diff options
author | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2021-12-07 19:07:43 +0100 |
---|---|---|
committer | Dr. David von Oheimb <dev@ddvo.net> | 2021-12-15 11:47:54 +0100 |
commit | bfbeb31d6d0dfed4029c91a416857e5e0f35fa93 (patch) | |
tree | 7e5e2c6085360b9aae5fdf4db43a01496f74aad2 /doc | |
parent | b11183f68658cf625a3befd6d245923d588638f5 (diff) |
APPS/cmp: Fix logic and doc of mutually exclusive -server/-use_mock_srv/-port/-rspin options
Ignore -server with -rspin and exclude all of -use_mock_srv/-port/-rspin.
On the other hand, -server is required if no -use_mock_srv/-port/-rspin is given.
Ignore -tls_used with -use_mock_srv and -rspin; it is not supported with -port.
If -server is not given, ignore -proxy, -no_proxy, and -tls_used.
Also slightly improve the documentation of the two mock server variants.
Reviewed-by: Paul Dale <pauli@openssl.org>
(Merged from https://github.com/openssl/openssl/pull/17254)
(cherry picked from commit a56bb5d64e7599140117f935eeeb34ba94c83aea)
Diffstat (limited to 'doc')
-rw-r--r-- | doc/man1/openssl-cmp.pod.in | 22 |
1 files changed, 16 insertions, 6 deletions
diff --git a/doc/man1/openssl-cmp.pod.in b/doc/man1/openssl-cmp.pod.in index 420c194a6c..a1d80dad40 100644 --- a/doc/man1/openssl-cmp.pod.in +++ b/doc/man1/openssl-cmp.pod.in @@ -440,8 +440,10 @@ Reason numbers defined in RFC 5280 are: =item B<-server> I<[http[s]://][userinfo@]host[:port][/path][?query][#fragment]> -The IP address or DNS hostname and optionally port -of the CMP server to connect to using HTTP(S) transport. +The DNS hostname or IP address and optionally port +of the CMP server to connect to using HTTP(S). +This excludes I<-port> and I<-use_mock_srv> and is ignored with I<-rspin>. + The scheme C<https> may be given only if the B<-tls_used> option is used. In this case the default port is 443, else 80. The optional userinfo and fragment components are ignored. @@ -458,6 +460,7 @@ selected by B<-tls_used>), as well as any path, userinfo, and query, and fragmen components. Defaults to the environment variable C<http_proxy> if set, else C<HTTP_PROXY> in case no TLS is used, otherwise C<https_proxy> if set, else C<HTTPS_PROXY>. +This option is ignored if I<-server> is not given. =item B<-no_proxy> I<addresses> @@ -465,6 +468,7 @@ List of IP addresses and/or DNS names of servers not to use an HTTP(S) proxy for, separated by commas and/or whitespace (where in the latter case the whole argument must be enclosed in "..."). Default is from the environment variable C<no_proxy> if set, else C<NO_PROXY>. +This option is ignored if I<-server> is not given. =item B<-recipient> I<name> @@ -795,7 +799,10 @@ B<-tls_key>. =item B<-tls_used> Enable using TLS (even when other TLS_related options are not set) -when connecting to CMP server. +when connecting to CMP server via HTTP. +This option is not supported with the I<-port> option +and is ignored with the I<-use_mock_srv> and I<-rspin> options +or if the I<-server> option is not given. =item B<-tls_cert> I<filename>|I<uri> @@ -880,6 +887,7 @@ As many files are written as needed to store the complete transaction. =item B<-rspin> I<filenames> Process sequence of CMP responses provided in file(s), skipping server. +This excludes I<-server>, I<-port>, and I<-use_mock_srv>. Multiple filenames may be given, separated by commas and/or whitespace. As many files are read as needed for the complete transaction. @@ -893,8 +901,9 @@ As many files are written as needed to store the complete transaction. =item B<-use_mock_srv> -Use the internal mock server for testing the client. -This works at API level, bypassing HTTP transport. +Test the client using the internal CMP server mock-up at API level, +bypassing socket-based transfer via HTTP. +This excludes I<-server>, I<-port>, and I<-rspin>. =back @@ -904,7 +913,8 @@ This works at API level, bypassing HTTP transport. =item B<-port> I<number> -Act as CMP HTTP server mock-up listening on the given port. +Act as HTTP-based CMP server mock-up listening on the given port. +This excludes I<-server>, I<-rspin>, and I<-use_mock_srv>. =item B<-max_msgs> I<number> |