Add Copyright and license.

Correct the description of what happens when the session cache is full, from OpenSSL.
author: schwarze <> 2016-11-30 16:24:56 +0000
committer: schwarze <> 2016-11-30 16:24:56 +0000
commit: 112c3bcb34506cb099b12ccbb1f49e73bc9f9eed (patch)
tree: 1751a890adcdaf23c36d4de08b2098549cfb1bce /src/lib
parent: a0da22d37b52b6598c42ec9044ad461309c212d1 (diff)
download: openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.tar.gz
openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.tar.bz2
openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.zip
1 files changed, 53 insertions, 6 deletions
diff --git a/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3 b/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3
index 1cc6516d20..17ea0a75eb 100644
--- a/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3
+++ b/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3
@@ -1,7 +1,54 @@
+.\"     $OpenBSD: SSL_CTX_sess_set_cache_size.3,v 1.2 2016/11/30 16:24:56 schwarze Exp $
+.\"     OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
 .\"
-.\"     $OpenBSD: SSL_CTX_sess_set_cache_size.3,v 1.1 2016/11/05 15:32:19 schwarze Exp $
+.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>.
+.\" Copyright (c) 2001, 2002, 2014 The OpenSSL Project.  All rights reserved.
 .\"
-.Dd $Mdocdate: November 5 2016 $
+.\" Redistribution and use in source and binary forms, with or without
+.\" modification, are permitted provided that the following conditions
+.\" are met:
+.\"
+.\" 1. Redistributions of source code must retain the above copyright
+.\"    notice, this list of conditions and the following disclaimer.
+.\"
+.\" 2. Redistributions in binary form must reproduce the above copyright
+.\"    notice, this list of conditions and the following disclaimer in
+.\"    the documentation and/or other materials provided with the
+.\"    distribution.
+.\"
+.\" 3. All advertising materials mentioning features or use of this
+.\"    software must display the following acknowledgment:
+.\"    "This product includes software developed by the OpenSSL Project
+.\"    for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
+.\"
+.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
+.\"    endorse or promote products derived from this software without
+.\"    prior written permission. For written permission, please contact
+.\"    openssl-core@openssl.org.
+.\"
+.\" 5. Products derived from this software may not be called "OpenSSL"
+.\"    nor may "OpenSSL" appear in their names without prior written
+.\"    permission of the OpenSSL Project.
+.\"
+.\" 6. Redistributions of any form whatsoever must retain the following
+.\"    acknowledgment:
+.\"    "This product includes software developed by the OpenSSL Project
+.\"    for use in the OpenSSL Toolkit (http://www.openssl.org/)"
+.\"
+.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
+.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
+.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
+.\" PURPOSE ARE DISCLAIMED.  IN NO EVENT SHALL THE OpenSSL PROJECT OR
+.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
+.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
+.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
+.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
+.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
+.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
+.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
+.\" OF THE POSSIBILITY OF SUCH DAMAGE.
+.\"
+.Dd $Mdocdate: November 30 2016 $
 .Dt SSL_CTX_SESS_SET_CACHE_SIZE 3
 .Os
 .Sh NAME
@@ -23,7 +70,7 @@ to
 .Pp
 .Fn SSL_CTX_sess_get_cache_size
 returns the currently valid session cache size.
-.Sh NOTES
+.Pp
 The internal session cache size is
 .Dv SSL_SESSION_CACHE_MAX_SIZE_DEFAULT ,
 currently 1024\(mu20, so that up to 20000 sessions can be held.
@@ -32,9 +79,9 @@ This size can be modified using the
 call.
 A special case is the size 0, which is used for unlimited size.
 .Pp
-When the maximum number of sessions is reached,
+If adding the session makes the cache exceed its size, then unused
-no more new sessions are added to the cache.
+sessions are dropped from the end of the cache.
-New space may be added by calling
+Cache space may also be reclaimed by calling
 .Xr SSL_CTX_flush_sessions 3
 to remove expired sessions.
 .Pp
author	schwarze <>	2016-11-30 16:24:56 +0000
committer	schwarze <>	2016-11-30 16:24:56 +0000
commit	112c3bcb34506cb099b12ccbb1f49e73bc9f9eed (patch)
tree	1751a890adcdaf23c36d4de08b2098549cfb1bce /src/lib
parent	a0da22d37b52b6598c42ec9044ad461309c212d1 (diff)
download	openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.tar.gz openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.tar.bz2 openbsd-112c3bcb34506cb099b12ccbb1f49e73bc9f9eed.zip

diff --git a/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3 b/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3 index 1cc6516d20..17ea0a75eb 100644 --- a/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3 +++ b/src/lib/libssl/man/SSL_CTX_sess_set_cache_size.3
@@ -1,7 +1,54 @@
		1	.\" $OpenBSD: SSL_CTX_sess_set_cache_size.3,v 1.2 2016/11/30 16:24:56 schwarze Exp $
		2	.\" OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
1	.\"	3	.\"
2	.\" $OpenBSD: SSL_CTX_sess_set_cache_size.3,v 1.1 2016/11/05 15:32:19 schwarze Exp $	4	.\" This file was written by Lutz Jaenicke <jaenicke@openssl.org>.
		5	.\" Copyright (c) 2001, 2002, 2014 The OpenSSL Project. All rights reserved.
3	.\"	6	.\"
4	.Dd $Mdocdate: November 5 2016 $	7	.\" Redistribution and use in source and binary forms, with or without
		8	.\" modification, are permitted provided that the following conditions
		9	.\" are met:
		10	.\"
		11	.\" 1. Redistributions of source code must retain the above copyright
		12	.\" notice, this list of conditions and the following disclaimer.
		13	.\"
		14	.\" 2. Redistributions in binary form must reproduce the above copyright
		15	.\" notice, this list of conditions and the following disclaimer in
		16	.\" the documentation and/or other materials provided with the
		17	.\" distribution.
		18	.\"
		19	.\" 3. All advertising materials mentioning features or use of this
		20	.\" software must display the following acknowledgment:
		21	.\" "This product includes software developed by the OpenSSL Project
		22	.\" for use in the OpenSSL Toolkit. (http://www.openssl.org/)"
		23	.\"
		24	.\" 4. The names "OpenSSL Toolkit" and "OpenSSL Project" must not be used to
		25	.\" endorse or promote products derived from this software without
		26	.\" prior written permission. For written permission, please contact
		27	.\" openssl-core@openssl.org.
		28	.\"
		29	.\" 5. Products derived from this software may not be called "OpenSSL"
		30	.\" nor may "OpenSSL" appear in their names without prior written
		31	.\" permission of the OpenSSL Project.
		32	.\"
		33	.\" 6. Redistributions of any form whatsoever must retain the following
		34	.\" acknowledgment:
		35	.\" "This product includes software developed by the OpenSSL Project
		36	.\" for use in the OpenSSL Toolkit (http://www.openssl.org/)"
		37	.\"
		38	.\" THIS SOFTWARE IS PROVIDED BY THE OpenSSL PROJECT ``AS IS'' AND ANY
		39	.\" EXPRESSED OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
		40	.\" IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR
		41	.\" PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE OpenSSL PROJECT OR
		42	.\" ITS CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
		43	.\" SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT
		44	.\" NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES;
		45	.\" LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
		46	.\" HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
		47	.\" STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE)
		48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
		49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
		50	.\"
		51	.Dd $Mdocdate: November 30 2016 $
5	.Dt SSL_CTX_SESS_SET_CACHE_SIZE 3	52	.Dt SSL_CTX_SESS_SET_CACHE_SIZE 3
6	.Os	53	.Os
7	.Sh NAME	54	.Sh NAME
@@ -23,7 +70,7 @@ to
23	.Pp	70	.Pp
24	.Fn SSL_CTX_sess_get_cache_size	71	.Fn SSL_CTX_sess_get_cache_size
25	returns the currently valid session cache size.	72	returns the currently valid session cache size.
26	.Sh NOTES	73	.Pp
27	The internal session cache size is	74	The internal session cache size is
28	.Dv SSL_SESSION_CACHE_MAX_SIZE_DEFAULT ,	75	.Dv SSL_SESSION_CACHE_MAX_SIZE_DEFAULT ,
29	currently 1024\(mu20, so that up to 20000 sessions can be held.	76	currently 1024\(mu20, so that up to 20000 sessions can be held.
@@ -32,9 +79,9 @@ This size can be modified using the
32	call.	79	call.
33	A special case is the size 0, which is used for unlimited size.	80	A special case is the size 0, which is used for unlimited size.
34	.Pp	81	.Pp
35	When the maximum number of sessions is reached,	82	If adding the session makes the cache exceed its size, then unused
36	no more new sessions are added to the cache.	83	sessions are dropped from the end of the cache.
37	New space may be added by calling	84	Cache space may also be reclaimed by calling
38	.Xr SSL_CTX_flush_sessions 3	85	.Xr SSL_CTX_flush_sessions 3
39	to remove expired sessions.	86	to remove expired sessions.
40	.Pp	87	.Pp