2000-09-21 14:46:15 +08:00
|
|
|
=pod
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
2022-04-04 20:44:31 +08:00
|
|
|
SSL_CTX_set_ssl_version, SSL_CTX_get_ssl_method, SSL_set_ssl_method, SSL_get_ssl_method
|
2000-09-21 14:46:15 +08:00
|
|
|
- choose a new TLS/SSL method
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
#include <openssl/ssl.h>
|
|
|
|
|
2005-08-15 05:48:33 +08:00
|
|
|
int SSL_CTX_set_ssl_version(SSL_CTX *ctx, const SSL_METHOD *method);
|
2022-04-04 20:44:31 +08:00
|
|
|
const SSL_METHOD *SSL_CTX_get_ssl_method(const SSL_CTX *ctx);
|
|
|
|
|
2005-08-15 05:48:33 +08:00
|
|
|
int SSL_set_ssl_method(SSL *s, const SSL_METHOD *method);
|
2019-02-02 07:06:26 +08:00
|
|
|
const SSL_METHOD *SSL_get_ssl_method(const SSL *ssl);
|
2000-09-21 14:46:15 +08:00
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
|
|
SSL_CTX_set_ssl_version() sets a new default TLS/SSL B<method> for SSL objects
|
2018-09-20 10:14:04 +08:00
|
|
|
newly created from this B<ctx>. Most of the configuration attached to the
|
|
|
|
SSL_CTX object is retained, with the exception of the configured TLS ciphers,
|
|
|
|
which are reset to the default values. SSL objects already created from this
|
|
|
|
SSL_CTX with L<SSL_new(3)> are not affected, except when L<SSL_clear(3)> is
|
|
|
|
being called, as described below.
|
2000-09-21 14:46:15 +08:00
|
|
|
|
2022-04-04 20:44:31 +08:00
|
|
|
SSL_CTX_get_ssl_method() returns the SSL_METHOD which was used to construct the
|
|
|
|
SSL_CTX.
|
|
|
|
|
2000-09-21 14:46:15 +08:00
|
|
|
SSL_set_ssl_method() sets a new TLS/SSL B<method> for a particular B<ssl>
|
|
|
|
object. It may be reset, when SSL_clear() is called.
|
|
|
|
|
2022-04-04 20:44:31 +08:00
|
|
|
SSL_get_ssl_method() returns a pointer to the TLS/SSL method
|
2000-09-21 14:46:15 +08:00
|
|
|
set in B<ssl>.
|
|
|
|
|
|
|
|
=head1 NOTES
|
|
|
|
|
|
|
|
The available B<method> choices are described in
|
2015-08-18 03:21:33 +08:00
|
|
|
L<SSL_CTX_new(3)>.
|
2000-09-21 14:46:15 +08:00
|
|
|
|
2015-08-18 03:21:33 +08:00
|
|
|
When L<SSL_clear(3)> is called and no session is connected to
|
2001-03-09 01:24:02 +08:00
|
|
|
an SSL object, the method of the SSL object is reset to the method currently
|
|
|
|
set in the corresponding SSL_CTX object.
|
2000-09-21 14:46:15 +08:00
|
|
|
|
2018-09-20 10:14:04 +08:00
|
|
|
SSL_CTX_set_version() has unusual semantics and no clear use case;
|
|
|
|
it would usually be preferable to create a new SSL_CTX object than to
|
|
|
|
try to reuse an existing one in this fashion. Its usage is considered
|
|
|
|
deprecated.
|
|
|
|
|
2000-09-21 14:46:15 +08:00
|
|
|
=head1 RETURN VALUES
|
|
|
|
|
|
|
|
The following return values can occur for SSL_CTX_set_ssl_version()
|
|
|
|
and SSL_set_ssl_method():
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
2013-10-21 17:03:01 +08:00
|
|
|
=item Z<>0
|
2000-09-21 14:46:15 +08:00
|
|
|
|
|
|
|
The new choice failed, check the error stack to find out the reason.
|
|
|
|
|
2013-10-21 17:03:01 +08:00
|
|
|
=item Z<>1
|
2000-09-21 14:46:15 +08:00
|
|
|
|
|
|
|
The operation succeeded.
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
2022-04-04 20:44:31 +08:00
|
|
|
SSL_CTX_get_ssl_method() and SSL_get_ssl_method() always return non-NULL
|
|
|
|
pointers.
|
|
|
|
|
2000-09-21 14:46:15 +08:00
|
|
|
=head1 SEE ALSO
|
|
|
|
|
2015-08-18 03:21:33 +08:00
|
|
|
L<SSL_CTX_new(3)>, L<SSL_new(3)>,
|
2016-11-11 16:33:09 +08:00
|
|
|
L<SSL_clear(3)>, L<ssl(7)>,
|
2015-08-18 03:21:33 +08:00
|
|
|
L<SSL_set_connect_state(3)>
|
2000-09-21 14:46:15 +08:00
|
|
|
|
2018-09-20 10:14:04 +08:00
|
|
|
=head1 HISTORY
|
|
|
|
|
|
|
|
SSL_CTX_set_ssl_version() was deprecated in OpenSSL 3.0.
|
|
|
|
|
2016-05-18 23:44:05 +08:00
|
|
|
=head1 COPYRIGHT
|
|
|
|
|
2022-05-03 18:52:38 +08:00
|
|
|
Copyright 2000-2022 The OpenSSL Project Authors. All Rights Reserved.
|
2016-05-18 23:44:05 +08:00
|
|
|
|
2018-12-06 21:04:44 +08:00
|
|
|
Licensed under the Apache License 2.0 (the "License"). You may not use
|
2016-05-18 23:44:05 +08:00
|
|
|
this file except in compliance with the License. You can obtain a copy
|
|
|
|
in the file LICENSE in the source distribution or at
|
|
|
|
L<https://www.openssl.org/source/license.html>.
|
|
|
|
|
|
|
|
=cut
|