openbsd/src/lib/libssl/man, branch libressl-v3.2.3

openbsd/src/lib/libssl/man, branch libressl-v3.2.3 A mirror of https://github.com/libressl/openbsd.git https://git.lua4.win/openbsd/atom?h=libressl-v3.2.3 2020-09-22T16:31:37+00:00 Comment out SSL_get0_peername(3) for the OpenBSD 6.8 release 2020-09-22T16:31:37+00:00 schwarze 2020-09-22T16:31:37+00:00 urn:sha1:3c2327f4edba471c6f740a93c21833ec7d949058 because tb@ decided to not enable it before the release. OK tb@ reword ambiguous title line; 2020-09-22T13:27:08+00:00 schwarze 2020-09-22T13:27:08+00:00 urn:sha1:73027e1287f7c452f7daf47c5abbfaf91a1e4967 issue noticed by and patch OK by jsing@ s/before the handshake is complete/during the handshake/g 2020-09-21T15:18:13+00:00 schwarze 2020-09-21T15:18:13+00:00 urn:sha1:6e09d7f1e9f3ef530e31923e85921a0535f5a4e0 because that is both shorter and more precise; wording suggested by jsing@ two wording tweaks suggested by jsing@, adding clarity 2020-09-21T14:59:46+00:00 schwarze 2020-09-21T14:59:46+00:00 urn:sha1:27ff728c524e9adfa73f3906fd342bb9fd830e98 In ssl.h rev. 1.174 to 1.176, tb@ added some stubs related to 0-RTT data. 2020-09-21T08:53:56+00:00 schwarze 2020-09-21T08:53:56+00:00 urn:sha1:5779d9399959bbcedd72b6c73f1b8d433a6c14fe Write documentation from scratch explaining why we don't support 0-RTT but how we stub it out instead. Tweaks and OK tb@. ... and beck@ pointed out that this OpenSSL API is akin to adding a laser sighting system to a giant blackpowder cannon that one keeps blowing one's own feet to mangled scraps with ... Document the public function SSL_set_SSL_CTX(3) from scratch, 2020-09-20T10:20:44+00:00 schwarze 2020-09-20T10:20:44+00:00 urn:sha1:4ba5f77ac44570b20d41962dedd0b44fbfb8588e which is undocumented in OpenSSL but mentioned in passing in one OpenSSL manual page, and which was recently mentioned by jsing@ when working on SSL_set_ciphersuites(3). With corrections from and OK inoguchi@. add forgotten link to newish page SSL_set1_host(3) 2020-09-18T15:39:37+00:00 schwarze 2020-09-18T15:39:37+00:00 urn:sha1:ac86bcc7f040728eac3e6d706f159657d41072f3 and update merge notice Install the new page SSL_set1_host(3), link to it from relevant places, 2020-09-17T08:04:22+00:00 schwarze 2020-09-17T08:04:22+00:00 urn:sha1:3ddf275962c0819da74604f12c527b1c75da9e66 and add two other .Xrs that might help readers find their way. Update the merge notices of all files touched and merge a few trivial changes from the OpenSSL 1.1.1 branch. OK tb@ Import a manual page for SSL_set1_host(3), which we already have since 6.5, 2020-09-17T07:56:38+00:00 schwarze 2020-09-17T07:56:38+00:00 urn:sha1:cd867dd383cc082fe13ca6335c8f4ce676e2589a and for SSL_get0_peername(3), which tb@ will soon make available, from the OpenSSL 1.1.1 branch, which is still under a free license, deleting parts that do not apply to OpenBSD, and tweaked by me. Several improvements and OK by tb@. Let SSL_CTX_get_ciphers(NULL) return NULL rather than crash 2020-09-16T07:25:15+00:00 schwarze 2020-09-16T07:25:15+00:00 urn:sha1:0d5002a003b2ecd714e61bae648a18dcf624e8f5 for compatibility with OpenSSL and for consistency with neighbouring functions; suggested by jsing@ after i documented the crash; OK jsing@.