I'm starting to look at the OCSP stapling extension (RFC3546 Section 3.6) for TLS. Along the way, I noticed a couple of typos.
Brad
Index: CHANGES
===================================================================
RCS file: /home/bradh/coding/openssl-repo/openssl/CHANGES,v
retrieving revision 1.1356
diff -u -r1.1356 CHANGES
--- CHANGES 28 Sep 2006 13:50:41 -0000 1.1356
+++ CHANGES 9 Oct 2006 03:27:50 -0000
@@ -327,7 +327,7 @@
- SSL_CTX_set_tlsext_servername_callback()
SSL_CTRL_SET_TLSEXT_SERVERNAME_ARG
- SSL_CTX_set_tlsext_servername_arg()
- SSL_CTRL_SET_TLSEXT_HOSTNAME - SSL_set_tlsext_hostname()
+ SSL_CTRL_SET_TLSEXT_HOSTNAME - SSL_set_tlsext_host_name()
openssl s_client has a new '-servername ...' option.
Index: ssl/ssl.h
===================================================================
RCS file: /home/bradh/coding/openssl-repo/openssl/ssl/ssl.h,v
retrieving revision 1.185
diff -u -r1.185 ssl.h
--- ssl/ssl.h 15 Jun 2006 19:58:22 -0000 1.185
+++ ssl/ssl.h 9 Oct 2006 23:28:57 -0000
@@ -453,7 +453,7 @@
* Peer [ 3 ] EXPLICIT X509, -- optional Peer Certificate
* Session_ID_context [ 4 ] EXPLICIT OCTET STRING, -- the Session ID context
* Verify_result [ 5 ] EXPLICIT INTEGER, -- X509_V_... code for `Peer'
- * HostName [ 6 ] EXPLICY OCTET STRING, -- optional HostName from servername TLS extension
+ * HostName [ 6 ] EXPLICIT OCTET STRING, -- optional HostName from servername TLS extension
* ECPointFormatList [ 7 ] OCTET STRING, -- optional EC point format list from TLS extension
* PSK_identity_hint [ 8 ] EXPLICIT OCTET STRING, -- optional PSK identity hint
* PSK_identity [ 9 ] EXPLICIT OCTET STRING -- optional PSK identity
pgppPVZFPYtZq.pgp
Description: PGP signature
