f2ae4c8480
This commit adds support for loading DH-parameters (Diffie-Hellman parameters) via the new "dhparam-file" option within "tls" clause. In particular, Diffie-Hellman parameters are needed to enable the range of forward-secrecy enabled cyphers for TLSv1.2, which are getting silently disabled otherwise.
12 lines
244 B
ReStructuredText
12 lines
244 B
ReStructuredText
::
|
|
|
|
tls <string> {
|
|
ca-file <quoted_string>;
|
|
cert-file <quoted_string>;
|
|
ciphers <string>; // experimental
|
|
dhparam-file <quoted_string>;
|
|
hostname <quoted_string>;
|
|
key-file <quoted_string>;
|
|
protocols { <string>; ... };
|
|
};
|