On Sat, May 24, 2014 at 11:37:34PM -0700, Loganaden Velvindron wrote: > Hi All, > > From OpenSSL RT 3355: > > Index: doc/apps/verify.pod > =================================================================== > RCS file: /cvs/src/lib/libssl/src/doc/apps/verify.pod,v > retrieving revision 1.8 > diff -u -p -u -p -r1.8 verify.pod > --- doc/apps/verify.pod 4 May 2014 20:31:33 -0000 1.8 > +++ doc/apps/verify.pod 25 May 2014 06:35:15 -0000 > @@ -385,7 +385,7 @@ an application specific error. Unused. > > =head1 BUGS > > -Although the issuer checks are a considerably improvement over the old > technique they still > +Although the issuer checks are a considerable improvement over the old > technique they still > suffer from limitations in the underlying X509_LOOKUP API. One consequence > of this is that > trusted certificates with matching subject name must either appear in a file > (as specified by the > B<-CAfile> option) or a directory (as specified by B<-CApath>. If they occur > in both then only >
once again i'd ask folks to concentrate on openssl.1. jmc