1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
|
Format: https://www.debian.org/doc/packaging-manuals/copyright-format/1.0/
Upstream-Name: ucspi-ssl
Upstream-Contact: <preferred name and address to reach the upstream project>
Source: <url://example.com>
#
# Please double check copyright with the licensecheck(1) command.
Files: INSTALL.md
README.md
conf-cadir
conf-cafile
conf-ccafile
conf-ccperl
conf-certchainfile
conf-certfile
conf-ciphers
conf-dhfile
conf-home
conf-keyfile
conf-ld
conf-ldperl
conf-man
conf-perl
conf-qlibs
conf-rsa
conf-ssl
conf-ssllib
doc/CHAIN-SSL
doc/CHANGELOG
doc/README_RTS.md
doc/TLSVERSION_CIPHERSUITES
doc/TLS_1_3
doc/TODO
etc/127.0.0.1.pw
etc/127.0.0.1_cert.pem
etc/127.0.0.1_key.pem
etc/127.0.0.1_key.pem.plain
etc/::1.pw
etc/::1_cert.pem
etc/::1_key.pem
etc/::1_key.pem.plain
etc/README_CERTS.md
etc/chain4.pem
etc/chain6.pem
etc/dh2048.pem
etc/localhost.pw
etc/localhost_cert.pem
etc/localhost_key.pem
etc/localhost_key.pem.plain
etc/rootCA_cert.pem
man/Makefile
man/Makefile.mandoc
man/TARGETS
man/https@.1
man/sslcat.1
man/sslclient.1
man/sslconnect.1
man/sslhandle.1
man/sslserver.1
man/ucspi-tls.2
package/build
package/command-cp
package/command-ln
package/commands-base
package/commands-sslperl
package/commands-sys
package/compile
package/files
package/install
package/man
package/path
package/report
package/rts
package/run
package/upgrade
package/version
src/Makefile
src/TARGETS
src/auto-str.c
src/auto_cadir.h
src/auto_cafile.h
src/auto_ccafile.h
src/auto_certchainfile.h
src/auto_certfile.h
src/auto_ciphers.h
src/auto_dhfile.h
src/auto_keyfile.h
src/chkshsgr.c
src/choose.sh
src/coe.c
src/coe.h
src/exit.h
src/exp.base
src/exp.it
src/exp.sslperl
src/find-systype.sh
src/fork.h1
src/fork.h2
src/hassgact.h1
src/hassgact.h2
src/hassgprm.h1
src/hassgprm.h2
src/hasshsgr.h1
src/hasshsgr.h2
src/haswaitp.h1
src/haswaitp.h2
src/https@.sh
src/ip4_bit.c
src/ip6_bit.c
src/ip_bit.h
src/it-base=d
src/it-sslperl=d
src/it-sys=d
src/it=d
src/print-ar.sh
src/print-cc.sh
src/print-ccperl.sh
src/print-dl.sh
src/print-ld.sh
src/print-ldperl.sh
src/print-perlembed.sh
src/remoteinfo.c
src/remoteinfo.h
src/rts.base
src/rts.it
src/rts.sslperl
src/rules.c
src/rules.h
src/select.h1
src/select.h2
src/ssl_ca.c
src/ssl_cca.c
src/ssl_certkey.c
src/ssl_chainfile.c
src/ssl_ciphers.c
src/ssl_context.c
src/ssl_env.c
src/ssl_error.c
src/ssl_io.c
src/ssl_new.c
src/ssl_params.c
src/ssl_timeout.c
src/ssl_verify.c
src/sslcat.sh
src/sslclient.c
src/sslconnect.sh
src/sslhandle.c
src/sslperl.c
src/sslprint.c
src/sslserver.c
src/trycpp.c
src/trylsock.c
src/trysgact.c
src/trysgprm.c
src/tryshsgr.c
src/tryssl.c
src/trysysel.c
src/tryvfork.c
src/ucspissl.c
src/ucspissl.h
src/warn-auto.sh
src/warn-shsgr
src/x86cpuid.c
Copyright: __NO_COPYRIGHT_NOR_LICENSE__
License: __NO_COPYRIGHT_NOR_LICENSE__
Files: doc/UCSPI-SSL.md
Copyright: 2001 SuperScript Technology, Inc. sst@superscript.com
License: __UNKNOWN__
This document defines the SSL protocol for UCSPI-1996 tools. An SSL
client communicates with an SSL server, on the same machine or on a
different machine, via the TCP/IP protocol through an Internet-domain
socket. The descriptors passed to a SSL UCSPI application are copies of
that socket, dup()ed from a single connect() or accept().
.
[address] consists of two arguments: [hostname] [port].
.
There are three possibilities for [hostname]: the number 0, referring to
the local host; a dotted-decimal IP address, such as 192.48.96.5; or a
name understood by the system's resolver, such as mail.uu.net. SSL UCSPI
servers use only the first IP address from the resolver; SSL UCSPI
clients try each address in turn.
.
There are three possibilities for [port]: a positive numeric TCP port
number, such as 25; the number 0, which permits selection of any port
number; or a name understood by the system's getservbyname(), such as
smtp.
.
The client and server set up the following environment variables:
.
PROTO: the string SSL
SSLLOCALIP: the dotted-decimal IP address of the local host
SSLLOCALPORT: the local SSL port number, in decimal
SSLREMOTEIP: the dotted-decimal IP address of the remote host
SSLREMOTEPORT: the remote SSL port number, in decimal
SSLLOCALHOST, if possible: the resolver's name for SSLLOCALIP
SSLREMOTEHOST, if possible: the resolver's name for SSLREMOTEIP
SSLREMOTEINFO, if possible: the result of a 931/1413/IDENT/TAP query
.
Uppercase letters in SSLLOCALHOST and SSLREMOTEHOST are converted to
lowercase. SSLREMOTEINFO is a connection-specific string supplied by the
remote host via 931/1413/IDENT/TAP.
.
SSL UCSPI tools take a -R option to turn off 931/1413/IDENT/TAP
querying, and a -r option to turn it back on. SSL UCSPI tools take a -I
option to turn off checking for a client certificate, and a -i option to
turn it back on. SSL UCSPI clients take a -p [locport] option to
require a particular TCP port on the local side of the connection. SSL
UCSPI servers take a -1 option to print the local port number (in
decimal, followed by a newline) to descriptor 1 before closing
descriptor 1 and after preparing to receive connections. SSL UCSPI
servers and clients take a -3 option to read a null-terminated key
password from file descriptor 3.
#----------------------------------------------------------------------------
# Files marked as NO_LICENSE_TEXT_FOUND may be covered by the following
# license/copyright files.
|
