OpenSSL CVS Repository
http://cvs.openssl.org/
____________________________________________________________
________________
Server: cvs.openssl.org Name: Dr.
Stephen Henson
Root: /v/openssl/cvs Email: steve openssl.org
Module: openssl Date:
23-Aug-2007 14:16:04
Branch: OpenSSL_0_9_8-stable Handle:
2007082313160201
Modified files: (Branch: OpenSSL_0_9_8-stable)
openssl/apps s_client.c s_server.c
openssl/doc/apps s_client.pod s_server.pod
Log:
Update docs.
Summary:
Revision Changes Path
1.76.2.11 +2 -0 openssl/apps/s_client.c
1.97.2.6 +2 -0 openssl/apps/s_server.c
1.13.2.2 +31 -0 openssl/doc/apps/s_client.pod
1.14.2.1 +13 -0 openssl/doc/apps/s_server.pod
____________________________________________________________
________________
patch -p0 <<' .'
Index: openssl/apps/s_client.c
============================================================
================
$ cvs diff -u -r1.76.2.10 -r1.76.2.11 s_client.c
--- openssl/apps/s_client.c 12 Aug 2007 18:58:59
-0000 1.76.2.10
+++ openssl/apps/s_client.c 23 Aug 2007 12:16:02
-0000 1.76.2.11
-236,6 +236,8
BIO_printf(bio_err," -rand file%cfile%c...n",
LIST_SEPARATOR_CHAR, LIST_SEPARATOR_CHAR);
#ifndef OPENSSL_NO_TLSEXT
BIO_printf(bio_err," -servername host - Set TLS
extension servername in ClientHellon");
+ BIO_printf(bio_err," -tlsextdebug - hex dump
of all TLS extensions receivedn");
+ BIO_printf(bio_err," -no_ticket - disable
use of RFC4507bis session ticketsn");
#endif
}
.
patch -p0 <<' .'
Index: openssl/apps/s_server.c
============================================================
================
$ cvs diff -u -r1.97.2.5 -r1.97.2.6 s_server.c
--- openssl/apps/s_server.c 12 Aug 2007 18:58:59
-0000 1.97.2.5
+++ openssl/apps/s_server.c 23 Aug 2007 12:16:02
-0000 1.97.2.6
-395,6 +395,8
BIO_printf(bio_err," (default is
%s)n",TEST_CERT2);
BIO_printf(bio_err," -key2 arg - Private Key
file to use for servername, in cert file ifn");
BIO_printf(bio_err," not specified
(default is %s)n",TEST_CERT2);
+ BIO_printf(bio_err," -tlsextdebug - hex dump of
all TLS extensions receivedn");
+ BIO_printf(bio_err," -no_ticket - disable use of
RFC4507bis session ticketsn");
#endif
}
.
patch -p0 <<' .'
Index: openssl/doc/apps/s_client.pod
============================================================
================
$ cvs diff -u -r1.13.2.1 -r1.13.2.2 s_client.pod
--- openssl/doc/apps/s_client.pod 16 Feb 2007 18:12:20
-0000 1.13.2.1
+++ openssl/doc/apps/s_client.pod 23 Aug 2007 12:16:03
-0000 1.13.2.2
-38,6 +38,10
[B<-cipher cipherlist>]
[B<-starttls protocol>]
[B<-engine id>]
+[B<-tlsextdebug>]
+[B<-no_ticket>]
+[B<-sess_out filename>]
+[B<-sess_in filename>]
[B<-rand file(s)>]
=head1 DESCRIPTION
-186,6 +190,26
B<protocol> is a keyword for the intended protocol.
Currently, the only
supported keywords are "smtp",
"pop3", "imap", and "ftp".
+=item B<-tlsextdebug>
+
+print out a hex dump of any TLS extensions received from
the server. Note: this
+option is only available if extension support is
explicitly enabled at compile
+time
+
+=item B<-no_ticket>
+
+disable RFC4507bis session ticket support. Note: this
option is only available
+if extension support is explicitly enabled at compile
time
+
+=item B<-sess_out filename>
+
+output SSL session to B<filename>
+
+=item B<-sess_in sess.pem>
+
+load SSL session from B<filename>. The client will
attempt to resume a
+connection from this session.
+
=item B<-engine id>
specifying an engine (by it's unique B<id> string)
will cause B<s_client>
-246,6 +270,13
If there are problems verifying a server certificate then
the
B<-showcerts> option can be used to show the whole
chain.
+Since the SSLv23 client hello cannot include compression
methods or extensions
+these will only be supported if its use is disabled, for
example by using the
+B<-no_sslv2> option.
+
+TLS extensions are only supported in OpenSSL 0.9.8 if
they are explictly
+enabled at compile time using for example the
B<enable-tlsext> switch.
+
=head1 BUGS
Because this program has a lot of options and also
because some of
.
patch -p0 <<' .'
Index: openssl/doc/apps/s_server.pod
============================================================
================
$ cvs diff -u -r1.14 -r1.14.2.1 s_server.pod
--- openssl/doc/apps/s_server.pod 16 Nov 2004 17:30:59
-0000 1.14
+++ openssl/doc/apps/s_server.pod 23 Aug 2007 12:16:03
-0000 1.14.2.1
-48,6 +48,8
[B<-WWW>]
[B<-HTTP>]
[B<-engine id>]
+[B<-tlsextdebug>]
+[B<-no_ticket>]
[B<-id_prefix arg>]
[B<-rand file(s)>]
-205,6 +207,14
the preference order, the order of the server cipherlist
irrelevant. See
the B<ciphers> command for more information.
+=item B<-tlsextdebug>
+
+print out a hex dump of any TLS extensions received from
the server.
+
+=item B<-no_ticket>
+
+disable RFC4507bis session ticket support.
+
=item B<-www>
sends a status message back to the client when it
connects. This includes
-307,6 +317,9
The session parameters can printed out using the
B<sess_id> program.
+TLS extensions are only supported in OpenSSL 0.9.8 if
they are explictly
+enabled at compile time using for example the
B<enable-tlsext> switch.
+
=head1 BUGS
Because this program has a lot of options and also
because some of
.
____________________________________________________________
__________
OpenSSL Project http://www.openssl.org
CVS Repository Commit List
openssl-cvsopenssl.org
Automated List Manager
majordomoopenssl.org
|
