Write new DIST_POINT_new(3) manual page from scratch.

All functions documented here are listed in <openssl/x509v3.h> and in OpenSSL doc/man3/X509_dup.pod. OpenSSL documentation specifies the wrong header file.
author: schwarze <> 2016-12-23 15:25:19 +0000
committer: schwarze <> 2016-12-23 15:25:19 +0000
commit: 2ef9e674d440147afdb3ca73cf9a2f40ea040d2f (patch)
tree: ac17eb681798c4c6ee390db61b4d81250376d4a0 /src/lib
parent: ecc1a96a4ea756a28768a463b46816210f6e9239 (diff)
download: openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.tar.gz
openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.tar.bz2
openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.zip
2 files changed, 135 insertions, 1 deletions
diff --git a/src/lib/libcrypto/man/DIST_POINT_new.3 b/src/lib/libcrypto/man/DIST_POINT_new.3
new file mode 100644
index 0000000000..8498e5a7d0
--- /dev/null
+++ b/src/lib/libcrypto/man/DIST_POINT_new.3
@@ -0,0 +1,133 @@
+.\"     $OpenBSD: DIST_POINT_new.3,v 1.1 2016/12/23 15:25:19 schwarze Exp $
+.\"
+.\" Copyright (c) 2016 Ingo Schwarze <schwarze@openbsd.org>
+.\"
+.\" Permission to use, copy, modify, and distribute this software for any
+.\" purpose with or without fee is hereby granted, provided that the above
+.\" copyright notice and this permission notice appear in all copies.
+.\"
+.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
+.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
+.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
+.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
+.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
+.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
+.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
+.\"
+.Dd $Mdocdate: December 23 2016 $
+.Dt DIST_POINT_NEW 3
+.Os
+.Sh NAME
+.Nm DIST_POINT_new ,
+.Nm DIST_POINT_free ,
+.Nm CRL_DIST_POINTS_new ,
+.Nm CRL_DIST_POINTS_free ,
+.Nm DIST_POINT_NAME_new ,
+.Nm DIST_POINT_NAME_free ,
+.Nm ISSUING_DIST_POINT_new ,
+.Nm ISSUING_DIST_POINT_free
+.Nd X.509 CRL distribution point extensions
+.Sh SYNOPSIS
+.In openssl/x509v3.h
+.Ft DIST_POINT *
+.Fn DIST_POINT_new void
+.Ft void
+.Fn DIST_POINT_free "DIST_POINT *dp"
+.Ft CRL_DIST_POINTS *
+.Fn CRL_DIST_POINTS_new void
+.Ft void
+.Fn CRL_DIST_POINTS_free "CRL_DIST_POINTS *dps"
+.Ft DIST_POINT_NAME *
+.Fn DIST_POINT_NAME_new void
+.Ft void
+.Fn DIST_POINT_NAME_free "DIST_POINT_NAME *name"
+.Ft ISSUING_DIST_POINT *
+.Fn ISSUING_DIST_POINT_new void
+.Ft void
+.Fn ISSUING_DIST_POINT_free "ISSUING_DIST_POINT *dp"
+.Sh DESCRIPTION
+Using the CRL distribution point extension, a certificate can specify
+where to obtain certificate revocation lists that might later revoke it.
+.Pp
+.Fn DIST_POINT_new
+allocates and initializes an empty
+.Vt DIST_POINT
+object, representing an ASN.1 DistributionPoint structure
+defined in RFC 5280 section 4.2.1.13.
+It can hold issuer names, distribution point names, and reason flags.
+.Fn DIST_POINT_free
+frees
+.Fa dp .
+.Pp
+.Fn CRL_DIST_POINTS_new
+allocates and initializes an empty
+.Vt CRL_DIST_POINTS
+object, which is a
+.Vt STACK_OF(DIST_POINT)
+and represents the ASN.1 CRLDistributionPoints structure
+defined in RFC 5280 section 4.2.1.13.
+It can be used as an extension in
+.Vt X509
+and in
+.Vt X509_CRL
+objects.
+.Fn CRL_DIST_POINTS_free
+frees
+.Fa dps .
+.Pp
+.Fn DIST_POINT_NAME_new
+allocates and initializes an empty
+.Vt DIST_POINT_NAME
+object, representing an ASN.1 DistributionPointName structure
+defined in RFC 5280 section 4.2.1.13.
+It is used by the
+.Vt DIST_POINT
+and
+.Vt ISSUING_DIST_POINT
+objects and can hold multiple names, each representing a different
+way to obtain the same CRL.
+.Fn DIST_POINT_NAME_free
+frees
+.Fa name .
+.Pp
+.Fn ISSUING_DIST_POINT_new
+allocates and initializes an empty
+.Vt ISSUING_DIST_POINT
+object, representing an ASN.1 IssuingDistributionPoint structure
+defined in RFC 5280 section 5.2.5.
+Using this extension, a CRL can specify which distribution point
+it was issued from and which kinds of certificates and revocation
+reasons it covers.
+.Fn ISSUING_DIST_POINT_free
+frees
+.Fa dp .
+.Sh RETURN VALUES
+.Fn DIST_POINT_new ,
+.Fn CRL_DIST_POINTS_new ,
+.Fn DIST_POINT_NAME_new ,
+and
+.Fn ISSUING_DIST_POINT_new
+return the new
+.Vt DIST_POINT ,
+.Vt CRL_DIST_POINTS ,
+.Vt DIST_POINT_NAME ,
+or
+.Vt ISSUING_DIST_POINT
+object, respectively, or
+.Dv NULL
+if an error occurs.
+.Sh SEE ALSO
+.Xr GENERAL_NAMES_new 3 ,
+.Xr X509_CRL_new 3 ,
+.Xr X509_EXTENSION_new 3 ,
+.Xr X509_NAME_new 3 ,
+.Xr X509_new 3
+.Sh STANDARDS
+RFC 5280: Internet X.509 Public Key Infrastructure Certificate and
+Certificate Revocation List (CRL) Profile:
+.Bl -dash -compact
+.It
+section 4.2.1.13: CRL Distribution Points
+.It
+section 5.2.5: Issuing Distribution Point
+.El
diff --git a/src/lib/libcrypto/man/Makefile b/src/lib/libcrypto/man/Makefile
index 97593fc86f..41c850357c 100644
--- a/src/lib/libcrypto/man/Makefile
+++ b/src/lib/libcrypto/man/Makefile
@@ -1,4 +1,4 @@
-# $OpenBSD: Makefile,v 1.91 2016/12/23 14:37:08 schwarze Exp $
+# $OpenBSD: Makefile,v 1.92 2016/12/23 15:25:19 schwarze Exp $
 .include <bsd.own.mk>
@@ -67,6 +67,7 @@ MAN=	\
        DH_new.3 \
        DH_set_method.3 \
        DH_size.3 \
+        DIST_POINT_new.3 \
        DSA_SIG_new.3 \
        DSA_do_sign.3 \
        DSA_dup_DH.3 \
author	schwarze <>	2016-12-23 15:25:19 +0000
committer	schwarze <>	2016-12-23 15:25:19 +0000
commit	2ef9e674d440147afdb3ca73cf9a2f40ea040d2f (patch)
tree	ac17eb681798c4c6ee390db61b4d81250376d4a0 /src/lib
parent	ecc1a96a4ea756a28768a463b46816210f6e9239 (diff)
download	openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.tar.gz openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.tar.bz2 openbsd-2ef9e674d440147afdb3ca73cf9a2f40ea040d2f.zip

diff --git a/src/lib/libcrypto/man/DIST_POINT_new.3 b/src/lib/libcrypto/man/DIST_POINT_new.3 new file mode 100644 index 0000000000..8498e5a7d0 --- /dev/null +++ b/src/lib/libcrypto/man/DIST_POINT_new.3
@@ -0,0 +1,133 @@
		1	.\" $OpenBSD: DIST_POINT_new.3,v 1.1 2016/12/23 15:25:19 schwarze Exp $
		2	.\"
		3	.\" Copyright (c) 2016 Ingo Schwarze <schwarze@openbsd.org>
		4	.\"
		5	.\" Permission to use, copy, modify, and distribute this software for any
		6	.\" purpose with or without fee is hereby granted, provided that the above
		7	.\" copyright notice and this permission notice appear in all copies.
		8	.\"
		9	.\" THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
		10	.\" WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
		11	.\" MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
		12	.\" ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
		13	.\" WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
		14	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
		15	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
		16	.\"
		17	.Dd $Mdocdate: December 23 2016 $
		18	.Dt DIST_POINT_NEW 3
		19	.Os
		20	.Sh NAME
		21	.Nm DIST_POINT_new ,
		22	.Nm DIST_POINT_free ,
		23	.Nm CRL_DIST_POINTS_new ,
		24	.Nm CRL_DIST_POINTS_free ,
		25	.Nm DIST_POINT_NAME_new ,
		26	.Nm DIST_POINT_NAME_free ,
		27	.Nm ISSUING_DIST_POINT_new ,
		28	.Nm ISSUING_DIST_POINT_free
		29	.Nd X.509 CRL distribution point extensions
		30	.Sh SYNOPSIS
		31	.In openssl/x509v3.h
		32	.Ft DIST_POINT *
		33	.Fn DIST_POINT_new void
		34	.Ft void
		35	.Fn DIST_POINT_free "DIST_POINT *dp"
		36	.Ft CRL_DIST_POINTS *
		37	.Fn CRL_DIST_POINTS_new void
		38	.Ft void
		39	.Fn CRL_DIST_POINTS_free "CRL_DIST_POINTS *dps"
		40	.Ft DIST_POINT_NAME *
		41	.Fn DIST_POINT_NAME_new void
		42	.Ft void
		43	.Fn DIST_POINT_NAME_free "DIST_POINT_NAME *name"
		44	.Ft ISSUING_DIST_POINT *
		45	.Fn ISSUING_DIST_POINT_new void
		46	.Ft void
		47	.Fn ISSUING_DIST_POINT_free "ISSUING_DIST_POINT *dp"
		48	.Sh DESCRIPTION
		49	Using the CRL distribution point extension, a certificate can specify
		50	where to obtain certificate revocation lists that might later revoke it.
		51	.Pp
		52	.Fn DIST_POINT_new
		53	allocates and initializes an empty
		54	.Vt DIST_POINT
		55	object, representing an ASN.1 DistributionPoint structure
		56	defined in RFC 5280 section 4.2.1.13.
		57	It can hold issuer names, distribution point names, and reason flags.
		58	.Fn DIST_POINT_free
		59	frees
		60	.Fa dp .
		61	.Pp
		62	.Fn CRL_DIST_POINTS_new
		63	allocates and initializes an empty
		64	.Vt CRL_DIST_POINTS
		65	object, which is a
		66	.Vt STACK_OF(DIST_POINT)
		67	and represents the ASN.1 CRLDistributionPoints structure
		68	defined in RFC 5280 section 4.2.1.13.
		69	It can be used as an extension in
		70	.Vt X509
		71	and in
		72	.Vt X509_CRL
		73	objects.
		74	.Fn CRL_DIST_POINTS_free
		75	frees
		76	.Fa dps .
		77	.Pp
		78	.Fn DIST_POINT_NAME_new
		79	allocates and initializes an empty
		80	.Vt DIST_POINT_NAME
		81	object, representing an ASN.1 DistributionPointName structure
		82	defined in RFC 5280 section 4.2.1.13.
		83	It is used by the
		84	.Vt DIST_POINT
		85	and
		86	.Vt ISSUING_DIST_POINT
		87	objects and can hold multiple names, each representing a different
		88	way to obtain the same CRL.
		89	.Fn DIST_POINT_NAME_free
		90	frees
		91	.Fa name .
		92	.Pp
		93	.Fn ISSUING_DIST_POINT_new
		94	allocates and initializes an empty
		95	.Vt ISSUING_DIST_POINT
		96	object, representing an ASN.1 IssuingDistributionPoint structure
		97	defined in RFC 5280 section 5.2.5.
		98	Using this extension, a CRL can specify which distribution point
		99	it was issued from and which kinds of certificates and revocation
		100	reasons it covers.
		101	.Fn ISSUING_DIST_POINT_free
		102	frees
		103	.Fa dp .
		104	.Sh RETURN VALUES
		105	.Fn DIST_POINT_new ,
		106	.Fn CRL_DIST_POINTS_new ,
		107	.Fn DIST_POINT_NAME_new ,
		108	and
		109	.Fn ISSUING_DIST_POINT_new
		110	return the new
		111	.Vt DIST_POINT ,
		112	.Vt CRL_DIST_POINTS ,
		113	.Vt DIST_POINT_NAME ,
		114	or
		115	.Vt ISSUING_DIST_POINT
		116	object, respectively, or
		117	.Dv NULL
		118	if an error occurs.
		119	.Sh SEE ALSO
		120	.Xr GENERAL_NAMES_new 3 ,
		121	.Xr X509_CRL_new 3 ,
		122	.Xr X509_EXTENSION_new 3 ,
		123	.Xr X509_NAME_new 3 ,
		124	.Xr X509_new 3
		125	.Sh STANDARDS
		126	RFC 5280: Internet X.509 Public Key Infrastructure Certificate and
		127	Certificate Revocation List (CRL) Profile:
		128	.Bl -dash -compact
		129	.It
		130	section 4.2.1.13: CRL Distribution Points
		131	.It
		132	section 5.2.5: Issuing Distribution Point
		133	.El


diff --git a/src/lib/libcrypto/man/Makefile b/src/lib/libcrypto/man/Makefile index 97593fc86f..41c850357c 100644 --- a/src/lib/libcrypto/man/Makefile +++ b/src/lib/libcrypto/man/Makefile
@@ -1,4 +1,4 @@
1	# $OpenBSD: Makefile,v 1.91 2016/12/23 14:37:08 schwarze Exp $	1	# $OpenBSD: Makefile,v 1.92 2016/12/23 15:25:19 schwarze Exp $
2		2
3	.include <bsd.own.mk>	3	.include <bsd.own.mk>
4		4
@@ -67,6 +67,7 @@ MAN= \
67	DH_new.3 \	67	DH_new.3 \
68	DH_set_method.3 \	68	DH_set_method.3 \
69	DH_size.3 \	69	DH_size.3 \
		70	DIST_POINT_new.3 \
70	DSA_SIG_new.3 \	71	DSA_SIG_new.3 \
71	DSA_do_sign.3 \	72	DSA_do_sign.3 \
72	DSA_dup_DH.3 \	73	DSA_dup_DH.3 \