Permalink
Browse files

doc/man1/x509.pod: corrected "S/MIME signing" requirements

When the "certificate purpose" is checked and KeyUsage extension is present,
either 'digitalSignature' or 'nonRepudiation' is accepted.

Manual page corrected to reflect the above.

Signed-off-by: Konstantin Shemyak <konstantin@shemyak.com>

Reviewed-by: Andy Polyakov <appro@openssl.org>
Reviewed-by: Rich Salz <rsalz@openssl.org>
(Merged from #5727)
  • Loading branch information...
KonstantinShemyak authored and dot-asm committed Mar 22, 2018
1 parent dee0cc1 commit c4eec78d221c6aa8d96d4d0ea9e7525490ffe222
Showing with 2 additions and 2 deletions.
  1. +2 −2 doc/man1/x509.pod
View
@@ -871,8 +871,8 @@ this is because some Verisign certificates don't set the S/MIME bit.
=item B<S/MIME Signing>
In addition to the common S/MIME client tests the digitalSignature bit must
be set if the keyUsage extension is present.
In addition to the common S/MIME client tests the digitalSignature bit or
the nonRepudiation bit must be set if the keyUsage extension is present.
=item B<S/MIME Encryption>

0 comments on commit c4eec78

Please sign in to comment.