Date: Wed, 16 Sep 2020 23:58:18 +0000 (UTC) From: Rick Macklem <rmacklem@FreeBSD.org> To: src-committers@freebsd.org, svn-src-projects@freebsd.org Subject: svn commit: r365824 - projects/nfs-over-tls/usr.sbin/rpc.tlsservd Message-ID: <202009162358.08GNwI4i019945@repo.freebsd.org>
next in thread | raw e-mail | index | archive | help
Author: rmacklem Date: Wed Sep 16 23:58:17 2020 New Revision: 365824 URL: https://svnweb.freebsd.org/changeset/base/365824 Log: Update the rpc.tlsservd man page to indicate that extant connections that presented certificates during TLS handshake and are now revoked are shut down. Modified: projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.8 Modified: projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.8 ============================================================================== --- projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.8 Wed Sep 16 23:36:37 2020 (r365823) +++ projects/nfs-over-tls/usr.sbin/rpc.tlsservd/rpc.tlsservd.8 Wed Sep 16 23:58:17 2020 (r365824) @@ -119,7 +119,9 @@ and .Dq key.pem . .Pp If a SIGHUP signal is sent to the daemon it will reload the -.Dq CRLfile . +.Dq CRLfile +and will shut down any extant connections that presented certificates +during TLS handshake that have been revoked. If the .Fl r option was not specified, the SIGHUP signal will be ignored.
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?202009162358.08GNwI4i019945>