diff options
author | Laurent Bercot <ska-skaware@skarnet.org> | 2021-05-18 11:19:19 +0000 |
---|---|---|
committer | Laurent Bercot <ska-skaware@skarnet.org> | 2021-05-18 11:19:19 +0000 |
commit | 6780eee3e0dbe37640f72ed1e37a95c506e23f8c (patch) | |
tree | fd89e47869fd422c6a2fb49e361c760a94b60668 /doc | |
parent | 8f4d374c931ce12554beb9231c1af9171832e133 (diff) | |
download | s6-networking-6780eee3e0dbe37640f72ed1e37a95c506e23f8c.tar.gz s6-networking-6780eee3e0dbe37640f72ed1e37a95c506e23f8c.tar.xz s6-networking-6780eee3e0dbe37640f72ed1e37a95c506e23f8c.zip |
Prepare for 2.4.2.0; implement client certificates with bearssl
Also send a bit more environment with libtls
Diffstat (limited to 'doc')
-rw-r--r-- | doc/index.html | 2 | ||||
-rw-r--r-- | doc/s6-tlsd-io.html | 6 | ||||
-rw-r--r-- | doc/upgrade.html | 9 |
3 files changed, 13 insertions, 4 deletions
diff --git a/doc/index.html b/doc/index.html index 727b9e9..221a65b 100644 --- a/doc/index.html +++ b/doc/index.html @@ -91,7 +91,7 @@ run-time requirement if you link against its shared version. </li> <ul> <li> The current released version of s6-networking is -<a href="s6-networking-2.4.1.1.tar.gz">2.4.1.1</a>. </li> +<a href="s6-networking-2.4.2.0.tar.gz">2.4.2.0</a>. </li> <li> Alternatively, you can checkout a copy of the <a href="//git.skarnet.org/cgi-bin/cgit.cgi/s6-networking/">s6-networking git repository</a>: diff --git a/doc/s6-tlsd-io.html b/doc/s6-tlsd-io.html index 807c982..29f75c3 100644 --- a/doc/s6-tlsd-io.html +++ b/doc/s6-tlsd-io.html @@ -188,8 +188,10 @@ no effect. </li> and break the connection when receiving a local EOF. </li> <li> <tt>-s</tt> : transmit EOF by half-closing the TCP connection without using <tt>close_notify</tt>. This is the default. </li> - <li> <tt>-Y</tt> : Do not send a client certificate. This is the default. </li> - <li> <tt>-y</tt> : Send a client certificate. </li> + <li> <tt>-Y</tt> : Require an optional client certificate. </li> + <li> <tt>-y</tt> : Require a mandatory client certificate. +The default, with neither the <tt>-Y</tt> nor the <tt>-y</tt> option, +is not to require a client certificate at all. </li> <li> <tt>-K <em>kimeout</em></tt> : if the peer fails to send data for <em>kimeout</em> milliseconds during the handshake, close the connection. The default is 0, which means infinite timeout diff --git a/doc/upgrade.html b/doc/upgrade.html index 400c014..f174e74 100644 --- a/doc/upgrade.html +++ b/doc/upgrade.html @@ -18,7 +18,14 @@ <h1> What has changed in s6-networking </h1> -<h2> in 2.4.1.0 </h2> +<h2> in 2.4.2.0 </h2> + +<ul> + <li> Client certificates are now properly supported in +<a href="s6-tlsd-io.html">s6-tlsd-io</a>. </li> +</ul> + +<h2> in 2.4.1.1 </h2> <ul> <li> <a href="//skarnet.org/software/skalibs/">skalibs</a> |