Upgrade to OpenSSL 0.9.8b.

1 files changed, 29 insertions, 31 deletions

diff --git a/secure/lib/libssl/man/SSL_CTX_set_tmp_rsa_callback.3 b/secure/lib/libssl/man/SSL_CTX_set_tmp_rsa_callback.3
index 8391b49..71c5912 100644
--- a/secure/lib/libssl/man/SSL_CTX_set_tmp_rsa_callback.3
+++ b/secure/lib/libssl/man/SSL_CTX_set_tmp_rsa_callback.3
@@ -1,8 +1,7 @@
-.\" Automatically generated by Pod::Man version 1.15
-.\" Wed Feb 19 16:47:43 2003
+.\" Automatically generated by Pod::Man v1.37, Pod::Parser v1.32
 .\"
 .\" Standard preamble:
-.\" ======================================================================
+.\" ========================================================================
 .de Sh \" Subsection heading
 .br
 .if t .Sp
@@ -15,12 +14,6 @@
 .if t .sp .5v
 .if n .sp
 ..
-.de Ip \" List item
-.br
-.ie \\n(.$>=3 .ne \\$3
-.el .ne 3
-.IP "\\$1" \\$2
-..
 .de Vb \" Begin verbatim text
 .ft CW
 .nf
@@ -28,15 +21,14 @@
 ..
 .de Ve \" End verbatim text
 .ft R
-
 .fi
 ..
 .\" Set up some character translations and predefined strings.  \*(-- will
 .\" give an unbreakable dash, \*(PI will give pi, \*(L" will give a left
 .\" double quote, and \*(R" will give a right double quote.  | will give a
-.\" real vertical bar.  \*(C+ will give a nicer C++.  Capital omega is used
-.\" to do unbreakable dashes and therefore won't be available.  \*(C` and
-.\" \*(C' expand to `' in nroff, nothing in troff, for use with C<>
+.\" real vertical bar.  \*(C+ will give a nicer C++.  Capital omega is used to
+.\" do unbreakable dashes and therefore won't be available.  \*(C` and \*(C'
+.\" expand to `' in nroff, nothing in troff, for use with C<>.
 .tr \(*W-|\(bv\*(Tr
 .ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
 .ie n \{\
@@ -56,10 +48,10 @@
 .    ds R" ''
 'br\}
 .\"
-.\" If the F register is turned on, we'll generate index entries on stderr
-.\" for titles (.TH), headers (.SH), subsections (.Sh), items (.Ip), and
-.\" index entries marked with X<> in POD.  Of course, you'll have to process
-.\" the output yourself in some meaningful fashion.
+.\" If the F register is turned on, we'll generate index entries on stderr for
+.\" titles (.TH), headers (.SH), subsections (.Sh), items (.Ip), and index
+.\" entries marked with X<> in POD.  Of course, you'll have to process the
+.\" output yourself in some meaningful fashion.
 .if \nF \{\
 .    de IX
 .    tm Index:\\$1\t\\n%\t"\\$2"
@@ -68,14 +60,13 @@
 .    rr F
 .\}
 .\"
-.\" For nroff, turn off justification.  Always turn off hyphenation; it
-.\" makes way too many mistakes in technical documents.
+.\" For nroff, turn off justification.  Always turn off hyphenation; it makes
+.\" way too many mistakes in technical documents.
 .hy 0
 .if n .na
 .\"
 .\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
 .\" Fear.  Run.  Save yourself.  No user-serviceable parts.
-.bd B 3
 .    \" fudge factors for nroff and troff
 .if n \{\
 .    ds #H 0
@@ -135,30 +126,32 @@
 .    ds Ae AE
 .\}
 .rm #[ #] #H #V #F C
-.\" ======================================================================
+.\" ========================================================================
 .\"
 .IX Title "SSL_CTX_set_tmp_rsa_callback 3"
-.TH SSL_CTX_set_tmp_rsa_callback 3 "0.9.7a" "2003-02-19" "OpenSSL"
-.UC
+.TH SSL_CTX_set_tmp_rsa_callback 3 "2006-07-29" "0.9.8b" "OpenSSL"
 .SH "NAME"
-SSL_CTX_set_tmp_rsa_callback, SSL_CTX_set_tmp_rsa, SSL_CTX_need_tmp_rsa, SSL_set_tmp_rsa_callback, SSL_set_tmp_rsa, SSL_need_tmp_rsa \- handle \s-1RSA\s0 keys for ephemeral key exchange
+SSL_CTX_set_tmp_rsa_callback, SSL_CTX_set_tmp_rsa, SSL_CTX_need_tmp_rsa, SSL_set_tmp_rsa_callback, SSL_set_tmp_rsa, SSL_need_tmp_rsa \- handle RSA keys for ephemeral key exchange
 .SH "SYNOPSIS"
 .IX Header "SYNOPSIS"
 .Vb 1
 \& #include <openssl/ssl.h>
 .Ve
+.PP
 .Vb 4
 \& void SSL_CTX_set_tmp_rsa_callback(SSL_CTX *ctx,
 \&            RSA *(*tmp_rsa_callback)(SSL *ssl, int is_export, int keylength));
 \& long SSL_CTX_set_tmp_rsa(SSL_CTX *ctx, RSA *rsa);
 \& long SSL_CTX_need_tmp_rsa(SSL_CTX *ctx);
 .Ve
+.PP
 .Vb 4
 \& void SSL_set_tmp_rsa_callback(SSL_CTX *ctx,
 \&            RSA *(*tmp_rsa_callback)(SSL *ssl, int is_export, int keylength));
 \& long SSL_set_tmp_rsa(SSL *ssl, RSA *rsa)
 \& long SSL_need_tmp_rsa(SSL *ssl)
 .Ve
+.PP
 .Vb 1
 \& RSA *(*tmp_rsa_callback)(SSL *ssl, int is_export, int keylength));
 .Ve
@@ -211,13 +204,13 @@ the \s-1TLS\s0 standard, when the \s-1RSA\s0 key can be used for signing only, t
 for export ciphers. Using ephemeral \s-1RSA\s0 key exchange for other purposes
 violates the standard and can break interoperability with clients.
 It is therefore strongly recommended to not use ephemeral \s-1RSA\s0 key
-exchange and use \s-1EDH\s0 (Ephemeral Diffie-Hellman) key exchange instead
+exchange and use \s-1EDH\s0 (Ephemeral Diffie\-Hellman) key exchange instead
 in order to achieve forward secrecy (see
-SSL_CTX_set_tmp_dh_callback(3)).
+\&\fISSL_CTX_set_tmp_dh_callback\fR\|(3)).
 .PP
 On OpenSSL servers ephemeral \s-1RSA\s0 key exchange is therefore disabled by default
 and must be explicitly enabled  using the \s-1SSL_OP_EPHEMERAL_RSA\s0 option of
-SSL_CTX_set_options(3), violating the \s-1TLS/SSL\s0
+\&\fISSL_CTX_set_options\fR\|(3), violating the \s-1TLS/SSL\s0
 standard. When ephemeral \s-1RSA\s0 key exchange is required for export ciphers,
 it will automatically be used without this option!
 .PP
@@ -247,24 +240,29 @@ respectively are generated.
 \& RSA *rsa_512 = NULL;
 \& RSA *rsa_1024 = NULL;
 .Ve
+.PP
 .Vb 3
 \& rsa_512 = RSA_generate_key(512,RSA_F4,NULL,NULL);
 \& if (rsa_512 == NULL)
 \&     evaluate_error_queue();
 .Ve
+.PP
 .Vb 3
 \& rsa_1024 = RSA_generate_key(1024,RSA_F4,NULL,NULL);
 \& if (rsa_1024 == NULL)
 \&   evaluate_error_queue();
 .Ve
+.PP
 .Vb 1
 \& ...
 .Ve
+.PP
 .Vb 3
 \& RSA *tmp_rsa_callback(SSL *s, int is_export, int keylength)
 \& {
 \&    RSA *rsa_tmp=NULL;
 .Ve
+.PP
 .Vb 24
 \&    switch (keylength) {
 \&    case 512:
@@ -303,7 +301,7 @@ on failure. Check the error queue to find out the reason of failure.
 \&\s-1RSA\s0 key is needed and 0 otherwise.
 .SH "SEE ALSO"
 .IX Header "SEE ALSO"
-ssl(3), SSL_CTX_set_cipher_list(3),
-SSL_CTX_set_options(3),
-SSL_CTX_set_tmp_dh_callback(3),
-SSL_new(3), ciphers(1)
+\&\fIssl\fR\|(3), \fISSL_CTX_set_cipher_list\fR\|(3),
+\&\fISSL_CTX_set_options\fR\|(3),
+\&\fISSL_CTX_set_tmp_dh_callback\fR\|(3),
+\&\fISSL_new\fR\|(3), \fIciphers\fR\|(1)