summaryrefslogtreecommitdiff
path: root/src/usr.bin/openssl/openssl.1
diff options
context:
space:
mode:
authorjsing <>2020-02-16 16:39:01 +0000
committerjsing <>2020-02-16 16:39:01 +0000
commit5c10d8250250eed0abef10eabb0e9ae0cf1fe8c8 (patch)
tree9ce95afefe4c444bdd0e8c8928d9b58e9612999c /src/usr.bin/openssl/openssl.1
parent5f232a5347aa50b02963840b94a44e39ca4a5d4d (diff)
downloadopenbsd-5c10d8250250eed0abef10eabb0e9ae0cf1fe8c8.tar.gz
openbsd-5c10d8250250eed0abef10eabb0e9ae0cf1fe8c8.tar.bz2
openbsd-5c10d8250250eed0abef10eabb0e9ae0cf1fe8c8.zip
Add -tls1_3 and -notls1_3 options to openssl(1) s_client.
Also stop using version pinned methods, instead setting the min and max protocol versions. Requested by inoguchi@ ok inoguchi@ tb@
Diffstat (limited to 'src/usr.bin/openssl/openssl.1')
-rw-r--r--src/usr.bin/openssl/openssl.114
1 files changed, 8 insertions, 6 deletions
diff --git a/src/usr.bin/openssl/openssl.1 b/src/usr.bin/openssl/openssl.1
index 598de60a30..ffdddb7e73 100644
--- a/src/usr.bin/openssl/openssl.1
+++ b/src/usr.bin/openssl/openssl.1
@@ -1,4 +1,4 @@
1.\" $OpenBSD: openssl.1,v 1.118 2019/12/18 12:38:15 sthen Exp $ 1.\" $OpenBSD: openssl.1,v 1.119 2020/02/16 16:39:01 jsing Exp $
2.\" ==================================================================== 2.\" ====================================================================
3.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved. 3.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved.
4.\" 4.\"
@@ -110,7 +110,7 @@
110.\" copied and put under another distribution licence 110.\" copied and put under another distribution licence
111.\" [including the GNU Public Licence.] 111.\" [including the GNU Public Licence.]
112.\" 112.\"
113.Dd $Mdocdate: December 18 2019 $ 113.Dd $Mdocdate: February 16 2020 $
114.Dt OPENSSL 1 114.Dt OPENSSL 1
115.Os 115.Os
116.Sh NAME 116.Sh NAME
@@ -4213,6 +4213,7 @@ Verify the input data and output the recovered data.
4213.Op Fl no_tls1 4213.Op Fl no_tls1
4214.Op Fl no_tls1_1 4214.Op Fl no_tls1_1
4215.Op Fl no_tls1_2 4215.Op Fl no_tls1_2
4216.Op Fl no_tls1_3
4216.Op Fl pass Ar arg 4217.Op Fl pass Ar arg
4217.Op Fl pause 4218.Op Fl pause
4218.Op Fl policy_check 4219.Op Fl policy_check
@@ -4233,6 +4234,7 @@ Verify the input data and output the recovered data.
4233.Op Fl tls1 4234.Op Fl tls1
4234.Op Fl tls1_1 4235.Op Fl tls1_1
4235.Op Fl tls1_2 4236.Op Fl tls1_2
4237.Op Fl tls1_3
4236.Op Fl tlsextdebug 4238.Op Fl tlsextdebug
4237.Op Fl use_srtp Ar profiles 4239.Op Fl use_srtp Ar profiles
4238.Op Fl verify Ar depth 4240.Op Fl verify Ar depth
@@ -4370,8 +4372,8 @@ Can be used to override the implicit
4370.Fl ign_eof 4372.Fl ign_eof
4371after 4373after
4372.Fl quiet . 4374.Fl quiet .
4373.It Fl no_tls1 | no_tls1_1 | no_tls1_2 4375.It Fl no_tls1 | no_tls1_1 | no_tls1_2 | no_tls1_3
4374Disable the use of TLS1.0, 1.1, and 1.2, respectively. 4376Disable the use of TLS1.0, 1.1, 1.2 and 1.3 respectively.
4375.It Fl no_ticket 4377.It Fl no_ticket
4376Disable RFC 4507 session ticket support. 4378Disable RFC 4507 session ticket support.
4377.It Fl pass Ar arg 4379.It Fl pass Ar arg
@@ -4444,8 +4446,8 @@ Send a certificate status request to the server (OCSP stapling).
4444The server response (if any) is printed out. 4446The server response (if any) is printed out.
4445.It Fl timeout 4447.It Fl timeout
4446Enable send/receive timeout on DTLS connections. 4448Enable send/receive timeout on DTLS connections.
4447.It Fl tls1 | tls1_1 | tls1_2 4449.It Fl tls1 | tls1_1 | tls1_2 | tls1_3
4448Permit only TLS1.0, 1.1, or 1.2, respectively. 4450Permit only TLS1.0, 1.1, 1.2 or 1.3 respectively.
4449.It Fl tlsextdebug 4451.It Fl tlsextdebug
4450Print a hex dump of any TLS extensions received from the server. 4452Print a hex dump of any TLS extensions received from the server.
4451.It Fl use_srtp Ar profiles 4453.It Fl use_srtp Ar profiles
generated by cgit v1.2.3-55-g6feb (git 2.39.1) at 2025-04-25 22:29:35 +0000