mirrors/haproxy
1
0
Fork 0
mirror of https://git.haproxy.org/git/haproxy.git/ synced 2026-02-06 18:01:05 +01:00
Code Issues Projects Releases Wiki Activity

DOC: config: slightly clarify the ssl_fc_has_early() behavior

Browse Source 
Clarify that it's about handshake *completion*, and also mention that
the action to be used to wait for the handshake is "wait-for-handshake",
which was not mentioned.

This can be backported though it's very minor.
This commit is contained in:
Willy Tarreau 2025-10-29 07:57:28 +01:00
parent 20174ca143
commit 765d49b680
1 changed files with 3 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

6
doc/configuration.txt
View File

@ -25131,9 +25131,9 @@ ssl_fc_has_crt : boolean
current SSL session uses a client certificate.
ssl_fc_has_early : boolean
Returns true if early data were sent, and the handshake didn't happen yet. As
it has security implications, it is useful to be able to refuse those, or
wait until the handshake happened.
Returns true if early data were sent, and the handshake didn't complete yet.
As it has security implications, it is useful to be able to refuse those, or
wait until the handshake completes (via the "wait-for-handshake" action).
ssl_fc_has_sni : boolean
This checks for the presence of a Server Name Indication TLS extension (SNI)