Update SSL description for when SSL root.crt/server.crt is required;

add link to libpq SSL does from server docs.

Backpatch to 8.2.X.

diff --git a/doc/src/sgml/libpq.sgml b/doc/src/sgml/libpq.sgml
index 4e0f5cee23c8f8d28bdf64c2e3dcf9ddf4cd123d..1a4118174e819ea404b543cbdbca19879251e80e 100644 (file)
--- a/doc/src/sgml/libpq.sgml
+++ b/doc/src/sgml/libpq.sgml
@@ -1,4 +1,4 @@
-
+
 
  
   <application>libpq</application> - C Library
@@ -4501,7 +4501,7 @@ ldap://ldap.mycompany.com/dc=mycompany,dc=com?uniqueMember?one?(cn=mydatabase)
    %APPDATA%\postgresql\root.crt.)
    The SSL connection will
    fail if the server does not present a certificate; therefore, to
-   use this feature the server must also have a root.crt file.
+   use this feature the server must have a server.crt file.
    Certificate Revocation List (CRL) entries are also checked if the file
    ~/.postgresql/root.crl exists (%APPDATA%\postgresql\root.crl
    on Microsoft Windows).

diff --git a/doc/src/sgml/runtime.sgml b/doc/src/sgml/runtime.sgml
index 61cc6c37b8758b9ccf060c4a147eb906722e2f31..9a724098a7c37bc49ce1a5b34f6382729610ff68 100644 (file)
--- a/doc/src/sgml/runtime.sgml
+++ b/doc/src/sgml/runtime.sgml
@@ -1,4 +1,4 @@
-
+
 
 
  Operating System Environment
@@ -1574,10 +1574,11 @@ chmod og-rwx server.key
    certificates of the CA(s) you wish to check for in
    the file root.crt in the data directory.  When
    present, a client certificate will be requested from the client
-   during SSL connection startup, and it must have been signed by one of the
-   certificates present in root.crt.  Certificate 
-   Revocation List (CRL) entries are also checked if the file 
-   root.crl exists.
+   during SSL connection startup, and it must have been signed by one of
+   the certificates present in root.crt.  (See 
+   linkend="libpq-ssl"> for a description of how to set up client
+   certificates.) Certificate Revocation List (CRL) entries are also
+   checked if the file root.crl exists.