doc: Add missing options in s_{server,client} (8625e92a) · Commits · CYBER - Cyber Security / TS 103 523 MSP / TLMSP / TLMSP OpenSSL

doc/apps/s_client.pod

+15 −0

Original line number	Diff line number	Diff line
		@@ -42,6 +42,8 @@ B<openssl> B<s_client>
		[B<-no_tls1_2>]
		[B<-fallback_scsv>]
		[B<-bugs>]
		[B<-sigalgs sigalglist>]
		[B<-curves curvelist>]
		[B<-cipher cipherlist>]
		[B<-serverpref>]
		[B<-starttls protocol>]
		@@ -217,6 +219,19 @@ Send TLS_FALLBACK_SCSV in the ClientHello.
		there are several known bug in SSL and TLS implementations. Adding this
		option enables various workarounds.

		=item B<-sigalgs sigalglist>

		Specifies the list of signature algorithms that are sent by the client.
		The server selects one entry in the list based on its preferences.
		For example strings, see L<SSL_CTX_set1_sigalgs(3)>

		=item B<-curves curvelist>

		Specifies the list of supported curves to be sent by the client. The curve is
		is ultimately selected by the server. For a list of all curves, use:

		$ openssl ecparam -list_curves

		=item B<-cipher cipherlist>

		this allows the cipher list sent by the client to be modified. Although

+14 −0

Original line number	Diff line number	Diff line
		@@ -35,6 +35,8 @@ B<openssl> B<s_server>
		[B<-CAfile filename>]
		[B<-no_alt_chains>]
		[B<-nocert>]
		[B<-client_sigalgs sigalglist>]
		[B<-named_curve curve>]
		[B<-cipher cipherlist>]
		[B<-serverpref>]
		[B<-quiet>]
		@@ -234,6 +236,18 @@ option enables various workarounds.
		this option enables a further workaround for some some early Netscape
		SSL code (?).

		=item B<-client_sigalgs sigalglist>

		Signature algorithms to support for client certificate authentication
		(colon-separated list)

		=item B<-named_curve curve>

		Specifies the elliptic curve to use. NOTE: this is single curve, not a list.
		For a list of all possible curves, use:

		$ openssl ecparam -list_curves

		=item B<-cipher cipherlist>

		this allows the cipher list used by the server to be modified. When