diff options
author | Rich Salz <rsalz@openssl.org> | 2016-05-20 20:52:46 -0400 |
---|---|---|
committer | Rich Salz <rsalz@openssl.org> | 2016-05-20 20:54:00 -0400 |
commit | 05ea606a2536590e1ef74020056665345f39efa8 (patch) | |
tree | 58dc911e8abe04becb6f1d0a876624073950d911 /doc/apps/verify.pod | |
parent | fcb318c64b8c3ff24ec36f99797880386bed5867 (diff) | |
download | openssl-05ea606a2536590e1ef74020056665345f39efa8.tar.gz |
Doc nits cleanup, round 2
Fix some code examples, trailing whitespace
Fix TBA sections in verify, remove others.
Remove empty sections
Use Mixed Case not ALL CAPS in head2
Enhance doc-nits script.
Remove extra =cut line
Reviewed-by: Richard Levitte <levitte@openssl.org>
Diffstat (limited to 'doc/apps/verify.pod')
-rw-r--r-- | doc/apps/verify.pod | 132 |
1 files changed, 65 insertions, 67 deletions
diff --git a/doc/apps/verify.pod b/doc/apps/verify.pod index f42b80646c..5d3467ee4c 100644 --- a/doc/apps/verify.pod +++ b/doc/apps/verify.pod @@ -540,135 +540,135 @@ B<-issuer_checks> option. Not used as of OpenSSL 1.1.0 as a result of the deprecation of the B<-issuer_checks> option. -=item B<33 X509_V_ERR_UNABLE_TO_GET_CRL_ISSUER: unable to get CRL issuer certificate> +=item B<X509_V_ERR_UNABLE_TO_GET_CRL_ISSUER> -TBA +Unable to get CRL issuer certificate. -=item B<34 X509_V_ERR_UNHANDLED_CRITICAL_EXTENSION: unhandled critical extension> +=item B<X509_V_ERR_UNHANDLED_CRITICAL_EXTENSION> -TBA +Unhandled critical extension. -=item B<35 X509_V_ERR_KEYUSAGE_NO_CRL_SIGN: key usage does not include CRL signing> +=item B<X509_V_ERR_KEYUSAGE_NO_CRL_SIGN> -TBA +Key usage does not include CRL signing. -=item B<36 X509_V_ERR_UNHANDLED_CRITICAL_CRL_EXTENSION: unhandled critical CRL extension> +=item B<X509_V_ERR_UNHANDLED_CRITICAL_CRL_EXTENSION> -TBA +Unhandled critical CRL extension. -=item B<37 X509_V_ERR_INVALID_NON_CA: invalid non-CA certificate has CA markings> +=item B<X509_V_ERR_INVALID_NON_CA> -TBA +Invalid non-CA certificate has CA markings. -=item B<38 X509_V_ERR_PROXY_PATH_LENGTH_EXCEEDED: proxy path length constraint exceeded> +=item B<X509_V_ERR_PROXY_PATH_LENGTH_EXCEEDED> -TBA +Proxy path length constraint exceeded. -=item B<39 X509_V_ERR_KEYUSAGE_NO_DIGITAL_SIGNATURE: key usage does not include digital signature> +=item B<X509_V_ERR_KEYUSAGE_NO_DIGITAL_SIGNATURE> -TBA +Key usage does not include digital signature. -=item B<40 X509_V_ERR_PROXY_CERTIFICATES_NOT_ALLOWED: proxy certificates not allowed, please set the appropriate flag> +=item B<X509_V_ERR_PROXY_CERTIFICATES_NOT_ALLOWED> -TBA +Proxy certificates not allowed, please set the appropriate flag. -=item B<41 X509_V_ERR_INVALID_EXTENSION: invalid or inconsistent certificate extension> +=item B<X509_V_ERR_INVALID_EXTENSION> -TBA +Invalid or inconsistent certificate extension. -=item B<42 X509_V_ERR_INVALID_POLICY_EXTENSION: invalid or inconsistent certificate policy extension> +=item B<X509_V_ERR_INVALID_POLICY_EXTENSION> -TBA +Invalid or inconsistent certificate policy extension. -=item B<43 X509_V_ERR_NO_EXPLICIT_POLICY: no explicit policy> +=item B<X509_V_ERR_NO_EXPLICIT_POLICY> -TBA +No explicit policy. -=item B<44 X509_V_ERR_DIFFERENT_CRL_SCOPE: Different CRL scope> +=item B<X509_V_ERR_DIFFERENT_CRL_SCOPE> -TBA +Different CRL scope. -=item B<45 X509_V_ERR_UNSUPPORTED_EXTENSION_FEATURE: Unsupported extension feature> +=item B<X509_V_ERR_UNSUPPORTED_EXTENSION_FEATURE> -TBA +Unsupported extension feature. -=item B<46 X509_V_ERR_UNNESTED_RESOURCE: RFC 3779 resource not subset of parent's resources> +=item B<X509_V_ERR_UNNESTED_RESOURCE> -TBA +RFC 3779 resource not subset of parent's resources. -=item B<47 X509_V_ERR_PERMITTED_VIOLATION: permitted subtree violation> +=item B<X509_V_ERR_PERMITTED_VIOLATION> -TBA +Permitted subtree violation. -=item B<48 X509_V_ERR_EXCLUDED_VIOLATION: excluded subtree violation> +=item B<X509_V_ERR_EXCLUDED_VIOLATION> -TBA +Excluded subtree violation. -=item B<49 X509_V_ERR_SUBTREE_MINMAX: name constraints minimum and maximum not supported> +=item B<X509_V_ERR_SUBTREE_MINMAX> -TBA +Name constraints minimum and maximum not supported. -=item B<50 X509_V_ERR_APPLICATION_VERIFICATION: application verification failure> +=item B<X509_V_ERR_APPLICATION_VERIFICATION> -an application specific error. Unused. +Application verification failure. Unused. -=item B<51 X509_V_ERR_UNSUPPORTED_CONSTRAINT_TYPE: unsupported name constraint type> +=item B<X509_V_ERR_UNSUPPORTED_CONSTRAINT_TYPE> -TBA +Unsupported name constraint type. -=item B<52 X509_V_ERR_UNSUPPORTED_CONSTRAINT_SYNTAX: unsupported or invalid name constraint syntax> +=item B<X509_V_ERR_UNSUPPORTED_CONSTRAINT_SYNTAX> -TBA +Unsupported or invalid name constraint syntax. -=item B<53 X509_V_ERR_UNSUPPORTED_NAME_SYNTAX: unsupported or invalid name syntax> +=item B<X509_V_ERR_UNSUPPORTED_NAME_SYNTAX> -TBA +Unsupported or invalid name syntax. -=item B<54 X509_V_ERR_CRL_PATH_VALIDATION_ERROR: CRL path validation error> +=item B<X509_V_ERR_CRL_PATH_VALIDATION_ERROR> -TBA +CRL path validation error. -=item B<55 X509_V_ERR_PATH_LOOP: Path Loop> +=item B<X509_V_ERR_PATH_LOOP> -TBA +Path loop. -=item B<56 X509_V_ERR_SUITE_B_INVALID_VERSION: Suite B: certificate version invalid> +=item B<X509_V_ERR_SUITE_B_INVALID_VERSION> -TBA +Suite B: certificate version invalid. -=item B<57 X509_V_ERR_SUITE_B_INVALID_ALGORITHM: Suite B: invalid public key algorithm> +=item B<X509_V_ERR_SUITE_B_INVALID_ALGORITHM> -TBA +Suite B: invalid public key algorithm. -=item B<58 X509_V_ERR_SUITE_B_INVALID_CURVE: Suite B: invalid ECC curve> +=item B<X509_V_ERR_SUITE_B_INVALID_CURVE> -TBA +Suite B: invalid ECC curve. -=item B<59 X509_V_ERR_SUITE_B_INVALID_SIGNATURE_ALGORITHM: Suite B: invalid signature algorithm> +=item B<X509_V_ERR_SUITE_B_INVALID_SIGNATURE_ALGORITHM> -TBA +Suite B: invalid signature algorithm. -=item B<60 X509_V_ERR_SUITE_B_LOS_NOT_ALLOWED: Suite B: curve not allowed for this LOS> +=item B<X509_V_ERR_SUITE_B_LOS_NOT_ALLOWED> -TBA +Suite B: curve not allowed for this LOS. -=item B<61 X509_V_ERR_SUITE_B_CANNOT_SIGN_P_384_WITH_P_256: Suite B: cannot sign P-384 with P-256> +=item B<X509_V_ERR_SUITE_B_CANNOT_SIGN_P_384_WITH_P_256> -TBA +Suite B: cannot sign P-384 with P-256. -=item B<62 X509_V_ERR_HOSTNAME_MISMATCH: Hostname mismatch> +=item B<X509_V_ERR_HOSTNAME_MISMATCH> -TBA +Hostname mismatch. -=item B<63 X509_V_ERR_EMAIL_MISMATCH: Email address mismatch> +=item B<X509_V_ERR_EMAIL_MISMATCH> -TBA +Email address mismatch. -=item B<64 X509_V_ERR_IP_ADDRESS_MISMATCH: IP address mismatch> +=item B<X509_V_ERR_IP_ADDRESS_MISMATCH> -TBA +IP address mismatch. -=item B<65 X509_V_ERR_DANE_NO_MATCH: No matching DANE TLSA records> +=item B<X509_V_ERR_DANE_NO_MATCH> DANE TLSA authentication is enabled, but no TLSA records matched the certificate chain. @@ -702,8 +702,6 @@ The B<-show_chain> option was first added to OpenSSL 1.1.0. The B<-issuer_checks> option is deprecated as of OpenSSL 1.1.0 and is silently ignored. -=cut - =head1 COPYRIGHT Copyright 2000-2016 The OpenSSL Project Authors. All Rights Reserved. |