| Commit message (Collapse) | Author | Age | Files | Lines |
|---|
| ... | |
| |
|
|
| |
Delete empty RETURN VALUES section.
|
| |
|
|
|
| |
Merge various updates from OpenSSL, in particular stop talking about
what happens without SSL_OP_SINGLE_DH_USE, which is now always on.
|
| | |
|
| | |
|
| |
|
|
| |
relevant for us, calling the page SSL_set_max_send_fragment(3)
|
| | |
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
Delete explanation of SSL_OP_SINGLE_DH_USE, it is always on now.
Delete explanation of obsolete option SSL_OP_EPHEMERAL_RSA.
Delete various SSLv2 and SSLv3 remnants.
Delete excessive verbiage detailing each obsolete option individually;
instead, provide one concise list of obsolete options.
Delete HISTORY of individual options; it was incomplete anyway
and is not important enough to warrant so much bloat.
Garbage collect two useless cross references.
|
| |
|
|
|
| |
Delete a sentence explaining exploit mitigation countermeasures
that have long been removed.
|
| | |
|
| |
|
|
|
| |
Correct prototypes.
Drop the useless statement that a void function does not return a value.
|
| |
|
|
|
| |
Add markup for the declaration of GEN_SESSION_CB.
Garbage collect some remnants of SSLv2 and SSLv3.
|
| |
|
|
|
|
| |
Fix the declaration of pem_password_cb.
Simplify wording, mostly from OpenSSL.
Garbage collect the empty RETURN VALUES section.
|
| | |
|
| |
|
|
|
| |
Stop talking about export ciphers.
Remove two irrelevant cross references.
|
| |
|
|
|
| |
Rename WARNINGS to CAVEATS and RETURN VALUES to BUGS,
the latter from OpenSSL.
|
| |
|
|
| |
Remove the useless statement that a void function does not return a value.
|
| | |
|
| | |
|
| |
|
|
|
| |
Correct the description of what happens when the session cache is full,
from OpenSSL.
|
| |
|
|
| |
Garbarge collect empty RETURN VALUES section.
|
| | |
|
| |
|
|
|
|
|
|
|
| |
Remove the last traces of SSLv3.
Add TLS_method(3), TLSv1_2_method(3), DTLSv1_method(3) and friends.
Add missing prototypes to the SYNOPSIS.
Merge additional information from OpenSSL.
Simplify description of TLSv1_method(3) and SSLv23_method(3), from OpenSSL.
Some additional minor fixes.
|
| |
|
|
|
|
|
| |
Merge SSL_CTX_set_default_verify_paths(3) documentation from OpenSSL,
but do not talk about environment variables, which LibreSSL does
not appear to support, judging from the source code.
Rename WARNINGS section to CAVEATS.
|
| |
|
|
| |
Garbage collect empty RETURN VALUES section.
|
| |
|
|
| |
Call it SSL_set1_param(3) since we don't have these get0 functions.
|
| | |
|
| |
|
|
| |
Garbage collect empty RETURN VALUES section.
|
| |
|
|
| |
Correct two typos while here.
|
| |
|
|
|
|
|
| |
Lots of improvements from OpenSSL:
Document SSL_CTX_clear_extra_chain_certs(3).
Correct SSL_CTX_add_extra_chain_cert(3) first argument type.
Add some new information and improve wording.
|
| |
|
|
|
|
|
| |
LibreSSL was decompressed long ago.
Mention SSL_COMP_get_compression_methods(3) which is both available
in our public interface and documented by OpenSSL.
|
| |
|
|
|
|
|
| |
SSLv2 and export ciphers are no longer supported, delete related text.
Sync SSL_CIPHER_description(3) return values with the source code.
Wording simplifications from OpenSSL.
Delete empty RETURN VALUES section.
|
| |
|
|
|
| |
to libcrypto and parts belonging to libssl. Extract the parts
relevant for our libssl and import them with some tweaks.
|
| |
|
|
|
|
|
|
| |
excluding interface changes that don't apply to LibreSSL,
except that i left the confusing discussion of RETURN VALUES
completely unchanged, to warn users that this is a mess:
OpenSSL first published this interface, then later changed
its syntax and semantics in multiple ways.
|
| |
|
|
|
| |
In the SYNOPSIS, show function prototypes rather than macro definitions.
Delete the useless NOTES section header.
|
| |
|
|
|
| |
libraries, in particular considering that there are unrelated
files in doc/; requested by jsing@ and beck@
|
| | |
|
| | |
|
| |
|
|
|
|
|
|
|
|
|
|
| |
correctly - logically complete that now by removing MLINKS from base;
authors need only to ensure there is an entry in NAME for any function/
util being added. MLINKS will still work, and remain for perl to ease
upgrades;
ok nicm (curses) bcook (ssl)
ok schwarze, who provided a lot of feedback and assistance
ok tb natano jung
|
| | |
|
| |
|
|
|
| |
As discussed with beck@ jsing@ and others
OK beck@
|
| |
|
|
|
|
|
|
| |
since yesterday, "mandoc -Tlint -Wfatal" can no longer fail.
Instead, as suggested by deraadt@, provide a manlint target
that is *not* run during make build, but can be run
whenever you want to check syntax of manuals.
"nice stuff" deraadt@
|
| | |
|
| |
|
|
| |
ok bcook@
|
| |
|
|
| |
ok miod@ bcook@
|
| |
|
|
|
|
| |
Jeff Trawick, Jean-Paul Calderone, Michal Bozon, Jeffrey Walton and Rich Salz,
via OpenSSL trunk (with some parts not applying to us, such as SSLv2 support,
at least partially removed).
|
| |
|
|
|
|
|
| |
pages instead of doing it in the Makefiles and move a libssl page where
it belongs.
ok miod@
|
| |
|
|
|
|
| |
follow soon.
Tweaks from an ok jim@
|
| |
|
|
|
|
|
|
|
| |
as configuration files; split manpages and .pc files between libcrypto and
libssl.
No functional change, only there to make engineering easier, and libcrypto
sources are still found in libssl/src/crypto at the moment.
ok reyk@, also discussed with deraadt@ beck@ and the usual crypto suspects.
|
