1 files changed, 28 insertions, 24 deletions
diff --git a/secure/lib/libcrypto/man/X509_check_host.3 b/secure/lib/libcrypto/man/X509_check_host.3
index ffa53b5d28940..f882853034dbf 100644
--- a/secure/lib/libcrypto/man/X509_check_host.3
+++ b/secure/lib/libcrypto/man/X509_check_host.3
@@ -1,4 +1,4 @@
-.\" Automatically generated by Pod::Man 4.09 (Pod::Simple 3.35)
+.\" Automatically generated by Pod::Man 4.10 (Pod::Simple 3.35)
 .\"
 .\" Standard preamble:
 .\" ========================================================================
@@ -54,16 +54,20 @@
 .\" Avoid warning from groff about undefined register 'F'.
 .de IX
 ..
-.if !\nF .nr F 0
-.if \nF>0 \{\
-.    de IX
-.    tm Index:\\$1\t\\n%\t"\\$2"
+.nr rF 0
+.if \n(.g .if rF .nr rF 1
+.if (\n(rF:(\n(.g==0)) \{\
+.    if \nF \{\
+.        de IX
+.        tm Index:\\$1\t\\n%\t"\\$2"
 ..
-.    if !\nF==2 \{\
-.        nr % 0
-.        nr F 2
+.        if !\nF==2 \{\
+.            nr % 0
+.            nr F 2
+.        \}
 .    \}
 .\}
+.rr rF
 .\"
 .\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
 .\" Fear.  Run.  Save yourself.  No user-serviceable parts.
@@ -129,7 +133,7 @@
 .\" ========================================================================
 .\"
 .IX Title "X509_CHECK_HOST 3"
-.TH X509_CHECK_HOST 3 "2018-11-20" "1.1.1a" "OpenSSL"
+.TH X509_CHECK_HOST 3 "2019-02-26" "1.1.1b" "OpenSSL"
 .\" For nroff, turn off justification.  Always turn off hyphenation; it makes
 .\" way too many mistakes in technical documents.
 .if n .ad l
@@ -156,7 +160,7 @@ certificate matches a given host name, email address, or \s-1IP\s0 address.
 The validity of the certificate and its trust level has to be checked by
 other means.
 .PP
-\&\fIX509_check_host()\fR checks if the certificate Subject Alternative
+\&\fBX509_check_host()\fR checks if the certificate Subject Alternative
 Name (\s-1SAN\s0) or Subject CommonName (\s-1CN\s0) matches the specified host
 name, which must be encoded in the preferred name syntax described
 in section 3.5 of \s-1RFC 1034.\s0  By default, wildcards are supported
@@ -177,23 +181,23 @@ valid for any sub-domain of \fBname\fR, (see also
 When the certificate is matched, and \fBpeername\fR is not \s-1NULL,\s0 a
 pointer to a copy of the matching \s-1SAN\s0 or \s-1CN\s0 from the peer certificate
 is stored at the address passed in \fBpeername\fR.  The application
-is responsible for freeing the peername via \fIOPENSSL_free()\fR when it
+is responsible for freeing the peername via \fBOPENSSL_free()\fR when it
 is no longer needed.
 .PP
-\&\fIX509_check_email()\fR checks if the certificate matches the specified
+\&\fBX509_check_email()\fR checks if the certificate matches the specified
 email \fBaddress\fR.  Only the mailbox syntax of \s-1RFC 822\s0 is supported,
 comments are not allowed, and no attempt is made to normalize quoted
 characters.  The \fBaddresslen\fR argument must be the number of
 characters in the address string or zero in which case the length
 is calculated with strlen(\fBaddress\fR).
 .PP
-\&\fIX509_check_ip()\fR checks if the certificate matches a specified IPv4 or
+\&\fBX509_check_ip()\fR checks if the certificate matches a specified IPv4 or
 IPv6 address.  The \fBaddress\fR array is in binary format, in network
 byte order.  The length is either 4 (IPv4) or 16 (IPv6).  Only
 explicitly marked addresses in the certificates are considered; \s-1IP\s0
 addresses stored in \s-1DNS\s0 names and Common Names are ignored.
 .PP
-\&\fIX509_check_ip_asc()\fR is similar, except that the NUL-terminated
+\&\fBX509_check_ip_asc()\fR is similar, except that the NUL-terminated
 string \fBaddress\fR is first converted to the internal representation.
 .PP
 The \fBflags\fR argument is usually 0.  It can be the bitwise \s-1OR\s0 of the
@@ -254,23 +258,23 @@ and \-1 for an internal error: typically a memory allocation failure
 or an \s-1ASN.1\s0 decoding error.
 .PP
 All functions can also return \-2 if the input is malformed. For example,
-\&\fIX509_check_host()\fR returns \-2 if the provided \fBname\fR contains embedded
+\&\fBX509_check_host()\fR returns \-2 if the provided \fBname\fR contains embedded
 NULs.
 .SH "NOTES"
 .IX Header "NOTES"
-Applications are encouraged to use \fIX509_VERIFY_PARAM_set1_host()\fR
-rather than explicitly calling \fIX509_check_host\fR\|(3). Host name
-checks may be out of scope with the \s-1\fIDANE\-EE\s0\fR\|(3) certificate usage,
+Applications are encouraged to use \fBX509_VERIFY_PARAM_set1_host()\fR
+rather than explicitly calling \fBX509_check_host\fR\|(3). Host name
+checks may be out of scope with the \s-1\fBDANE\-EE\s0\fR\|(3) certificate usage,
 and the internal checks will be suppressed as appropriate when
 \&\s-1DANE\s0 support is enabled.
 .SH "SEE ALSO"
 .IX Header "SEE ALSO"
-\&\fISSL_get_verify_result\fR\|(3),
-\&\fIX509_VERIFY_PARAM_set1_host\fR\|(3),
-\&\fIX509_VERIFY_PARAM_add1_host\fR\|(3),
-\&\fIX509_VERIFY_PARAM_set1_email\fR\|(3),
-\&\fIX509_VERIFY_PARAM_set1_ip\fR\|(3),
-\&\fIX509_VERIFY_PARAM_set1_ipasc\fR\|(3)
+\&\fBSSL_get_verify_result\fR\|(3),
+\&\fBX509_VERIFY_PARAM_set1_host\fR\|(3),
+\&\fBX509_VERIFY_PARAM_add1_host\fR\|(3),
+\&\fBX509_VERIFY_PARAM_set1_email\fR\|(3),
+\&\fBX509_VERIFY_PARAM_set1_ip\fR\|(3),
+\&\fBX509_VERIFY_PARAM_set1_ipasc\fR\|(3)
 .SH "HISTORY"
 .IX Header "HISTORY"
 These functions were added in OpenSSL 1.0.2.