6 年之前 · 6e501c4719
--- a/doc/man3/SSL_CTX_sess_set_get_cb.pod
+++ b/doc/man3/SSL_CTX_sess_set_get_cb.pod
@@ -43,9 +43,9 @@ L<SSL_CTX_set_session_cache_mode(3)>).
 
				 (SSL/TLS server only.)
			
 
				 
			
 
				 SSL_CTX_sess_get_new_cb(), SSL_CTX_sess_get_remove_cb(), and
			
 
				-SSL_CTX_sess_get_get_cb() allow to retrieve the function pointers of the
			
 
				-provided callback functions. If a callback function has not been set,
			
 
				-the NULL pointer is returned.
			
 
				+SSL_CTX_sess_get_get_cb() retrieve the function pointers set by the
			
 
				+corresponding set callback functions. If a callback function has not been
			
 
				+set, the NULL pointer is returned.
			
 
				 
			
 
				 =head1 NOTES
			
 
				 
			
--- a/doc/man3/SSL_CTX_set_cert_verify_callback.pod
+++ b/doc/man3/SSL_CTX_set_cert_verify_callback.pod
@@ -34,10 +34,10 @@ argument I<arg> is specified by the application when setting I<callback>.
 
				 I<callback> should return 1 to indicate verification success and 0 to
			
 
				 indicate verification failure. If SSL_VERIFY_PEER is set and I<callback>
			
 
				 returns 0, the handshake will fail. As the verification procedure may
			
 
				-allow to continue the connection in case of failure (by always returning 1)
			
 
				-the verification result must be set in any case using the B<error>
			
 
				-member of I<x509_store_ctx> so that the calling application will be informed
			
 
				-about the detailed result of the verification procedure!
			
 
				+allow the connection to continue in the case of failure (by always
			
 
				+returning 1) the verification result must be set in any case using the
			
 
				+B<error> member of I<x509_store_ctx> so that the calling application
			
 
				+will be informed about the detailed result of the verification procedure!
			
 
				 
			
 
				 Within I<x509_store_ctx>, I<callback> has access to the I<verify_callback>
			
 
				 function set using L<SSL_CTX_set_verify(3)>.
			
--- a/doc/man3/X509_VERIFY_PARAM_set_flags.pod
+++ b/doc/man3/X509_VERIFY_PARAM_set_flags.pod
@@ -155,7 +155,7 @@ B<X509_CHECK_FLAG_NEVER_CHECK_SUBJECT> host flag, or because some DNS subject
 
				 alternative names are present in the certificate, DNS name constraints in
			
 
				 issuer certificates will not be applied to the subject DN.
			
 
				 As described in X509_check_host(3) the B<X509_CHECK_FLAG_NEVER_CHECK_SUBJECT>
			
 
				-flag takes precendence over the B<X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT> flag.
			
 
				+flag takes precedence over the B<X509_CHECK_FLAG_ALWAYS_CHECK_SUBJECT> flag.
			
 
				 
			
 
				 X509_VERIFY_PARAM_get_hostflags() returns any host flags previously set via a
			
 
				 call to X509_VERIFY_PARAM_set_hostflags().
			
--- a/doc/man7/RAND_DRBG.pod
+++ b/doc/man7/RAND_DRBG.pod
@@ -222,7 +222,7 @@ This is in fact done automatically by L<RAND_DRBG_bytes(3)>.
 
				 
			
 
				 In most cases OpenSSL will automatically choose a suitable seed source
			
 
				 for automatically seeding and reseeding its <master> DRBG. In some cases
			
 
				-however, it will be necessary to explicitely specify a seed source during
			
 
				+however, it will be necessary to explicitly specify a seed source during
			
 
				 configuration, using the --with-rand-seed option. For more information,
			
 
				 see the INSTALL instructions. There are also operating systems where no
			
 
				 seed source is available and automatic reseeding is disabled by default.