Skip to content
  1. Feb 08, 2016
    • Matt Caswell's avatar
      Handle SSL_shutdown while in init more appropriately #2 · 64f9f406
      Matt Caswell authored
      Previous commit 7bb196a7 attempted to "fix" a problem with the way
      SSL_shutdown() behaved whilst in mid-handshake. The original behaviour had
      SSL_shutdown() return immediately having taken no action if called mid-
      handshake with a return value of 1 (meaning everything was shutdown
      successfully). In fact the shutdown has not been successful.
      
      Commit 7bb196a7
      
       changed that to send a close_notify anyway and then
      return. This seems to be causing some problems for some applications so
      perhaps a better (much simpler) approach is revert to the previous
      behaviour (no attempt at a shutdown), but return -1 (meaning the shutdown
      was not successful).
      
      This also fixes a bug where SSL_shutdown always returns 0 when shutdown
      *very* early in the handshake (i.e. we are still using SSLv23_method).
      
      Reviewed-by: default avatarViktor Dukhovni <viktor@openssl.org>
      64f9f406
    • Rich Salz's avatar
      more doc fixes · a173a7ee
      Rich Salz authored
      
      
      dgst: using digest instead of specific digest commands
      the digest list specified in man dgst may be inaccurate, hence using
      digest and referring to the list in digest-commands
      
      'sha' as a digest name is no longer supported
      
      dgst,pkeyutl cmds help cleanup
      - In dgst, pkeyutl cmds, some options help was missing.
      - fixed a minor typo in openssl.pod, that fixes make install.
      - digest-commands was showing ‘sha’, which is not a supported digest
      anymore.
      
      Signed-off-by: default avatarRich Salz <rsalz@openssl.org>
      Reviewed-by: default avatarTim Hudson <tjh@openssl.org>
      a173a7ee
    • Dr. Stephen Henson's avatar
      99978d51
  2. Feb 06, 2016
  3. Feb 05, 2016