mirror/openssl
2
0
Fork 0
mirror of https://github.com/openssl/openssl.git synced 2025-02-17 14:32:04 +08:00
Code Issues Packages Projects Releases Wiki Activity

CHANGES.md: re-word 'app' to 'command' and 'apps' to 'commands' for consistency

Browse Source 
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/22910)
This commit is contained in:
Dr. David von Oheimb 2024-10-28 19:32:32 +01:00
parent 607a46d003
commit 7086332550
1 changed files with 6 additions and 5 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

11
CHANGES.md
View File

@ -157,7 +157,7 @@ OpenSSL 3.4
* Added options `-not_before` and `-not_after` for explicit setting * Added options `-not_before` and `-not_after` for explicit setting
start and end dates of certificates created with the `req` and `x509` start and end dates of certificates created with the `req` and `x509`
apps. Added the same options also to `ca` app as alias for commands. Added the same options also to `ca` command as alias for
`-startdate` and `-enddate` options. `-startdate` and `-enddate` options.
*Stephan Wurm* *Stephan Wurm*
@ -964,14 +964,14 @@ OpenSSL 3.2
* Lutz Jänicke* * Lutz Jänicke*
* The `x509`, `ca`, and `req` apps now produce X.509 v3 certificates. * The `x509`, `ca`, and `req` commands now produce X.509 v3 certificates.
The `-x509v1` option of `req` prefers generation of X.509 v1 certificates. The `-x509v1` option of `req` prefers generation of X.509 v1 certificates.
`X509_sign()` and `X509_sign_ctx()` make sure that the certificate has `X509_sign()` and `X509_sign_ctx()` make sure that the certificate has
X.509 version 3 if the certificate information includes X.509 extensions. X.509 version 3 if the certificate information includes X.509 extensions.
*David von Oheimb* *David von Oheimb*
* Fix and extend certificate handling and the apps `x509`, `verify` etc. * Fix and extend certificate handling and the commands `x509`, `verify` etc.
such as adding a trace facility for debugging certificate chain building. such as adding a trace facility for debugging certificate chain building.
*David von Oheimb* *David von Oheimb*
@ -1300,7 +1300,7 @@ OpenSSL 3.1
*Orr Toledano* *Orr Toledano*
* s_client and s_server apps now explicitly say when the TLS version * `s_client` and `s_server` commands now explicitly say when the TLS version
does not include the renegotiation mechanism. This avoids confusion does not include the renegotiation mechanism. This avoids confusion
between that scenario versus when the TLS version includes secure between that scenario versus when the TLS version includes secure
renegotiation but the peer lacks support for it. renegotiation but the peer lacks support for it.
@ -2351,7 +2351,8 @@ breaking changes, and mappings for the large list of deprecated functions.
*Nicola Tuveri* *Nicola Tuveri*
* Behavior of the `pkey` app is changed, when using the `-check` or `-pubcheck` * Behavior of the `pkey` command is changed,
when using the `-check` or `-pubcheck`
switches: a validation failure triggers an early exit, returning a failure switches: a validation failure triggers an early exit, returning a failure
exit status to the parent process. exit status to the parent process.