Module: kamailio Branch: 5.8 Commit: 6533c42fc0bba6408376a8f8b41b02b97b04ca1b URL: https://github.com/kamailio/kamailio/commit/6533c42fc0bba6408376a8f8b41b02b9...

Author: Xenofon Karamanos 22965395+xkaraman@users.noreply.github.com Committer: Daniel-Constantin Mierla miconda@gmail.com Date: 2024-03-07T10:06:56+01:00

tls/docs: Update tls.reload docs

(cherry picked from commit 4c9cfa7a6a770a693ecb3b840ad042fb201db675)

---

Modified: src/modules/tls/doc/rpc.xml Modified: src/modules/tls/doc/tls.xml

---

Diff: https://github.com/kamailio/kamailio/commit/6533c42fc0bba6408376a8f8b41b02b9... Patch: https://github.com/kamailio/kamailio/commit/6533c42fc0bba6408376a8f8b41b02b9...

---

diff --git a/src/modules/tls/doc/rpc.xml b/src/modules/tls/doc/rpc.xml index 495fc7b31c2..d9e75b014b2 100644 --- a/src/modules/tls/doc/rpc.xml +++ b/src/modules/tls/doc/rpc.xml @@ -70,6 +70,10 @@ terminated and they continue to use the old certificates. The new configuration will be used for new connections. </para> + <para> + Reload is generally safe and usable in production environments. If possible should + be done in a time where the service has lower usage/connections. + </para> <para> This RPC command is exported with "RPC_EXEC_DELTA" flag, therefore its execution rate can be restricted to specific time intervals by setting diff --git a/src/modules/tls/doc/tls.xml b/src/modules/tls/doc/tls.xml index 9460d73c89f..9b3f4eaacb3 100644 --- a/src/modules/tls/doc/tls.xml +++ b/src/modules/tls/doc/tls.xml @@ -284,10 +284,6 @@ make -C modules/tls extra_defs="-DTLS_WR_DEBUG -DTLS_RD_DEBUG" but also not exactly standard conforming (the verification should happen during TLS connection establishment and not after). </para> - <para> - TLS specific config reloading is not safe, so for now better don't use it, - especially under heavy traffic. - </para> <para> This documentation is incomplete. The provided selects are not documented in this file. A list with all the @@ -364,4 +360,3 @@ event_route[tls:connection-out] { </section> </chapter> </book> -