diff options
| author | Dr. David von Oheimb <David.von.Oheimb@siemens.com> | 2022-03-15 18:39:13 +0100 |
|---|---|---|
| committer | Dr. David von Oheimb <dev@ddvo.net> | 2022-03-18 20:19:37 +0100 |
| commit | 52a42f54eb9afb599d32c85100d59db46c23ffcc (patch) | |
| tree | 7d3cb2258f109dc15358f0daaf484debfe194ca5 /doc | |
| parent | 1aa1bba59da8248113516533aac270fb374a9584 (diff) | |
OSSL_CMP_MSG_get0_header.pod: re-phrase two lenthy otherwise clauses as lists
Reviewed-by: Paul Dale <pauli@openssl.org>
Reviewed-by: Tomas Mraz <tomas@openssl.org>
Reviewed-by: David von Oheimb <david.von.oheimb@siemens.com>
(Merged from https://github.com/openssl/openssl/pull/17887)
Diffstat (limited to 'doc')
| -rw-r--r-- | doc/man3/OSSL_CMP_MSG_get0_header.pod | 41 |
1 files changed, 28 insertions, 13 deletions
diff --git a/doc/man3/OSSL_CMP_MSG_get0_header.pod b/doc/man3/OSSL_CMP_MSG_get0_header.pod index 1fedde8484..6bc0d26188 100644 --- a/doc/man3/OSSL_CMP_MSG_get0_header.pod +++ b/doc/man3/OSSL_CMP_MSG_get0_header.pod @@ -40,19 +40,34 @@ from various information provided in the CMP context argument I<ctx> for inclusion in a CMP request message based on details contained in I<ctx>. The I<rid> argument defines the request identifier to use, which typically is 0. -The subject DN to include in the certificate template is determined as follows. -If I<ctx> includes a subject name set via L<OSSL_CMP_CTX_set1_subjectName(3)>, -this name is used. -Otherwise, if a PKCS#10 CSR is given in I<ctx>, its subject is used. -Otherwise, if a reference certificate is given in I<ctx> -(see L<OSSL_CMP_CTX_set1_oldCert(3)>), its subject is used if I<for_KUR> -is nonzero or the I<ctx> does not include a Subject Alternative Name. - -The public key to include is taken from any value set via -L<OSSL_CMP_CTX_set0_newPkey(3)>, -otherwise the public key of any PKCS#10 CSR is given in I<ctx>, -otherwise the public key of any reference certificate given in I<ctx>, -otherwise it is derived from the client private key if given in I<ctx>. +The subject DN included in the certificate template is +the first available value of these: + +=over 4 + +=item any subject name in I<ctx> set via L<OSSL_CMP_CTX_set1_subjectName(3)>, + +=item the subject field of any PKCS#10 CSR is given in I<ctx>, or + +=item the subject field of any reference certificate given in I<ctx> +(see L<OSSL_CMP_CTX_set1_oldCert(3)>), if I<for_KUR> is nonzero +or the I<ctx> does not include a Subject Alternative Name. + +=back + +The public key included is the first available value of these: + +=over 4 + +=item the public key derived from any key set via L<OSSL_CMP_CTX_set0_newPkey(3)>, + +=item the public key of any PKCS#10 CSR is given in I<ctx>, + +=item the public key of any reference certificate given in I<ctx>, or + +=item the public key derived from any client private key set via L<OSSL_CMP_CTX_set1_pkey(3)>. + +=back The set of X.509 extensions to include is computed as follows. If a PKCS#10 CSR is present in I<ctx>, default extensions are taken from there, |