Commit c4eec78d authored by Konstantin Shemyak's avatar Konstantin Shemyak Committed by Andy Polyakov
Browse files

doc/man1/x509.pod: corrected "S/MIME signing" requirements 



When the "certificate purpose" is checked and KeyUsage extension is present,
either 'digitalSignature' or 'nonRepudiation' is accepted.

Manual page corrected to reflect the above.

Signed-off-by: default avatarKonstantin Shemyak <konstantin@shemyak.com>

Reviewed-by: default avatarAndy Polyakov <appro@openssl.org>
Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/5727)
parent dee0cc10

doc/man1/x509.pod

+2 −2
Original line number Diff line number Diff line
@@ -871,8 +871,8 @@ this is because some Verisign certificates don't set the S/MIME bit. 


=item B<S/MIME Signing>



In addition to the common S/MIME client tests the digitalSignature bit must

be set if the keyUsage extension is present.

In addition to the common S/MIME client tests the digitalSignature bit or

the nonRepudiation bit must be set if the keyUsage extension is present.



=item B<S/MIME Encryption>