version 1.56, 2023/03/06 14:32:06 |
version 1.57, 2023/07/03 06:22:07 |
|
|
} |
} |
#endif |
#endif |
|
|
#ifndef OPENSSL_NO_DTLS1 |
|
static int |
|
s_server_opt_protocol_version_dtls1(void) |
|
{ |
|
cfg.meth = DTLS_server_method(); |
|
cfg.min_version = DTLS1_VERSION; |
|
cfg.max_version = DTLS1_VERSION; |
|
cfg.socket_type = SOCK_DGRAM; |
|
return (0); |
|
} |
|
#endif |
|
|
|
#ifndef OPENSSL_NO_DTLS1_2 |
#ifndef OPENSSL_NO_DTLS1_2 |
static int |
static int |
s_server_opt_protocol_version_dtls1_2(void) |
s_server_opt_protocol_version_dtls1_2(void) |
|
|
#endif |
#endif |
|
|
static int |
static int |
s_server_opt_protocol_version_tls1(void) |
|
{ |
|
cfg.min_version = TLS1_VERSION; |
|
cfg.max_version = TLS1_VERSION; |
|
return (0); |
|
} |
|
|
|
static int |
|
s_server_opt_protocol_version_tls1_1(void) |
|
{ |
|
cfg.min_version = TLS1_1_VERSION; |
|
cfg.max_version = TLS1_1_VERSION; |
|
return (0); |
|
} |
|
|
|
static int |
|
s_server_opt_protocol_version_tls1_2(void) |
s_server_opt_protocol_version_tls1_2(void) |
{ |
{ |
cfg.min_version = TLS1_2_VERSION; |
cfg.min_version = TLS1_2_VERSION; |
|
|
.opt.func = s_server_opt_protocol_version_dtls, |
.opt.func = s_server_opt_protocol_version_dtls, |
}, |
}, |
#endif |
#endif |
#ifndef OPENSSL_NO_DTLS1 |
|
{ |
|
.name = "dtls1", |
|
.desc = "Just use DTLSv1", |
|
.type = OPTION_FUNC, |
|
.opt.func = s_server_opt_protocol_version_dtls1, |
|
}, |
|
#endif |
|
#ifndef OPENSSL_NO_DTLS1_2 |
#ifndef OPENSSL_NO_DTLS1_2 |
{ |
{ |
.name = "dtls1_2", |
.name = "dtls1_2", |
|
|
.value = SSL_OP_NO_SSLv3, |
.value = SSL_OP_NO_SSLv3, |
}, |
}, |
{ |
{ |
.name = "no_tls1", |
|
.desc = "Just disable TLSv1", |
|
.type = OPTION_VALUE_OR, |
|
.opt.value = &cfg.off, |
|
.value = SSL_OP_NO_TLSv1, |
|
}, |
|
{ |
|
.name = "no_tls1_1", |
|
.desc = "Just disable TLSv1.1", |
|
.type = OPTION_VALUE_OR, |
|
.opt.value = &cfg.off, |
|
.value = SSL_OP_NO_TLSv1_1, |
|
}, |
|
{ |
|
.name = "no_tls1_2", |
.name = "no_tls1_2", |
.desc = "Just disable TLSv1.2", |
.desc = "Just disable TLSv1.2", |
.type = OPTION_VALUE_OR, |
.type = OPTION_VALUE_OR, |
|
|
}, |
}, |
#endif |
#endif |
{ |
{ |
.name = "tls1", |
|
.desc = "Just talk TLSv1", |
|
.type = OPTION_FUNC, |
|
.opt.func = s_server_opt_protocol_version_tls1, |
|
}, |
|
{ |
|
.name = "tls1_1", |
|
.desc = "Just talk TLSv1.1", |
|
.type = OPTION_FUNC, |
|
.opt.func = s_server_opt_protocol_version_tls1_1, |
|
}, |
|
{ |
|
.name = "tls1_2", |
.name = "tls1_2", |
.desc = "Just talk TLSv1.2", |
.desc = "Just talk TLSv1.2", |
.type = OPTION_FUNC, |
.type = OPTION_FUNC, |
|
|
" [-context id] [-crl_check] [-crl_check_all] [-crlf]\n" |
" [-context id] [-crl_check] [-crl_check_all] [-crlf]\n" |
" [-dcert file] [-dcertform der | pem] [-debug]\n" |
" [-dcert file] [-dcertform der | pem] [-debug]\n" |
" [-dhparam file] [-dkey file] [-dkeyform der | pem]\n" |
" [-dhparam file] [-dkey file] [-dkeyform der | pem]\n" |
" [-dpass arg] [-dtls] [-dtls1] [-dtls1_2] [-groups list] [-HTTP]\n" |
" [-dpass arg] [-dtls] [-dtls1_2] [-groups list] [-HTTP]\n" |
" [-id_prefix arg] [-key keyfile] [-key2 keyfile]\n" |
" [-id_prefix arg] [-key keyfile] [-key2 keyfile]\n" |
" [-keyform der | pem] [-keymatexport label]\n" |
" [-keyform der | pem] [-keymatexport label]\n" |
" [-keymatexportlen len] [-msg] [-mtu mtu] [-naccept num]\n" |
" [-keymatexportlen len] [-msg] [-mtu mtu] [-naccept num]\n" |
" [-named_curve arg] [-nbio] [-nbio_test] [-no_cache]\n" |
" [-named_curve arg] [-nbio] [-nbio_test] [-no_cache]\n" |
" [-no_dhe] [-no_ecdhe] [-no_ticket] [-no_tls1]\n" |
" [-no_dhe] [-no_ecdhe] [-no_ticket] \n" |
" [-no_tls1_1] [-no_tls1_2] [-no_tls1_3] [-no_tmp_rsa]\n" |
" [-no_tls1_2] [-no_tls1_3] [-no_tmp_rsa]\n" |
" [-nocert] [-pass arg] [-quiet] [-servername name]\n" |
" [-nocert] [-pass arg] [-quiet] [-servername name]\n" |
" [-servername_fatal] [-serverpref] [-state] [-status]\n" |
" [-servername_fatal] [-serverpref] [-state] [-status]\n" |
" [-status_timeout nsec] [-status_url url]\n" |
" [-status_timeout nsec] [-status_url url]\n" |
" [-status_verbose] [-timeout] [-tls1] [-tls1_1]\n" |
" [-status_verbose] [-timeout] \n" |
" [-tls1_2] [-tls1_3] [-tlsextdebug] [-use_srtp profiles]\n" |
" [-tls1_2] [-tls1_3] [-tlsextdebug] [-use_srtp profiles]\n" |
" [-Verify depth] [-verify depth] [-verify_return_error]\n" |
" [-Verify depth] [-verify depth] [-verify_return_error]\n" |
" [-WWW] [-www]\n"); |
" [-WWW] [-www]\n"); |