1 files changed, 6 insertions, 0 deletions
diff --git a/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod b/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod
index 74f8b5d932..c656fb2e19 100644
--- a/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod
+++ b/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod
@@ -114,6 +114,12 @@ vulnerability affecting CBC ciphers, which cannot be handled by some
 broken SSL implementations.  This option has no effect for connections
 using other ciphers.
+=item SSL_OP_TLSEXT_PADDING
+Adds a padding extension to ensure the ClientHello size is never between
+256 and 511 bytes in length. This is needed as a workaround for some
+implementations.
 =item SSL_OP_ALL
 All of the above bug workarounds.

diff --git a/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod b/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod index 74f8b5d932..c656fb2e19 100644 --- a/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod +++ b/src/lib/libssl/src/doc/ssl/SSL_CTX_set_options.pod
@@ -114,6 +114,12 @@ vulnerability affecting CBC ciphers, which cannot be handled by some
114	broken SSL implementations. This option has no effect for connections	114	broken SSL implementations. This option has no effect for connections
115	using other ciphers.	115	using other ciphers.
116		116
		117	=item SSL_OP_TLSEXT_PADDING
		118
		119	Adds a padding extension to ensure the ClientHello size is never between
		120	256 and 511 bytes in length. This is needed as a workaround for some
		121	implementations.
		122
117	=item SSL_OP_ALL	123	=item SSL_OP_ALL
118		124
119	All of the above bug workarounds.	125	All of the above bug workarounds.