Correct the UnsafeLegacyServerConnect docs

This option is no longer set by default from OpenSSL 3.0. Reviewed-by: N Paul Dale <pauli@openssl.org> Reviewed-by: N Tomas Mraz <tomas@openssl.org> Reviewed-by: N Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/17748)

Correct the UnsafeLegacyServerConnect docs
This option is no longer set by default from OpenSSL 3.0. Reviewed-by: N Paul Dale <pauli@openssl.org> Reviewed-by: N Tomas Mraz <tomas@openssl.org> Reviewed-by: N Ben Kaduk <kaduk@mit.edu> (Merged from https://github.com/openssl/openssl/pull/17748)
3d4dd8f2 · Matt Caswell · 37be6fee · 3d4dd8f2
隐藏空白更改
内联并排

Showing with 3 addition and 1 deletion

doc/man3/SSL_CONF_cmd.pod doc/man3/SSL_CONF_cmd.pod +3 -1

未找到文件。
--- a/doc/man3/SSL_CONF_cmd.pod
+++ b/doc/man3/SSL_CONF_cmd.pod
@@ -496,7 +496,6 @@ Equivalent to B<SSL_OP_ALLOW_UNSAFE_LEGACY_RENEGOTIATION>.

 B<UnsafeLegacyServerConnect>: permits the use of unsafe legacy renegotiation
 for OpenSSL clients only. Equivalent to B<SSL_OP_LEGACY_SERVER_CONNECT>.
-Set by default.

 B<EncryptThenMac>: use encrypt-then-mac extension, enabled by
 default. Inverse of B<SSL_OP_NO_ENCRYPT_THEN_MAC>: that is,
@@ -731,6 +730,9 @@ B<MinProtocol> and B<MaxProtocol> where added in OpenSSL 1.1.0.

 B<AllowNoDHEKEX> and B<PrioritizeChaCha> were added in OpenSSL 1.1.1.

+The B<UnsafeLegacyServerConnect> option is no longer set by default from
+OpenSSL 3.0.
+
 =head1 COPYRIGHT

 Copyright 2012-2021 The OpenSSL Project Authors. All Rights Reserved.