- Fix #13: Remove left-over requirements on OpenSSL >= 1.1.0 for

  cert name matching, from man page.

git-svn-id: file:///svn/unbound/trunk@5112 be551aaa-1e26-0410-a405-d3ace91eadb9

diff --git a/doc/Changelog b/doc/Changelog
index 34a1c7919be0edb024849cee1620d929a99576ea..2a3a6b80a63306405328f01a00b267713eb68e77 100644 (file)
--- a/doc/Changelog
+++ b/doc/Changelog
@@ -2,6 +2,8 @@
        - Note default for module-config in man page.
        - Fix recursion lame test for qname minimisation asked queries,
          that were not present in the set of prepared answers.
+       - Fix #13: Remove left-over requirements on OpenSSL >= 1.1.0 for
+         cert name matching, from man page.
 
 7 February 2019: Wouter
        - Fix #4206: OpenSSL 1.0.2 hostname verification for FreeBSD 11.2.

diff --git a/doc/unbound.conf.5.in b/doc/unbound.conf.5.in
index 9cbcda406b3bcbd484d8d10ac679a3ef87bf798a..98650d20751e4bede14e813da56b7e8dd9693690 100644 (file)
--- a/doc/unbound.conf.5.in
+++ b/doc/unbound.conf.5.in
@@ -1621,7 +1621,6 @@ the '@' and '#', the '@' comes first.
 At high verbosity it logs the TLS certificate, with TLS enabled.
 If you leave out the '#' and auth name from the forward\-addr, any
 name is accepted.  The cert must also match a CA from the tls\-cert\-bundle.
-The cert name match code needs OpenSSL 1.1.0 or later to be enabled.
 .TP
 .B forward\-first: \fI<yes or no>
 If a forwarded query is met with a SERVFAIL error, and this option is