diff options
author | Anton Gerasimov <agerasimov@twilio.com> | 2019-08-05 12:03:23 +0200 |
---|---|---|
committer | Rich Trott <rtrott@gmail.com> | 2019-09-27 15:50:56 -0700 |
commit | c2ce8d05474c38c503b6ac57e94366421c960762 (patch) | |
tree | def403dc2cec32e1e689023669b23a37f9c03b68 /doc/api | |
parent | 3de5eae6dbe503485b95bdeb8bddbd67e4613d59 (diff) | |
download | android-node-v8-c2ce8d05474c38c503b6ac57e94366421c960762.tar.gz android-node-v8-c2ce8d05474c38c503b6ac57e94366421c960762.tar.bz2 android-node-v8-c2ce8d05474c38c503b6ac57e94366421c960762.zip |
tls: add option for private keys for OpenSSL engines
Add `privateKeyIdentifier` and `privateKeyEngine` options
to get private key from an OpenSSL engine in tls.createSecureContext().
PR-URL: https://github.com/nodejs/node/pull/28973
Reviewed-By: Rod Vagg <rod@vagg.org>
Reviewed-By: James M Snell <jasnell@gmail.com>
Reviewed-By: Sam Roberts <vieuxtech@gmail.com>
Diffstat (limited to 'doc/api')
-rw-r--r-- | doc/api/tls.md | 10 |
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/api/tls.md b/doc/api/tls.md index 68cf5e36bc..297c1e7fd4 100644 --- a/doc/api/tls.md +++ b/doc/api/tls.md @@ -1358,6 +1358,10 @@ argument. <!-- YAML added: v0.11.13 changes: + - version: REPLACEME + pr-url: https://github.com/nodejs/node/pull/28973 + description: Added `privateKeyIdentifier` and `privateKeyEngine` options + to get private key from an OpenSSL engine. - version: v12.11.0 pr-url: https://github.com/nodejs/node/pull/29598 description: Added `sigalgs` option to override supported signature @@ -1462,6 +1466,12 @@ changes: occur in an array. `object.passphrase` is optional. Encrypted keys will be decrypted with `object.passphrase` if provided, or `options.passphrase` if it is not. + * `privateKeyEngine` {string} Name of an OpenSSL engine to get private key + from. Should be used together with `privateKeyIdentifier`. + * `privateKeyIdentifier` {string} Identifier of a private key managed by + an OpenSSL engine. Should be used together with `privateKeyEngine`. + Should not be set together with `key`, because both options define a + private key in different ways. * `maxVersion` {string} Optionally set the maximum TLS version to allow. One of `TLSv1.3`, `TLSv1.2'`, `'TLSv1.1'`, or `'TLSv1'`. Cannot be specified along with the `secureProtocol` option, use one or the other. |