From 80a4ac5783b1cea66983330c65df11611236869e Mon Sep 17 00:00:00 2001 From: "Dr. David von Oheimb" Date: Wed, 12 May 2021 14:15:31 +0200 Subject: apps/s_server: Add -proxy and -no_proxy options Strongly related to feature request #6965 Reviewed-by: Tomas Mraz (Merged from https://github.com/openssl/openssl/pull/15245) --- doc/man1/openssl-s_server.pod.in | 19 +++++++++++++++++++ 1 file changed, 19 insertions(+) (limited to 'doc/man1') diff --git a/doc/man1/openssl-s_server.pod.in b/doc/man1/openssl-s_server.pod.in index f07e2ae3b4..b7c3f10336 100644 --- a/doc/man1/openssl-s_server.pod.in +++ b/doc/man1/openssl-s_server.pod.in @@ -73,6 +73,8 @@ B B [B<-status>] [B<-status_verbose>] [B<-status_timeout> I] +[B<-proxy> I<[http[s]://][userinfo@]host[:port][/path]>] +[B<-no_proxy> I] [B<-status_url> I] [B<-status_file> I] [B<-trace>] @@ -462,6 +464,23 @@ a verbose printout of the OCSP response. Sets the timeout for OCSP response to I seconds. +=item B<-proxy> I<[http[s]://][userinfo@]host[:port][/path]> + +The HTTP(S) proxy server to use for reaching the OCSP server unless B<-no_proxy> +applies, see below. +The proxy port defaults to 80 or 443 if the scheme is C; apart from that +the optional C or C prefix is ignored, +as well as any userinfo and path components. +Defaults to the environment variable C if set, else C +in case no TLS is used, otherwise C if set, else C. + +=item B<-no_proxy> I + +List of IP addresses and/or DNS names of servers +not to use an HTTP(S) proxy for, separated by commas and/or whitespace +(where in the latter case the whole argument must be enclosed in "..."). +Default is from the environment variable C if set, else C. + =item B<-status_url> I Sets a fallback responder URL to use if no responder URL is present in the -- cgit v1.2.3