From b1b8308555f2bb49be3c90e0e1a1d9e109dcd70c Mon Sep 17 00:00:00 2001 From: Tatsuhiro Tsujikawa Date: Mon, 9 Jan 2017 22:22:04 +0900 Subject: [PATCH] Update doc --- doc/sources/nghttpx-howto.rst | 4 ++++ 1 file changed, 4 insertions(+) diff --git a/doc/sources/nghttpx-howto.rst b/doc/sources/nghttpx-howto.rst index 471d4f62..91b9c377 100644 --- a/doc/sources/nghttpx-howto.rst +++ b/doc/sources/nghttpx-howto.rst @@ -406,6 +406,10 @@ such PSK cipher suite with HTTP/2, disable HTTP/2 cipher black list by using :option:`--no-http2-cipher-black-list` option. But you should understand its implications. +At the time of writing, even if only PSK cipher suites are specified +in :option:`--ciphers` option, certificate and private key are still +required. + For backend connection, use :option:`--client-psk-secrets` option to specify a file which contains single PSK identity and secret. The format is the same as the file used by :option:`--psk-secrets`