Update manual pages

2017-11-21 23:27:02 +09:00 · 2017-11-21 23:27:02 +09:00 · 99a85159ae
parent 2a981a3f56
commit 99a85159ae
5 changed files with 48 additions and 12 deletions
--- a/doc/h2load.1
+++ b/doc/h2load.1
@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "H2LOAD" "1" "Nov 04, 2017" "1.28.0-DEV" "nghttp2"
+.TH "H2LOAD" "1" "Nov 21, 2017" "1.28.0-DEV" "nghttp2"
 .SH NAME
 h2load \- HTTP/2 benchmarking tool
 .
--- a/doc/nghttp.1
+++ b/doc/nghttp.1
@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "NGHTTP" "1" "Nov 04, 2017" "1.28.0-DEV" "nghttp2"
+.TH "NGHTTP" "1" "Nov 21, 2017" "1.28.0-DEV" "nghttp2"
 .SH NAME
 nghttp \- HTTP/2 client
 .
--- a/doc/nghttpd.1
+++ b/doc/nghttpd.1
@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "NGHTTPD" "1" "Nov 04, 2017" "1.28.0-DEV" "nghttp2"
+.TH "NGHTTPD" "1" "Nov 21, 2017" "1.28.0-DEV" "nghttp2"
 .SH NAME
 nghttpd \- HTTP/2 server
 .
--- a/doc/nghttpx.1
+++ b/doc/nghttpx.1
@ -1,6 +1,6 @@
 .\" Man page generated from reStructuredText.
 .
-.TH "NGHTTPX" "1" "Nov 04, 2017" "1.28.0-DEV" "nghttp2"
+.TH "NGHTTPX" "1" "Nov 21, 2017" "1.28.0-DEV" "nghttp2"
 .SH NAME
 nghttpx \- HTTP/2 proxy
 .
@ -198,10 +198,14 @@ configuration                is                required.
 "affinity\-cookie\-name=<NAME>" must be  used to specify a
 name     of     cookie      to     use.      Optionally,
 "affinity\-cookie\-path=<PATH>" can  be used to  specify a
-path which cookie is applied.  The Secure attribute of a
-cookie is determined by a  request scheme.  If a request
-scheme  is  "https",  then Secure  attribute  is  added.
-Otherwise, it is not added.
+path   which   cookie    is   applied.    The   optional
+"affinity\-cookie\-secure=<SECURE>"  controls  the  Secure
+attribute of a cookie.  The default value is "auto", and
+the Secure attribute is  determined by a request scheme.
+If a request scheme is "https", then Secure attribute is
+set.  Otherwise, it  is not set.  If  <SECURE> is "yes",
+the  Secure attribute  is  always set.   If <SECURE>  is
+"no", the Secure attribute is always omitted.
 .sp
 By default, name resolution of backend host name is done
 at  start  up,  or reloading  configuration.   If  "dns"
@ -1205,6 +1209,12 @@ client certificate.
 $tls_client_subject_name:   subject  name   in  client
 certificate.
 .IP \(bu 2
+$tls_client_issuer_name:   issuer   name   in   client
+certificate.
+.IP \(bu 2
+$tls_client_serial:    serial    number   in    client
+certificate.
+.IP \(bu 2
 $tls_protocol: protocol for SSL/TLS connection.
 .IP \(bu 2
 $tls_session_id: session ID for SSL/TLS connection.
@ -2001,11 +2011,21 @@ Return the SHA\-1 fingerprint of a client certificate.
 .UNINDENT
 .INDENT 7.0
 .TP
+.B attribute [R] tls_client_issuer_name
+Return the issuer name of a client certificate.
+.UNINDENT
+.INDENT 7.0
+.TP
 .B attribute [R] tls_client_subject_name
 Return the subject name of a client certificate.
 .UNINDENT
 .INDENT 7.0
 .TP
+.B attribute [R] tls_client_serial
+Return the serial number of a client certificate.
+.UNINDENT
+.INDENT 7.0
+.TP
 .B attribute [R] tls_cipher
 Return a TLS cipher negotiated in this connection.
 .UNINDENT
--- a/doc/nghttpx.1.rst
+++ b/doc/nghttpx.1.rst
@ -182,10 +182,14 @@ Connections
    "affinity-cookie-name=<NAME>" must be  used to specify a
    name     of     cookie      to     use.      Optionally,
    "affinity-cookie-path=<PATH>" can  be used to  specify a
-    path which cookie is applied.  The Secure attribute of a
-    cookie is determined by a  request scheme.  If a request
-    scheme  is  "https",  then Secure  attribute  is  added.
-    Otherwise, it is not added.
+    path   which   cookie    is   applied.    The   optional
+    "affinity-cookie-secure=<SECURE>"  controls  the  Secure
+    attribute of a cookie.  The default value is "auto", and
+    the Secure attribute is  determined by a request scheme.
+    If a request scheme is "https", then Secure attribute is
+    set.  Otherwise, it  is not set.  If  <SECURE> is "yes",
+    the  Secure attribute  is  always set.   If <SECURE>  is
+    "no", the Secure attribute is always omitted.

    By default, name resolution of backend host name is done
    at  start  up,  or reloading  configuration.   If  "dns"
@ -1096,6 +1100,10 @@ Logging
      client certificate.
    * $tls_client_subject_name:   subject  name   in  client
      certificate.
+    * $tls_client_issuer_name:   issuer   name   in   client
+      certificate.
+    * $tls_client_serial:    serial    number   in    client
+      certificate.
    * $tls_protocol: protocol for SSL/TLS connection.
    * $tls_session_id: session ID for SSL/TLS connection.
    * $tls_session_reused:  "r"   if  SSL/TLS   session  was
@ -1835,10 +1843,18 @@ respectively.

        Return the SHA-1 fingerprint of a client certificate.

+    .. rb:attr_reader:: tls_client_issuer_name
+
+        Return the issuer name of a client certificate.
+
    .. rb:attr_reader:: tls_client_subject_name

        Return the subject name of a client certificate.

+    .. rb:attr_reader:: tls_client_serial
+
+        Return the serial number of a client certificate.
+
    .. rb:attr_reader:: tls_cipher

        Return a TLS cipher negotiated in this connection.