Commit 9dee5244 authored by Matt Caswell's avatar Matt Caswell
Browse files

Add documentation for some missing verify options 



Fills in a couple of verify options that were lacking documentation.

Reviewed-by: default avatarRich Salz <rsalz@openssl.org>
(cherry picked from commit 79a55b1f)

Conflicts:
	doc/apps/verify.pod
parent 692f07c3

doc/apps/verify.pod

+11 −0
Original line number Diff line number Diff line
@@ -15,6 +15,7 @@ B<openssl> B<verify> 
[B<-attime timestamp>]

[B<-check_ss_sig>]

[B<-crlfile file>]

[B<-crl_download>]

[B<-crl_check>]

[B<-crl_check_all>]

[B<-policy_check>]
@@ -29,6 +30,7 @@ B<openssl> B<verify> 
[B<-untrusted file>]

[B<-help>]

[B<-issuer_checks>]

[B<-trusted file>]

[B<-verbose>]

[B<->]

[certificates]
@@ -69,6 +71,10 @@ because it doesn't add any security. 


File containing one or more CRL's (in PEM format) to load.



=item B<-crl_download>



Attempt to download CRL information for this certificate.



=item B<-crl_check>



Checks end entity certificate validity by attempting to look up a valid CRL.
@@ -133,6 +139,11 @@ be found that is trusted. With this option that behaviour is suppressed so that 
only the first chain found is ever used. Using this option will force the

behaviour to match that of previous OpenSSL versions.



=item B<-trusted file>



A file of additional trusted certificates. The file should contain multiple

certificates in PEM format concatenated together.



=item B<-policy_print>



Print out diagnostics related to policy processing.