fix memory leak in s3_clnt.c

[openssl.git] / doc / ssl.pod

diff --git a/doc/ssl.pod b/doc/ssl.pod
index ab839c055c0ba33508ff6ffa98c5df20b818fb65..46ee443f5753185fb41916a19eff05534ff1ffbe 100644 (file)
--- a/doc/ssl.pod
+++ b/doc/ssl.pod
@@ -310,7 +310,22 @@ protocol context defined in the B<SSL_CTX> structure.
 
 =item long B<SSL_CTX_set_tmp_rsa>(SSL_CTX *ctx, RSA *rsa);
 
-=item long B<SSL_CTX_set_tmp_rsa_callback>(SSL_CTX *ctx, RSA *(*cb)(void));
+=item SSL_CTX_set_tmp_rsa_callback
+
+C<long B<SSL_CTX_set_tmp_rsa_callback>(SSL_CTX *B<ctx>, RSA *(*B<cb>)(SSL *B<ssl>, int B<export>, int B<keylength>));>
+
+Sets the callback which will be called when a temporary private key is
+required. The B<C<export>> flag will be set if the reason for needing
+a temp key is that an export ciphersuite is in use, in which case,
+B<C<keylength>> will contain the required keylength in bits. Generate a key of
+appropriate size (using ???) and return it.
+
+=item SSL_set_tmp_rsa_callback
+
+long B<SSL_set_tmp_rsa_callback>(SSL *ssl, RSA *(*cb)(SSL *ssl, int export, int keylength));
+
+The same as L<"SSL_CTX_set_tmp_rsa_callback">, except it operates on an SSL
+session instead of a context.
 
 =item void B<SSL_CTX_set_verify>(SSL_CTX *ctx, int mode, int (*cb);(void))
 
@@ -382,6 +397,10 @@ connection defined in the B<SSL> structure.
 
 =item int B<SSL_accept>(SSL *ssl);
 
+=item int B<SSL_add_dir_cert_subjects_to_stack>(STACK *stack, const char *dir);
+
+=item int B<SSL_add_file_cert_subjects_to_stack>(STACK *stack, const char *file);
+
 =item int B<SSL_add_client_CA>(SSL *ssl, X509 *x);
 
 =item char *B<SSL_alert_desc_string>(int value);