In ssl.h rev. 1.149 2018/03/17 14:40:45, jsing@ provided

SSL_CIPHER_get_cipher_nid(3), SSL_CIPHER_get_digest_nid(3), SSL_CIPHER_get_kx_nid(3), SSL_CIPHER_get_auth_nid(3), and SSL_CIPHER_is_aead(3). Merge the documentation from OpenSSL.
author: schwarze <> 2018-03-18 08:56:45 +0000
committer: schwarze <> 2018-03-18 08:56:45 +0000
commit: 1b67831cb6738561dda700661fa4e660e9e08cff (patch)
tree: ddda83d61a730099eb145bb7f24a3dc96638b049
parent: d0e0285254fbacacc7e7dc68ba4b78f3fb79bcfe (diff)
download: openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.tar.gz
openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.tar.bz2
openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.zip
1 files changed, 79 insertions, 6 deletions
diff --git a/src/lib/libssl/man/SSL_CIPHER_get_name.3 b/src/lib/libssl/man/SSL_CIPHER_get_name.3
index 9a1446efba..719ffdf222 100644
--- a/src/lib/libssl/man/SSL_CIPHER_get_name.3
+++ b/src/lib/libssl/man/SSL_CIPHER_get_name.3
@@ -1,11 +1,12 @@
-.\" $OpenBSD: SSL_CIPHER_get_name.3,v 1.4 2018/02/27 14:13:52 schwarze Exp $
+.\" $OpenBSD: SSL_CIPHER_get_name.3,v 1.5 2018/03/18 08:56:45 schwarze Exp $
-.\" full merge up to: OpenSSL 45f55f6a Nov 30 15:35:22 2014 +0100
+.\" full merge up to: OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
 .\" selective merge up to: OpenSSL 61f805c1 Jan 16 01:01:46 2018 +0800
 .\"
-.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>
+.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>,
+.\" Dr. Stephen Henson <steve@openssl.org>, Todd Short <tshort@akamai.com>,
 .\" and Paul Yang <yang.yang@baishancloud.com>.
-.\" Copyright (c) 2000, 2005, 2009, 2013, 2014, 2017 The OpenSSL Project.
+.\" Copyright (c) 2000, 2005, 2009, 2013, 2014, 2015, 2016, 2017
-.\" All rights reserved.
+.\" The OpenSSL Project.  All rights reserved.
 .\"
 .\" Redistribution and use in source and binary forms, with or without
 .\" modification, are permitted provided that the following conditions
@@ -51,13 +52,18 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: February 27 2018 $
+.Dd $Mdocdate: March 18 2018 $
 .Dt SSL_CIPHER_GET_NAME 3
 .Os
 .Sh NAME
 .Nm SSL_CIPHER_get_name ,
 .Nm SSL_CIPHER_get_bits ,
 .Nm SSL_CIPHER_get_version ,
+.Nm SSL_CIPHER_get_cipher_nid ,
+.Nm SSL_CIPHER_get_digest_nid ,
+.Nm SSL_CIPHER_get_kx_nid ,
+.Nm SSL_CIPHER_get_auth_nid ,
+.Nm SSL_CIPHER_is_aead ,
 .Nm SSL_CIPHER_get_id ,
 .Nm SSL_CIPHER_description
 .Nd get SSL_CIPHER properties
@@ -69,6 +75,16 @@
 .Fn SSL_CIPHER_get_bits "const SSL_CIPHER *cipher" "int *alg_bits"
 .Ft char *
 .Fn SSL_CIPHER_get_version "const SSL_CIPHER *cipher"
+.Ft int
+.Fn SSL_CIPHER_get_cipher_nid "const SSL_CIPHER *cipher"
+.Ft int
+.Fn SSL_CIPHER_get_digest_nid "const SSL_CIPHER *cipher"
+.Ft int
+.Fn SSL_CIPHER_get_kx_nid "const SSL_CIPHER *cipher"
+.Ft int
+.Fn SSL_CIPHER_get_auth_nid "const SSL_CIPHER *cipher"
+.Ft int
+.Fn SSL_CIPHER_is_aead "const SSL_CIPHER *cipher"
 .Ft unsigned long
 .Fn SSL_CIPHER_get_id "const SSL_CIPHER *cipher"
 .Ft char *
@@ -98,6 +114,49 @@ but the function does not; use
 .Fn SSL_CIPHER_description
 instead.
 .Pp
+.Fn SSL_CIPHER_get_cipher_nid
+returns the cipher NID corresponding to the
+.Fa cipher .
+If there is no cipher (e.g. for cipher suites with no encryption), then
+.Dv NID_undef
+is returned.
+.Pp
+.Fn SSL_CIPHER_get_digest_nid
+returns the digest NID corresponding to the MAC used by the
+.Fa cipher
+during record encryption/decryption.
+If there is no digest (e.g. for AEAD cipher suites), then
+.Dv NID_undef
+is returned.
+.Pp
+.Fn SSL_CIPHER_get_kx_nid
+returns the key exchange NID corresponding to the method used by the
+.Fa cipher .
+If there is no key exchange, then
+.Dv NID_undef
+is returned.
+Examples of possible return values include
+.Dv NID_kx_rsa ,
+.Dv NID_kx_dhe ,
+and
+.Dv NID_kx_ecdhe .
+.Pp
+.Fn SSL_CIPHER_get_auth_nid
+returns the authentication NID corresponding to the method used by the
+.Fa cipher .
+If there is no authentication,
+.Dv NID_undef
+is returned.
+Examples of possible return values include
+.Dv NID_auth_rsa
+and
+.Dv NID_auth_ecdsa .
+.Pp
+.Fn SSL_CIPHER_is_aead
+returns 1 if the
+.Fa cipher
+is AEAD (e.g. GCM or ChaCha20/Poly1305), or 0 if it is not AEAD.
+.Pp
 .Fn SSL_CIPHER_get_id
 returns the ID of the given
 .Fa cipher ,
@@ -225,6 +284,20 @@ is a
 .Dv NULL
 pointer.
 .Pp
+.Fn SSL_CIPHER_get_cipher_nid ,
+.Fn SSL_CIPHER_get_digest_nid ,
+.Fn SSL_CIPHER_get_kx_nid ,
+and
+.Fn SSL_CIPHER_get_auth_nid
+return an NID constant or
+.Dv NID_undef
+if an error occurred.
+.Pp
+.Fn SSL_CIPHER_is_aead
+returns 1 if the
+.Fa cipher
+is AEAD or 0 otherwise.
+.Pp
 .Fn SSL_CIPHER_get_id
 returns a 32-bit unsigned integer.
 .Pp
author	schwarze <>	2018-03-18 08:56:45 +0000
committer	schwarze <>	2018-03-18 08:56:45 +0000
commit	1b67831cb6738561dda700661fa4e660e9e08cff (patch)
tree	ddda83d61a730099eb145bb7f24a3dc96638b049
parent	d0e0285254fbacacc7e7dc68ba4b78f3fb79bcfe (diff)
download	openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.tar.gz openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.tar.bz2 openbsd-1b67831cb6738561dda700661fa4e660e9e08cff.zip

diff --git a/src/lib/libssl/man/SSL_CIPHER_get_name.3 b/src/lib/libssl/man/SSL_CIPHER_get_name.3 index 9a1446efba..719ffdf222 100644 --- a/src/lib/libssl/man/SSL_CIPHER_get_name.3 +++ b/src/lib/libssl/man/SSL_CIPHER_get_name.3
@@ -1,11 +1,12 @@
1	.\" $OpenBSD: SSL_CIPHER_get_name.3,v 1.4 2018/02/27 14:13:52 schwarze Exp $	1	.\" $OpenBSD: SSL_CIPHER_get_name.3,v 1.5 2018/03/18 08:56:45 schwarze Exp $
2	.\" full merge up to: OpenSSL 45f55f6a Nov 30 15:35:22 2014 +0100	2	.\" full merge up to: OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
3	.\" selective merge up to: OpenSSL 61f805c1 Jan 16 01:01:46 2018 +0800	3	.\" selective merge up to: OpenSSL 61f805c1 Jan 16 01:01:46 2018 +0800
4	.\"	4	.\"
5	.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>	5	.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>,
		6	.\" Dr. Stephen Henson <steve@openssl.org>, Todd Short <tshort@akamai.com>,
6	.\" and Paul Yang <yang.yang@baishancloud.com>.	7	.\" and Paul Yang <yang.yang@baishancloud.com>.
7	.\" Copyright (c) 2000, 2005, 2009, 2013, 2014, 2017 The OpenSSL Project.	8	.\" Copyright (c) 2000, 2005, 2009, 2013, 2014, 2015, 2016, 2017
8	.\" All rights reserved.	9	.\" The OpenSSL Project. All rights reserved.
9	.\"	10	.\"
10	.\" Redistribution and use in source and binary forms, with or without	11	.\" Redistribution and use in source and binary forms, with or without
11	.\" modification, are permitted provided that the following conditions	12	.\" modification, are permitted provided that the following conditions
@@ -51,13 +52,18 @@
51	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	52	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
52	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	53	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
53	.\"	54	.\"
54	.Dd $Mdocdate: February 27 2018 $	55	.Dd $Mdocdate: March 18 2018 $
55	.Dt SSL_CIPHER_GET_NAME 3	56	.Dt SSL_CIPHER_GET_NAME 3
56	.Os	57	.Os
57	.Sh NAME	58	.Sh NAME
58	.Nm SSL_CIPHER_get_name ,	59	.Nm SSL_CIPHER_get_name ,
59	.Nm SSL_CIPHER_get_bits ,	60	.Nm SSL_CIPHER_get_bits ,
60	.Nm SSL_CIPHER_get_version ,	61	.Nm SSL_CIPHER_get_version ,
		62	.Nm SSL_CIPHER_get_cipher_nid ,
		63	.Nm SSL_CIPHER_get_digest_nid ,
		64	.Nm SSL_CIPHER_get_kx_nid ,
		65	.Nm SSL_CIPHER_get_auth_nid ,
		66	.Nm SSL_CIPHER_is_aead ,
61	.Nm SSL_CIPHER_get_id ,	67	.Nm SSL_CIPHER_get_id ,
62	.Nm SSL_CIPHER_description	68	.Nm SSL_CIPHER_description
63	.Nd get SSL_CIPHER properties	69	.Nd get SSL_CIPHER properties
@@ -69,6 +75,16 @@
69	.Fn SSL_CIPHER_get_bits "const SSL_CIPHER cipher" "int alg_bits"	75	.Fn SSL_CIPHER_get_bits "const SSL_CIPHER cipher" "int alg_bits"
70	.Ft char *	76	.Ft char *
71	.Fn SSL_CIPHER_get_version "const SSL_CIPHER *cipher"	77	.Fn SSL_CIPHER_get_version "const SSL_CIPHER *cipher"
		78	.Ft int
		79	.Fn SSL_CIPHER_get_cipher_nid "const SSL_CIPHER *cipher"
		80	.Ft int
		81	.Fn SSL_CIPHER_get_digest_nid "const SSL_CIPHER *cipher"
		82	.Ft int
		83	.Fn SSL_CIPHER_get_kx_nid "const SSL_CIPHER *cipher"
		84	.Ft int
		85	.Fn SSL_CIPHER_get_auth_nid "const SSL_CIPHER *cipher"
		86	.Ft int
		87	.Fn SSL_CIPHER_is_aead "const SSL_CIPHER *cipher"
72	.Ft unsigned long	88	.Ft unsigned long
73	.Fn SSL_CIPHER_get_id "const SSL_CIPHER *cipher"	89	.Fn SSL_CIPHER_get_id "const SSL_CIPHER *cipher"
74	.Ft char *	90	.Ft char *
@@ -98,6 +114,49 @@ but the function does not; use
98	.Fn SSL_CIPHER_description	114	.Fn SSL_CIPHER_description
99	instead.	115	instead.
100	.Pp	116	.Pp
		117	.Fn SSL_CIPHER_get_cipher_nid
		118	returns the cipher NID corresponding to the
		119	.Fa cipher .
		120	If there is no cipher (e.g. for cipher suites with no encryption), then
		121	.Dv NID_undef
		122	is returned.
		123	.Pp
		124	.Fn SSL_CIPHER_get_digest_nid
		125	returns the digest NID corresponding to the MAC used by the
		126	.Fa cipher
		127	during record encryption/decryption.
		128	If there is no digest (e.g. for AEAD cipher suites), then
		129	.Dv NID_undef
		130	is returned.
		131	.Pp
		132	.Fn SSL_CIPHER_get_kx_nid
		133	returns the key exchange NID corresponding to the method used by the
		134	.Fa cipher .
		135	If there is no key exchange, then
		136	.Dv NID_undef
		137	is returned.
		138	Examples of possible return values include
		139	.Dv NID_kx_rsa ,
		140	.Dv NID_kx_dhe ,
		141	and
		142	.Dv NID_kx_ecdhe .
		143	.Pp
		144	.Fn SSL_CIPHER_get_auth_nid
		145	returns the authentication NID corresponding to the method used by the
		146	.Fa cipher .
		147	If there is no authentication,
		148	.Dv NID_undef
		149	is returned.
		150	Examples of possible return values include
		151	.Dv NID_auth_rsa
		152	and
		153	.Dv NID_auth_ecdsa .
		154	.Pp
		155	.Fn SSL_CIPHER_is_aead
		156	returns 1 if the
		157	.Fa cipher
		158	is AEAD (e.g. GCM or ChaCha20/Poly1305), or 0 if it is not AEAD.
		159	.Pp
101	.Fn SSL_CIPHER_get_id	160	.Fn SSL_CIPHER_get_id
102	returns the ID of the given	161	returns the ID of the given
103	.Fa cipher ,	162	.Fa cipher ,
@@ -225,6 +284,20 @@ is a
225	.Dv NULL	284	.Dv NULL
226	pointer.	285	pointer.
227	.Pp	286	.Pp
		287	.Fn SSL_CIPHER_get_cipher_nid ,
		288	.Fn SSL_CIPHER_get_digest_nid ,
		289	.Fn SSL_CIPHER_get_kx_nid ,
		290	and
		291	.Fn SSL_CIPHER_get_auth_nid
		292	return an NID constant or
		293	.Dv NID_undef
		294	if an error occurred.
		295	.Pp
		296	.Fn SSL_CIPHER_is_aead
		297	returns 1 if the
		298	.Fa cipher
		299	is AEAD or 0 otherwise.
		300	.Pp
228	.Fn SSL_CIPHER_get_id	301	.Fn SSL_CIPHER_get_id
229	returns a 32-bit unsigned integer.	302	returns a 32-bit unsigned integer.
230	.Pp	303	.Pp