perlvars.pm 7.0 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217
  1. #! /usr/bin/env perl
  2. # Copyright 2019-2020 The OpenSSL Project Authors. All Rights Reserved.
  3. #
  4. # Licensed under the Apache License 2.0 (the "License"). You may not use
  5. # this file except in compliance with the License. You can obtain a copy
  6. # in the file LICENSE in the source distribution or at
  7. # Set some Perl variables for use by util/dofile.pl when processing
  8. # POD files (mainly man1).
  9. use configdata;
  10. # Verify options
  11. $OpenSSL::safe::opt_v_synopsis = ""
  12. . "[B<-allow_proxy_certs>]\n"
  13. . "[B<-attime> I<timestamp>]\n"
  14. . "[B<-no_check_time>]\n"
  15. . "[B<-check_ss_sig>]\n"
  16. . "[B<-crl_check>]\n"
  17. . "[B<-crl_check_all>]\n"
  18. . "[B<-explicit_policy>]\n"
  19. . "[B<-extended_crl>]\n"
  20. . "[B<-ignore_critical>]\n"
  21. . "[B<-inhibit_any>]\n"
  22. . "[B<-inhibit_map>]\n"
  23. . "[B<-partial_chain>]\n"
  24. . "[B<-policy> I<arg>]\n"
  25. . "[B<-policy_check>]\n"
  26. . "[B<-policy_print>]\n"
  27. . "[B<-purpose> I<purpose>]\n"
  28. . "[B<-suiteB_128>]\n"
  29. . "[B<-suiteB_128_only>]\n"
  30. . "[B<-suiteB_192>]\n"
  31. . "[B<-trusted_first>]\n"
  32. . "[B<-no_alt_chains>]\n"
  33. . "[B<-use_deltas>]\n"
  34. . "[B<-auth_level> I<num>]\n"
  35. . "[B<-verify_depth> I<num>]\n"
  36. . "[B<-verify_email> I<email>]\n"
  37. . "[B<-verify_hostname> I<hostname>]\n"
  38. . "[B<-verify_ip> I<ip>]\n"
  39. . "[B<-verify_name> I<name>]\n"
  40. . "[B<-x509_strict>]\n"
  41. . "[B<-issuer_checks>]";
  42. $OpenSSL::safe::opt_v_item = ""
  43. . "=item B<-allow_proxy_certs>, B<-attime>, B<-no_check_time>,\n"
  44. . "B<-check_ss_sig>, B<-crl_check>, B<-crl_check_all>,\n"
  45. . "B<-explicit_policy>, B<-extended_crl>, B<-ignore_critical>, B<-inhibit_any>,\n"
  46. . "B<-inhibit_map>, B<-no_alt_chains>, B<-partial_chain>, B<-policy>,\n"
  47. . "B<-policy_check>, B<-policy_print>, B<-purpose>, B<-suiteB_128>,\n"
  48. . "B<-suiteB_128_only>, B<-suiteB_192>, B<-trusted_first>, B<-use_deltas>,\n"
  49. . "B<-auth_level>, B<-verify_depth>, B<-verify_email>, B<-verify_hostname>,\n"
  50. . "B<-verify_ip>, B<-verify_name>, B<-x509_strict> B<-issuer_checks>\n"
  51. . "\n"
  52. . "Set various options of certificate chain verification.\n"
  53. . "See L<openssl-verification-options(1)/Verification Options> for details.";
  54. # Extended validation options.
  55. $OpenSSL::safe::opt_x_synopsis = ""
  56. . "[B<-xkey>] I<infile>\n"
  57. . "[B<-xcert> I<file>]\n"
  58. . "[B<-xchain>] I<file>\n"
  59. . "[B<-xchain_build>] I<file>\n"
  60. . "[B<-xcertform> B<DER>|B<PEM>]>\n"
  61. . "[B<-xkeyform> B<DER>|B<PEM>]>";
  62. $OpenSSL::safe::opt_x_item = ""
  63. . "=item B<xkey> I<infile>, B<-xcert> I<file>, B<-xchain> I<file>,\n"
  64. . "B<-xchain_build> I<file>, B<-xcertform> B<DER>|B<PEM>,\n"
  65. . "B<-xkeyform> B<DER>|B<PEM>\n"
  66. . "\n"
  67. . "Set extended certificate verification options.\n"
  68. . "See L<openssl-verification-options(1)/Extended Verification Options> for details.";
  69. # Name output options
  70. $OpenSSL::safe::opt_name_synopsis = ""
  71. . "[B<-nameopt> I<option>]";
  72. $OpenSSL::safe::opt_name_item = ""
  73. . "=item B<-nameopt> I<option>\n"
  74. . "\n"
  75. . "This specifies how the subject or issuer names are displayed.\n"
  76. . "See L<openssl-namedisplay-options(1)> for details.";
  77. # Random State Options
  78. $OpenSSL::safe::opt_r_synopsis = ""
  79. . "[B<-rand> I<files>]\n"
  80. . "[B<-writerand> I<file>]";
  81. $OpenSSL::safe::opt_r_item = ""
  82. . "=item B<-rand> I<files>, B<-writerand> I<file>\n"
  83. . "\n"
  84. . "See L<openssl(1)/Random State Options> for details.";
  85. # Provider options
  86. $OpenSSL::safe::opt_provider_synopsis = ""
  87. . "[B<-provider> I<name>]\n"
  88. . "[B<-provider-path> I<path>]";
  89. $OpenSSL::safe::opt_provider_item = ""
  90. . "=item B<-provider> I<name>\n"
  91. . "\n"
  92. . "=item B<-provider-path> I<path>\n"
  93. . "\n"
  94. . "See L<openssl(1)/Provider Options>.";
  95. # Configuration option
  96. $OpenSSL::safe::opt_config_synopsis = ""
  97. . "[B<-config> I<configfile>]";
  98. $OpenSSL::safe::opt_config_item = ""
  99. . "=item B<-config> I<configfile>\n"
  100. . "\n"
  101. . "See L<openssl(1)/Configuration Option>.";
  102. # Engine option
  103. $OpenSSL::safe::opt_engine_synopsis = "";
  104. $OpenSSL::safe::opt_engine_item = "";
  105. if (!$disabled{"deprecated-3.0"}) {
  106. $OpenSSL::safe::opt_engine_synopsis = ""
  107. . "[B<-engine> I<id>]\n";
  108. $OpenSSL::safe::opt_engine_item = ""
  109. . "=item B<-engine> I<id>\n"
  110. . "\n"
  111. . "See L<openssl(1)/Engine Options>.\n"
  112. . "This option is deprecated.";
  113. }
  114. # Trusted certs options
  115. $OpenSSL::safe::opt_trust_synopsis = ""
  116. . "[B<-CAfile> I<file>]\n"
  117. . "[B<-no-CAfile>]\n"
  118. . "[B<-CApath> I<dir>]\n"
  119. . "[B<-no-CApath>]\n"
  120. . "[B<-CAstore> I<uri>]\n"
  121. . "[B<-no-CAstore>]";
  122. $OpenSSL::safe::opt_trust_item = ""
  123. . "=item B<-CAfile> I<file>, B<-no-CAfile>, B<-CApath> I<dir>, B<-no-CApath>,\n"
  124. . "B<-CAstore> I<uri>, B<-no-CAstore>\n"
  125. . "\n"
  126. . "See L<openssl-verification-options(1)/Trusted Certificate Options> for details.";
  127. # TLS Version Options
  128. $OpenSSL::safe::opt_versiontls_synopsis = ""
  129. . "[B<-no_ssl3>]\n"
  130. . "[B<-no_tls1>]\n"
  131. . "[B<-no_tls1_1>]\n"
  132. . "[B<-no_tls1_2>]\n"
  133. . "[B<-no_tls1_3>]\n"
  134. . "[B<-ssl3>]\n"
  135. . "[B<-tls1>]\n"
  136. . "[B<-tls1_1>]\n"
  137. . "[B<-tls1_2>]\n"
  138. . "[B<-tls1_3>]";
  139. $OpenSSL::safe::opt_versiontls_item = ""
  140. . "=item B<-no_ssl3>, B<-no_tls1>, B<-no_tls1_1>, B<-no_tls1_2>, B<-no_tls1_3>,\n"
  141. . "B<-ssl3>, B<-tls1>, B<-tls1_1>, B<-tls1_2>, B<-tls1_3>\n"
  142. . "\n"
  143. . "See L<openssl(1)/TLS Version Options>.";
  144. # TLS/DTLS Version Options
  145. $OpenSSL::safe::opt_version_synopsis = ""
  146. . "$OpenSSL::safe::opt_versiontls_synopsis\n"
  147. . "[B<-dtls>]\n"
  148. . "[B<-dtls1>]\n"
  149. . "[B<-dtls1_2>]";
  150. $OpenSSL::safe::opt_version_item = "\n"
  151. . "$OpenSSL::safe::opt_versiontls_item\n"
  152. . "\n"
  153. . "=item B<-dtls>, B<-dtls1>, B<-dtls1_2>\n"
  154. . "\n"
  155. . "These specify the use of DTLS instead of TLS.\n"
  156. . "See L<openssl(1)/TLS Version Options>.";
  157. # SSL connection options.
  158. # TODO # options will probably be re-ordered.
  159. $OpenSSL::safe::opt_s_synopsis = ""
  160. . "[B<-bugs>]\n"
  161. . "[B<-no_comp>]\n"
  162. . "[B<-comp>]\n"
  163. . "[B<-no_ticket>]\n"
  164. . "[B<-serverpref>]\n"
  165. . "[B<-legacy_renegotiation>]\n"
  166. . "[B<-no_renegotiation>]\n"
  167. . "[B<-no_resumption_on_reneg>]\n"
  168. . "[B<-legacy_server_connect>]\n"
  169. . "[B<-no_legacy_server_connect>]\n"
  170. . "[B<-allow_no_dhe_kex>]\n"
  171. . "[B<-prioritize_chacha>]\n"
  172. . "[B<-strict>]\n"
  173. . "[B<-sigalgs> I<algs>]\n"
  174. . "[B<-client_sigalgs> I<algs>]\n"
  175. . "[B<-groups> I<groups>]\n"
  176. . "[B<-curves> I<curves>]\n"
  177. . "[B<-named_curve> I<curve>]\n"
  178. . "[B<-cipher> I<ciphers>]\n"
  179. . "[B<-ciphersuites> I<1.3ciphers>]\n"
  180. . "[B<-min_protocol> I<minprot>]\n"
  181. . "[B<-max_protocol> I<maxprot>]\n"
  182. . "[B<-record_padding> I<padding>]\n"
  183. . "[B<-debug_broken_protocol>]\n"
  184. . "[B<-no_middlebox>]";
  185. $OpenSSL::safe::opt_s_item = ""
  186. . "=item B<-bugs>, B<-comp>, B<-no_comp>, B<-no_ticket>, B<-serverpref>,\n"
  187. . "B<-legacy_renegotiation>, B<-no_renegotiation>, B<-no_resumption_on_reneg>,\n"
  188. . "B<-legacy_server_connect>, B<-no_legacy_server_connect>,\n"
  189. . "B<-allow_no_dhe_kex>, B<-prioritize_chacha>, B<-strict>, B<-sigalgs>\n"
  190. . "I<algs>, B<-client_sigalgs> I<algs>, B<-groups> I<groups>, B<-curves>\n"
  191. . "I<curves>, B<-named_curve> I<curve>, B<-cipher> I<ciphers>, B<-ciphersuites>\n"
  192. . "I<1.3ciphers>, B<-min_protocol> I<minprot>, B<-max_protocol> I<maxprot>,\n"
  193. . "B<-record_padding> I<padding>, B<-debug_broken_protocol>, B<-no_middlebox>\n"
  194. . "\n"
  195. . "See L<SSL_CONF_cmd(3)/SUPPORTED COMMAND LINE COMMANDS> for details.";
  196. package OpenSSL::safe;
  197. sub output_do_not_edit_headers {
  198. return "\n=begin comment\n\n"
  199. . join("\n", @autowarntext)
  200. . "\n\n=end comment";
  201. }
  202. 1;