Mercurial > hg > nginx-site
comparison xml/en/docs/http/ngx_http_ssl_module.xml @ 1857:0882ccb0c00f
Documented the $ssl_curves and $ssl_ciphers variables.
author | Yaroslav Zhuravlev <yar@nginx.com> |
---|---|
date | Thu, 08 Dec 2016 19:03:22 +0300 |
parents | 7133004fa5b3 |
children | fef4ab2d990c |
comparison
equal
deleted
inserted
replaced
1856:7133004fa5b3 | 1857:0882ccb0c00f |
---|---|
8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> | 8 <!DOCTYPE module SYSTEM "../../../../dtd/module.dtd"> |
9 | 9 |
10 <module name="Module ngx_http_ssl_module" | 10 <module name="Module ngx_http_ssl_module" |
11 link="/en/docs/http/ngx_http_ssl_module.html" | 11 link="/en/docs/http/ngx_http_ssl_module.html" |
12 lang="en" | 12 lang="en" |
13 rev="27"> | 13 rev="28"> |
14 | 14 |
15 <section id="summary"> | 15 <section id="summary"> |
16 | 16 |
17 <para> | 17 <para> |
18 The <literal>ngx_http_ssl_module</literal> module provides the | 18 The <literal>ngx_http_ssl_module</literal> module provides the |
760 <tag-desc> | 760 <tag-desc> |
761 returns the string of ciphers used | 761 returns the string of ciphers used |
762 for an established SSL connection; | 762 for an established SSL connection; |
763 </tag-desc> | 763 </tag-desc> |
764 | 764 |
765 <tag-name id="var_ssl_ciphers"><var>$ssl_ciphers</var></tag-name> | |
766 <tag-desc> | |
767 returns the list of ciphers supported by the client (1.11.7). | |
768 Known ciphers are listed by names, unknown are shown in hexadecimal, | |
769 for example: | |
770 <example> | |
771 AES128-SHA:AES256-SHA:0x00ff | |
772 </example> | |
773 <note> | |
774 The variable is fully supported only when using OpenSSL version 1.0.2 or higher. | |
775 With older versions, the variable is available | |
776 only for new sessions and lists only known ciphers. | |
777 </note> | |
778 </tag-desc> | |
779 | |
765 <tag-name id="var_ssl_client_cert"><var>$ssl_client_cert</var></tag-name> | 780 <tag-name id="var_ssl_client_cert"><var>$ssl_client_cert</var></tag-name> |
766 <tag-desc> | 781 <tag-desc> |
767 returns the client certificate in the PEM format | 782 returns the client certificate in the PEM format |
768 for an established SSL connection, with each line except the first | 783 for an established SSL connection, with each line except the first |
769 prepended with the tab character; | 784 prepended with the tab character; |
847 Prior to version 1.11.7, the “<literal>FAILED</literal>” result | 862 Prior to version 1.11.7, the “<literal>FAILED</literal>” result |
848 did not contain the <value>reason</value> string. | 863 did not contain the <value>reason</value> string. |
849 </note> | 864 </note> |
850 </tag-desc> | 865 </tag-desc> |
851 | 866 |
867 <tag-name id="var_ssl_curves"><var>$ssl_curves</var></tag-name> | |
868 <tag-desc> | |
869 returns the list of curves supported by the client (1.11.7). | |
870 Known curves are listed by names, unknown are shown in hexadecimal, | |
871 for example: | |
872 <example> | |
873 0x001d:prime256v1:secp521r1:secp384r1 | |
874 </example> | |
875 <note> | |
876 The variable is supported only when using OpenSSL version 1.0.2 or higher. | |
877 With older versions, the variable value will be an empty string. | |
878 </note> | |
879 <note> | |
880 The variable is available only for new sessions. | |
881 </note> | |
882 </tag-desc> | |
883 | |
852 <tag-name id="var_ssl_protocol"><var>$ssl_protocol</var></tag-name> | 884 <tag-name id="var_ssl_protocol"><var>$ssl_protocol</var></tag-name> |
853 <tag-desc> | 885 <tag-desc> |
854 returns the protocol of an established SSL connection; | 886 returns the protocol of an established SSL connection; |
855 </tag-desc> | 887 </tag-desc> |
856 | 888 |