Dev news

Commit 14d4dedc2a for openssl.org

commit 14d4dedc2a98a393b1f3995f2be025f21984774c
Author: kovan <xaum.io@gmail.com>
Date:   Mon Feb 2 12:01:51 2026 +0100

    doc: Clarify SSL_CERT_DIR uses semicolon separator on Windows

    The documentation for SSL_CERT_DIR stated that directories are
    colon-separated, but on Windows the separator is semicolon.

    Updated:
    - openssl-rehash.pod.in: Added note about semicolon separator on Windows
    - openssl-env.pod: Added note about multiple directories and Windows separator

    Fixes: #27698

    Co-Authored-By: Claude Opus 4.5 <noreply@anthropic.com>

    Reviewed-by: Eugene Syromiatnikov <esyr@openssl.org>
    Reviewed-by: Nikola Pajkovsky <nikolap@openssl.org>
    MergeDate: Wed Jun  3 11:44:35 2026
    (Merged from https://github.com/openssl/openssl/pull/29894)

diff --git a/doc/man1/openssl-rehash.pod.in b/doc/man1/openssl-rehash.pod.in
index 287f647f37..a5c3a850d1 100644
--- a/doc/man1/openssl-rehash.pod.in
+++ b/doc/man1/openssl-rehash.pod.in
@@ -40,8 +40,8 @@ directories to be set up like this in order to find certificates.

 If any directories are named on the command line, then those are
 processed in turn. If not, then the B<SSL_CERT_DIR> environment variable
-is consulted; this should be a colon-separated list of directories,
-like the Unix B<PATH> variable.
+is consulted; this should be a colon-separated list of directories
+(or semicolon-separated on Windows), like the B<PATH> variable.
 If that is not set then the default directory (installation-specific
 but often F</usr/local/ssl/certs>) is processed.

diff --git a/doc/man7/openssl-env.pod b/doc/man7/openssl-env.pod
index 1dfccba5bb..27debe8ae2 100644
--- a/doc/man7/openssl-env.pod
+++ b/doc/man7/openssl-env.pod
@@ -283,6 +283,8 @@ This variable is considered a security-sensitive environment variable.
 =item B<SSL_CERT_DIR>, B<SSL_CERT_FILE>

 Specify the default directory or file containing CA certificates.
+B<SSL_CERT_DIR> can contain multiple directories separated by colons
+(or semicolons on Windows).
 See L<SSL_CTX_load_verify_locations(3)>.

 These variables are considered security-sensitive environment variables,