1 files changed, 14 insertions, 10 deletions
diff --git a/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3 b/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3
index 2e55f6cbed..ae23b46c15 100644
--- a/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3
+++ b/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3
@@ -1,4 +1,4 @@
-.\"     $OpenBSD: ESS_SIGNING_CERT_new.3,v 1.2 2016/12/14 07:00:35 jmc Exp $
+.\"     $OpenBSD: ESS_SIGNING_CERT_new.3,v 1.3 2016/12/25 22:15:10 schwarze Exp $
 .\"
 .\" Copyright (c) 2016 Ingo Schwarze <schwarze@openbsd.org>
 .\"
@@ -14,7 +14,7 @@
 .\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
 .\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
 .\"
-.Dd $Mdocdate: December 14 2016 $
+.Dd $Mdocdate: December 25 2016 $
 .Dt ESS_SIGNING_CERT_NEW 3
 .Os
 .Sh NAME
@@ -41,14 +41,16 @@
 .Fn ESS_ISSUER_SERIAL_free "ESS_ISSUER_SERIAL *issuer_serial"
 .Sh DESCRIPTION
 The signing certificate may be included in the signedAttributes
-field of a SignerInfo structure to mitigate simple substitution and
+field of a
-re-issue attacks.
+.Vt SignerInfo
+structure to mitigate simple substitution and re-issue attacks.
 .Pp
 .Fn ESS_SIGNING_CERT_new
 allocates and initializes an empty
 .Vt ESS_SIGNING_CERT
-object, representing an ASN.1 SigningCertificate structure
+object, representing an ASN.1
-defined in RFC 2634 section 5.4.
+.Vt SigningCertificate
+structure defined in RFC 2634 section 5.4.
 It can hold the certificate used for signing the data,
 additional authorization certificates that can be used during
 validation, and policies applying to the certificate.
@@ -59,8 +61,9 @@ frees
 .Fn ESS_CERT_ID_new
 allocates and initializes an empty
 .Vt ESS_CERT_ID
-object, representing an ASN.1 ESSCertID structure
+object, representing an ASN.1
-defined in RFC 2634 section 5.4.1.
+.Vt ESSCertID
+structure defined in RFC 2634 section 5.4.1.
 Such objects can be used inside
 .Vt ESS_SIGNING_CERT
 objects, and each one can hold a SHA1 hash of one certificate.
@@ -71,8 +74,9 @@ frees
 .Fn ESS_ISSUER_SERIAL_new
 allocates and initializes an empty
 .Vt ESS_ISSUER_SERIAL
-object, representing an ASN.1 IssuerSerial structure
+object, representing an ASN.1
-defined in RFC 2634 section 5.4.1.
+.Vt IssuerSerial
+structure defined in RFC 2634 section 5.4.1.
 It can hold an issuer name and a serial number and can be included in an
 .Vt ESS_CERT_ID
 object, which is useful for additional authorization certificates,

diff --git a/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3 b/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3 index 2e55f6cbed..ae23b46c15 100644 --- a/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3 +++ b/src/lib/libcrypto/man/ESS_SIGNING_CERT_new.3
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: ESS_SIGNING_CERT_new.3,v 1.2 2016/12/14 07:00:35 jmc Exp $	1	.\" $OpenBSD: ESS_SIGNING_CERT_new.3,v 1.3 2016/12/25 22:15:10 schwarze Exp $
2	.\"	2	.\"
3	.\" Copyright (c) 2016 Ingo Schwarze <schwarze@openbsd.org>	3	.\" Copyright (c) 2016 Ingo Schwarze <schwarze@openbsd.org>
4	.\"	4	.\"
@@ -14,7 +14,7 @@
14	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF	14	.\" ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
15	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.	15	.\" OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
16	.\"	16	.\"
17	.Dd $Mdocdate: December 14 2016 $	17	.Dd $Mdocdate: December 25 2016 $
18	.Dt ESS_SIGNING_CERT_NEW 3	18	.Dt ESS_SIGNING_CERT_NEW 3
19	.Os	19	.Os
20	.Sh NAME	20	.Sh NAME
@@ -41,14 +41,16 @@
41	.Fn ESS_ISSUER_SERIAL_free "ESS_ISSUER_SERIAL *issuer_serial"	41	.Fn ESS_ISSUER_SERIAL_free "ESS_ISSUER_SERIAL *issuer_serial"
42	.Sh DESCRIPTION	42	.Sh DESCRIPTION
43	The signing certificate may be included in the signedAttributes	43	The signing certificate may be included in the signedAttributes
44	field of a SignerInfo structure to mitigate simple substitution and	44	field of a
45	re-issue attacks.	45	.Vt SignerInfo
		46	structure to mitigate simple substitution and re-issue attacks.
46	.Pp	47	.Pp
47	.Fn ESS_SIGNING_CERT_new	48	.Fn ESS_SIGNING_CERT_new
48	allocates and initializes an empty	49	allocates and initializes an empty
49	.Vt ESS_SIGNING_CERT	50	.Vt ESS_SIGNING_CERT
50	object, representing an ASN.1 SigningCertificate structure	51	object, representing an ASN.1
51	defined in RFC 2634 section 5.4.	52	.Vt SigningCertificate
		53	structure defined in RFC 2634 section 5.4.
52	It can hold the certificate used for signing the data,	54	It can hold the certificate used for signing the data,
53	additional authorization certificates that can be used during	55	additional authorization certificates that can be used during
54	validation, and policies applying to the certificate.	56	validation, and policies applying to the certificate.
@@ -59,8 +61,9 @@ frees
59	.Fn ESS_CERT_ID_new	61	.Fn ESS_CERT_ID_new
60	allocates and initializes an empty	62	allocates and initializes an empty
61	.Vt ESS_CERT_ID	63	.Vt ESS_CERT_ID
62	object, representing an ASN.1 ESSCertID structure	64	object, representing an ASN.1
63	defined in RFC 2634 section 5.4.1.	65	.Vt ESSCertID
		66	structure defined in RFC 2634 section 5.4.1.
64	Such objects can be used inside	67	Such objects can be used inside
65	.Vt ESS_SIGNING_CERT	68	.Vt ESS_SIGNING_CERT
66	objects, and each one can hold a SHA1 hash of one certificate.	69	objects, and each one can hold a SHA1 hash of one certificate.
@@ -71,8 +74,9 @@ frees
71	.Fn ESS_ISSUER_SERIAL_new	74	.Fn ESS_ISSUER_SERIAL_new
72	allocates and initializes an empty	75	allocates and initializes an empty
73	.Vt ESS_ISSUER_SERIAL	76	.Vt ESS_ISSUER_SERIAL
74	object, representing an ASN.1 IssuerSerial structure	77	object, representing an ASN.1
75	defined in RFC 2634 section 5.4.1.	78	.Vt IssuerSerial
		79	structure defined in RFC 2634 section 5.4.1.
76	It can hold an issuer name and a serial number and can be included in an	80	It can hold an issuer name and a serial number and can be included in an
77	.Vt ESS_CERT_ID	81	.Vt ESS_CERT_ID
78	object, which is useful for additional authorization certificates,	82	object, which is useful for additional authorization certificates,