openssl/doc/apps/x509.pod - Issue 9254031: Upgrade chrome's OpenSSL to same version Android ships with.

Keyboard Shortcuts

	File
u :	up to issue
j / k :	jump to file after / before current file
J / K :	jump to next file with a comment after / before current file
	Side-by-side diff
i :	toggle intra-line diffs
e :	expand all comments
c :	collapse all comments
s :	toggle showing all comments
n / p :	next / previous diff chunk or comment
N / P :	next / previous comment
<Up> / <Down> :	next / previous line

	Issue
u :	up to list of issues
j / k :	jump to patch after / before current patch
o / <Enter> :	open current patch in side-by-side view
i :	open current patch in unified diff view

	Issue List
j / k :	jump to issue after / before current issue
o / <Enter> :	open current issue

Unified Diff: openssl/doc/apps/x509.pod

Issue 9254031: Upgrade chrome's OpenSSL to same version Android ships with. (Closed) Base URL: http://src.chromium.org/svn/trunk/deps/third_party/openssl/

Patch Set: '' Created 8 years, 11 months ago

Use n/p to move between diff chunks; N/P to move between comments. Draft comments are only viewable by you.

Jump to:

View side-by-side diff with in-line comments

Download patch

Index: openssl/doc/apps/x509.pod

===================================================================

--- openssl/doc/apps/x509.pod (revision 105093)

+++ openssl/doc/apps/x509.pod (working copy)

@@ -23,6 +23,7 @@

[B<-issuer>]

[B<-nameopt option>]

[B<-email>]

+[B<-ocsp_uri>]

[B<-startdate>]

[B<-enddate>]

[B<-purpose>]

@@ -103,7 +104,7 @@

=item B<-engine id>

-specifying an engine (by it's unique B<id> string) will cause B<req>

+specifying an engine (by its unique B<id> string) will cause B<x509>

to attempt to obtain a functional reference to the specified engine,

thus initialising it if needed. The engine will then be set as the default

for all available algorithms.

@@ -157,6 +158,16 @@

synonym for "-subject_hash" for backward compatibility reasons.

+=item B<-subject_hash_old>

+outputs the "hash" of the certificate subject name using the older algorithm

+as used by OpenSSL versions before 1.0.0.

+=item B<-issuer_hash_old>

+outputs the "hash" of the certificate issuer name using the older algorithm

+as used by OpenSSL versions before 1.0.0.

=item B<-subject>

outputs the subject name.

@@ -176,6 +187,10 @@

outputs the email address(es) if any.

+=item B<-ocsp_uri>

+outputs the OCSP responder address(es) if any.

=item B<-startdate>

prints out the start date of the certificate, that is the notBefore date.

@@ -376,7 +391,9 @@

the section to add certificate extensions from. If this option is not

specified then the extensions should either be contained in the unnamed

(default) section or the default section should contain a variable called

-"extensions" which contains the section to use.

+"extensions" which contains the section to use. See the

+L<x509v3_config(5)|x509v3_config(5)> manual page for details of the

+extension section format.

=back

@@ -823,10 +840,17 @@

=head1 SEE ALSO

L<req(1)|req(1)>, L<ca(1)|ca(1)>, L<genrsa(1)|genrsa(1)>,

-L<gendsa(1)|gendsa(1)>, L<verify(1)|verify(1)>

+L<gendsa(1)|gendsa(1)>, L<verify(1)|verify(1)>,

+L<x509v3_config(5)|x509v3_config(5)>

=head1 HISTORY

Before OpenSSL 0.9.8, the default digest for RSA keys was MD5.

+The hash algorithm used in the B<-subject_hash> and B<-issuer_hash> options

+before OpenSSL 1.0.0 was based on the deprecated MD5 algorithm and the encoding

+of the distinguished name. In OpenSSL 1.0.0 and later it is based on a

+canonical version of the DN using SHA1. This means that any directories using

+the old form must have their links rebuilt using B<c_rehash> or similar.

=cut

« no previous file with comments | « openssl/doc/apps/verify.pod ('k') | openssl/doc/apps/x509v3_config.pod » ('j') | no next file with comments »