X-Git-Url: http://www.chiark.greenend.org.uk/ucgi/~ianmdlvl/git?a=blobdiff_plain;f=README.make-secnet-sites;h=0545c4bd293fd3d8477d45c795efc97ed94e84d9;hb=828682da4322d21a1ab27bc9d8594001fb00d940;hp=9a528c14c4a97e4f67b3f8d580ec58aee9c6eaac;hpb=6b27510e7c6c725de5e4bdefdec589df774adc20;p=secnet.git

diff --git a/README.make-secnet-sites b/README.make-secnet-sites
index 9a528c1..0545c4b 100644
--- a/README.make-secnet-sites
+++ b/README.make-secnet-sites
@@ -34,6 +34,13 @@ USAGE
 	produce Secnet configuration.
 
 
+OPTIONS
+
+	--debug | -D
+
+		Increase amount of debugging output.
+
+
 INPUT SYNTAX
 
 	The input files have a simple line-based syntax.  Blank lines,
@@ -112,10 +119,14 @@ INPUT SYNTAX
 		    VPN, and location properties which are already
 		    defined.  (Assigning new properties is permitted.)
 
+		  * It is not permitted to define new VPN-level
+		    properties.
+
 	Finally, the properties.
 
-	If a property has already been defined on an item, then it is an
-	error to try to redefine it.
+	Usually, if a property has already been defined on an item, then
+	it is an error to try to redefine it.  But some properties are
+	list-like: the values are accumulated into a single list.
 
 	Mostly, properties are written to corresponding assignments in
 	the generated Secnet configuration file, .  The entries below
@@ -182,6 +193,31 @@ INPUT SYNTAX
 		Assigns BOOL to the `mobile' key.  Acceptable only at
 		site level, but optional.
 
+	Properties which can also appear in public key files.
+	(named by `peer-keys' key to secnet sites closure.)
+	These are acceptable to make-secnet-sites only at
+	site level.  See also `Site long-term keys' in NOTES.
+
+	pub ALG DATAB91S
+		Defines a public key.  ALG is an algorithm name and
+		DATA91S is the public key data, encoded according to
+		secnet-base91 (see below).
+		Not yet suported in make-secnet-sites.
+
+	serial SETIDHEX
+		Specifies the key set id (8 hex digits representing
+		4 bytes: each pair is the value of the next byte).
+		May appear at most once.  If not present, 00000000.
+		Not yet suported in make-secnet-sites.
+
+	pkg GROUPIDHEX
+	pkgf GROUPIDHEX
+		Specifies the key group id for subsequent keys.
+		pkgf indicates a fallback group.
+		May be repeated (with different id values).
+		If not specified, 00000000.
+		Not yet suported in make-secnet-sites.
+
 
 OUTPUT STRUCTURE