Difference between revisions of "Main Page"

If this is your first visit or to get an account please see the Welcome page. Your participation and Contributions are valued.

This wiki is intended as a place for collecting, organizing, and refining useful information about OpenSSL that is currently strewn among multiple locations and formats.

OpenSSL Quick Links

OpenSSL Overview		Compilation and Installation		Internals		Mailing Lists
libcrypto API		libssl API		Examples
License		Command Line Utilities		Related Links

Administrivia

Site guidelines, legal and admininstrative issues.

• Basic rules, Commercial Product Disclaimer, Contributions, Copyright, License
• Using This Wiki

Wiki User's Guide, Configuration settings list, MediaWiki FAQ, MediaWiki Mailing List

Reference

This section contains the automagically generated man pages from the OpenSSL git repository, and similar "man" style reference documentation. The man pages are automatically imported from the OpenSSL git repository and local wiki modifications are submitted as patches.

• OpenSSL Manual Pages

• Manual:Openssl(1), Manual:Ssl(3), Manual:Crypto(3), Documentation Index

If you wish to edit any of the Manual page content please refer to the Guidelines for Manual Page Authors page.

• API, Libcrypto API, Libssl API
• FIPS mode(), FIPS_mode_set()

Usage and Programming

This section has discussions of practical issues in using OpenSSL

• Building from Source

Where to find it, the different versions, how to build and install it.

• OpenSSL Overview
• Versioning
• Compilation and Installation
• EVP

Programming techniques and example code

Use of EVP is preferred for most applications and circumstances

• EVP Asymmetric Encryption and Decryption of an Envelope
• EVP Authenticated Encryption and Decryption
• EVP Symmetric Encryption and Decryption
• EVP Key and Parameter Generation
• EVP Key Agreement
• EVP Message Digests
• EVP Key Derivation
• EVP Signing and Verifying (including MAC codes)

• STACK API
• Low Level APIs

More specialized non-EVP usage

• Diffie-Hellman parameters

• FIPS Mode

Concepts and Theory

Discussions of basic cryptographic theory and concepts Discussions of common operational issues

• Base64
• FIPS 140-2
• Random Numbers
• Diffie Hellman
• Elliptic Curve Diffie Hellman
• Elliptic Curve Cryptography

Security Issues

Heartbleed CVE-2014-0160

affects all 1.0.1x version where x<'g' and 1.0.2-beta fixed in 1.0.1g and 1.0.2-beta1

http://www.openssl.org/news/secadv_20140407.txt

Feedback and Contributions

• Notification of suspected security vulnerabilities
• Contributing bug reports, other than for suspected vulnerabilities
• General background on source and documentation contributions - must read
• Contributing code fixes, other than for suspected vulnerabilities, as well as fixes and other improvements to manual pages

• Follow the instructions for accessing source code in the appropriate branches

• Note that manual pages and the FAQ are maintained with the source code.

• If you are unsure as to whether a feature will be useful for the general OpenSSL community please discuss it on the openssl-dev mailing list first. Someone may be already working on the same thing or there may be a good reason as to why that feature isn't implemented.
• Submit a pull request for each separate fix (also documented there)
• Submit a bug report for the issue and reference the pull request

• Contributing fixes and other improvements to the web site

• Follow the instructions for accessing web site sources
• Create a patch (also documented there)
• Submit a bug report and add the patch as an attachment

• Contributing to this wiki

Internals and Development

This section is for internal details of primary interest to OpenSSL maintainers and power users

• Internals
• Code Quality
• Static and Dynamic Analysis
• OCB Licence details
• Defect and Feature Review Process