Loading doc/ssl/SSL_CTX_set_mode.pod +6 −2 Original line number Diff line number Diff line Loading @@ -61,12 +61,16 @@ deal with read/write operations returning without success report. The flag SSL_MODE_AUTO_RETRY will cause read/write operations to only return after the handshake and successful completion. =item SSL_MODE_FALLBACK_SCSV =item SSL_MODE_SEND_FALLBACK_SCSV Send TLS_FALLBACK_SCSV in the ClientHello. To be set by applications that reconnect with a downgraded protocol To be set only by applications that reconnect with a downgraded protocol version; see draft-ietf-tls-downgrade-scsv-00 for details. DO NOT ENABLE THIS if your application attempts a normal handshake. Only use this in explicit fallback retries, following the guidance in draft-ietf-tls-downgrade-scsv-00. =back =head1 RETURN VALUES Loading ssl/ssl.h +7 −2 Original line number Diff line number Diff line Loading @@ -564,8 +564,13 @@ typedef struct ssl_session_st /* Don't attempt to automatically build certificate chain */ #define SSL_MODE_NO_AUTO_CHAIN 0x00000008L /* Send TLS_FALLBACK_SCSV in the ClientHello. * To be set by applications that reconnect with a downgraded protocol * version; see draft-ietf-tls-downgrade-scsv-00 for details. */ * To be set only by applications that reconnect with a downgraded protocol * version; see draft-ietf-tls-downgrade-scsv-00 for details. * * DO NOT ENABLE THIS if your application attempts a normal handshake. * Only use this in explicit fallback retries, following the guidance * in draft-ietf-tls-downgrade-scsv-00. */ #define SSL_MODE_SEND_FALLBACK_SCSV 0x00000080L Loading Loading
doc/ssl/SSL_CTX_set_mode.pod +6 −2 Original line number Diff line number Diff line Loading @@ -61,12 +61,16 @@ deal with read/write operations returning without success report. The flag SSL_MODE_AUTO_RETRY will cause read/write operations to only return after the handshake and successful completion. =item SSL_MODE_FALLBACK_SCSV =item SSL_MODE_SEND_FALLBACK_SCSV Send TLS_FALLBACK_SCSV in the ClientHello. To be set by applications that reconnect with a downgraded protocol To be set only by applications that reconnect with a downgraded protocol version; see draft-ietf-tls-downgrade-scsv-00 for details. DO NOT ENABLE THIS if your application attempts a normal handshake. Only use this in explicit fallback retries, following the guidance in draft-ietf-tls-downgrade-scsv-00. =back =head1 RETURN VALUES Loading
ssl/ssl.h +7 −2 Original line number Diff line number Diff line Loading @@ -564,8 +564,13 @@ typedef struct ssl_session_st /* Don't attempt to automatically build certificate chain */ #define SSL_MODE_NO_AUTO_CHAIN 0x00000008L /* Send TLS_FALLBACK_SCSV in the ClientHello. * To be set by applications that reconnect with a downgraded protocol * version; see draft-ietf-tls-downgrade-scsv-00 for details. */ * To be set only by applications that reconnect with a downgraded protocol * version; see draft-ietf-tls-downgrade-scsv-00 for details. * * DO NOT ENABLE THIS if your application attempts a normal handshake. * Only use this in explicit fallback retries, following the guidance * in draft-ietf-tls-downgrade-scsv-00. */ #define SSL_MODE_SEND_FALLBACK_SCSV 0x00000080L Loading
Rich Salz <rsalz@openssl.org>Rich Salz <rsalz@openssl.org>