diff options
author | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2019-12-23 15:40:47 +0100 |
---|---|---|
committer | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2020-07-01 11:14:54 +0200 |
commit | ade08735f9d0ac85d611c5abee8a1df651bbca13 (patch) | |
tree | 2e39bef19aa164c163813ac4f7091622efd55f8f /apps/x509.c | |
parent | 5188d0d55c72138dd1b65521fb73ac31902f0a52 (diff) |
Improve documentation, layout, and code comments regarding self-issued certs etc.
Reviewed-by: Viktor Dukhovni <viktor@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/10587)
Diffstat (limited to 'apps/x509.c')
-rw-r--r-- | apps/x509.c | 10 |
1 files changed, 5 insertions, 5 deletions
diff --git a/apps/x509.c b/apps/x509.c index ea083abc64..c64c7d2811 100644 --- a/apps/x509.c +++ b/apps/x509.c @@ -135,7 +135,7 @@ const OPTIONS x509_options[] = { {"setalias", OPT_SETALIAS, 's', "Set certificate alias"}, {"days", OPT_DAYS, 'n', "How long till expiry of a signed certificate - def 30 days"}, - {"signkey", OPT_SIGNKEY, 's', "Self sign cert with arg"}, + {"signkey", OPT_SIGNKEY, 's', "Self-sign cert with arg"}, {"set_serial", OPT_SET_SERIAL, 's', "Serial number to use"}, {"extensions", OPT_EXTENSIONS, 's', "Section from config file to use"}, {"certopt", OPT_CERTOPT, 's', "Various certificate text options"}, @@ -1030,7 +1030,7 @@ static int x509_certify(X509_STORE *ctx, const char *CAfile, const EVP_MD *diges goto end; /* - * NOTE: this certificate can/should be self signed, unless it was a + * NOTE: this certificate can/should be self-signed, unless it was a * certificate request in which case it is not. */ X509_STORE_CTX_set_cert(xsc, x); @@ -1084,8 +1084,8 @@ static int callb(int ok, X509_STORE_CTX *ctx) X509 *err_cert; /* - * it is ok to use a self signed certificate This case will catch both - * the initial ok == 0 and the final ok == 1 calls to this function + * It is ok to use a self-signed certificate. This case will catch both + * the initial ok == 0 and the final ok == 1 calls to this function. */ err = X509_STORE_CTX_get_error(ctx); if (err == X509_V_ERR_DEPTH_ZERO_SELF_SIGNED_CERT) @@ -1098,7 +1098,7 @@ static int callb(int ok, X509_STORE_CTX *ctx) */ if (ok) { BIO_printf(bio_err, - "error with certificate to be certified - should be self signed\n"); + "error with certificate to be certified - should be self-signed\n"); return 0; } else { err_cert = X509_STORE_CTX_get_current_cert(ctx); |