diff options
| author | jsing <> | 2015-02-22 15:09:54 +0000 |
|---|---|---|
| committer | jsing <> | 2015-02-22 15:09:54 +0000 |
| commit | 9d8e62d07fb25e66d41179adb5bd43bb03ff48be (patch) | |
| tree | 69b0669eadef9fd82894ac6c78503dabca4e3010 /src/lib/libtls/tls_init.3 | |
| parent | 47d9c013d2b64ba954050caea6bdcefaaca3cac5 (diff) | |
| download | openbsd-9d8e62d07fb25e66d41179adb5bd43bb03ff48be.tar.gz openbsd-9d8e62d07fb25e66d41179adb5bd43bb03ff48be.tar.bz2 openbsd-9d8e62d07fb25e66d41179adb5bd43bb03ff48be.zip | |
Rename tls_config_insecure_noverifyhost() to
tls_config_insecure_noverifyname(), so that it is more accurate and keeps
inline with the distinction between DNS hostname and server name.
Requested by tedu@ during s2k15.
Diffstat (limited to 'src/lib/libtls/tls_init.3')
| -rw-r--r-- | src/lib/libtls/tls_init.3 | 22 |
1 files changed, 11 insertions, 11 deletions
diff --git a/src/lib/libtls/tls_init.3 b/src/lib/libtls/tls_init.3 index 52220fa449..3e888115e8 100644 --- a/src/lib/libtls/tls_init.3 +++ b/src/lib/libtls/tls_init.3 | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | .\" $OpenBSD: tls_init.3,v 1.17 2015/02/21 21:41:00 tedu Exp $ | 1 | .\" $OpenBSD: tls_init.3,v 1.18 2015/02/22 15:09:54 jsing Exp $ |
| 2 | .\" | 2 | .\" |
| 3 | .\" Copyright (c) 2014 Ted Unangst <tedu@openbsd.org> | 3 | .\" Copyright (c) 2014 Ted Unangst <tedu@openbsd.org> |
| 4 | .\" | 4 | .\" |
| @@ -14,7 +14,7 @@ | |||
| 14 | .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF | 14 | .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF |
| 15 | .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. | 15 | .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. |
| 16 | .\" | 16 | .\" |
| 17 | .Dd $Mdocdate: February 21 2015 $ | 17 | .Dd $Mdocdate: February 22 2015 $ |
| 18 | .Dt TLS 3 | 18 | .Dt TLS 3 |
| 19 | .Os | 19 | .Os |
| 20 | .Sh NAME | 20 | .Sh NAME |
| @@ -36,8 +36,8 @@ | |||
| 36 | .Nm tls_config_set_protocols , | 36 | .Nm tls_config_set_protocols , |
| 37 | .Nm tls_config_set_verify_depth , | 37 | .Nm tls_config_set_verify_depth , |
| 38 | .Nm tls_config_clear_keys , | 38 | .Nm tls_config_clear_keys , |
| 39 | .Nm tls_config_insecure_noverifyhost , | ||
| 40 | .Nm tls_config_insecure_noverifycert , | 39 | .Nm tls_config_insecure_noverifycert , |
| 40 | .Nm tls_config_insecure_noverifyname , | ||
| 41 | .Nm tls_config_verify , | 41 | .Nm tls_config_verify , |
| 42 | .Nm tls_load_file , | 42 | .Nm tls_load_file , |
| 43 | .Nm tls_client , | 43 | .Nm tls_client , |
| @@ -93,10 +93,10 @@ | |||
| 93 | .Ft "void" | 93 | .Ft "void" |
| 94 | .Fn tls_config_clear_keys "struct tls_config *config" | 94 | .Fn tls_config_clear_keys "struct tls_config *config" |
| 95 | .Ft "void" | 95 | .Ft "void" |
| 96 | .Fn tls_config_insecure_noverifyhost "struct tls_config *config" | ||
| 97 | .Ft "void" | ||
| 98 | .Fn tls_config_insecure_noverifycert "struct tls_config *config" | 96 | .Fn tls_config_insecure_noverifycert "struct tls_config *config" |
| 99 | .Ft "void" | 97 | .Ft "void" |
| 98 | .Fn tls_config_insecure_noverifyname "struct tls_config *config" | ||
| 99 | .Ft "void" | ||
| 100 | .Fn tls_config_verify "struct tls_config *config" | 100 | .Fn tls_config_verify "struct tls_config *config" |
| 101 | .Ft "uint8_t *" | 101 | .Ft "uint8_t *" |
| 102 | .Fn tls_load_file "const char *file" "size_t *len" "char *password" | 102 | .Fn tls_load_file "const char *file" "size_t *len" "char *password" |
| @@ -289,18 +289,18 @@ Additionally, the values | |||
| 289 | clears any secret keys from memory. | 289 | clears any secret keys from memory. |
| 290 | .Em (Server) | 290 | .Em (Server) |
| 291 | .It | 291 | .It |
| 292 | .Fn tls_config_insecure_noverifyhost | ||
| 293 | disables hostname verification. | ||
| 294 | Be careful when using this option. | ||
| 295 | .Em (Client) | ||
| 296 | .It | ||
| 297 | .Fn tls_config_insecure_noverifycert | 292 | .Fn tls_config_insecure_noverifycert |
| 298 | disables certificate verification. | 293 | disables certificate verification. |
| 299 | Be extremely careful when using this option. | 294 | Be extremely careful when using this option. |
| 300 | .Em (Client) | 295 | .Em (Client) |
| 301 | .It | 296 | .It |
| 297 | .Fn tls_config_insecure_noverifyname | ||
| 298 | disables server name verification. | ||
| 299 | Be careful when using this option. | ||
| 300 | .Em (Client) | ||
| 301 | .It | ||
| 302 | .Fn tls_config_verify | 302 | .Fn tls_config_verify |
| 303 | reenables hostname and certificate verification. | 303 | reenables server name and certificate verification. |
| 304 | .Em (Client) | 304 | .Em (Client) |
| 305 | .It | 305 | .It |
| 306 | .Fn tls_load_file | 306 | .Fn tls_load_file |