diff options
author | Bodo Möller <bodo@openssl.org> | 2006-01-03 03:27:19 +0000 |
---|---|---|
committer | Bodo Möller <bodo@openssl.org> | 2006-01-03 03:27:19 +0000 |
commit | f1fd4544a3747682010ed89ac908713fe90b8304 (patch) | |
tree | 065bf82040e2d29ce319117bec6952e59ede2fcb /CHANGES | |
parent | 349eb12fd5ac3ce216a6d89084b8c6a63b9388b7 (diff) | |
download | openssl-f1fd4544a3747682010ed89ac908713fe90b8304.zip openssl-f1fd4544a3747682010ed89ac908713fe90b8304.tar.gz openssl-f1fd4544a3747682010ed89ac908713fe90b8304.tar.bz2 |
Various changes in the new TLS extension code, including the following:
- fix indentation
- rename some functions and macros
- fix up confusion between SSL_ERROR_... and SSL_AD_... values
Diffstat (limited to 'CHANGES')
-rw-r--r-- | CHANGES | 31 |
1 files changed, 24 insertions, 7 deletions
@@ -4,16 +4,33 @@ Changes between 0.9.8a and 0.9.9 [xx XXX xxxx] - *) Add support for TLS extensions, specifically for the HostName extension. - The SSL_SESSION, SSL_CTX, and SSL data structures now have new members - for HostName support. + *) Add support for TLS extensions, specifically for the HostName extension + so far. The SSL_SESSION, SSL_CTX, and SSL data structures now have new + members for HostName support. + + New functions (subject to change): + + SSL_get_servername() + SSL_get_servername_type() + SSL_set_SSL_CTX() + + New CTRL codes and macros (subject to change): + + SSL_CTRL_SET_TLSEXT_SERVERNAME_CB + - SSL_CTX_set_tlsext_servername_callback() + SSL_CTRL_SET_TLSEXT_SERVERNAME_ARG + - SSL_CTX_set_tlsext_servername_arg() + SSL_CTRL_SET_TLSEXT_HOSTNAME - SSL_set_tlsext_hostname() + SSL_CTRL_GET_TLSEXT_HOSTNAME [similar to SSL_get_servername()] + SSL_CTRL_SET_TLSEXT_SERVERNAME_DONE + - SSL_set_tlsext_servername_done() openssl s_client has a new '-servername' option. - openssl s_server has new options '-servername', '-cert2', and '-key2'; - this allows testing the HostName extension for a specific single - host name ('-cert' and '-key' remain fallbacks for handshakes without - HostName negotiation). + openssl s_server has new options '-servername', '-cert2', and '-key2' + (subject to change); this allows testing the HostName extension for a + specific single host name ('-cert' and '-key' remain fallbacks for + handshakes without HostName negotiation). [Peter Sylvester] |