Document -no-CApath and -no-CAfile

Add documentation to all the appropriate apps for the new -no-CApath and -no-CAfile options. Reviewed-by: Andy Polyakov <appro@openssl.org>
author: Matt Caswell <matt@openssl.org> 2015-09-22 19:43:59 +0100
committer: Matt Caswell <matt@openssl.org> 2015-09-25 14:49:59 +0100
commit: 40e2d76becd095c7cb2749ee1b33a7a336c8c17d (patch)
tree: 784a418e406af79c1f9f390d5daf24131baed111 /doc/apps/ocsp.pod
parent: 2b6bcb702d237171ec5217956a42c8dce031ea51 (diff)
1 files changed, 10 insertions, 0 deletions
diff --git a/doc/apps/ocsp.pod b/doc/apps/ocsp.pod
index 256696665a..2399134ad3 100644
--- a/doc/apps/ocsp.pod
+++ b/doc/apps/ocsp.pod
@@ -30,6 +30,8 @@ B<openssl> B<ocsp>
 [B<-path>]
 [B<-CApath dir>]
 [B<-CAfile file>]
+[B<-no-CAfile>]
+[B<-no-CApath>]
 [B<-attime timestamp>]
 [B<-check_ss_sig>]
 [B<-crl_check>]
@@ -177,6 +179,14 @@ connection timeout to the OCSP responder in seconds
 file or pathname containing trusted CA certificates. These are used to verify
 the signature on the OCSP response.
 
+=item B<-no-CAfile>
+
+Do not load the trusted CA certificates from the default file location
+
+=item B<-no-CApath>
+
+Do not load the trusted CA certificates from the default directory location
+
 =item B<-attime>, B<-check_ss_sig>, B<-crl_check>, B<-crl_check_all>,
 B<explicit_policy>, B<-extended_crl>, B<-ignore_critical>, B<-inhibit_any>,
 B<-inhibit_map>, B<-issuer_checks>, B<-partial_chain>, B<-policy>,
author	Matt Caswell <matt@openssl.org>	2015-09-22 19:43:59 +0100
committer	Matt Caswell <matt@openssl.org>	2015-09-25 14:49:59 +0100
commit	40e2d76becd095c7cb2749ee1b33a7a336c8c17d (patch)
tree	784a418e406af79c1f9f390d5daf24131baed111 /doc/apps/ocsp.pod
parent	2b6bcb702d237171ec5217956a42c8dce031ea51 (diff)