1 files changed, 20 insertions, 16 deletions
diff --git a/secure/usr.bin/openssl/man/verify.1 b/secure/usr.bin/openssl/man/verify.1
index 92d18ae51430b..57e1c6f3c8cbe 100644
--- a/secure/usr.bin/openssl/man/verify.1
+++ b/secure/usr.bin/openssl/man/verify.1
@@ -1,4 +1,4 @@
-.\" Automatically generated by Pod::Man 4.09 (Pod::Simple 3.35)
+.\" Automatically generated by Pod::Man 4.10 (Pod::Simple 3.35)
 .\"
 .\" Standard preamble:
 .\" ========================================================================
@@ -54,16 +54,20 @@
 .\" Avoid warning from groff about undefined register 'F'.
 .de IX
 ..
-.if !\nF .nr F 0
-.if \nF>0 \{\
-.    de IX
-.    tm Index:\\$1\t\\n%\t"\\$2"
+.nr rF 0
+.if \n(.g .if rF .nr rF 1
+.if (\n(rF:(\n(.g==0)) \{\
+.    if \nF \{\
+.        de IX
+.        tm Index:\\$1\t\\n%\t"\\$2"
 ..
-.    if !\nF==2 \{\
-.        nr % 0
-.        nr F 2
+.        if !\nF==2 \{\
+.            nr % 0
+.            nr F 2
+.        \}
 .    \}
 .\}
+.rr rF
 .\"
 .\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
 .\" Fear.  Run.  Save yourself.  No user-serviceable parts.
@@ -129,7 +133,7 @@
 .\" ========================================================================
 .\"
 .IX Title "VERIFY 1"
-.TH VERIFY 1 "2018-11-20" "1.1.1a" "OpenSSL"
+.TH VERIFY 1 "2019-02-26" "1.1.1b" "OpenSSL"
 .\" For nroff, turn off justification.  Always turn off hyphenation; it makes
 .\" way too many mistakes in technical documents.
 .if n .ad l
@@ -238,7 +242,7 @@ Checks the validity of \fBall\fR certificates in the chain by attempting
 to look up valid CRLs.
 .IP "\fB\-engine id\fR" 4
 .IX Item "-engine id"
-Specifying an engine \fBid\fR will cause \fIverify\fR\|(1) to attempt to load the
+Specifying an engine \fBid\fR will cause \fBverify\fR\|(1) to attempt to load the
 specified engine.
 The engine will then be set as the default for all its supported algorithms.
 If you want to load certificates or CRLs that require engine support via any of
@@ -267,7 +271,7 @@ Set policy variable inhibit-policy-mapping (see \s-1RFC5280\s0).
 Option which determines how the subject or issuer names are displayed. The
 \&\fBoption\fR argument can be a single option or multiple options separated by
 commas.  Alternatively the \fB\-nameopt\fR switch may be used more than once to
-set multiple options. See the \fIx509\fR\|(1) manual page for details.
+set multiple options. See the \fBx509\fR\|(1) manual page for details.
 .IP "\fB\-no_check_time\fR" 4
 .IX Item "-no_check_time"
 This option suppresses checking the validity period of certificates and CRLs
@@ -354,7 +358,7 @@ must meet the specified security \fBlevel\fR.
 The signature algorithm security level is enforced for all the certificates in
 the chain except for the chain's \fItrust anchor\fR, which is either directly
 trusted or validated by means other than its signature.
-See \fISSL_CTX_set_security_level\fR\|(3) for the definitions of the available
+See \fBSSL_CTX_set_security_level\fR\|(3) for the definitions of the available
 levels.
 The default security level is \-1, or \*(L"not set\*(R".
 At security level 0 or lower all algorithms are acceptable.
@@ -385,7 +389,7 @@ Use default verification policies like trust model and required certificate
 policies identified by \fBname\fR.
 The trust model determines which auxiliary trust or reject OIDs are applicable
 to verifying the given certificate chain.
-See the \fB\-addtrust\fR and \fB\-addreject\fR options of the \fIx509\fR\|(1) command-line
+See the \fB\-addtrust\fR and \fB\-addreject\fR options of the \fBx509\fR\|(1) command-line
 utility.
 Supported policy names include: \fBdefault\fR, \fBpkcs7\fR, \fBsmime_sign\fR,
 \&\fBssl_client\fR, \fBssl_server\fR.
@@ -710,7 +714,7 @@ Email address mismatch.
 .IX Item "X509_V_ERR_DANE_NO_MATCH"
 \&\s-1DANE TLSA\s0 authentication is enabled, but no \s-1TLSA\s0 records matched the
 certificate chain.
-This error is only possible in \fIs_client\fR\|(1).
+This error is only possible in \fBs_client\fR\|(1).
 .IP "\fBX509_V_ERR_EE_KEY_TOO_SMALL\fR" 4
 .IX Item "X509_V_ERR_EE_KEY_TOO_SMALL"
 \&\s-1EE\s0 certificate key too weak.
@@ -759,10 +763,10 @@ Previous versions of this documentation swapped the meaning of the
 \&\fBX509_V_ERR_UNABLE_TO_GET_ISSUER_CERT_LOCALLY\fR error codes.
 .SH "SEE ALSO"
 .IX Header "SEE ALSO"
-\&\fIx509\fR\|(1)
+\&\fBx509\fR\|(1)
 .SH "HISTORY"
 .IX Header "HISTORY"
-The \fB\-show_chain\fR option was first added to OpenSSL 1.1.0.
+The \fB\-show_chain\fR option was added in OpenSSL 1.1.0.
 .PP
 The \fB\-issuer_checks\fR option is deprecated as of OpenSSL 1.1.0 and
 is silently ignored.