thu Mar 31 17:27:26 2022 UTC (2 years, 1 month ago) by naddy
Branch: MAIN
CVS Tags: OPENBSD_7_1_BASE,
OPENBSD_7_1
Changes since 1.136: +22 -22 lines
Diff to previous 1.136 (colored)
man pages: add missing commas between subordinate and main clauses jmc@ dislikes a comma before "then" in a conditional, so leave those untouched. ok jmc@
Revision 1.136 / (download) - annotate - [select for diffs], Fri Feb 18 10:24:32 2022 UTC (2 years, 2 months ago) by jsg
Branch: MAIN
Changes since 1.135: +3 -3 lines
Diff to previous 1.135 (colored)
prefer https links in man pages ok gnezdo@ miod@ jmc@
Revision 1.135 / (download) - annotate - [select for diffs], Mon Jan 10 12:19:26 2022 UTC (2 years, 4 months ago) by tb
Branch: MAIN
Changes since 1.134: +12 -2 lines
Diff to previous 1.134 (colored)
Document openssl pkey -check,-pubcheck and param -check
Revision 1.134 / (download) - annotate - [select for diffs], Fri Nov 26 16:23:27 2021 UTC (2 years, 5 months ago) by tb
Branch: MAIN
Changes since 1.133: +2 -6 lines
Diff to previous 1.133 (colored)
openssl(1): drop support for netscape certificates and server gated keys. ok inoguchi jsing
Revision 1.133 / (download) - annotate - [select for diffs], Sat Oct 23 11:36:44 2021 UTC (2 years, 6 months ago) by tb
Branch: MAIN
Changes since 1.132: +1 -9 lines
Diff to previous 1.132 (colored)
Nuke the asn1-kludge. This was a workaround for CAs with broken PCKS#10 encoders many moons ago. OpenSSL removed it in 2015. ok beck jsing
Revision 1.132 / (download) - annotate - [select for diffs], Sun Sep 5 06:16:30 2021 UTC (2 years, 8 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_7_0_BASE,
OPENBSD_7_0
Changes since 1.131: +4 -3 lines
Diff to previous 1.131 (colored)
new sentence, new line, and tweak wording of previous;
Revision 1.131 / (download) - annotate - [select for diffs], Sun Sep 5 01:55:54 2021 UTC (2 years, 8 months ago) by inoguchi
Branch: MAIN
Changes since 1.130: +6 -2 lines
Diff to previous 1.130 (colored)
Using serial number instead as subject if it is empty in openssl(1) ca This allows multiple entries without a subject even if unique_subject == yes. Referred to OpenSSL commit 5af88441 and arranged for our codebase. ok tb@
Revision 1.130 / (download) - annotate - [select for diffs], Sun Aug 29 12:33:15 2021 UTC (2 years, 8 months ago) by tb
Branch: MAIN
Changes since 1.129: +7 -2 lines
Diff to previous 1.129 (colored)
Implement -naccept in the s_server. doc fixes/ok jmc ok beck
Revision 1.129 / (download) - annotate - [select for diffs], Wed Mar 17 18:08:32 2021 UTC (3 years, 2 months ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_6_9_BASE,
OPENBSD_6_9
Changes since 1.128: +14 -2 lines
Diff to previous 1.128 (colored)
Add DTLSv1.2 support to openssl(1) s_client/s_server. ok inoguchi@ tb@
Revision 1.128 / (download) - annotate - [select for diffs], Wed Dec 30 08:26:44 2020 UTC (3 years, 4 months ago) by tb
Branch: MAIN
Changes since 1.127: +6 -3 lines
Diff to previous 1.127 (colored)
Document meaning of '*' in genrsa output ok inoguchi jmc kn
Revision 1.127 / (download) - annotate - [select for diffs], Sun Nov 1 21:32:03 2020 UTC (3 years, 6 months ago) by jmc
Branch: MAIN
Changes since 1.126: +12 -12 lines
Diff to previous 1.126 (colored)
some comma fixes; from varik valefor (audio.4 tweaked from that submitted)
Revision 1.126 / (download) - annotate - [select for diffs], Mon Oct 26 11:48:39 2020 UTC (3 years, 6 months ago) by tb
Branch: MAIN
Changes since 1.125: +4 -1 lines
Diff to previous 1.125 (colored)
Add a -legacy_verify flag to force use of the old validator for debugging and testing purposes. ok beck inoguchi jsing
Revision 1.125 / (download) - annotate - [select for diffs], Tue Jul 14 09:52:46 2020 UTC (3 years, 10 months ago) by inoguchi
Branch: MAIN
CVS Tags: OPENBSD_6_8_BASE,
OPENBSD_6_8
Changes since 1.124: +3 -3 lines
Diff to previous 1.124 (colored)
Remove hyphen
Revision 1.124 / (download) - annotate - [select for diffs], Tue Jul 14 09:49:42 2020 UTC (3 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.123: +3 -3 lines
Diff to previous 1.123 (colored)
Add single space between pem and ...
Revision 1.123 / (download) - annotate - [select for diffs], Tue Jul 14 09:46:17 2020 UTC (3 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.122: +57 -2 lines
Diff to previous 1.122 (colored)
Add manual for openssl(1) certhash ok jmc@
Revision 1.122 / (download) - annotate - [select for diffs], Wed May 13 10:19:25 2020 UTC (4 years ago) by inoguchi
Branch: MAIN
Changes since 1.121: +8 -6 lines
Diff to previous 1.121 (colored)
Add description for -tls1_3 and -no_tls1_3 options to openssl(1) s_server ok jsing@ tb@
Revision 1.121 / (download) - annotate - [select for diffs], Sat Apr 25 19:18:40 2020 UTC (4 years ago) by schwarze
Branch: MAIN
CVS Tags: OPENBSD_6_7_BASE,
OPENBSD_6_7
Changes since 1.120: +18 -6 lines
Diff to previous 1.120 (colored)
In s_server.c rev. 1.33, jsing added support for "openssl s_server -groups"; document it and deprecate "openssl s_server -named_curve". While here, fix the error in the synopsis for "openssl s_client -groups" and use unified argument naming and similar wording like in SSL_CTX_set1_groups_list(3). OK jsing@
Revision 1.120 / (download) - annotate - [select for diffs], Wed Feb 19 20:42:12 2020 UTC (4 years, 2 months ago) by kn
Branch: MAIN
Changes since 1.119: +44 -2 lines
Diff to previous 1.119 (colored)
Tag subcommand sections Allow semantic lookup by manually tagging sections (.Sh) for which no automatic tagging has been implemented; this thereby also eliminates false positives such that ":tx509<Enter>" now jumps to the X509 section. feedback remi inoguchi schwarze OK tb
Revision 1.119 / (download) - annotate - [select for diffs], Sun Feb 16 16:39:01 2020 UTC (4 years, 3 months ago) by jsing
Branch: MAIN
Changes since 1.118: +7 -5 lines
Diff to previous 1.118 (colored)
Add -tls1_3 and -notls1_3 options to openssl(1) s_client. Also stop using version pinned methods, instead setting the min and max protocol versions. Requested by inoguchi@ ok inoguchi@ tb@
Revision 1.118 / (download) - annotate - [select for diffs], Wed Dec 18 12:38:15 2019 UTC (4 years, 5 months ago) by sthen
Branch: MAIN
Changes since 1.117: +3 -3 lines
Diff to previous 1.117 (colored)
use "Currently" in the doc for "openssl enc" when talking about default md, to hint that it might not always be the case (e.g. if dealing with files from a different version of the tool). ok tb@
Revision 1.117 / (download) - annotate - [select for diffs], Wed Dec 18 07:54:28 2019 UTC (4 years, 5 months ago) by tb
Branch: MAIN
Changes since 1.116: +4 -7 lines
Diff to previous 1.116 (colored)
In January, the default digest used in the openssl enc command was changed from md5 to sha256. Update manual to reflect that. From Fabio Scotoni ok jmc
Revision 1.116 / (download) - annotate - [select for diffs], Thu Nov 28 11:21:33 2019 UTC (4 years, 5 months ago) by inoguchi
Branch: MAIN
Changes since 1.115: +518 -2 lines
Diff to previous 1.115 (colored)
Add manual for openssl(1) cms ok and comments jmc@
Revision 1.115 / (download) - annotate - [select for diffs], Tue Nov 19 10:20:10 2019 UTC (4 years, 6 months ago) by inoguchi
Branch: MAIN
Changes since 1.114: +10 -2 lines
Diff to previous 1.114 (colored)
Add manual descriptions for openssl(1) req -addext ok jmc@
Revision 1.114 / (download) - annotate - [select for diffs], Fri Oct 4 06:22:51 2019 UTC (4 years, 7 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_6_BASE,
OPENBSD_6_6
Changes since 1.113: +179 -115 lines
Diff to previous 1.113 (colored)
the formatting for the mini synopses in this page did not render well on html or groff. the solution, to replace the non-standard .nr macros with a hang list, was provided by ingo - thanks! ok schwarze
Revision 1.113 / (download) - annotate - [select for diffs], Mon Aug 5 12:01:51 2019 UTC (4 years, 9 months ago) by inoguchi
Branch: MAIN
Changes since 1.112: +3 -4 lines
Diff to previous 1.112 (colored)
Remove -port option from s_server since it is same as -accept ok schwarze@
Revision 1.112 / (download) - annotate - [select for diffs], Tue Jul 16 12:14:30 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.111: +8 -6 lines
Diff to previous 1.111 (colored)
Fix typo and -keyform argument in openssl(1) manual - s/outputed/outputted/ - s/trused/trusted/ - add der as argument and describe pem is the default
Revision 1.111 / (download) - annotate - [select for diffs], Fri Jul 12 10:21:08 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.110: +94 -18 lines
Diff to previous 1.110 (colored)
Fix manual openssl(1) s_server - Add undocumented options below. -alpn, -cert2, -certform, -dcertform, -dkeyform, -dpass, -dtls1, -key2, -keyform, -keymatexport, -keymatexportlen, -mtu, -named_curve, -no_cache, -no_ecdhe, -no_ticket, -pass, -port, -servername, -servername_fatal, -status, -status_timeout, -status_url, -status_verbose, -timeout, -tlsextdebug, -use_srtp, -verify_return_error - Remove -hack, -psk and -psk_hint since not exist in source code. I didn't add these 5 options since these were no-op. -chain, -legacy_renegotiation, -nextprotoneg, -no_comp, -no_ssl2 This option was removed from manual in the past. -no_ssl3 ok and suggestions from jmc@
Revision 1.110 / (download) - annotate - [select for diffs], Thu Jul 11 10:31:48 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.109: +80 -14 lines
Diff to previous 1.109 (colored)
Fix manual openssl(1) s_client - Add undocumented options below. -alpn, -certform, -dtls1, -host, -keyform, -keymatexport, -keymatexportlen, -legacy_server_connect, -mtu, -no_ign_eof, -no_legacy_server_connect, -pass -port, -serverpref, -sess_in, -sess_out, -status, -timeout, -use_srtp, -verify_return_error - Remove -psk and -psk_identity since not exist in source code. I didn't add these 4 options since these were no-op. -nextprotoneg, -legacy_renegotiation, -no_comp, -no_ssl2 This option was removed from manual in the past. -no_ssl3 ok jmc@
Revision 1.109 / (download) - annotate - [select for diffs], Tue Jul 9 11:19:05 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.108: +14 -6 lines
Diff to previous 1.108 (colored)
Fix manual openssl(1) genrsa Add missing -camellia*/-idea description to genrsa section. ok jmc@
Revision 1.108 / (download) - annotate - [select for diffs], Mon Jul 8 14:15:12 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.107: +56 -12 lines
Diff to previous 1.107 (colored)
Fix manual openssl(1) dsa, ocsp, rsa and smime
- dsa : add missing -pvk-none, -pvk-strong and -pvk-weak
add pvk format to -inform and -outform
- ocsp : add missing -header, -ignore_err, -no_explicit and -timeout
- rsa : add missing -pvk-none, -pvk-strong and -pvk-weak
add missing -RSAPublicKey_in and -RSAPublicKey_out
add pvk format to -inform and -outform
- smime : add missing -nosmimecap
- add pvk description at common format part
ok jmc@
Revision 1.107 / (download) - annotate - [select for diffs], Sun Jul 7 02:04:40 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.106: +75 -12 lines
Diff to previous 1.106 (colored)
Fix manual openssl(1) pkcs12, req, verify and x509 - For pkcs12, add -camellia*/-idea, -LMK and -password - For req, add -multivalue-rdn, -pkeyopt and -sigopt - For verify, add -CRLfile and -trusted, and down -check_ss_sig description - For x509, add -next_serial and -sigopt - Remove the escape in -multivalue-rdn from ca section ok jmc@
Revision 1.106 / (download) - annotate - [select for diffs], Fri Jul 5 14:33:10 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.105: +10 -3 lines
Diff to previous 1.105 (colored)
Fix manual openssl(1) ec, enc and pkcs7 - For ec, add -param_out description - For enc, add -v usage and description - For pkcs7, add -print usage and description ok jmc@
Revision 1.105 / (download) - annotate - [select for diffs], Fri Jul 5 11:50:46 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.104: +4 -2 lines
Diff to previous 1.104 (colored)
Fix manual openssl(1) dgst - Add undocumented option -r ok jmc@
Revision 1.104 / (download) - annotate - [select for diffs], Thu Jul 4 13:55:20 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.103: +14 -2 lines
Diff to previous 1.103 (colored)
Fix manual openssl(1) crl - Add undocumented options -crlnumber, -hash_old, -nameopt and -verify ok jmc@
Revision 1.103 / (download) - annotate - [select for diffs], Thu Jul 4 13:00:42 2019 UTC (4 years, 10 months ago) by inoguchi
Branch: MAIN
Changes since 1.102: +14 -7 lines
Diff to previous 1.102 (colored)
Fix manual openssl(1) ca - Add undocumented options -crlsec and -sigopt - Sync argument name between usage and options description ok jmc@
Revision 1.102 / (download) - annotate - [select for diffs], Fri Jun 7 05:53:46 2019 UTC (4 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.101: +4 -6 lines
Diff to previous 1.101 (colored)
tidy up the formatting of gendsa synopsis a little;
Revision 1.101 / (download) - annotate - [select for diffs], Fri Jun 7 02:32:22 2019 UTC (4 years, 11 months ago) by inoguchi
Branch: MAIN
Changes since 1.100: +14 -7 lines
Diff to previous 1.100 (colored)
Convert openssl(1) gendsa to the newer style of option handling - Adapt openssl(1) gendsa command to new option handling. - Add lacking ciphers and passout description in openssl.1 manpage. - Describe paramfile as argument in openssl.1 manpage. ok bcook@
Revision 1.100 / (download) - annotate - [select for diffs], Mon Feb 4 11:21:05 2019 UTC (5 years, 3 months ago) by tb
Branch: MAIN
CVS Tags: OPENBSD_6_5_BASE,
OPENBSD_6_5
Changes since 1.99: +12 -5 lines
Diff to previous 1.99 (colored)
Document missing command line options for the rsautl command. ok jsing, "looks good!" jmc
Revision 1.99 / (download) - annotate - [select for diffs], Mon Jan 28 21:17:25 2019 UTC (5 years, 3 months ago) by jmc
Branch: MAIN
Changes since 1.98: +2 -2 lines
Diff to previous 1.98 (colored)
spelling;
Revision 1.98 / (download) - annotate - [select for diffs], Fri Jan 18 23:33:57 2019 UTC (5 years, 4 months ago) by naddy
Branch: MAIN
Changes since 1.97: +4 -4 lines
Diff to previous 1.97 (colored)
switch the default algorithm for the dgst command from MD5 to SHA256 ok deraadt@
Revision 1.97 / (download) - annotate - [select for diffs], Fri Jan 18 07:11:51 2019 UTC (5 years, 4 months ago) by jmc
Branch: MAIN
Changes since 1.96: +8 -8 lines
Diff to previous 1.96 (colored)
tweak previous;
Revision 1.96 / (download) - annotate - [select for diffs], Fri Jan 18 03:54:02 2019 UTC (5 years, 4 months ago) by beck
Branch: MAIN
Changes since 1.95: +11 -2 lines
Diff to previous 1.95 (colored)
Add the -iter and -pbkdf2 argumenst to enc
Revision 1.95 / (download) - annotate - [select for diffs], Thu Nov 1 07:01:42 2018 UTC (5 years, 6 months ago) by tb
Branch: MAIN
Changes since 1.94: +6 -6 lines
Diff to previous 1.94 (colored)
Make the documentation of -conv_form match reality. It defaults to uncompressed rather than compressed. From Jacqueline Jolicoeur
Revision 1.94 / (download) - annotate - [select for diffs], Fri Aug 24 20:12:24 2018 UTC (5 years, 8 months ago) by tb
Branch: MAIN
CVS Tags: OPENBSD_6_4_BASE,
OPENBSD_6_4
Changes since 1.93: +2 -22 lines
Diff to previous 1.93 (colored)
The broken pkcs8 formats generated by openssl pkcs -{embed,nooct,nsdb}
are no longer supported. Remove their documentation.
ok jsing
Revision 1.93 / (download) - annotate - [select for diffs], Tue Apr 10 22:07:30 2018 UTC (6 years, 1 month ago) by schwarze
Branch: MAIN
Changes since 1.92: +13 -145 lines
Diff to previous 1.92 (colored)
Delete the description of the argument of the "ciphers" command because it was (1) woefully incomplete, (2) partially outdated and wrong, (3) in parts imprecisely worded and hard to understand, (4) excessively technical for a section 1 manual, (5) of excessive size for this particular page, (6) and didn't belong here in the first place because it essentially tried to document a C API - SSL_CTX_set_cipher_list(3), which is now documented, so point to it.
Revision 1.92 / (download) - annotate - [select for diffs], Sat Mar 31 12:46:12 2018 UTC (6 years, 1 month ago) by schwarze
Branch: MAIN
Changes since 1.91: +4 -8 lines
Diff to previous 1.91 (colored)
Improve description of openssl(1) ciphers. * Remove -tls1 option which has no effect. * For -V, sort the fields in the order they are printed, and do not talk about key size restrictions, nothing like that is printed.
Revision 1.91 / (download) - annotate - [select for diffs], Fri Mar 30 23:03:31 2018 UTC (6 years, 1 month ago) by schwarze
Branch: MAIN
Changes since 1.90: +83 -24 lines
Diff to previous 1.90 (colored)
Updates to the description of "openssl ca" from OpenSSL. Some options were missing, some were in the wrong section (CRL-related or not), and there were some minor errors, typos, and omissions.
Revision 1.90 / (download) - annotate - [select for diffs], Fri Mar 30 20:38:23 2018 UTC (6 years, 1 month ago) by schwarze
Branch: MAIN
Changes since 1.89: +5 -5 lines
Diff to previous 1.89 (colored)
checked the content against the current version of OpenSSL openssl.pod; resulting fixes: markup of "command" below SYNOPSIS and links to the config file formats below SEE ALSO
Revision 1.89 / (download) - annotate - [select for diffs], Thu Mar 22 19:24:18 2018 UTC (6 years, 1 month ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_3_BASE,
OPENBSD_6_3
Changes since 1.88: +3 -3 lines
Diff to previous 1.88 (colored)
organizationUnitName -> organizationalUnitName; from matt schwartz
Revision 1.88 / (download) - annotate - [select for diffs], Wed Feb 28 20:36:09 2018 UTC (6 years, 2 months ago) by jmc
Branch: MAIN
Changes since 1.87: +6 -6 lines
Diff to previous 1.87 (colored)
ca start/enddates require all 4 yyyy from 2050 on; first two are otherwise optional diff from holger mikolon, tweaked a bit by me
Revision 1.87 / (download) - annotate - [select for diffs], Sun Feb 18 07:43:55 2018 UTC (6 years, 3 months ago) by jmc
Branch: MAIN
Changes since 1.86: +5 -2 lines
Diff to previous 1.86 (colored)
document s_client -groups;
Revision 1.86 / (download) - annotate - [select for diffs], Mon Aug 28 17:50:58 2017 UTC (6 years, 8 months ago) by jsing
Branch: MAIN
CVS Tags: OPENBSD_6_2_BASE,
OPENBSD_6_2
Changes since 1.85: +4 -4 lines
Diff to previous 1.85 (colored)
Remove SSLv23 padding mode.
Revision 1.85 / (download) - annotate - [select for diffs], Tue May 16 04:55:27 2017 UTC (7 years ago) by tb
Branch: MAIN
Changes since 1.84: +3 -3 lines
Diff to previous 1.84 (colored)
typo: ket -> key. from "fenderq" on freenode via tj
Revision 1.84 / (download) - annotate - [select for diffs], Tue Jan 3 22:14:41 2017 UTC (7 years, 4 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_1_BASE,
OPENBSD_6_1
Changes since 1.83: +12 -12 lines
Diff to previous 1.83 (colored)
consistently spell ASN.1;
Revision 1.83 / (download) - annotate - [select for diffs], Thu Oct 6 14:47:00 2016 UTC (7 years, 7 months ago) by naddy
Branch: MAIN
Changes since 1.82: +2 -2 lines
Diff to previous 1.82 (colored)
typo
Revision 1.82 / (download) - annotate - [select for diffs], Thu Sep 22 19:17:17 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.81: +1 -13 lines
Diff to previous 1.81 (colored)
trim STANDARDS; ok jsing
Revision 1.81 / (download) - annotate - [select for diffs], Thu Sep 22 13:44:02 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.80: +18 -48 lines
Diff to previous 1.80 (colored)
some minor cleanup;
Revision 1.80 / (download) - annotate - [select for diffs], Thu Sep 22 13:30:49 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.79: +414 -755 lines
Diff to previous 1.79 (colored)
shorten x509;
Revision 1.79 / (download) - annotate - [select for diffs], Tue Sep 20 16:45:38 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.78: +5 -18 lines
Diff to previous 1.78 (colored)
shorten version;
Revision 1.78 / (download) - annotate - [select for diffs], Tue Sep 20 16:40:05 2016 UTC (7 years, 7 months ago) by jmc
Branch: MAIN
Changes since 1.77: +40 -41 lines
Diff to previous 1.77 (colored)
shorten the verify error list;
Revision 1.77 / (download) - annotate - [select for diffs], Mon Sep 19 12:57:45 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.76: +61 -61 lines
Diff to previous 1.76 (colored)
put the spkac section in the right place;
Revision 1.76 / (download) - annotate - [select for diffs], Mon Sep 19 12:55:04 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.75: +96 -154 lines
Diff to previous 1.75 (colored)
shorten verify;
Revision 1.75 / (download) - annotate - [select for diffs], Sat Sep 17 15:10:50 2016 UTC (7 years, 8 months ago) by deraadt
Branch: MAIN
Changes since 1.74: +1 -2 lines
Diff to previous 1.74 (colored)
remove comment about CMS; ok jsing
Revision 1.74 / (download) - annotate - [select for diffs], Thu Sep 15 20:57:07 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.73: +2 -1 lines
Diff to previous 1.73 (colored)
add some Xr for acme-client(1);
Revision 1.73 / (download) - annotate - [select for diffs], Thu Sep 15 20:54:28 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.72: +14 -69 lines
Diff to previous 1.72 (colored)
some spkac shortening; ok beck
Revision 1.72 / (download) - annotate - [select for diffs], Thu Sep 15 17:49:03 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.71: +63 -283 lines
Diff to previous 1.71 (colored)
shorten ts;
Revision 1.71 / (download) - annotate - [select for diffs], Mon Sep 12 13:34:12 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.70: +14 -48 lines
Diff to previous 1.70 (colored)
shorten speed; help/ok guenther bcook
Revision 1.70 / (download) - annotate - [select for diffs], Thu Sep 8 18:24:08 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.69: +83 -344 lines
Diff to previous 1.69 (colored)
shorten smime;
Revision 1.69 / (download) - annotate - [select for diffs], Sun Sep 4 19:38:51 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.68: +43 -83 lines
Diff to previous 1.68 (colored)
shorten sess_id;
Revision 1.68 / (download) - annotate - [select for diffs], Sat Sep 3 13:26:55 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.67: +22 -91 lines
Diff to previous 1.67 (colored)
shorten s_time; help/ok bcook
Revision 1.67 / (download) - annotate - [select for diffs], Fri Sep 2 18:43:52 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.66: +72 -134 lines
Diff to previous 1.66 (colored)
shorten s_server;
Revision 1.66 / (download) - annotate - [select for diffs], Thu Sep 1 08:26:44 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.65: +50 -142 lines
Diff to previous 1.65 (colored)
shorten s_client;
Revision 1.65 / (download) - annotate - [select for diffs], Tue Aug 30 07:53:59 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.64: +13 -152 lines
Diff to previous 1.64 (colored)
shorten rsautl;
Revision 1.64 / (download) - annotate - [select for diffs], Sun Aug 28 19:34:15 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.63: +44 -278 lines
Diff to previous 1.63 (colored)
shorten the rsa text; of note, i've also reduced the description for -inform/-outform/-text and removed the oft-repeated header/footer blurb;
Revision 1.63 / (download) - annotate - [select for diffs], Sat Aug 27 20:43:05 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.62: +189 -452 lines
Diff to previous 1.62 (colored)
shorten the req text;
Revision 1.62 / (download) - annotate - [select for diffs], Thu Aug 25 14:37:28 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.61: +39 -82 lines
Diff to previous 1.61 (colored)
shorten the pkeyutl text; help/ok guenther
Revision 1.61 / (download) - annotate - [select for diffs], Wed Aug 24 08:17:24 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.60: +9 -24 lines
Diff to previous 1.60 (colored)
shorten the pkeyparam text;
Revision 1.60 / (download) - annotate - [select for diffs], Wed Aug 24 08:07:33 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.59: +25 -73 lines
Diff to previous 1.59 (colored)
shorten the pkey text;
Revision 1.59 / (download) - annotate - [select for diffs], Tue Aug 23 18:54:04 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.58: +42 -187 lines
Diff to previous 1.58 (colored)
shorten pkcs12;
Revision 1.58 / (download) - annotate - [select for diffs], Mon Aug 22 13:39:52 2016 UTC (7 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.57: +62 -178 lines
Diff to previous 1.57 (colored)
shorten the pkcs8 text;
Revision 1.57 / (download) - annotate - [select for diffs], Sat Aug 20 12:54:49 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.56: +38 -59 lines
Diff to previous 1.56 (colored)
shorten pkcs7 text;
Revision 1.56 / (download) - annotate - [select for diffs], Sat Aug 20 07:56:09 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.55: +14 -48 lines
Diff to previous 1.55 (colored)
shorten the passwd text; ok jsing
Revision 1.55 / (download) - annotate - [select for diffs], Fri Aug 19 08:46:38 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.54: +71 -199 lines
Diff to previous 1.54 (colored)
shorten the ocsp text; ok beck
Revision 1.54 / (download) - annotate - [select for diffs], Thu Aug 18 12:07:21 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.53: +17 -41 lines
Diff to previous 1.53 (colored)
shorten the nseq text;
Revision 1.53 / (download) - annotate - [select for diffs], Tue Aug 16 06:40:24 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.52: +18 -42 lines
Diff to previous 1.52 (colored)
shorten genrsa; ok jsing
Revision 1.52 / (download) - annotate - [select for diffs], Sun Aug 14 09:02:52 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.51: +23 -78 lines
Diff to previous 1.51 (colored)
shorten genpkey; ok guenther
Revision 1.51 / (download) - annotate - [select for diffs], Sat Aug 13 18:23:39 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.50: +11 -19 lines
Diff to previous 1.50 (colored)
shorten gendsa;
Revision 1.50 / (download) - annotate - [select for diffs], Fri Aug 12 06:21:12 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.49: +2 -27 lines
Diff to previous 1.49 (colored)
trim errstr, and zap gendh (deprecated) entirely;
Revision 1.49 / (download) - annotate - [select for diffs], Fri Aug 12 06:17:22 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.48: +39 -201 lines
Diff to previous 1.48 (colored)
shorten openssl enc, with help from jsing; ok jsing beck
Revision 1.48 / (download) - annotate - [select for diffs], Wed Aug 10 17:41:08 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.47: +50 -102 lines
Diff to previous 1.47 (colored)
shorten ecparam;
Revision 1.47 / (download) - annotate - [select for diffs], Tue Aug 9 17:07:33 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.46: +39 -92 lines
Diff to previous 1.46 (colored)
trim the ec text;
Revision 1.46 / (download) - annotate - [select for diffs], Mon Aug 8 18:13:51 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.45: +36 -56 lines
Diff to previous 1.45 (colored)
trim the dsaparam section; ok guenther
Revision 1.45 / (download) - annotate - [select for diffs], Fri Aug 5 08:12:12 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.44: +35 -69 lines
Diff to previous 1.44 (colored)
shorten the openssl dsa text;
Revision 1.44 / (download) - annotate - [select for diffs], Wed Aug 3 06:43:21 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.43: +32 -84 lines
Diff to previous 1.43 (colored)
shorten the openssl dhparam text; guenther helped rewrite the -dsaparam parts.
Revision 1.43 / (download) - annotate - [select for diffs], Mon Aug 1 07:23:29 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.42: +23 -52 lines
Diff to previous 1.42 (colored)
shorten the openssl dgst text; in particular, do not try to list all the available digests;
Revision 1.42 / (download) - annotate - [select for diffs], Thu Jul 28 16:22:06 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.41: +2 -26 lines
Diff to previous 1.41 (colored)
remove HISTORY: it was a nonsense;
Revision 1.41 / (download) - annotate - [select for diffs], Thu Jul 28 16:20:21 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.40: +12 -12 lines
Diff to previous 1.40 (colored)
some text cutting, after feedback from jsing;
Revision 1.40 / (download) - annotate - [select for diffs], Sat Jul 23 19:31:35 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_6_0_BASE,
OPENBSD_6_0
Changes since 1.39: +17 -56 lines
Diff to previous 1.39 (colored)
rework crl2pkcs7; with help from jsing
Revision 1.39 / (download) - annotate - [select for diffs], Thu Jul 21 18:40:26 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.38: +12 -17 lines
Diff to previous 1.38 (colored)
rework DESCRIPTION a little: no-command seems clearer than no-XXX;
Revision 1.38 / (download) - annotate - [select for diffs], Thu Jul 21 18:33:27 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.37: +45 -44 lines
Diff to previous 1.37 (colored)
rename NOTES to COMMON SYNTAX (explains itself better); rework the passphrase section a little; move the DER|PEM stuff in there to help avoid text repetition, and prefer the lowercase (less keys to press); adjust ENVIRONMENT to format a little more nicely;
Revision 1.37 / (download) - annotate - [select for diffs], Thu Jul 21 16:34:08 2016 UTC (7 years, 9 months ago) by jmc
Branch: MAIN
Changes since 1.36: +21 -41 lines
Diff to previous 1.36 (colored)
strip back openssl crl somewhat: remove the examples and move any relevant text into the main body;
Revision 1.36 / (download) - annotate - [select for diffs], Wed Jul 20 14:42:03 2016 UTC (7 years, 10 months ago) by jmc
Branch: MAIN
Changes since 1.35: +61 -107 lines
Diff to previous 1.35 (colored)
strip back openssl ciphers: - rearrange the descriptions of -V and -v to read more logically - move the cipherlist text into the cipherlist description - zap examples
Revision 1.35 / (download) - annotate - [select for diffs], Tue Jul 19 20:02:47 2016 UTC (7 years, 10 months ago) by jmc
Branch: MAIN
Changes since 1.34: +120 -337 lines
Diff to previous 1.34 (colored)
strip back openssl ca: in particular remove some excessively wordy sections, move some other sections into more relevant places, and remove the example ca file;
Revision 1.34 / (download) - annotate - [select for diffs], Sun Jul 17 16:33:17 2016 UTC (7 years, 10 months ago) by jmc
Branch: MAIN
Changes since 1.33: +27 -108 lines
Diff to previous 1.33 (colored)
strip back asn1parse; ok beck jsing description of -out altered on jsing's advice
Revision 1.33 / (download) - annotate - [select for diffs], Sat Jul 16 07:27:53 2016 UTC (7 years, 10 months ago) by jmc
Branch: MAIN
Changes since 1.32: +57 -427 lines
Diff to previous 1.32 (colored)
since we no longer pull source directly from openssl, the time is right to try and trim some of the excess from this page. begin now by cutting some of the fluff from the start. the section on pass phrase arguments goes to the end of the page: it;s in the way for now.
Revision 1.32 / (download) - annotate - [select for diffs], Fri Feb 12 13:03:19 2016 UTC (8 years, 3 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_5_9_BASE,
OPENBSD_5_9
Changes since 1.31: +3 -3 lines
Diff to previous 1.31 (colored)
word fix from previous; ok sthen
Revision 1.31 / (download) - annotate - [select for diffs], Mon Feb 8 19:29:57 2016 UTC (8 years, 3 months ago) by jmc
Branch: MAIN
Changes since 1.30: +21 -16 lines
Diff to previous 1.30 (colored)
sslv3 has been removed; prompted by a mail from jiri navratil help/ok sthen
Revision 1.30 / (download) - annotate - [select for diffs], Thu Dec 24 16:54:37 2015 UTC (8 years, 4 months ago) by mmcc
Branch: MAIN
Changes since 1.29: +3 -3 lines
Diff to previous 1.29 (colored)
more e-mail -> email
Revision 1.29 / (download) - annotate - [select for diffs], Mon Sep 21 13:13:06 2015 UTC (8 years, 7 months ago) by bcook
Branch: MAIN
Changes since 1.28: +10 -13 lines
Diff to previous 1.28 (colored)
remove vestigial bits of sha-0 and md2 from openssl(1) Noted by kinichiro on github. We probably need a better way to indicate the list of message digests that are allowed, as the current ones are nowhere near exhaustive (sigh - guenther@) OK guenther@ jmc@
Revision 1.28 / (download) - annotate - [select for diffs], Mon Sep 14 01:45:03 2015 UTC (8 years, 8 months ago) by doug
Branch: MAIN
Changes since 1.27: +9 -6 lines
Diff to previous 1.27 (colored)
Temporarily revive MD4 for MS CHAP support.
Revision 1.27 / (download) - annotate - [select for diffs], Sun Sep 13 23:36:21 2015 UTC (8 years, 8 months ago) by doug
Branch: MAIN
Changes since 1.26: +6 -9 lines
Diff to previous 1.26 (colored)
Remove MD4 support from LibreSSL. MD4 should have been removed a long time ago. Also, RFC 6150 moved it to historic in 2011. Rides the major crank from removing SHA-0. Discussed with many including beck@, millert@, djm@, sthen@ ok jsing@, input + ok bcook@
Revision 1.26 / (download) - annotate - [select for diffs], Sun Sep 13 17:57:11 2015 UTC (8 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.25: +2 -1 lines
Diff to previous 1.25 (colored)
nc(1) seems worth an Xr in SEE ALSO now;
Revision 1.25 / (download) - annotate - [select for diffs], Sun Sep 13 12:34:27 2015 UTC (8 years, 8 months ago) by bcook
Branch: MAIN
Changes since 1.24: +5 -2 lines
Diff to previous 1.24 (colored)
document extra algorithms available with openssl speed command ok jmc@
Revision 1.24 / (download) - annotate - [select for diffs], Sun Sep 13 07:54:05 2015 UTC (8 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.23: +3 -3 lines
Diff to previous 1.23 (colored)
tweak STANDARDS;
Revision 1.23 / (download) - annotate - [select for diffs], Sat Sep 12 19:34:07 2015 UTC (8 years, 8 months ago) by lteo
Branch: MAIN
Changes since 1.22: +1 -4 lines
Diff to previous 1.22 (colored)
Nuke SSLEAY_CONF -- a backwards compatibility environment variable that has been superseded by OPENSSL_CONF and discouraged from use for almost 16 years. "Definately ok" jsing@ "burn it" deraadt@ "Kill it with fire" miod@ "KILL IT WITH FIRE!!! BURN!!!!" beck@
Revision 1.22 / (download) - annotate - [select for diffs], Fri Sep 11 14:30:23 2015 UTC (8 years, 8 months ago) by bcook
Branch: MAIN
Changes since 1.21: +14 -354 lines
Diff to previous 1.21 (colored)
Remove engine command and parameters from openssl(1). We do not have any builtin or dynamic engines, meaning openssl(1) has no way to use the engine command or parameters at all. ok jsing@
Revision 1.21 / (download) - annotate - [select for diffs], Fri Sep 11 06:43:05 2015 UTC (8 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.20: +3 -3 lines
Diff to previous 1.20 (colored)
shutdown (n.) -> shut down (v.);
Revision 1.20 / (download) - annotate - [select for diffs], Fri Sep 11 02:10:32 2015 UTC (8 years, 8 months ago) by lteo
Branch: MAIN
Changes since 1.19: +7 -2 lines
Diff to previous 1.19 (colored)
Change the default behavior of the s_time command so that it will perform a proper shutdown by sending a "close notify" alert to the server. This allows s_time to benchmark a full TLS connection more accurately. Introduce a new flag called -no_shutdown to make s_time adopt the previous behavior (i.e. shut down the connection without notifying the server) so that comparisons can still be made with OpenSSL's version. The idea of using a flag (which replaces a #define) was suggested by bcook@. Thanks to millert@ and miod@ as well for their feedback on an earlier diff which resulted in this change. ok bcook@ beck@
Revision 1.19 / (download) - annotate - [select for diffs], Tue Aug 11 05:01:03 2015 UTC (8 years, 9 months ago) by landry
Branch: MAIN
Changes since 1.18: +10 -2 lines
Diff to previous 1.18 (colored)
Improve openssl s_client -starttls xmpp support. From https://rt.openssl.org/Ticket/Display.html?id=2860&user=guest&pass=guest - add a -xmpphost option to specify the xmpp virtual host - fix an infinite loop when the vhost isnt what the server expects - fix communication with openfire & prosody servers with tweaks & ok bcook@ doug@ manpage bits jmc@
Revision 1.18 / (download) - annotate - [select for diffs], Sun Aug 2 12:43:44 2015 UTC (8 years, 9 months ago) by jmc
Branch: MAIN
CVS Tags: OPENBSD_5_8_BASE,
OPENBSD_5_8
Changes since 1.17: +14 -58 lines
Diff to previous 1.17 (colored)
remove ssl3 bits; ok doug
Revision 1.17 / (download) - annotate - [select for diffs], Mon Jul 27 17:28:39 2015 UTC (8 years, 9 months ago) by sobrado
Branch: MAIN
Changes since 1.16: +7 -7 lines
Diff to previous 1.16 (colored)
use file system path (.Pa) semantic markup macros where appropriate. ok jmc@
Revision 1.16 / (download) - annotate - [select for diffs], Wed Jul 8 16:37:25 2015 UTC (8 years, 10 months ago) by sthen
Branch: MAIN
Changes since 1.15: +3 -3 lines
Diff to previous 1.15 (colored)
switch "openssl dhparam" default from 512 to 2048 bits, ok jsing@
Revision 1.15 / (download) - annotate - [select for diffs], Sat Jun 20 01:07:25 2015 UTC (8 years, 11 months ago) by doug
Branch: MAIN
Changes since 1.14: +4 -6 lines
Diff to previous 1.14 (colored)
Remove obsolete MDC-2DES from libcrypto. ok deraadt@ jsing@ miod@
Revision 1.14 / (download) - annotate - [select for diffs], Thu Jun 18 11:38:41 2015 UTC (8 years, 11 months ago) by jmc
Branch: MAIN
Changes since 1.13: +4 -4 lines
Diff to previous 1.13 (colored)
spelling fixes from theo buehler;
Revision 1.13 / (download) - annotate - [select for diffs], Sat Feb 28 21:51:56 2015 UTC (9 years, 2 months ago) by bentley
Branch: MAIN
CVS Tags: OPENBSD_5_7_BASE,
OPENBSD_5_7
Changes since 1.12: +7 -7 lines
Diff to previous 1.12 (colored)
Reduce usage of predefined strings in manpages. Predefined strings are not very portable across troff implementations, and they make the source much harder to read. Usually the intended character can be written directly. No output changes, except for two instances where the incorrect escape was used in the first place. tweaks + ok schwarze@
Revision 1.12 / (download) - annotate - [select for diffs], Sun Feb 15 22:26:45 2015 UTC (9 years, 3 months ago) by bentley
Branch: MAIN
Changes since 1.11: +3 -3 lines
Diff to previous 1.11 (colored)
Use "In" to mark up include files, instead of wrongly wrapping with Aq. Aq is not the same as <> in non-ASCII situations, so this caused incorrect output in some places. And it provided no semantics besides. ok schwarze@
Revision 1.11 / (download) - annotate - [select for diffs], Tue Jan 13 14:09:54 2015 UTC (9 years, 4 months ago) by bluhm
Branch: MAIN
Changes since 1.10: +14 -2 lines
Diff to previous 1.10 (colored)
Document the openssl s_client -proxy feature. OK jmc@
Revision 1.10 / (download) - annotate - [select for diffs], Mon Jan 5 03:54:55 2015 UTC (9 years, 4 months ago) by lteo
Branch: MAIN
Changes since 1.9: +2 -3 lines
Diff to previous 1.9 (colored)
Zap a reference to .rnd, which is likely the last RANDFILE remnant on this man page. ok jsing@
Revision 1.9 / (download) - annotate - [select for diffs], Wed Dec 24 03:22:17 2014 UTC (9 years, 4 months ago) by lteo
Branch: MAIN
Changes since 1.8: +9 -153 lines
Diff to previous 1.8 (colored)
Clean up CIPHERS and related sections: - Sync cipher strings with the ones that are actually implemented. - Remove CIPHERS SUITE NAMES (the actual cipher suites can be obtained via "openssl ciphers -v"), CIPHERS NOTES, and CIPHERS HISTORY sections. - Stop mentioning export cipher suites since they have already been removed. feedback from deraadt@ and jmc@ ok jmc@
Revision 1.8 / (download) - annotate - [select for diffs], Fri Dec 19 03:58:02 2014 UTC (9 years, 5 months ago) by lteo
Branch: MAIN
Changes since 1.7: +2 -7 lines
Diff to previous 1.7 (colored)
CA.sh and CA.pl are gone
Revision 1.7 / (download) - annotate - [select for diffs], Fri Dec 19 03:14:19 2014 UTC (9 years, 5 months ago) by lteo
Branch: MAIN
Changes since 1.6: +29 -9 lines
Diff to previous 1.6 (colored)
Sync message digest algorithms with the ones actually implemented in "openssl dgst". feedback/ok jmc@
Revision 1.6 / (download) - annotate - [select for diffs], Sun Nov 23 04:49:46 2014 UTC (9 years, 5 months ago) by guenther
Branch: MAIN
Changes since 1.5: +10 -6 lines
Diff to previous 1.5 (colored)
Mention the -no_tls1_[12] options
Revision 1.5 / (download) - annotate - [select for diffs], Fri Nov 7 13:13:08 2014 UTC (9 years, 6 months ago) by jsing
Branch: MAIN
Changes since 1.4: +7 -2 lines
Diff to previous 1.4 (colored)
Document the -servername option for openssl(1) s_client. Based on a diff from Rusty (rustyl at outband dot net) and OpenSSL.
Revision 1.4 / (download) - annotate - [select for diffs], Wed Oct 1 13:15:40 2014 UTC (9 years, 7 months ago) by sthen
Branch: MAIN
Changes since 1.3: +8 -7 lines
Diff to previous 1.3 (colored)
Switch "openssl req" to using SHA256 for hashes and AES256 to encrypt on-disk
keys by default (instead of SHA1/3DES) and update documentation to match.
Another way to do this is s/NID_sha1/NID_sha256/ in src/crypto/rsa/rsa_ameth.c
("case ASN1_PKEY_CTRL_DEFAULT_MD_NID") but going with the more targetted method
above that only affects "openssl req" for now.
Help/OK jsing@. OKs on earlier diffs changing openssl.cnf from phessler@ aja@
Revision 1.3 / (download) - annotate - [select for diffs], Tue Sep 16 16:05:44 2014 UTC (9 years, 8 months ago) by jmc
Branch: MAIN
Changes since 1.2: +2 -3 lines
Diff to previous 1.2 (colored)
a little less sendmail specific;
Revision 1.2 / (download) - annotate - [select for diffs], Tue Aug 26 20:03:31 2014 UTC (9 years, 8 months ago) by robert
Branch: MAIN
Changes since 1.1: +2 -3 lines
Diff to previous 1.1 (colored)
remove nginx references
Revision 1.1 / (download) - annotate - [select for diffs], Tue Aug 26 17:47:24 2014 UTC (9 years, 8 months ago) by jsing
Branch: MAIN
Move openssl(1) from /usr/sbin/openssl to /usr/bin/openssl, since it is not a system/superuser binary. At the same time, move the source code from its current lib/libssl/src/apps location to a more appropriate home under usr.bin/openssl. ok deraadt@ miod@