diff options
Diffstat (limited to 'main/openssl/apps')
| -rw-r--r-- | main/openssl/apps/apps.c | 6 | ||||
| -rw-r--r-- | main/openssl/apps/crl.c | 18 | ||||
| -rw-r--r-- | main/openssl/apps/dgst.c | 4 | ||||
| -rw-r--r-- | main/openssl/apps/ecparam.c | 4 | ||||
| -rw-r--r-- | main/openssl/apps/req.c | 13 | 
5 files changed, 32 insertions, 13 deletions
| diff --git a/main/openssl/apps/apps.c b/main/openssl/apps/apps.c index 1096eee4..b76db10a 100644 --- a/main/openssl/apps/apps.c +++ b/main/openssl/apps/apps.c @@ -586,12 +586,12 @@ int password_callback(char *buf, int bufsiz, int verify,  		if (ok >= 0)  			ok = UI_add_input_string(ui,prompt,ui_flags,buf, -				PW_MIN_LENGTH,BUFSIZ-1); +				PW_MIN_LENGTH,bufsiz-1);  		if (ok >= 0 && verify)  			{  			buff = (char *)OPENSSL_malloc(bufsiz);  			ok = UI_add_verify_string(ui,prompt,ui_flags,buff, -				PW_MIN_LENGTH,BUFSIZ-1, buf); +				PW_MIN_LENGTH,bufsiz-1, buf);  			}  		if (ok >= 0)  			do @@ -2841,7 +2841,7 @@ double app_tminterval(int stop,int usertime)  	if (proc==NULL)  		{ -		if (GetVersion() < 0x80000000) +		if (check_winnt())  			proc = OpenProcess(PROCESS_QUERY_INFORMATION,FALSE,  						GetCurrentProcessId());  		if (proc==NULL) proc = (HANDLE)-1; diff --git a/main/openssl/apps/crl.c b/main/openssl/apps/crl.c index c395b2af..8797d300 100644 --- a/main/openssl/apps/crl.c +++ b/main/openssl/apps/crl.c @@ -81,6 +81,9 @@ static const char *crl_usage[]={  " -in arg         - input file - default stdin\n",  " -out arg        - output file - default stdout\n",  " -hash           - print hash value\n", +#ifndef OPENSSL_NO_MD5 +" -hash_old       - print old-style (MD5) hash value\n", +#endif  " -fingerprint    - print the crl fingerprint\n",  " -issuer         - print issuer DN\n",  " -lastupdate     - lastUpdate field\n", @@ -108,6 +111,9 @@ int MAIN(int argc, char **argv)  	int informat,outformat;  	char *infile=NULL,*outfile=NULL;  	int hash=0,issuer=0,lastupdate=0,nextupdate=0,noout=0,text=0; +#ifndef OPENSSL_NO_MD5 +       int hash_old=0; +#endif  	int fingerprint = 0, crlnumber = 0;  	const char **pp;  	X509_STORE *store = NULL; @@ -192,6 +198,10 @@ int MAIN(int argc, char **argv)  			text = 1;  		else if (strcmp(*argv,"-hash") == 0)  			hash= ++num; +#ifndef OPENSSL_NO_MD5 +		else if (strcmp(*argv,"-hash_old") == 0) +			hash_old= ++num; +#endif  		else if (strcmp(*argv,"-nameopt") == 0)  			{  			if (--argc < 1) goto bad; @@ -304,6 +314,14 @@ bad:  				BIO_printf(bio_out,"%08lx\n",  					X509_NAME_hash(X509_CRL_get_issuer(x)));  				} +#ifndef OPENSSL_NO_MD5 +			if (hash_old == i) +				{ +				BIO_printf(bio_out,"%08lx\n", +					X509_NAME_hash_old( +						X509_CRL_get_issuer(x))); +				} +#endif  			if (lastupdate == i)  				{  				BIO_printf(bio_out,"lastUpdate="); diff --git a/main/openssl/apps/dgst.c b/main/openssl/apps/dgst.c index 81bd870f..f4aec779 100644 --- a/main/openssl/apps/dgst.c +++ b/main/openssl/apps/dgst.c @@ -427,9 +427,9 @@ int MAIN(int argc, char **argv)  			goto end;  			}  		if (do_verify) -			r = EVP_DigestVerifyInit(mctx, &pctx, md, e, sigkey); +			r = EVP_DigestVerifyInit(mctx, &pctx, md, NULL, sigkey);  		else -			r = EVP_DigestSignInit(mctx, &pctx, md, e, sigkey); +			r = EVP_DigestSignInit(mctx, &pctx, md, NULL, sigkey);  		if (!r)  			{  			BIO_printf(bio_err, "Error setting context\n"); diff --git a/main/openssl/apps/ecparam.c b/main/openssl/apps/ecparam.c index 465480be..976ebef1 100644 --- a/main/openssl/apps/ecparam.c +++ b/main/openssl/apps/ecparam.c @@ -105,7 +105,7 @@   *                    in the asn1 der encoding   *                    possible values: named_curve (default)   *                                     explicit - * -no_seed         - if 'explicit' parameters are choosen do not use the seed + * -no_seed         - if 'explicit' parameters are chosen do not use the seed   * -genkey          - generate ec key   * -rand file       - files to use for random number input   * -engine e        - use engine e, possibly a hardware device @@ -286,7 +286,7 @@ bad:  		BIO_printf(bio_err, "                                   "  				" explicit\n");  		BIO_printf(bio_err, " -no_seed          if 'explicit'" -				" parameters are choosen do not" +				" parameters are chosen do not"  				" use the seed\n");  		BIO_printf(bio_err, " -genkey           generate ec"  				" key\n"); diff --git a/main/openssl/apps/req.c b/main/openssl/apps/req.c index 85526581..5e034a85 100644 --- a/main/openssl/apps/req.c +++ b/main/openssl/apps/req.c @@ -644,6 +644,11 @@ bad:  		if (inrand)  			app_RAND_load_files(inrand); +		if (!NCONF_get_number(req_conf,SECTION,BITS, &newkey)) +			{ +			newkey=DEFAULT_KEY_LENGTH; +			} +  		if (keyalg)  			{  			genctx = set_keygen_ctx(bio_err, keyalg, &pkey_type, &newkey, @@ -652,12 +657,6 @@ bad:  				goto end;  			} -		if (newkey <= 0) -			{ -			if (!NCONF_get_number(req_conf,SECTION,BITS, &newkey)) -				newkey=DEFAULT_KEY_LENGTH; -			} -  		if (newkey < MIN_KEY_LENGTH && (pkey_type == EVP_PKEY_RSA || pkey_type == EVP_PKEY_DSA))  			{  			BIO_printf(bio_err,"private key length is too short,\n"); @@ -1649,6 +1648,8 @@ static EVP_PKEY_CTX *set_keygen_ctx(BIO *err, const char *gstr, int *pkey_type,  				keylen = atol(p + 1);  				*pkeylen = keylen;  				} +			else +				keylen = *pkeylen;  			}  		else if (p)  			paramfile = p + 1; | 
