[thirdparty/openssl.git] / doc / ssl / SSL_CTX_use_serverinfo.pod

=pod

=head1 NAME

SSL_CTX_use_serverinfo, SSL_CTX_use_serverinfo_file - use serverinfo extension

=head1 SYNOPSIS

 #include <openssl/ssl.h>

 int SSL_CTX_use_serverinfo(SSL_CTX *ctx, const unsigned char *serverinfo,
                            size_t serverinfo_length);

 int SSL_CTX_use_serverinfo_file(SSL_CTX *ctx, const char *file);

=head1 DESCRIPTION

These functions load "serverinfo" TLS ServerHello Extensions into the SSL_CTX.
A "serverinfo" extension is returned in response to an empty ClientHello
Extension.

SSL_CTX_use_serverinfo() loads one or more serverinfo extensions from
a byte array into B<ctx>.  The extensions must be concatenated into a 
sequence of bytes.  Each extension must consist of a 2-byte Extension Type, 
a 2-byte length, and then length bytes of extension_data.

SSL_CTX_use_serverinfo_file() loads one or more serverinfo extensions from
B<file> into B<ctx>.  The extensions must be in PEM format.  Each extension
must consist of a 2-byte Extension Type, a 2-byte length, and then length
bytes of extension_data.  Each PEM extension name must begin with the phrase
"BEGIN SERVERINFO FOR ".

If more than one certificate (RSA/DSA) is installed using
SSL_CTX_use_certificate(), the serverinfo extension will be loaded into the
last certificate installed.  If e.g. the last item was a RSA certificate, the
loaded serverinfo extension data will be loaded for that certificate.  To
use the serverinfo extension for multiple certificates,
SSL_CTX_use_serverinfo() needs to be called multiple times, once B<after>
each time a certificate is loaded.

=head1 NOTES

=head1 RETURN VALUES

On success, the functions return 1.
On failure, the functions return 0.  Check out the error stack to find out
the reason.

=head1 SEE ALSO

=head1 HISTORY


=cut

=head1 COPYRIGHT

Copyright 2013-2016 The OpenSSL Project Authors. All Rights Reserved.

Licensed under the OpenSSL license (the "License").  You may not use
this file except in compliance with the License.  You can obtain a copy
in the file LICENSE in the source distribution or at
L<https://www.openssl.org/source/license.html>.

=cut
Commit	Line	Data
9cd50f73 T	1	=pod
	2
	3	=head1 NAME
	4
4ba81134	5	SSL_CTX_use_serverinfo, SSL_CTX_use_serverinfo_file - use serverinfo extension
9cd50f73 T	6
	7	=head1 SYNOPSIS
	8
	9	#include <openssl/ssl.h>
	10
	11	int SSL_CTX_use_serverinfo(SSL_CTX ctx, const unsigned char serverinfo,
	12	size_t serverinfo_length);
	13
	14	int SSL_CTX_use_serverinfo_file(SSL_CTX ctx, const char file);
	15
	16	=head1 DESCRIPTION
	17
	18	These functions load "serverinfo" TLS ServerHello Extensions into the SSL_CTX.
	19	A "serverinfo" extension is returned in response to an empty ClientHello
	20	Extension.
	21
5edce568	22	SSL_CTX_use_serverinfo() loads one or more serverinfo extensions from
deda5ea7	23	a byte array into B<ctx>. The extensions must be concatenated into a
9cd50f73 T	24	sequence of bytes. Each extension must consist of a 2-byte Extension Type,
	25	a 2-byte length, and then length bytes of extension_data.
	26
	27	SSL_CTX_use_serverinfo_file() loads one or more serverinfo extensions from
deda5ea7	28	B<file> into B<ctx>. The extensions must be in PEM format. Each extension
9cd50f73	29	must consist of a 2-byte Extension Type, a 2-byte length, and then length
deda5ea7 TP	30	bytes of extension_data. Each PEM extension name must begin with the phrase
deda5ea7 TP	31	"BEGIN SERVERINFO FOR ".
9cd50f73	32
5f18bc58 TS	33	If more than one certificate (RSA/DSA) is installed using
	34	SSL_CTX_use_certificate(), the serverinfo extension will be loaded into the
	35	last certificate installed. If e.g. the last item was a RSA certificate, the
	36	loaded serverinfo extension data will be loaded for that certificate. To
	37	use the serverinfo extension for multiple certificates,
	38	SSL_CTX_use_serverinfo() needs to be called multiple times, once B<after>
	39	each time a certificate is loaded.
	40
9cd50f73 T	41	=head1 NOTES
	42
	43	=head1 RETURN VALUES
	44
	45	On success, the functions return 1.
	46	On failure, the functions return 0. Check out the error stack to find out
	47	the reason.
	48
	49	=head1 SEE ALSO
	50
	51	=head1 HISTORY
	52
	53
e2f92610 RS	54	=cut
	55
	56	=head1 COPYRIGHT
	57
	58	Copyright 2013-2016 The OpenSSL Project Authors. All Rights Reserved.
	59
	60	Licensed under the OpenSSL license (the "License"). You may not use
	61	this file except in compliance with the License. You can obtain a copy
	62	in the file LICENSE in the source distribution or at
	63	L<https://www.openssl.org/source/license.html>.
	64
9cd50f73	65	=cut