Update for 0.9.7 with SSL_OP_CIPHER_SERVER_PREFERENCE.

1b65ce7d · Lutz Jänicke · 7b9cb4a2 · 1b65ce7d
隐藏空白更改
内联并排

Showing with 10 addition and 0 deletion

doc/ssl/SSL_CTX_set_options.pod doc/ssl/SSL_CTX_set_options.pod +10 -0

未找到文件。
--- a/doc/ssl/SSL_CTX_set_options.pod
+++ b/doc/ssl/SSL_CTX_set_options.pod
@@ -128,6 +128,14 @@ Always create a new key when using temporary DH parameters.

 Also use the temporary RSA key when doing RSA operations.

+=item SSL_OP_CIPHER_SERVER_PREFERENCE
+
+When choosing a cipher, use the server's preferences instead of the client
+preferences. When not set, the SSL server will always follow the clients
+preferences. When set, the SSLv3/TLSv1 server will choose following its
+own preferences. Because of the different procotol, for SSLv2 the server
+will send his list of preferences to the client and the client chooses.
+
 =item SSL_OP_PKCS1_CHECK_1

 ...
@@ -178,6 +186,8 @@ L<ssl(3)|ssl(3)>, L<SSL_new(3)|SSL_new(3)>, L<SSL_clear(3)|SSL_clear(3)>

 =head1 HISTORY

+SSL_OP_CIPHER_SERVER_PREFERENCE has been added in OpenSSL 0.9.7.
+
 SSL_OP_TLS_ROLLBACK_BUG has been added in OpenSSL 0.9.6.

 =cut