diff options
| author | simon <simon@FreeBSD.org> | 2006-07-29 19:10:21 +0000 |
|---|---|---|
| committer | simon <simon@FreeBSD.org> | 2006-07-29 19:10:21 +0000 |
| commit | fb3c70eda88d3175627edc6a3316b4508b3d29c5 (patch) | |
| tree | 213a0c4d5ba3869f66ecf970819532048fed4a9d /crypto/openssl/doc/ssl | |
| parent | 3c8d7d9993705e30bc69e55cd19d8a298e582292 (diff) | |
| download | FreeBSD-src-fb3c70eda88d3175627edc6a3316b4508b3d29c5.zip FreeBSD-src-fb3c70eda88d3175627edc6a3316b4508b3d29c5.tar.gz | |
Vendor import of OpenSSL 0.9.8b
Diffstat (limited to 'crypto/openssl/doc/ssl')
30 files changed, 120 insertions, 108 deletions
diff --git a/crypto/openssl/doc/ssl/SSL_CIPHER_get_name.pod b/crypto/openssl/doc/ssl/SSL_CIPHER_get_name.pod index 4b91c63..f81f692 100644 --- a/crypto/openssl/doc/ssl/SSL_CIPHER_get_name.pod +++ b/crypto/openssl/doc/ssl/SSL_CIPHER_get_name.pod @@ -8,9 +8,9 @@ SSL_CIPHER_get_name, SSL_CIPHER_get_bits, SSL_CIPHER_get_version, SSL_CIPHER_des #include <openssl/ssl.h> - const char *SSL_CIPHER_get_name(SSL_CIPHER *cipher); - int SSL_CIPHER_get_bits(SSL_CIPHER *cipher, int *alg_bits); - char *SSL_CIPHER_get_version(SSL_CIPHER *cipher); + const char *SSL_CIPHER_get_name(const SSL_CIPHER *cipher); + int SSL_CIPHER_get_bits(const SSL_CIPHER *cipher, int *alg_bits); + char *SSL_CIPHER_get_version(const SSL_CIPHER *cipher); char *SSL_CIPHER_description(SSL_CIPHER *cipher, char *buf, int size); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_CTX_get_ex_new_index.pod b/crypto/openssl/doc/ssl/SSL_CTX_get_ex_new_index.pod index 5686faf..0c40a91 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_get_ex_new_index.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_get_ex_new_index.pod @@ -15,7 +15,7 @@ SSL_CTX_get_ex_new_index, SSL_CTX_set_ex_data, SSL_CTX_get_ex_data - internal ap int SSL_CTX_set_ex_data(SSL_CTX *ctx, int idx, void *arg); - void *SSL_CTX_get_ex_data(SSL_CTX *ctx, int idx); + void *SSL_CTX_get_ex_data(const SSL_CTX *ctx, int idx); typedef int new_func(void *parent, void *ptr, CRYPTO_EX_DATA *ad, int idx, long argl, void *argp); diff --git a/crypto/openssl/doc/ssl/SSL_CTX_get_verify_mode.pod b/crypto/openssl/doc/ssl/SSL_CTX_get_verify_mode.pod index 7f10c6e..2a3747e 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_get_verify_mode.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_get_verify_mode.pod @@ -8,12 +8,12 @@ SSL_CTX_get_verify_mode, SSL_get_verify_mode, SSL_CTX_get_verify_depth, SSL_get_ #include <openssl/ssl.h> - int SSL_CTX_get_verify_mode(SSL_CTX *ctx); - int SSL_get_verify_mode(SSL *ssl); - int SSL_CTX_get_verify_depth(SSL_CTX *ctx); - int SSL_get_verify_depth(SSL *ssl); - int (*SSL_CTX_get_verify_callback(SSL_CTX *ctx))(int, X509_STORE_CTX *); - int (*SSL_get_verify_callback(SSL *ssl))(int, X509_STORE_CTX *); + int SSL_CTX_get_verify_mode(const SSL_CTX *ctx); + int SSL_get_verify_mode(const SSL *ssl); + int SSL_CTX_get_verify_depth(const SSL_CTX *ctx); + int SSL_get_verify_depth(const SSL *ssl); + int (*SSL_CTX_get_verify_callback(const SSL_CTX *ctx))(int, X509_STORE_CTX *); + int (*SSL_get_verify_callback(const SSL *ssl))(int, X509_STORE_CTX *); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_CTX_set_cert_store.pod b/crypto/openssl/doc/ssl/SSL_CTX_set_cert_store.pod index 3a240c4..6acf0d9 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_set_cert_store.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_set_cert_store.pod @@ -9,7 +9,7 @@ SSL_CTX_set_cert_store, SSL_CTX_get_cert_store - manipulate X509 certificate ver #include <openssl/ssl.h> void SSL_CTX_set_cert_store(SSL_CTX *ctx, X509_STORE *store); - X509_STORE *SSL_CTX_get_cert_store(SSL_CTX *ctx); + X509_STORE *SSL_CTX_get_cert_store(const SSL_CTX *ctx); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_CTX_set_info_callback.pod b/crypto/openssl/doc/ssl/SSL_CTX_set_info_callback.pod index 63d0b8d..0b4affd5 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_set_info_callback.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_set_info_callback.pod @@ -9,10 +9,10 @@ SSL_CTX_set_info_callback, SSL_CTX_get_info_callback, SSL_set_info_callback, SSL #include <openssl/ssl.h> void SSL_CTX_set_info_callback(SSL_CTX *ctx, void (*callback)()); - void (*SSL_CTX_get_info_callback(SSL_CTX *ctx))(); + void (*SSL_CTX_get_info_callback(const SSL_CTX *ctx))(); void SSL_set_info_callback(SSL *ssl, void (*callback)()); - void (*SSL_get_info_callback(SSL *ssl))(); + void (*SSL_get_info_callback(const SSL *ssl))(); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_CTX_set_options.pod b/crypto/openssl/doc/ssl/SSL_CTX_set_options.pod index 766f0c9..fa63263 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_set_options.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_set_options.pod @@ -86,7 +86,7 @@ doing a re-connect, always takes the first cipher in the cipher list. =item SSL_OP_MSIE_SSLV2_RSA_PADDING -... +As of OpenSSL 0.9.7h and 0.9.8a, this option has no effect. =item SSL_OP_SSLEAY_080_CLIENT_DH_BUG @@ -163,7 +163,7 @@ When choosing a cipher, use the server's preferences instead of the client preferences. When not set, the SSL server will always follow the clients preferences. When set, the SSLv3/TLSv1 server will choose following its own preferences. Because of the different protocol, for SSLv2 the server -will send his list of preferences to the client and the client chooses. +will send its list of preferences to the client and the client chooses. =item SSL_OP_PKCS1_CHECK_1 diff --git a/crypto/openssl/doc/ssl/SSL_CTX_set_quiet_shutdown.pod b/crypto/openssl/doc/ssl/SSL_CTX_set_quiet_shutdown.pod index 1d0526d..393f8ff 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_set_quiet_shutdown.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_set_quiet_shutdown.pod @@ -9,10 +9,10 @@ SSL_CTX_set_quiet_shutdown, SSL_CTX_get_quiet_shutdown, SSL_set_quiet_shutdown, #include <openssl/ssl.h> void SSL_CTX_set_quiet_shutdown(SSL_CTX *ctx, int mode); - int SSL_CTX_get_quiet_shutdown(SSL_CTX *ctx); + int SSL_CTX_get_quiet_shutdown(const SSL_CTX *ctx); void SSL_set_quiet_shutdown(SSL *ssl, int mode); - int SSL_get_quiet_shutdown(SSL *ssl); + int SSL_get_quiet_shutdown(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_CTX_use_certificate.pod b/crypto/openssl/doc/ssl/SSL_CTX_use_certificate.pod index ea2faba..10be95f 100644 --- a/crypto/openssl/doc/ssl/SSL_CTX_use_certificate.pod +++ b/crypto/openssl/doc/ssl/SSL_CTX_use_certificate.pod @@ -31,8 +31,8 @@ SSL_CTX_use_certificate, SSL_CTX_use_certificate_ASN1, SSL_CTX_use_certificate_f int SSL_use_RSAPrivateKey_ASN1(SSL *ssl, unsigned char *d, long len); int SSL_use_RSAPrivateKey_file(SSL *ssl, const char *file, int type); - int SSL_CTX_check_private_key(SSL_CTX *ctx); - int SSL_check_private_key(SSL *ssl); + int SSL_CTX_check_private_key(const SSL_CTX *ctx); + int SSL_check_private_key(const SSL *ssl); =head1 DESCRIPTION @@ -77,6 +77,12 @@ SSL_CTX_use_PrivateKey() adds B<pkey> as private key to B<ctx>. SSL_CTX_use_RSAPrivateKey() adds the private key B<rsa> of type RSA to B<ctx>. SSL_use_PrivateKey() adds B<pkey> as private key to B<ssl>; SSL_use_RSAPrivateKey() adds B<rsa> as private key of type RSA to B<ssl>. +If a certificate has already been set and the private does not belong +to the certificate an error is returned. To change a certificate, private +key pair the new certificate needs to be set with SSL_use_certificate() +or SSL_CTX_use_certificate() before setting the private key with +SSL_CTX_use_PrivateKey() or SSL_use_PrivateKey(). + SSL_CTX_use_PrivateKey_ASN1() adds the private key of type B<pk> stored at memory location B<d> (length B<len>) to B<ctx>. @@ -154,4 +160,10 @@ L<SSL_CTX_set_cipher_list(3)|SSL_CTX_set_cipher_list(3)>, L<SSL_CTX_set_client_cert_cb(3)|SSL_CTX_set_client_cert_cb(3)>, L<SSL_CTX_add_extra_chain_cert(3)|SSL_CTX_add_extra_chain_cert(3)> +=head1 HISTORY + +Support for DER encoded private keys (SSL_FILETYPE_ASN1) in +SSL_CTX_use_PrivateKey_file() and SSL_use_PrivateKey_file() was added +in 0.9.8 . + =cut diff --git a/crypto/openssl/doc/ssl/SSL_SESSION_get_ex_new_index.pod b/crypto/openssl/doc/ssl/SSL_SESSION_get_ex_new_index.pod index da0bcf1..657cda9 100644 --- a/crypto/openssl/doc/ssl/SSL_SESSION_get_ex_new_index.pod +++ b/crypto/openssl/doc/ssl/SSL_SESSION_get_ex_new_index.pod @@ -15,7 +15,7 @@ SSL_SESSION_get_ex_new_index, SSL_SESSION_set_ex_data, SSL_SESSION_get_ex_data - int SSL_SESSION_set_ex_data(SSL_SESSION *session, int idx, void *arg); - void *SSL_SESSION_get_ex_data(SSL_SESSION *session, int idx); + void *SSL_SESSION_get_ex_data(const SSL_SESSION *session, int idx); typedef int new_func(void *parent, void *ptr, CRYPTO_EX_DATA *ad, int idx, long argl, void *argp); diff --git a/crypto/openssl/doc/ssl/SSL_SESSION_get_time.pod b/crypto/openssl/doc/ssl/SSL_SESSION_get_time.pod index ea3c2bc..00883ed 100644 --- a/crypto/openssl/doc/ssl/SSL_SESSION_get_time.pod +++ b/crypto/openssl/doc/ssl/SSL_SESSION_get_time.pod @@ -8,14 +8,14 @@ SSL_SESSION_get_time, SSL_SESSION_set_time, SSL_SESSION_get_timeout, SSL_SESSION #include <openssl/ssl.h> - long SSL_SESSION_get_time(SSL_SESSION *s); + long SSL_SESSION_get_time(const SSL_SESSION *s); long SSL_SESSION_set_time(SSL_SESSION *s, long tm); - long SSL_SESSION_get_timeout(SSL_SESSION *s); + long SSL_SESSION_get_timeout(const SSL_SESSION *s); long SSL_SESSION_set_timeout(SSL_SESSION *s, long tm); - long SSL_get_time(SSL_SESSION *s); + long SSL_get_time(const SSL_SESSION *s); long SSL_set_time(SSL_SESSION *s, long tm); - long SSL_get_timeout(SSL_SESSION *s); + long SSL_get_timeout(const SSL_SESSION *s); long SSL_set_timeout(SSL_SESSION *s, long tm); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_SSL_CTX.pod b/crypto/openssl/doc/ssl/SSL_get_SSL_CTX.pod index 52d0227..659c482 100644 --- a/crypto/openssl/doc/ssl/SSL_get_SSL_CTX.pod +++ b/crypto/openssl/doc/ssl/SSL_get_SSL_CTX.pod @@ -8,7 +8,7 @@ SSL_get_SSL_CTX - get the SSL_CTX from which an SSL is created #include <openssl/ssl.h> - SSL_CTX *SSL_get_SSL_CTX(SSL *ssl); + SSL_CTX *SSL_get_SSL_CTX(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_ciphers.pod b/crypto/openssl/doc/ssl/SSL_get_ciphers.pod index 2a57455..aecadd9 100644 --- a/crypto/openssl/doc/ssl/SSL_get_ciphers.pod +++ b/crypto/openssl/doc/ssl/SSL_get_ciphers.pod @@ -8,8 +8,8 @@ SSL_get_ciphers, SSL_get_cipher_list - get list of available SSL_CIPHERs #include <openssl/ssl.h> - STACK_OF(SSL_CIPHER) *SSL_get_ciphers(SSL *ssl); - const char *SSL_get_cipher_list(SSL *ssl, int priority); + STACK_OF(SSL_CIPHER) *SSL_get_ciphers(const SSL *ssl); + const char *SSL_get_cipher_list(const SSL *ssl, int priority); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_client_CA_list.pod b/crypto/openssl/doc/ssl/SSL_get_client_CA_list.pod index 5693fde..68181b2 100644 --- a/crypto/openssl/doc/ssl/SSL_get_client_CA_list.pod +++ b/crypto/openssl/doc/ssl/SSL_get_client_CA_list.pod @@ -8,8 +8,8 @@ SSL_get_client_CA_list, SSL_CTX_get_client_CA_list - get list of client CAs #include <openssl/ssl.h> - STACK_OF(X509_NAME) *SSL_get_client_CA_list(SSL *s); - STACK_OF(X509_NAME) *SSL_CTX_get_client_CA_list(SSL_CTX *ctx); + STACK_OF(X509_NAME) *SSL_get_client_CA_list(const SSL *s); + STACK_OF(X509_NAME) *SSL_CTX_get_client_CA_list(const SSL_CTX *ctx); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_current_cipher.pod b/crypto/openssl/doc/ssl/SSL_get_current_cipher.pod index 2dd7261..e5ab124 100644 --- a/crypto/openssl/doc/ssl/SSL_get_current_cipher.pod +++ b/crypto/openssl/doc/ssl/SSL_get_current_cipher.pod @@ -9,7 +9,7 @@ SSL_get_cipher_bits, SSL_get_cipher_version - get SSL_CIPHER of a connection #include <openssl/ssl.h> - SSL_CIPHER *SSL_get_current_cipher(SSL *ssl); + SSL_CIPHER *SSL_get_current_cipher(const SSL *ssl); #define SSL_get_cipher(s) \ SSL_CIPHER_get_name(SSL_get_current_cipher(s)) #define SSL_get_cipher_name(s) \ diff --git a/crypto/openssl/doc/ssl/SSL_get_default_timeout.pod b/crypto/openssl/doc/ssl/SSL_get_default_timeout.pod index 8d43b31..a648a9b 100644 --- a/crypto/openssl/doc/ssl/SSL_get_default_timeout.pod +++ b/crypto/openssl/doc/ssl/SSL_get_default_timeout.pod @@ -8,7 +8,7 @@ SSL_get_default_timeout - get default session timeout value #include <openssl/ssl.h> - long SSL_get_default_timeout(SSL *ssl); + long SSL_get_default_timeout(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_error.pod b/crypto/openssl/doc/ssl/SSL_get_error.pod index fe28dd9..48c6b15 100644 --- a/crypto/openssl/doc/ssl/SSL_get_error.pod +++ b/crypto/openssl/doc/ssl/SSL_get_error.pod @@ -8,7 +8,7 @@ SSL_get_error - obtain result code for TLS/SSL I/O operation #include <openssl/ssl.h> - int SSL_get_error(SSL *ssl, int ret); + int SSL_get_error(const SSL *ssl, int ret); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_ex_new_index.pod b/crypto/openssl/doc/ssl/SSL_get_ex_new_index.pod index 6644ef8..228d23d 100644 --- a/crypto/openssl/doc/ssl/SSL_get_ex_new_index.pod +++ b/crypto/openssl/doc/ssl/SSL_get_ex_new_index.pod @@ -15,7 +15,7 @@ SSL_get_ex_new_index, SSL_set_ex_data, SSL_get_ex_data - internal application sp int SSL_set_ex_data(SSL *ssl, int idx, void *arg); - void *SSL_get_ex_data(SSL *ssl, int idx); + void *SSL_get_ex_data(const SSL *ssl, int idx); typedef int new_func(void *parent, void *ptr, CRYPTO_EX_DATA *ad, int idx, long argl, void *argp); diff --git a/crypto/openssl/doc/ssl/SSL_get_fd.pod b/crypto/openssl/doc/ssl/SSL_get_fd.pod index a3f7625..89260b5 100644 --- a/crypto/openssl/doc/ssl/SSL_get_fd.pod +++ b/crypto/openssl/doc/ssl/SSL_get_fd.pod @@ -8,9 +8,9 @@ SSL_get_fd - get file descriptor linked to an SSL object #include <openssl/ssl.h> - int SSL_get_fd(SSL *ssl); - int SSL_get_rfd(SSL *ssl); - int SSL_get_wfd(SSL *ssl); + int SSL_get_fd(const SSL *ssl); + int SSL_get_rfd(const SSL *ssl); + int SSL_get_wfd(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_peer_cert_chain.pod b/crypto/openssl/doc/ssl/SSL_get_peer_cert_chain.pod index 390ce0b..49fb88f 100644 --- a/crypto/openssl/doc/ssl/SSL_get_peer_cert_chain.pod +++ b/crypto/openssl/doc/ssl/SSL_get_peer_cert_chain.pod @@ -8,7 +8,7 @@ SSL_get_peer_cert_chain - get the X509 certificate chain of the peer #include <openssl/ssl.h> - STACKOF(X509) *SSL_get_peer_cert_chain(SSL *ssl); + STACKOF(X509) *SSL_get_peer_cert_chain(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_peer_certificate.pod b/crypto/openssl/doc/ssl/SSL_get_peer_certificate.pod index 60635a9..ef7c8be 100644 --- a/crypto/openssl/doc/ssl/SSL_get_peer_certificate.pod +++ b/crypto/openssl/doc/ssl/SSL_get_peer_certificate.pod @@ -8,7 +8,7 @@ SSL_get_peer_certificate - get the X509 certificate of the peer #include <openssl/ssl.h> - X509 *SSL_get_peer_certificate(SSL *ssl); + X509 *SSL_get_peer_certificate(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_session.pod b/crypto/openssl/doc/ssl/SSL_get_session.pod index dd9aba4..0c41caa 100644 --- a/crypto/openssl/doc/ssl/SSL_get_session.pod +++ b/crypto/openssl/doc/ssl/SSL_get_session.pod @@ -8,8 +8,8 @@ SSL_get_session - retrieve TLS/SSL session data #include <openssl/ssl.h> - SSL_SESSION *SSL_get_session(SSL *ssl); - SSL_SESSION *SSL_get0_session(SSL *ssl); + SSL_SESSION *SSL_get_session(const SSL *ssl); + SSL_SESSION *SSL_get0_session(const SSL *ssl); SSL_SESSION *SSL_get1_session(SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_verify_result.pod b/crypto/openssl/doc/ssl/SSL_get_verify_result.pod index e6bac9c..55b56a5 100644 --- a/crypto/openssl/doc/ssl/SSL_get_verify_result.pod +++ b/crypto/openssl/doc/ssl/SSL_get_verify_result.pod @@ -8,7 +8,7 @@ SSL_get_verify_result - get result of peer certificate verification #include <openssl/ssl.h> - long SSL_get_verify_result(SSL *ssl); + long SSL_get_verify_result(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_get_version.pod b/crypto/openssl/doc/ssl/SSL_get_version.pod index 24d5291..cc271db 100644 --- a/crypto/openssl/doc/ssl/SSL_get_version.pod +++ b/crypto/openssl/doc/ssl/SSL_get_version.pod @@ -8,7 +8,7 @@ SSL_get_version - get the protocol version of a connection. #include <openssl/ssl.h> - const char *SSL_get_version(SSL *ssl); + const char *SSL_get_version(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_pending.pod b/crypto/openssl/doc/ssl/SSL_pending.pod index b4c4859..43f2874 100644 --- a/crypto/openssl/doc/ssl/SSL_pending.pod +++ b/crypto/openssl/doc/ssl/SSL_pending.pod @@ -8,7 +8,7 @@ SSL_pending - obtain number of readable bytes buffered in an SSL object #include <openssl/ssl.h> - int SSL_pending(SSL *ssl); + int SSL_pending(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_set_shutdown.pod b/crypto/openssl/doc/ssl/SSL_set_shutdown.pod index 6289e63..011a022 100644 --- a/crypto/openssl/doc/ssl/SSL_set_shutdown.pod +++ b/crypto/openssl/doc/ssl/SSL_set_shutdown.pod @@ -10,7 +10,7 @@ SSL_set_shutdown, SSL_get_shutdown - manipulate shutdown state of an SSL connect void SSL_set_shutdown(SSL *ssl, int mode); - int SSL_get_shutdown(SSL *ssl); + int SSL_get_shutdown(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_shutdown.pod b/crypto/openssl/doc/ssl/SSL_shutdown.pod index 6b5012b..89911ac 100644 --- a/crypto/openssl/doc/ssl/SSL_shutdown.pod +++ b/crypto/openssl/doc/ssl/SSL_shutdown.pod @@ -38,7 +38,7 @@ behaviour. =over 4 =item When the application is the first party to send the "close notify" -alert, SSL_shutdown() will only send the alert and the set the +alert, SSL_shutdown() will only send the alert and then set the SSL_SENT_SHUTDOWN flag (so that the session is considered good and will be kept in cache). SSL_shutdown() will then return with 0. If a unidirectional shutdown is enough (the underlying connection shall be closed anyway), this diff --git a/crypto/openssl/doc/ssl/SSL_state_string.pod b/crypto/openssl/doc/ssl/SSL_state_string.pod index b4be1aa..fe25d47 100644 --- a/crypto/openssl/doc/ssl/SSL_state_string.pod +++ b/crypto/openssl/doc/ssl/SSL_state_string.pod @@ -8,8 +8,8 @@ SSL_state_string, SSL_state_string_long - get textual description of state of an #include <openssl/ssl.h> - const char *SSL_state_string(SSL *ssl); - const char *SSL_state_string_long(SSL *ssl); + const char *SSL_state_string(const SSL *ssl); + const char *SSL_state_string_long(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/SSL_want.pod b/crypto/openssl/doc/ssl/SSL_want.pod index 50cc89d..c0059c0 100644 --- a/crypto/openssl/doc/ssl/SSL_want.pod +++ b/crypto/openssl/doc/ssl/SSL_want.pod @@ -8,11 +8,11 @@ SSL_want, SSL_want_nothing, SSL_want_read, SSL_want_write, SSL_want_x509_lookup #include <openssl/ssl.h> - int SSL_want(SSL *ssl); - int SSL_want_nothing(SSL *ssl); - int SSL_want_read(SSL *ssl); - int SSL_want_write(SSL *ssl); - int SSL_want_x509_lookup(SSL *ssl); + int SSL_want(const SSL *ssl); + int SSL_want_nothing(const SSL *ssl); + int SSL_want_read(const SSL *ssl); + int SSL_want_write(const SSL *ssl); + int SSL_want_x509_lookup(const SSL *ssl); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/d2i_SSL_SESSION.pod b/crypto/openssl/doc/ssl/d2i_SSL_SESSION.pod index 0321a5a..81d2764 100644 --- a/crypto/openssl/doc/ssl/d2i_SSL_SESSION.pod +++ b/crypto/openssl/doc/ssl/d2i_SSL_SESSION.pod @@ -8,7 +8,7 @@ d2i_SSL_SESSION, i2d_SSL_SESSION - convert SSL_SESSION object from/to ASN1 repre #include <openssl/ssl.h> - SSL_SESSION *d2i_SSL_SESSION(SSL_SESSION **a, unsigned char **pp, long length); + SSL_SESSION *d2i_SSL_SESSION(SSL_SESSION **a, const unsigned char **pp, long length); int i2d_SSL_SESSION(SSL_SESSION *in, unsigned char **pp); =head1 DESCRIPTION diff --git a/crypto/openssl/doc/ssl/ssl.pod b/crypto/openssl/doc/ssl/ssl.pod index 3dc5358..266697d 100644 --- a/crypto/openssl/doc/ssl/ssl.pod +++ b/crypto/openssl/doc/ssl/ssl.pod @@ -213,7 +213,7 @@ protocol context defined in the B<SSL_CTX> structure. =item int B<SSL_CTX_add_session>(SSL_CTX *ctx, SSL_SESSION *c); -=item int B<SSL_CTX_check_private_key>(SSL_CTX *ctx); +=item int B<SSL_CTX_check_private_key>(const SSL_CTX *ctx); =item long B<SSL_CTX_ctrl>(SSL_CTX *ctx, int cmd, long larg, char *parg); @@ -225,23 +225,23 @@ protocol context defined in the B<SSL_CTX> structure. =item X509_STORE *B<SSL_CTX_get_cert_store>(SSL_CTX *ctx); -=item STACK *B<SSL_CTX_get_client_CA_list>(SSL_CTX *ctx); +=item STACK *B<SSL_CTX_get_client_CA_list>(const SSL_CTX *ctx); =item int (*B<SSL_CTX_get_client_cert_cb>(SSL_CTX *ctx))(SSL *ssl, X509 **x509, EVP_PKEY **pkey); -=item char *B<SSL_CTX_get_ex_data>(SSL_CTX *s, int idx); +=item char *B<SSL_CTX_get_ex_data>(const SSL_CTX *s, int idx); =item int B<SSL_CTX_get_ex_new_index>(long argl, char *argp, int (*new_func);(void), int (*dup_func)(void), void (*free_func)(void)) =item void (*B<SSL_CTX_get_info_callback>(SSL_CTX *ctx))(SSL *ssl, int cb, int ret); -=item int B<SSL_CTX_get_quiet_shutdown>(SSL_CTX *ctx); +=item int B<SSL_CTX_get_quiet_shutdown>(const SSL_CTX *ctx); =item int B<SSL_CTX_get_session_cache_mode>(SSL_CTX *ctx); -=item long B<SSL_CTX_get_timeout>(SSL_CTX *ctx); +=item long B<SSL_CTX_get_timeout>(const SSL_CTX *ctx); -=item int (*B<SSL_CTX_get_verify_callback>(SSL_CTX *ctx))(int ok, X509_STORE_CTX *ctx); +=item int (*B<SSL_CTX_get_verify_callback>(const SSL_CTX *ctx))(int ok, X509_STORE_CTX *ctx); =item int B<SSL_CTX_get_verify_mode>(SSL_CTX *ctx); @@ -383,27 +383,27 @@ sessions defined in the B<SSL_SESSION> structures. =over 4 -=item int B<SSL_SESSION_cmp>(SSL_SESSION *a, SSL_SESSION *b); +=item int B<SSL_SESSION_cmp>(const SSL_SESSION *a, const SSL_SESSION *b); =item void B<SSL_SESSION_free>(SSL_SESSION *ss); =item char *B<SSL_SESSION_get_app_data>(SSL_SESSION *s); -=item char *B<SSL_SESSION_get_ex_data>(SSL_SESSION *s, int idx); +=item char *B<SSL_SESSION_get_ex_data>(const SSL_SESSION *s, int idx); =item int B<SSL_SESSION_get_ex_new_index>(long argl, char *argp, int (*new_func);(void), int (*dup_func)(void), void (*free_func)(void)) -=item long B<SSL_SESSION_get_time>(SSL_SESSION *s); +=item long B<SSL_SESSION_get_time>(const SSL_SESSION *s); -=item long B<SSL_SESSION_get_timeout>(SSL_SESSION *s); +=item long B<SSL_SESSION_get_timeout>(const SSL_SESSION *s); -=item unsigned long B<SSL_SESSION_hash>(SSL_SESSION *a); +=item unsigned long B<SSL_SESSION_hash>(const SSL_SESSION *a); =item SSL_SESSION *B<SSL_SESSION_new>(void); -=item int B<SSL_SESSION_print>(BIO *bp, SSL_SESSION *x); +=item int B<SSL_SESSION_print>(BIO *bp, const SSL_SESSION *x); -=item int B<SSL_SESSION_print_fp>(FILE *fp, SSL_SESSION *x); +=item int B<SSL_SESSION_print_fp>(FILE *fp, const SSL_SESSION *x); =item void B<SSL_SESSION_set_app_data>(SSL_SESSION *s, char *a); @@ -438,7 +438,7 @@ connection defined in the B<SSL> structure. =item char *B<SSL_alert_type_string_long>(int value); -=item int B<SSL_check_private_key>(SSL *ssl); +=item int B<SSL_check_private_key>(const SSL *ssl); =item void B<SSL_clear>(SSL *ssl); @@ -446,7 +446,7 @@ connection defined in the B<SSL> structure. =item int B<SSL_connect>(SSL *ssl); -=item void B<SSL_copy_session_id>(SSL *t, SSL *f); +=item void B<SSL_copy_session_id>(SSL *t, const SSL *f); =item long B<SSL_ctrl>(SSL *ssl, int cmd, long larg, char *parg); @@ -458,77 +458,77 @@ connection defined in the B<SSL> structure. =item void B<SSL_free>(SSL *ssl); -=item SSL_CTX *B<SSL_get_SSL_CTX>(SSL *ssl); +=item SSL_CTX *B<SSL_get_SSL_CTX>(const SSL *ssl); =item char *B<SSL_get_app_data>(SSL *ssl); -=item X509 *B<SSL_get_certificate>(SSL *ssl); +=item X509 *B<SSL_get_certificate>(const SSL *ssl); -=item const char *B<SSL_get_cipher>(SSL *ssl); +=item const char *B<SSL_get_cipher>(const SSL *ssl); -=item int B<SSL_get_cipher_bits>(SSL *ssl, int *alg_bits); +=item int B<SSL_get_cipher_bits>(const SSL *ssl, int *alg_bits); -=item char *B<SSL_get_cipher_list>(SSL *ssl, int n); +=item char *B<SSL_get_cipher_list>(const SSL *ssl, int n); -=item char *B<SSL_get_cipher_name>(SSL *ssl); +=item char *B<SSL_get_cipher_name>(const SSL *ssl); -=item char *B<SSL_get_cipher_version>(SSL *ssl); +=item char *B<SSL_get_cipher_version>(const SSL *ssl); -=item STACK *B<SSL_get_ciphers>(SSL *ssl); +=item STACK *B<SSL_get_ciphers>(const SSL *ssl); -=item STACK *B<SSL_get_client_CA_list>(SSL *ssl); +=item STACK *B<SSL_get_client_CA_list>(const SSL *ssl); =item SSL_CIPHER *B<SSL_get_current_cipher>(SSL *ssl); -=item long B<SSL_get_default_timeout>(SSL *ssl); +=item long B<SSL_get_default_timeout>(const SSL *ssl); -=item int B<SSL_get_error>(SSL *ssl, int i); +=item int B<SSL_get_error>(const SSL *ssl, int i); -=item char *B<SSL_get_ex_data>(SSL *ssl, int idx); +=item char *B<SSL_get_ex_data>(const SSL *ssl, int idx); =item int B<SSL_get_ex_data_X509_STORE_CTX_idx>(void); =item int B<SSL_get_ex_new_index>(long argl, char *argp, int (*new_func);(void), int (*dup_func)(void), void (*free_func)(void)) -=item int B<SSL_get_fd>(SSL *ssl); +=item int B<SSL_get_fd>(const SSL *ssl); -=item void (*B<SSL_get_info_callback>(SSL *ssl);)(void) +=item void (*B<SSL_get_info_callback>(const SSL *ssl);)() -=item STACK *B<SSL_get_peer_cert_chain>(SSL *ssl); +=item STACK *B<SSL_get_peer_cert_chain>(const SSL *ssl); -=item X509 *B<SSL_get_peer_certificate>(SSL *ssl); +=item X509 *B<SSL_get_peer_certificate>(const SSL *ssl); =item EVP_PKEY *B<SSL_get_privatekey>(SSL *ssl); -=item int B<SSL_get_quiet_shutdown>(SSL *ssl); +=item int B<SSL_get_quiet_shutdown>(const SSL *ssl); -=item BIO *B<SSL_get_rbio>(SSL *ssl); +=item BIO *B<SSL_get_rbio>(const SSL *ssl); -=item int B<SSL_get_read_ahead>(SSL *ssl); +=item int B<SSL_get_read_ahead>(const SSL *ssl); -=item SSL_SESSION *B<SSL_get_session>(SSL *ssl); +=item SSL_SESSION *B<SSL_get_session>(const SSL *ssl); -=item char *B<SSL_get_shared_ciphers>(SSL *ssl, char *buf, int len); +=item char *B<SSL_get_shared_ciphers>(const SSL *ssl, char *buf, int len); -=item int B<SSL_get_shutdown>(SSL *ssl); +=item int B<SSL_get_shutdown>(const SSL *ssl); =item SSL_METHOD *B<SSL_get_ssl_method>(SSL *ssl); -=item int B<SSL_get_state>(SSL *ssl); +=item int B<SSL_get_state>(const SSL *ssl); -=item long B<SSL_get_time>(SSL *ssl); +=item long B<SSL_get_time>(const SSL *ssl); -=item long B<SSL_get_timeout>(SSL *ssl); +=item long B<SSL_get_timeout>(const SSL *ssl); -=item int (*B<SSL_get_verify_callback>(SSL *ssl);)(void) +=item int (*B<SSL_get_verify_callback>(const SSL *ssl))(int,X509_STORE_CTX *) -=item int B<SSL_get_verify_mode>(SSL *ssl); +=item int B<SSL_get_verify_mode>(const SSL *ssl); -=item long B<SSL_get_verify_result>(SSL *ssl); +=item long B<SSL_get_verify_result>(const SSL *ssl); -=item char *B<SSL_get_version>(SSL *ssl); +=item char *B<SSL_get_version>(const SSL *ssl); -=item BIO *B<SSL_get_wbio>(SSL *ssl); +=item BIO *B<SSL_get_wbio>(const SSL *ssl); =item int B<SSL_in_accept_init>(SSL *ssl); @@ -550,7 +550,7 @@ connection defined in the B<SSL> structure. =item int B<SSL_peek>(SSL *ssl, void *buf, int num); -=item int B<SSL_pending>(SSL *ssl); +=item int B<SSL_pending>(const SSL *ssl); =item int B<SSL_read>(SSL *ssl, void *buf, int num); @@ -610,11 +610,11 @@ connection defined in the B<SSL> structure. =item int B<SSL_shutdown>(SSL *ssl); -=item int B<SSL_state>(SSL *ssl); +=item int B<SSL_state>(const SSL *ssl); -=item char *B<SSL_state_string>(SSL *ssl); +=item char *B<SSL_state_string>(const SSL *ssl); -=item char *B<SSL_state_string_long>(SSL *ssl); +=item char *B<SSL_state_string_long>(const SSL *ssl); =item long B<SSL_total_renegotiations>(SSL *ssl); @@ -636,17 +636,17 @@ connection defined in the B<SSL> structure. =item int B<SSL_use_certificate_file>(SSL *ssl, char *file, int type); -=item int B<SSL_version>(SSL *ssl); +=item int B<SSL_version>(const SSL *ssl); -=item int B<SSL_want>(SSL *ssl); +=item int B<SSL_want>(const SSL *ssl); -=item int B<SSL_want_nothing>(SSL *ssl); +=item int B<SSL_want_nothing>(const SSL *ssl); -=item int B<SSL_want_read>(SSL *ssl); +=item int B<SSL_want_read>(const SSL *ssl); -=item int B<SSL_want_write>(SSL *ssl); +=item int B<SSL_want_write>(const SSL *ssl); -=item int B<SSL_want_x509_lookup>(s); +=item int B<SSL_want_x509_lookup>(const SSL *ssl); =item int B<SSL_write>(SSL *ssl, const void *buf, int num); |
