diff options
Diffstat (limited to 'src/lib')
| -rw-r--r-- | src/lib/libtls/man/tls_config_set_protocols.3 | 17 | 
1 files changed, 13 insertions, 4 deletions
| diff --git a/src/lib/libtls/man/tls_config_set_protocols.3 b/src/lib/libtls/man/tls_config_set_protocols.3 index b9ee8201ff..4f5c91a3f0 100644 --- a/src/lib/libtls/man/tls_config_set_protocols.3 +++ b/src/lib/libtls/man/tls_config_set_protocols.3 | |||
| @@ -1,4 +1,4 @@ | |||
| 1 | .\" $OpenBSD: tls_config_set_protocols.3,v 1.5 2017/08/11 10:33:31 jmc Exp $ | 1 | .\" $OpenBSD: tls_config_set_protocols.3,v 1.6 2017/08/12 04:24:49 jsing Exp $ | 
| 2 | .\" | 2 | .\" | 
| 3 | .\" Copyright (c) 2014 Ted Unangst <tedu@openbsd.org> | 3 | .\" Copyright (c) 2014 Ted Unangst <tedu@openbsd.org> | 
| 4 | .\" Copyright (c) 2015, 2016 Joel Sing <jsing@openbsd.org> | 4 | .\" Copyright (c) 2015, 2016 Joel Sing <jsing@openbsd.org> | 
| @@ -16,7 +16,7 @@ | |||
| 16 | .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF | 16 | .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF | 
| 17 | .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. | 17 | .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE. | 
| 18 | .\" | 18 | .\" | 
| 19 | .Dd $Mdocdate: August 11 2017 $ | 19 | .Dd $Mdocdate: August 12 2017 $ | 
| 20 | .Dt TLS_CONFIG_SET_PROTOCOLS 3 | 20 | .Dt TLS_CONFIG_SET_PROTOCOLS 3 | 
| 21 | .Os | 21 | .Os | 
| 22 | .Sh NAME | 22 | .Sh NAME | 
| @@ -125,10 +125,19 @@ Alternatively, libssl cipher strings can be specified. | |||
| 125 | See the CIPHERS section of | 125 | See the CIPHERS section of | 
| 126 | .Xr openssl 1 | 126 | .Xr openssl 1 | 
| 127 | for further information. | 127 | for further information. | 
| 128 | .\" XXX tls_config_set_dheparams does what? | 128 | .Pp | 
| 129 | .Fn tls_config_set_dheparams | ||
| 130 | specifies the parameters that will be used during Diffie-Hellman Ephemeral | ||
| 131 | (DHE) key exchange. | ||
| 132 | Possible values are "none", "auto" and "legacy". | ||
| 133 | In "auto" mode, the key size for the ephemeral key is automatically selected | ||
| 134 | based on the size of the private key being used for signing. | ||
| 135 | In "legacy" mode, 1024 bit ephemeral keys are used. | ||
| 136 | The default value is "none", which disables DHE key exchange. | ||
| 129 | .Pp | 137 | .Pp | 
| 130 | .Fn tls_config_set_ecdhecurves | 138 | .Fn tls_config_set_ecdhecurves | 
| 131 | specifies the names of the elliptic curves that may be used during key exchange. | 139 | specifies the names of the elliptic curves that may be used during Elliptic | 
| 140 | Curve Diffie-Hellman Ephemeral (ECDHE) key exchange. | ||
| 132 | This is a comma separated list, given in order of preference. | 141 | This is a comma separated list, given in order of preference. | 
| 133 | The special value of "default" will use the default curves (currently X25519, | 142 | The special value of "default" will use the default curves (currently X25519, | 
| 134 | P-256 and P-384). | 143 | P-256 and P-384). | 
