[openssl-commits] [openssl] OpenSSL_1_0_2-stable update

Matt Caswell matt at openssl.org
Fri Jun 3 22:26:28 UTC 2016

The branch OpenSSL_1_0_2-stable has been updated
       via  46bad91986eb56f2beb9059e14fb4ee94c3f952a (commit)
      from  96f1de5bf40af27db3df91c106d799fa86165eb9 (commit)

- Log -----------------------------------------------------------------
commit 46bad91986eb56f2beb9059e14fb4ee94c3f952a
Author: Matt Caswell <matt at openssl.org>
Date:   Fri Jun 3 21:49:01 2016 +0100

    Fix documentation error in x509 app certopt flag
    According to the x509 man page in the section discussing -certopt it says
    that the ca_default option is the same as that used by the ca utility and
    (amongst other things) has the effect of suppressing printing of the
    signature - but in fact it doesn't. This error seems to have been present
    since the documentation was written back in 2001. It never had this effect.
    The default config file sets the certopt value to ca_default. The ca utility
    takes that and THEN adds additional options to suppress printing of the
    signature. So the ca utility DOES suppress printing of the signature - but
    it is not as a result of using the ca_default option.
    GitHub Issue #247
    Reviewed-by: Rich Salz <rsalz at openssl.org>
    (cherry picked from commit 39a470088af6f833bd1a912908c44bf4a9f48b0c)


Summary of changes:
 doc/apps/x509.pod | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/doc/apps/x509.pod b/doc/apps/x509.pod
index 26f71c8..1479a74 100644
--- a/doc/apps/x509.pod
+++ b/doc/apps/x509.pod
@@ -642,8 +642,8 @@ hex dump unsupported extensions.
 =item B<ca_default>
-the value used by the B<ca> utility, equivalent to B<no_issuer>, B<no_pubkey>, B<no_header>,
-B<no_version>, B<no_sigdump> and B<no_signame>.
+the value used by the B<ca> utility, equivalent to B<no_issuer>, B<no_pubkey>,
+B<no_header>, and B<no_version>.

More information about the openssl-commits mailing list