A local copy of OpenSSL from GitHub
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
Matt Caswell 5627f9f217 Don't detect a downgrade where the server has a protocol version hole 4 years ago
.github Remind people to have 'Fixes #XXXX' in the commit message 5 years ago
Configurations Configuration/15-android.conf: slightly move NDK canonisation 4 years ago
VMS Simplify the handling of shared library version numbers 5 years ago
apps Change Post Handshake auth so that it is opt-in 4 years ago
boringssl@2070f8ad91 Update ossl_config.json for later BoringSSL commit 5 years ago
crypto rand_lib.c: Don't open random devices while cleaning up. 4 years ago
demos Update certificates in demos/bio, demos/cms, demos/smime 4 years ago
doc Fix typos in documentation 4 years ago
engines Replace accidentally used C99 macro __func__ with __FILE__/__LINE__ 4 years ago
external/perl Existing transfer modules must have a package and a $VERSION 4 years ago
fuzz Fix no-comp 4 years ago
include Prepare for 1.1.1-pre10-dev 4 years ago
krb5@b9ad6c4950 [extended tests] Enable krb5 tests in Travis 5 years ago
ms Update copyright year 4 years ago
os-dep Move Haiku configuration to separate config file to denote 6 years ago
pyca-cryptography@58fd9c412a fix pyca/cryptography test suite failure 4 years ago
ssl Don't detect a downgrade where the server has a protocol version hole 4 years ago
test Don't detect a downgrade where the server has a protocol version hole 4 years ago
tools Update copyright year 4 years ago
util Add support for SSL_CTX_set_post_handshake_auth() 4 years ago
.gitattributes crypto/pkcs12: facilitate accessing data with non-interoperable password. 6 years ago
.gitignore Add test/versions to gitignore 4 years ago
.gitmodules [extended tests] Enable krb5 tests in Travis 5 years ago
.travis-apt-pin.preferences Fix travis clang-3.9 builds 5 years ago
.travis-create-release.sh Reduce travis-ci log output 4 years ago
.travis.yml Travis: don't generate git clone progress for logs 4 years ago
ACKNOWLEDGEMENTS Refer to website for acknowledgements. 7 years ago
AUTHORS Update AUTHORS list, add commentary 4 years ago
CHANGES Fix a version error in CHANGES and NEWS 4 years ago
Configure Configure: don't probe for --noexecstack assembler option on Darwin. 4 years ago
FAQ Move FAQ to the web. 7 years ago
INSTALL Turn on TLSv1.3 downgrade protection by default 4 years ago
LICENSE Update the license end year 4 years ago
NEWS Fix a version error in CHANGES and NEWS 4 years ago
NOTES.ANDROID INSTALL,NOTES.ANDROID: minor updates. 4 years ago
NOTES.DJGPP Slight cleanup of the collection of READMEs, INSTALLs and NOTES 6 years ago
NOTES.PERL Tweaks to NOTES.PERL 6 years ago
NOTES.UNIX NOTES.UNIX: add "Linking your application" paragraph 4 years ago
NOTES.VMS More typo fixes 5 years ago
NOTES.WIN INSTALL,NOTES.WIN: classify no-asm as non-production option. 4 years ago
README Prepare for 1.1.1-pre10-dev 4 years ago
README.ENGINE Remove bsd_cryptodev engine 5 years ago
README.FIPS Remove more (rest?) of FIPS build stuff. 7 years ago
appveyor.yml CI config: no need to make both install and install_docs 4 years ago
build.info Configurations/10-main.conf: replace -bexpall with explicit list on AIX. 4 years ago
config Configure: move --noexecstack probe to Configure. 4 years ago
config.com Update copyright year 4 years ago
e_os.h Remove __cplusplus preamble from internal headers 4 years ago


OpenSSL 1.1.1-pre10-dev

Copyright (c) 1998-2018 The OpenSSL Project
Copyright (c) 1995-1998 Eric A. Young, Tim J. Hudson
All rights reserved.


The OpenSSL Project is a collaborative effort to develop a robust,
commercial-grade, fully featured, and Open Source toolkit implementing the
Transport Layer Security (TLS) protocols (including SSLv3) as well as a
full-strength general purpose cryptographic library.

OpenSSL is descended from the SSLeay library developed by Eric A. Young
and Tim J. Hudson. The OpenSSL toolkit is licensed under a dual-license (the
OpenSSL license plus the SSLeay license), which means that you are free to
get and use it for commercial and non-commercial purposes as long as you
fulfill the conditions of both licenses.


The OpenSSL toolkit includes:

libssl (with platform specific naming):
Provides the client and server-side implementations for SSLv3 and TLS.

libcrypto (with platform specific naming):
Provides general cryptographic and X.509 support needed by SSL/TLS but
not logically part of it.

A command line tool that can be used for:
Creation of key parameters
Creation of X.509 certificates, CSRs and CRLs
Calculation of message digests
Encryption and decryption
SSL/TLS client and server tests
Handling of S/MIME signed or encrypted mail
And more...


See the appropriate file:
INSTALL Linux, Unix, Windows, OpenVMS, ...
NOTES.* INSTALL addendums for different platforms


See the OpenSSL website www.openssl.org for details on how to obtain
commercial technical support. Free community support is available through the
openssl-users email list (see
https://www.openssl.org/community/mailinglists.html for further details).

If you have any problems with OpenSSL then please take the following steps

- Download the latest version from the repository
to see if the problem has already been addressed
- Configure with no-asm
- Remove compiler optimization flags

If you wish to report a bug then please include the following information
and create an issue on GitHub:

- OpenSSL version: output of 'openssl version -a'
- Configuration data: output of 'perl configdata.pm --dump'
- OS Name, Version, Hardware platform
- Compiler Details (name, version)
- Application Details (name, version)
- Problem Description (steps that will reproduce the problem, if known)
- Stack Traceback (if the application dumps core)

Just because something doesn't work the way you expect does not mean it
is necessarily a bug in OpenSSL. Use the openssl-users email list for this type
of query.




A number of nations restrict the use or export of cryptography. If you
are potentially subject to such restrictions you should seek competent
professional legal advice before attempting to develop or distribute
cryptographic code.