Mention three functions related to protocol selection by the client

that are deprecated no-ops in LibreSSL, but that OpenSSL explicitly documented on April 19, 2017, without deprecating them.
author: schwarze <> 2017-08-21 08:31:19 +0000
committer: schwarze <> 2017-08-21 08:31:19 +0000
commit: b6cd845f3a7c60079cda7b955e026fb603d03a8c (patch)
tree: 3afddc91a2cbcd005d8dd31705b8742c42f45f58 /src/lib
parent: 504e874777968fc9b1a7f756c62056f6bfedc446 (diff)
download: openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.tar.gz
openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.tar.bz2
openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.zip
1 files changed, 48 insertions, 3 deletions
diff --git a/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3 b/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3
index eb6c543478..175689d79b 100644
--- a/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3
+++ b/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3
@@ -1,4 +1,5 @@
-.\"     $OpenBSD: SSL_CTX_set_alpn_select_cb.3,v 1.3 2017/08/12 21:03:08 jsing Exp $
+.\"     $OpenBSD: SSL_CTX_set_alpn_select_cb.3,v 1.4 2017/08/21 08:31:19 schwarze Exp $
+.\"     OpenSSL 87b81496 Apr 19 12:38:27 2017 -0400
 .\"     OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
 .\"
 .\" This file was written by Todd Short <tshort@akamai.com>.
@@ -48,15 +49,18 @@
 .\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
 .\" OF THE POSSIBILITY OF SUCH DAMAGE.
 .\"
-.Dd $Mdocdate: August 12 2017 $
+.Dd $Mdocdate: August 21 2017 $
 .Dt SSL_CTX_SET_ALPN_SELECT_CB 3
 .Os
 .Sh NAME
 .Nm SSL_CTX_set_alpn_protos ,
 .Nm SSL_set_alpn_protos ,
 .Nm SSL_CTX_set_alpn_select_cb ,
+.Nm SSL_CTX_set_next_proto_select_cb ,
+.Nm SSL_CTX_set_next_protos_advertised_cb ,
 .Nm SSL_select_next_proto ,
-.Nm SSL_get0_alpn_selected
+.Nm SSL_get0_alpn_selected ,
+.Nm SSL_get0_next_proto_negotiated
 .Nd handle application layer protocol negotiation (ALPN)
 .Sh SYNOPSIS
 .In openssl/ssl.h
@@ -80,6 +84,21 @@
 unsigned int inlen, void *arg)"
 .Fa "void *arg"
 .Fc
+.Ft void
+.Fo SSL_CTX_set_next_proto_select_cb
+.Fa "SSL_CTX *ctx"
+.Fa "int (*cb)(SSL *ssl, unsigned char **out,\
+ unsigned char *outlen, const unsigned char *in,\
+ unsigned int inlen, void *arg)"
+.Fa "void *arg"
+.Fc
+.Ft void
+.Fo SSL_CTX_set_next_protos_advertised_cb
+.Fa "SSL_CTX *ctx"
+.Fa "int (*cb)(SSL *ssl, const unsigned char **out,\
+ unsigned char *outlen, void *arg)"
+.Fa "void *arg"
+.Fc
 .Ft int
 .Fo SSL_select_next_proto
 .Fa "unsigned char **out"
@@ -95,6 +114,12 @@
 .Fa "const unsigned char **data"
 .Fa "unsigned int *len"
 .Fc
+.Ft void
+.Fo SSL_get0_next_proto_negotiated
+.Fa "const SSL *ssl"
+.Fa "const unsigned char **data"
+.Fa "unsigned int *len"
+.Fc
 .Sh DESCRIPTION
 .Fn SSL_CTX_set_alpn_protos
 and
@@ -182,6 +207,16 @@ is returned in
 .Fa out ,
 .Fa outlen .
 .Pp
+.Fn SSL_CTX_set_next_proto_select_cb
+is deprecated and has no effect.
+It used to set a callback that was called when a client needed to
+select a protocol from the server's provided list.
+.Pp
+.Fn SSL_CTX_set_next_protos_advertised_cb
+is deprecated and has no effect.
+It used to set a callback that was called when a TLS server needed
+a list of supported protocols for Next Protocol Negotiation.
+.Pp
 .Fn SSL_get0_alpn_selected
 returns a pointer to the selected protocol in
 .Fa data
@@ -197,6 +232,16 @@ is set to 0 if no protocol has been selected.
 .Fa data
 must not be freed.
 .Pp
+.Fn SSL_get0_next_proto_negotiated
+is deprecated and has no effect except that it always sets
+.Pf * Fa data
+to
+.Dv NULL
+and
+.Pf * Fa len
+to 0.
+It used to return the client's requested protocol for this connection.
+.Pp
 The protocol-lists must be in wire-format, which is defined as a vector
 of non-empty, 8-bit length-prefixed byte strings.
 The length-prefix byte is not included in the length.
author	schwarze <>	2017-08-21 08:31:19 +0000
committer	schwarze <>	2017-08-21 08:31:19 +0000
commit	b6cd845f3a7c60079cda7b955e026fb603d03a8c (patch)
tree	3afddc91a2cbcd005d8dd31705b8742c42f45f58 /src/lib
parent	504e874777968fc9b1a7f756c62056f6bfedc446 (diff)
download	openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.tar.gz openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.tar.bz2 openbsd-b6cd845f3a7c60079cda7b955e026fb603d03a8c.zip

diff --git a/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3 b/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3 index eb6c543478..175689d79b 100644 --- a/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3 +++ b/src/lib/libssl/man/SSL_CTX_set_alpn_select_cb.3
@@ -1,4 +1,5 @@
1	.\" $OpenBSD: SSL_CTX_set_alpn_select_cb.3,v 1.3 2017/08/12 21:03:08 jsing Exp $	1	.\" $OpenBSD: SSL_CTX_set_alpn_select_cb.3,v 1.4 2017/08/21 08:31:19 schwarze Exp $
		2	.\" OpenSSL 87b81496 Apr 19 12:38:27 2017 -0400
2	.\" OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100	3	.\" OpenSSL b97fdb57 Nov 11 09:33:09 2016 +0100
3	.\"	4	.\"
4	.\" This file was written by Todd Short <tshort@akamai.com>.	5	.\" This file was written by Todd Short <tshort@akamai.com>.
@@ -48,15 +49,18 @@
48	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED	49	.\" ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED
49	.\" OF THE POSSIBILITY OF SUCH DAMAGE.	50	.\" OF THE POSSIBILITY OF SUCH DAMAGE.
50	.\"	51	.\"
51	.Dd $Mdocdate: August 12 2017 $	52	.Dd $Mdocdate: August 21 2017 $
52	.Dt SSL_CTX_SET_ALPN_SELECT_CB 3	53	.Dt SSL_CTX_SET_ALPN_SELECT_CB 3
53	.Os	54	.Os
54	.Sh NAME	55	.Sh NAME
55	.Nm SSL_CTX_set_alpn_protos ,	56	.Nm SSL_CTX_set_alpn_protos ,
56	.Nm SSL_set_alpn_protos ,	57	.Nm SSL_set_alpn_protos ,
57	.Nm SSL_CTX_set_alpn_select_cb ,	58	.Nm SSL_CTX_set_alpn_select_cb ,
		59	.Nm SSL_CTX_set_next_proto_select_cb ,
		60	.Nm SSL_CTX_set_next_protos_advertised_cb ,
58	.Nm SSL_select_next_proto ,	61	.Nm SSL_select_next_proto ,
59	.Nm SSL_get0_alpn_selected	62	.Nm SSL_get0_alpn_selected ,
		63	.Nm SSL_get0_next_proto_negotiated
60	.Nd handle application layer protocol negotiation (ALPN)	64	.Nd handle application layer protocol negotiation (ALPN)
61	.Sh SYNOPSIS	65	.Sh SYNOPSIS
62	.In openssl/ssl.h	66	.In openssl/ssl.h
@@ -80,6 +84,21 @@
80	unsigned int inlen, void *arg)"	84	unsigned int inlen, void *arg)"
81	.Fa "void *arg"	85	.Fa "void *arg"
82	.Fc	86	.Fc
		87	.Ft void
		88	.Fo SSL_CTX_set_next_proto_select_cb
		89	.Fa "SSL_CTX *ctx"
		90	.Fa "int (cb)(SSL ssl, unsigned char **out,\
		91	unsigned char outlen, const unsigned char in,\
		92	unsigned int inlen, void *arg)"
		93	.Fa "void *arg"
		94	.Fc
		95	.Ft void
		96	.Fo SSL_CTX_set_next_protos_advertised_cb
		97	.Fa "SSL_CTX *ctx"
		98	.Fa "int (cb)(SSL ssl, const unsigned char **out,\
		99	unsigned char outlen, void arg)"
		100	.Fa "void *arg"
		101	.Fc
83	.Ft int	102	.Ft int
84	.Fo SSL_select_next_proto	103	.Fo SSL_select_next_proto
85	.Fa "unsigned char **out"	104	.Fa "unsigned char **out"
@@ -95,6 +114,12 @@
95	.Fa "const unsigned char **data"	114	.Fa "const unsigned char **data"
96	.Fa "unsigned int *len"	115	.Fa "unsigned int *len"
97	.Fc	116	.Fc
		117	.Ft void
		118	.Fo SSL_get0_next_proto_negotiated
		119	.Fa "const SSL *ssl"
		120	.Fa "const unsigned char **data"
		121	.Fa "unsigned int *len"
		122	.Fc
98	.Sh DESCRIPTION	123	.Sh DESCRIPTION
99	.Fn SSL_CTX_set_alpn_protos	124	.Fn SSL_CTX_set_alpn_protos
100	and	125	and
@@ -182,6 +207,16 @@ is returned in
182	.Fa out ,	207	.Fa out ,
183	.Fa outlen .	208	.Fa outlen .
184	.Pp	209	.Pp
		210	.Fn SSL_CTX_set_next_proto_select_cb
		211	is deprecated and has no effect.
		212	It used to set a callback that was called when a client needed to
		213	select a protocol from the server's provided list.
		214	.Pp
		215	.Fn SSL_CTX_set_next_protos_advertised_cb
		216	is deprecated and has no effect.
		217	It used to set a callback that was called when a TLS server needed
		218	a list of supported protocols for Next Protocol Negotiation.
		219	.Pp
185	.Fn SSL_get0_alpn_selected	220	.Fn SSL_get0_alpn_selected
186	returns a pointer to the selected protocol in	221	returns a pointer to the selected protocol in
187	.Fa data	222	.Fa data
@@ -197,6 +232,16 @@ is set to 0 if no protocol has been selected.
197	.Fa data	232	.Fa data
198	must not be freed.	233	must not be freed.
199	.Pp	234	.Pp
		235	.Fn SSL_get0_next_proto_negotiated
		236	is deprecated and has no effect except that it always sets
		237	.Pf * Fa data
		238	to
		239	.Dv NULL
		240	and
		241	.Pf * Fa len
		242	to 0.
		243	It used to return the client's requested protocol for this connection.
		244	.Pp
200	The protocol-lists must be in wire-format, which is defined as a vector	245	The protocol-lists must be in wire-format, which is defined as a vector
201	of non-empty, 8-bit length-prefixed byte strings.	246	of non-empty, 8-bit length-prefixed byte strings.
202	The length-prefix byte is not included in the length.	247	The length-prefix byte is not included in the length.