From b5c7960f11d2b64faae5154f9709f34d00462124 Mon Sep 17 00:00:00 2001 From: doug <> Date: Mon, 15 Jun 2015 05:32:58 +0000 Subject: Remove ancient SSL_OP_NETSCAPE_CA_DN_BUG from SSLeay days. This commit matches the OpenSSL removal in commit 3c33c6f6b10864355553961e638514a6d1bb00f6. ok deraadt@ --- src/lib/libssl/doc/SSL_CTX_set_options.3 | 9 ++++----- 1 file changed, 4 insertions(+), 5 deletions(-) (limited to 'src/lib/libssl/doc/SSL_CTX_set_options.3') diff --git a/src/lib/libssl/doc/SSL_CTX_set_options.3 b/src/lib/libssl/doc/SSL_CTX_set_options.3 index 8bb22b7cc6..53a7a6c9c0 100644 --- a/src/lib/libssl/doc/SSL_CTX_set_options.3 +++ b/src/lib/libssl/doc/SSL_CTX_set_options.3 @@ -1,5 +1,5 @@ .\" -.\" $OpenBSD: SSL_CTX_set_options.3,v 1.5 2015/06/15 05:16:56 doug Exp $ +.\" $OpenBSD: SSL_CTX_set_options.3,v 1.6 2015/06/15 05:32:58 doug Exp $ .\" .Dd $Mdocdate: June 15 2015 $ .Dt SSL_CTX_SET_OPTIONS 3 @@ -192,10 +192,9 @@ When set, the SSLv3/TLSv1 server will choose following its own preferences. Because of the different protocol, for SSLv2 the server will send its list of preferences to the client and the client chooses. .It Dv SSL_OP_NETSCAPE_CA_DN_BUG -If we accept a netscape connection, demand a client cert, have a -non-self-signed CA which does not have its CA in netscape, and the browser has -a cert, it will crash/hang. -Works for 3.x and 4.xbeta +As of +.Ox 5.8 , +this option has no effect. .It Dv SSL_OP_NETSCAPE_DEMO_CIPHER_CHANGE_BUG As of .Ox 5.8 , -- cgit v1.2.3-55-g6feb