From 71ff1777543293b8c84d3023d7f88b171cb6951d Mon Sep 17 00:00:00 2001 From: =?UTF-8?q?Lutz=20J=C3=A4nicke?= Date: Sat, 21 Jul 2001 11:04:35 +0000 Subject: [PATCH] Documentation about ephemeral key exchange --- doc/ssl/SSL_CTX_set_cipher_list.pod | 7 +++++-- doc/ssl/SSL_CTX_set_options.pod | 10 +++++++--- doc/ssl/ssl.pod | 2 ++ 3 files changed, 14 insertions(+), 5 deletions(-) diff --git a/doc/ssl/SSL_CTX_set_cipher_list.pod b/doc/ssl/SSL_CTX_set_cipher_list.pod index 84825fb6f5..0fec568296 100644 --- a/doc/ssl/SSL_CTX_set_cipher_list.pod +++ b/doc/ssl/SSL_CTX_set_cipher_list.pod @@ -39,8 +39,9 @@ certificate and key. A RSA cipher can only be chosen, when a RSA certificate is available. RSA export ciphers with a keylength of 512 bits for the RSA key require a temporary 512 bit RSA key, as typically the supplied key has a length -of 1024 bit. RSA ciphers using EDH need a certificate and key and -additional DH-parameters. +of 1024 bit (see +L). +RSA ciphers using EDH need a certificate and key and additional DH-parameters. A DSA cipher can only be chosen, when a DSA certificate is available. DSA ciphers always use DH key exchange and therefore need DH-parameters. @@ -60,6 +61,8 @@ could be selected and 0 on complete failure. L, L, L, +L, +L, L =cut diff --git a/doc/ssl/SSL_CTX_set_options.pod b/doc/ssl/SSL_CTX_set_options.pod index 3dc7cc74ad..04d2aa55a8 100644 --- a/doc/ssl/SSL_CTX_set_options.pod +++ b/doc/ssl/SSL_CTX_set_options.pod @@ -122,11 +122,13 @@ The following B options are available: =item SSL_OP_SINGLE_DH_USE -Always create a new key when using temporary DH parameters. +Always create a new key when using temporary DH parameters +(see L). =item SSL_OP_EPHEMERAL_RSA -Also use the temporary RSA key when doing RSA operations. +Also use ephemeral (temporary) RSA key when doing RSA operations +(see L). =item SSL_OP_PKCS1_CHECK_1 @@ -174,7 +176,9 @@ SSL_CTX_get_options() and SSL_get_options() return the current bitmask. =head1 SEE ALSO -L, L, L +L, L, L, +L, +L =head1 HISTORY diff --git a/doc/ssl/ssl.pod b/doc/ssl/ssl.pod index a6b7864931..f7cebe5e4c 100644 --- a/doc/ssl/ssl.pod +++ b/doc/ssl/ssl.pod @@ -669,6 +669,8 @@ L, L, L, L, +L, +L, L, L, L,