openssl

History

Viktor Dukhovni 55a6250f1e Skip CN DNS name constraint checks when not needed Only check the CN against DNS name contraints if the `X509_CHECK_FLAG_NEVER_CHECK_SUBJECT` flag is not set, and either the certificate has no DNS subject alternative names or the `X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT` flag is set. Add pertinent documentation, and touch up some stale text about name checks and DANE. Reviewed-by: Matt Caswell <matt@openssl.org> Reviewed-by: Tim Hudson <tjh@openssl.org>		2018-05-23 11:12:17 -04:00
..
HOWTO	Update some documentation for X448/Ed448	2018-03-02 10:14:31 +00:00
man1	Allow the ca application to use EdDSA	2018-05-18 10:14:29 +01:00
man3	Skip CN DNS name constraint checks when not needed	2018-05-23 11:12:17 -04:00
man5	Clarify the configuration module in config.pod	2018-04-18 16:42:11 -04:00
man7	Docs: add general document on how pass phrases are handled	2018-05-14 15:56:59 +02:00
dir-locals.example.el	Adjust the general fill-column in doc/dir-locals.example.el	2015-09-08 00:59:50 +02:00
fingerprints.txt	Update fingerprints.txt	2018-04-17 16:57:10 +01:00
openssl-c-indent.el	Fix typo in documents	2017-08-01 09:30:11 +10:00
README	More typo fixes	2017-03-29 07:14:29 +02:00

README

README  This file

fingerprints.txt
        PGP fingerprints of authorised release signers

standards.txt
        Moved to the web, https://www.openssl.org/docs/standards.html

HOWTO/
        A few how-to documents; not necessarily up-to-date

man1/
        The openssl command-line tools; start with openssl.pod

man3/
        The SSL library and the crypto library

man5/
        File formats

man7/
        Overviews; start with crypto.pod and ssl.pod, for example
        Algorithm specific EVP_PKEY documentation.

Formatted versions of the manpages (apps,ssl,crypto) can be found at
        https://www.openssl.org/docs/manpages.html