openssl

mirror of https://github.com/openssl/openssl.git synced 2025-02-23 14:42:15 +08:00

History

Rich Salz 3b061a00e3 RT2547: Tighten perms on generated privkey files When generating a private key, try to make the output file be readable only by the owner. Put it in CHANGES file since it might be noticeable. Add "int private" flag to apps that write private keys, and check that it's set whenever we do write a private key. Checked via assert so that this bug (security-related) gets fixed. Thanks to Viktor for help in tracing the code-paths where private keys are written. Reviewed-by: Viktor Dukhovni <viktor@openssl.org>		2015-06-15 18:26:56 -04:00
..
demoCA
demoSRP
app_rand.c
apps.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
apps.h	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
asn1pars.c	fix asn1parse -inform	2015-05-29 12:09:25 +01:00
ca-cert.srl
ca-key.pem
ca-req.pem
ca.c	Fix argument processing error from the option parsing change over.	2015-06-15 11:36:32 +10:00
CA.com
CA.pl.in	GH271: Warning on </dev/null to CA.pl	2015-05-04 15:07:52 -04:00
cert.pem
ciphers.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
client.pem
cms.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
crl2p7.c	Restore module loading	2015-05-29 12:41:50 +02:00
crl.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
dgst.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
dh1024.pem
dh2048.pem
dh4096.pem
dhparam.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
dsa512.pem
dsa1024.pem
dsa-ca.pem
dsa-pca.pem
dsa.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
dsap.pem
dsaparam.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
ec.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
ecparam.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
enc.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
engine.c	Restore module loading	2015-05-29 12:41:50 +02:00
errstr.c
gendsa.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
genpkey.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
genrsa.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
install-apps.com
makeapps.com
Makefile	When making libcrypto from apps or test, make sure to include engines	2015-06-10 02:01:49 +02:00
nseq.c	Restore module loading	2015-05-29 12:41:50 +02:00
ocsp.c	RT832: Use REUSEADDR in ocsp responder	2015-06-02 12:22:38 -04:00
openssl-vms.cnf
openssl.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
openssl.cnf
opt.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
passwd.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
pca-cert.srl
pca-key.pem
pca-req.pem
pkcs7.c	Restore module loading	2015-05-29 12:41:50 +02:00
pkcs8.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
pkcs12.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
pkey.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
pkeyparam.c	Restore module loading	2015-05-29 12:41:50 +02:00
pkeyutl.c	Restore module loading	2015-05-29 12:41:50 +02:00
prime.c	Restore module loading	2015-05-29 12:41:50 +02:00
privkey.pem
progs.h
progs.pl
rand.c	Restore module loading	2015-05-29 12:41:50 +02:00
req.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
req.pem
rsa8192.pem
rsa.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
rsautl.c	Restore module loading	2015-05-29 12:41:50 +02:00
s512-key.pem
s512-req.pem
s1024key.pem
s1024req.pem
s_apps.h	memset, memcpy, sizeof consistency fixes	2015-05-05 22:18:59 -04:00
s_cb.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
s_client.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
s_server.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00
s_socket.c	Use bio_err not stderr in apps.	2015-06-09 12:48:55 -04:00
s_time.c	Use bio_err not stderr in apps.	2015-06-09 12:48:55 -04:00
server2.pem
server.pem
server.srl
sess_id.c	free NULL cleanup -- coda	2015-05-01 14:37:16 -04:00
smime.c	Restore module loading	2015-05-29 12:41:50 +02:00
speed.c	Use bio_err not stderr in apps.	2015-06-09 12:48:55 -04:00
spkac.c	Restore module loading	2015-05-29 12:41:50 +02:00
srp.c	Restore module loading	2015-05-29 12:41:50 +02:00
testCA.pem
testdsa.h
testrsa.h
timeouts.h
ts.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
tsget
verify.c	Standardize handling of #ifdef'd options.	2015-06-02 12:40:24 -04:00
version.c
vms_decc_init.c	Use safer sizeof variant in malloc	2015-05-04 15:00:13 -04:00
winrand.c
x509.c	RT2547: Tighten perms on generated privkey files	2015-06-15 18:26:56 -04:00