Merge SSL_set_hostflags documentation from OpenSSL 1.1.1i and

add HISTORY section. This is currently ignored input next to SSL_get0_peername() and will be unignored once the symbols are made publicly visible in libssl.
author: tb <> 2021-01-27 17:57:40 +0000
committer: tb <> 2021-01-27 17:57:40 +0000
commit: 374ca88cab53b2b0305a68ab98f5d5dc28375d08 (patch)
tree: f668bfbf907db6b81ef0aea2ab6339379cc69a01
parent: 89d1f4934b2c8b8008d2371fe589ca7e0cd23119 (diff)
download: openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.tar.gz
openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.tar.bz2
openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.zip
1 files changed, 20 insertions, 3 deletions
diff --git a/src/lib/libssl/man/SSL_set1_host.3 b/src/lib/libssl/man/SSL_set1_host.3
index bc54e30161..ba8b0564dd 100644
--- a/src/lib/libssl/man/SSL_set1_host.3
+++ b/src/lib/libssl/man/SSL_set1_host.3
@@ -1,4 +1,4 @@
-.\" $OpenBSD: SSL_set1_host.3,v 1.2 2020/09/22 16:31:37 schwarze Exp $
+.\" $OpenBSD: SSL_set1_host.3,v 1.3 2021/01/27 17:57:40 tb Exp $
 .\" selective merge up to: OpenSSL 6328d367 Jul 4 21:58:30 2020 +0200
 .\"
 .\" This file was written by Viktor Dukhovni <viktor@openssl.org>
@@ -48,12 +48,13 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: September 22 2020 $
+.Dd $Mdocdate: January 27 2021 $
 .Dt SSL_SET1_HOST 3
 .Os
 .Sh NAME
 .Nm SSL_set1_host
 .ig  \" won't make Ox 6.8 but will appear in 6.9
+.Nm SSL_set_hostflags
 .Nm SSL_get0_peername
 ..
 .Nd SSL server verification parameters
@@ -65,6 +66,11 @@
 .Fa "const char *hostname"
 .Fc
 .ig
+.Ft void
+.Fo SSL_set_hostflags
+.Fa "SSL *ssl"
+.Fa "unsigned int flags"
+.Fc
 .Ft const char *
 .Fo SSL_get0_peername
 .Fa "SSL *ssl"
@@ -92,6 +98,15 @@ with
 set to 0.
 .Pp
 .ig
+.Fn SSL_set_hostflags
+sets the flags that will be passed to
+.Xr X509_check_host 3
+when name checks are applicable,
+by default the flags value is 0.
+See
+.Xr X509_check_host 3
+for the list of available flags and their meaning.
+.Pp
 .Fn SSL_get0_peername
 returns the DNS hostname or subject CommonName from the peer certificate
 that matched one of the reference identifiers.
@@ -158,11 +173,13 @@ This function first appeared in OpenSSL 1.1.0
 and has been available since
 .Ox 6.5 .
 .ig
-Both functions first appeared in OpenSSL 1.1.0.
+All three functions first appeared in OpenSSL 1.1.0.
 .Fn SSL_set1_host
 has been available since
 .Ox 6.5 ,
 and
+.Fn SSL_set_hostflags
+and
 .Fn SSL_get0_peername
 since
 .Ox 6.9 .
author	tb <>	2021-01-27 17:57:40 +0000
committer	tb <>	2021-01-27 17:57:40 +0000
commit	374ca88cab53b2b0305a68ab98f5d5dc28375d08 (patch)
tree	f668bfbf907db6b81ef0aea2ab6339379cc69a01
parent	89d1f4934b2c8b8008d2371fe589ca7e0cd23119 (diff)
download	openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.tar.gz openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.tar.bz2 openbsd-374ca88cab53b2b0305a68ab98f5d5dc28375d08.zip

diff --git a/src/lib/libssl/man/SSL_set1_host.3 b/src/lib/libssl/man/SSL_set1_host.3 index bc54e30161..ba8b0564dd 100644 --- a/src/lib/libssl/man/SSL_set1_host.3 +++ b/src/lib/libssl/man/SSL_set1_host.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: SSL_set1_host.3,v 1.2 2020/09/22 16:31:37 schwarze Exp $	1	.\" $OpenBSD: SSL_set1_host.3,v 1.3 2021/01/27 17:57:40 tb Exp $
2	.\" selective merge up to: OpenSSL 6328d367 Jul 4 21:58:30 2020 +0200	2	.\" selective merge up to: OpenSSL 6328d367 Jul 4 21:58:30 2020 +0200
3	.\"	3	.\"
4	.\" This file was written by Viktor Dukhovni <viktor@openssl.org>	4	.\" This file was written by Viktor Dukhovni <viktor@openssl.org>
@@ -48,12 +48,13 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	50	.\"
51	.Dd $Mdocdate: September 22 2020 $	51	.Dd $Mdocdate: January 27 2021 $
52	.Dt SSL_SET1_HOST 3	52	.Dt SSL_SET1_HOST 3
53	.Os	53	.Os
54	.Sh NAME	54	.Sh NAME
55	.Nm SSL_set1_host	55	.Nm SSL_set1_host
56	.ig \" won't make Ox 6.8 but will appear in 6.9	56	.ig \" won't make Ox 6.8 but will appear in 6.9
		57	.Nm SSL_set_hostflags
57	.Nm SSL_get0_peername	58	.Nm SSL_get0_peername
58	..	59	..
59	.Nd SSL server verification parameters	60	.Nd SSL server verification parameters
@@ -65,6 +66,11 @@
65	.Fa "const char *hostname"	66	.Fa "const char *hostname"
66	.Fc	67	.Fc
67	.ig	68	.ig
		69	.Ft void
		70	.Fo SSL_set_hostflags
		71	.Fa "SSL *ssl"
		72	.Fa "unsigned int flags"
		73	.Fc
68	.Ft const char *	74	.Ft const char *
69	.Fo SSL_get0_peername	75	.Fo SSL_get0_peername
70	.Fa "SSL *ssl"	76	.Fa "SSL *ssl"
@@ -92,6 +98,15 @@ with
92	set to 0.	98	set to 0.
93	.Pp	99	.Pp
94	.ig	100	.ig
		101	.Fn SSL_set_hostflags
		102	sets the flags that will be passed to
		103	.Xr X509_check_host 3
		104	when name checks are applicable,
		105	by default the flags value is 0.
		106	See
		107	.Xr X509_check_host 3
		108	for the list of available flags and their meaning.
		109	.Pp
95	.Fn SSL_get0_peername	110	.Fn SSL_get0_peername
96	returns the DNS hostname or subject CommonName from the peer certificate	111	returns the DNS hostname or subject CommonName from the peer certificate
97	that matched one of the reference identifiers.	112	that matched one of the reference identifiers.
@@ -158,11 +173,13 @@ This function first appeared in OpenSSL 1.1.0
158	and has been available since	173	and has been available since
159	.Ox 6.5 .	174	.Ox 6.5 .
160	.ig	175	.ig
161	Both functions first appeared in OpenSSL 1.1.0.	176	All three functions first appeared in OpenSSL 1.1.0.
162	.Fn SSL_set1_host	177	.Fn SSL_set1_host
163	has been available since	178	has been available since
164	.Ox 6.5 ,	179	.Ox 6.5 ,
165	and	180	and
		181	.Fn SSL_set_hostflags
		182	and
166	.Fn SSL_get0_peername	183	.Fn SSL_get0_peername
167	since	184	since
168	.Ox 6.9 .	185	.Ox 6.9 .