OpenSSL
OpenSSL
1.1.1e

0.0

OpenSSL free download for Mac

OpenSSL

1.1.1e
23 March 2020

Cryptography library and toolkit that enables developers to work with the TLS and SSL protocols.

Overview

OpenSSL provides support for the TLS and SSL protocols and also includes various tools used in cryptography. Note that OpenSSL is officially available only as source, so you must manually compile and install the software on your Mac.

Deploy the OpenSSL toolkit via the command line

To install the OpenSSL toolkit and library on your Mac, you must open the Terminal application, go to the OpenSSL source folder, and follow the instructions from the INSTALL file included in the archive.

For short, you must run the "./config", "make", "make test", and "make install" commands, and then type openssl in the Terminal. If you need to see what OpenSSL release you are using, you can use the "version" argument.

Note that you must make sure you are using the correct PATH to reach the latest OpenSSL installation. When you install OpenSSL, you get to see the output location, and you can check the path used by default with the "which openssl" shell command.

Older OpenSSL versions are delivered with the system by default, and the old link will most likely be preserved. This means that you must configure the shell to use the correct path on your own.

Worth mentioning is that you can also install the toolkit using a package management solution such as Homebrew.

Quick access to SSL and Crypto libraries

While in OpenSSL's command line interface, you get to see all the standard, message digest, or cipher commands supported by OpenSSL, but you do not get usage instructions.

Make sure to check the online documentation to read extensive descriptions and learn about configuration options for each of the included commands.

OpenSSL's developers also provide a Frequently Asked Questions section where you can get details about the latest version, about how you can use the commands, and so on.

To conclude, the OpenSSL software package offers you the possibility to work with the SSL and TLS protocols or to access cryptography tools, as long as you are willing to work with the command line.

What's new in OpenSSL

Version 1.1.1e:
  • Properly detect EOF while reading in libssl. Previously if we hit an EOF while reading in libssl then we would report an error back to the application (SSL_ERROR_SYSCALL) but errno would be 0. We now add an error to the stack (which means we instead return SSL_ERROR_SSL) and therefore give a hint as to what went wrong. [Matt Caswell]
  • Check that ed25519 and ed448 are allowed by the security level. Previously signature algorithms not using an MD were not being checked that they were allowed by the security level. [Kurt Roeckx]
  • Fixed SSL_get_servername() behaviour. The behaviour of SSL_get_servername() was not quite right. The behaviour was not consistent between resumption and normal handshakes, and also not quite consistent with historical behaviour. The behaviour in various scenarios has been clarified and it has been updated to make it match historical behaviour as closely as possible. [Matt Caswell]
  • [VMS only] The header files that the VMS compilers include automatically, __DECC_INCLUDE_PROLOGUE.H and __DECC_INCLUDE_EPILOGUE.H, use pragmas that the C++ compiler doesn't understand. This is a shortcoming in the compiler, but can be worked around with __cplusplus guards.
  • C++ applications that use OpenSSL libraries must be compiled using the qualifier '/NAMES=(AS_IS,SHORTENED)' to be able to use all the OpenSSL functions. Otherwise, only functions with symbols of less than 31 characters can be used, as the linker will not be able to successfully resolve symbols with longer names. [Richard Levitte]
  • Corrected the documentation of the return values from the EVP_DigestSign* set of functions. The documentation mentioned negative values for some errors, but this was never the case, so the mention of negative values was removed.
  • Code that followed the documentation and thereby check with something like 'EVP_DigestSignInit(...)

Related articles

Join over 500,000 subscribers.

Subscribe for our newsletter with best Mac offers from MacUpdate.

0 OpenSSL Reviews

Rate this app: