Mercurial > hg > nginx-site
comparison xml/en/docs/stream/ngx_stream_ssl_module.xml @ 2616:d8bf37d20449
Documented the ssl_conf_command directive.
author | Yaroslav Zhuravlev <yar@nginx.com> |
---|---|
date | Tue, 27 Oct 2020 22:03:34 +0000 |
parents | c60a8a15010c |
children | 78161967514f |
comparison
equal
deleted
inserted
replaced
2615:3cb2736bb74c | 2616:d8bf37d20449 |
---|---|
7 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> | 7 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> |
8 | 8 |
9 <module name="Module ngx_stream_ssl_module" | 9 <module name="Module ngx_stream_ssl_module" |
10 link="/en/docs/stream/ngx_stream_ssl_module.html" | 10 link="/en/docs/stream/ngx_stream_ssl_module.html" |
11 lang="en" | 11 lang="en" |
12 rev="22"> | 12 rev="23"> |
13 | 13 |
14 <section id="summary"> | 14 <section id="summary"> |
15 | 15 |
16 <para> | 16 <para> |
17 The <literal>ngx_stream_ssl_module</literal> module (1.9.0) | 17 The <literal>ngx_stream_ssl_module</literal> module (1.9.0) |
217 | 217 |
218 <para> | 218 <para> |
219 The list of certificates will be sent to clients. | 219 The list of certificates will be sent to clients. |
220 If this is not desired, the <link id="ssl_trusted_certificate"/> | 220 If this is not desired, the <link id="ssl_trusted_certificate"/> |
221 directive can be used. | 221 directive can be used. |
222 </para> | |
223 | |
224 </directive> | |
225 | |
226 | |
227 <directive name="ssl_conf_command"> | |
228 <syntax><value>command</value></syntax> | |
229 <default/> | |
230 <context>stream</context> | |
231 <context>server</context> | |
232 <appeared-in>1.19.4</appeared-in> | |
233 | |
234 <para> | |
235 Sets arbitrary OpenSSL configuration | |
236 <link url="https://www.openssl.org/docs/man1.1.1/man3/SSL_CONF_cmd.html">commands</link>. | |
237 <note> | |
238 The directive is supported when using OpenSSL 1.0.2 or higher. | |
239 </note> | |
240 </para> | |
241 | |
242 <para> | |
243 Several <literal>ssl_conf_command</literal> directives | |
244 can be specified on the same level: | |
245 <example> | |
246 ssl_conf_command Options PrioritizeChaCha; | |
247 ssl_conf_command Ciphersuites TLS_CHACHA20_POLY1305_SHA256; | |
248 </example> | |
249 These directives are inherited from the previous configuration level | |
250 if and only if there are no <literal>ssl_conf_command</literal> directives | |
251 defined on the current level. | |
252 </para> | |
253 | |
254 <para> | |
255 <note> | |
256 Note that configuring OpenSSL directly | |
257 might result in unexpected behavior. | |
258 </note> | |
222 </para> | 259 </para> |
223 | 260 |
224 </directive> | 261 </directive> |
225 | 262 |
226 | 263 |