diff options
| author | Daiki Ueno <ueno@gnu.org> | 2022-08-20 10:58:23 +0900 |
|---|---|---|
| committer | Daiki Ueno <ueno@gnu.org> | 2022-08-29 09:35:48 +0900 |
| commit | 0278eb5358392dce0c9ee951e325191a388e937a (patch) | |
| tree | 2d4f7828312b97a6bfa3e1339abf3728df9f4f77 /doc | |
| parent | bc7f67c46736486426ba1bd22a52a67bd58beee5 (diff) | |
| download | gnutls-0278eb5358392dce0c9ee951e325191a388e937a.tar.gz | |
doc: mention GNUTLS_CB_TLS_EXPORTER
Signed-off-by: Daiki Ueno <ueno@gnu.org>
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/cha-bib.texi | 4 | ||||
| -rw-r--r-- | doc/cha-gtls-app.texi | 9 | ||||
| -rw-r--r-- | doc/latex/gnutls.bib | 14 |
3 files changed, 24 insertions, 3 deletions
diff --git a/doc/cha-bib.texi b/doc/cha-bib.texi index 4df5e98f90..20dab0a99f 100644 --- a/doc/cha-bib.texi +++ b/doc/cha-bib.texi @@ -275,4 +275,8 @@ Computer Science No. 1465 (Rafael Hirschfeld, ed.), February 1998), pages 178--183, available from @url{https://people.csail.mit.edu/rivest/Rivest-CanWeEliminateCertificateRevocationLists.pdf}. +@item @anchor{RFC9266}[RFC9266] +S. Whited, "Channel Bindings for TLS 1.3", +July 2022, available from @url{https://www.ietf.org/rfc/rfc9266.txt}. + @end table diff --git a/doc/cha-gtls-app.texi b/doc/cha-gtls-app.texi index bd4447822b..56ca472ecd 100644 --- a/doc/cha-gtls-app.texi +++ b/doc/cha-gtls-app.texi @@ -2201,9 +2201,12 @@ background and discussion see @xcite{RFC5056}. In @acronym{GnuTLS} you can extract a channel binding using the @funcref{gnutls_session_channel_binding} function. Currently only the -type @code{GNUTLS_CB_TLS_UNIQUE} is supported, which corresponds to -the @code{tls-unique} channel binding for TLS defined in -@xcite{RFC5929}. +following types are supported: + +@itemize +@item @code{GNUTLS_CB_TLS_UNIQUE}: corresponds to the @code{tls-unique} channel binding for TLS defined in @xcite{RFC5929} +@item @code{GNUTLS_CB_TLS_EXPORTER}: corresponds to the @code{tls-exporter} channel binding for TLS defined in @xcite{RFC9266} +@end itemize The following example describes how to print the channel binding data. Note that it must be run after a successful TLS handshake. diff --git a/doc/latex/gnutls.bib b/doc/latex/gnutls.bib index a30f079f3d..ee9dea0d4f 100644 --- a/doc/latex/gnutls.bib +++ b/doc/latex/gnutls.bib @@ -538,3 +538,17 @@ url="https://www.ietf.org/rfc/rfc4418.txt", } +@misc{rfc9266, + series = {Request for Comments}, + number = 9266, + howpublished = {RFC 9266}, + publisher = {RFC Editor}, + doi = {10.17487/RFC9266}, + url = {https://www.rfc-editor.org/info/rfc9266}, + author = {Sam Whited}, + title = {{Channel Bindings for TLS 1.3}}, + pagetotal = 7, + year = 2022, + month = jul, + abstract = {This document defines a channel binding type, tls-exporter, that is compatible with TLS 1.3 in accordance with RFC 5056, "On the Use of Channel Bindings to Secure Channels". Furthermore, it updates the default channel binding to the new binding for versions of TLS greater than 1.2. This document updates RFCs 5801, 5802, 5929, and 7677.}, +}
\ No newline at end of file |