Commit 6e501c47 authored Jun 21, 2018 by Pauli

Fix spelling errors in documentation.


Also fix some clumsy wording.

[skip_ci]

Reviewed-by: Richard Levitte <levitte@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/6545)

parent 445bc808

doc/man3/SSL_CTX_sess_set_get_cb.pod

+3 −3

Original line number	Diff line number	Diff line
		@@ -43,9 +43,9 @@ L<SSL_CTX_set_session_cache_mode(3)>).
		(SSL/TLS server only.)

		SSL_CTX_sess_get_new_cb(), SSL_CTX_sess_get_remove_cb(), and
		SSL_CTX_sess_get_get_cb() allow to retrieve the function pointers of the
		provided callback functions. If a callback function has not been set,
		the NULL pointer is returned.
		SSL_CTX_sess_get_get_cb() retrieve the function pointers set by the
		corresponding set callback functions. If a callback function has not been
		set, the NULL pointer is returned.

		=head1 NOTES

doc/man3/SSL_CTX_set_cert_verify_callback.pod

+4 −4

Original line number	Diff line number	Diff line
		@@ -34,10 +34,10 @@ argument I<arg> is specified by the application when setting I<callback>.
		I<callback> should return 1 to indicate verification success and 0 to
		indicate verification failure. If SSL_VERIFY_PEER is set and I<callback>
		returns 0, the handshake will fail. As the verification procedure may
		allow to continue the connection in case of failure (by always returning 1)
		the verification result must be set in any case using the B<error>
		member of I<x509_store_ctx> so that the calling application will be informed
		about the detailed result of the verification procedure!
		allow the connection to continue in the case of failure (by always
		returning 1) the verification result must be set in any case using the
		B<error> member of I<x509_store_ctx> so that the calling application
		will be informed about the detailed result of the verification procedure!

		Within I<x509_store_ctx>, I<callback> has access to the I<verify_callback>
		function set using L<SSL_CTX_set_verify(3)>.

doc/man3/X509_VERIFY_PARAM_set_flags.pod

+1 −1

Original line number	Diff line number	Diff line
		@@ -155,7 +155,7 @@ B<X509_CHECK_FLAG_NEVER_CHECK_SUBJECT> host flag, or because some DNS subject
		alternative names are present in the certificate, DNS name constraints in
		issuer certificates will not be applied to the subject DN.
		As described in X509_check_host(3) the B<X509_CHECK_FLAG_NEVER_CHECK_SUBJECT>
		flag takes precendence over the B<X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT> flag.
		flag takes precedence over the B<X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT> flag.

		X509_VERIFY_PARAM_get_hostflags() returns any host flags previously set via a
		call to X509_VERIFY_PARAM_set_hostflags().

doc/man7/RAND_DRBG.pod

+1 −1

Original line number	Diff line number	Diff line
		@@ -222,7 +222,7 @@ This is in fact done automatically by L<RAND_DRBG_bytes(3)>.

		In most cases OpenSSL will automatically choose a suitable seed source
		for automatically seeding and reseeding its <master> DRBG. In some cases
		however, it will be necessary to explicitely specify a seed source during
		however, it will be necessary to explicitly specify a seed source during
		configuration, using the --with-rand-seed option. For more information,
		see the INSTALL instructions. There are also operating systems where no
		seed source is available and automatic reseeding is disabled by default.