Fix typos and formatting in the ssl protocol docs

Also changed one sentence (about setting the Mozilla root CA list) to make it more clear that the user doesn't need to do anything.
2025-10-12 19:48:20 +00:00 · 2013-10-16 17:36:27 -05:00 · 2013-10-16 17:36:27 -05:00 · 8764850337
commit 8764850337
parent fe60404f0f
2 changed files with 11 additions and 9 deletions
--- a/scripts/base/protocols/ssl/consts.bro
+++ b/scripts/base/protocols/ssl/consts.bro
@ -23,7 +23,7 @@ export {
 	} &default=function(i: count):string { return fmt("unknown-%d", i); };
 	
 	## Mapping between numeric codes and human readable strings for alert 
-	## descriptions..
+	## descriptions.
 	const alert_descriptions: table[count] of string = {
 		[0] = "close_notify",
 		[10] = "unexpected_message",
@ -453,8 +453,8 @@ export {
 	const TLS_EMPTY_RENEGOTIATION_INFO_SCSV = 0x00FF;
 	
 	## This is a table of all known cipher specs.  It can be used for 
-	## detecting unknown ciphers and for converting the cipher spec constants 
-	## into a human readable format.
+	## detecting unknown ciphers and for converting the cipher spec
+	## constants into a human readable format.
 	const cipher_desc: table[count] of string = {
 		[SSLv20_CK_RC4_128_EXPORT40_WITH_MD5] =
 			"SSLv20_CK_RC4_128_EXPORT40_WITH_MD5",
--- a/scripts/base/protocols/ssl/main.bro
+++ b/scripts/base/protocols/ssl/main.bro
@ -26,7 +26,8 @@ export {
 		session_id:       string           &log &optional;
 		## Subject of the X.509 certificate offered by the server.
 		subject:          string           &log &optional;
-		## Subject of the signer of the X.509 certificate offered by the server.
+		## Subject of the signer of the X.509 certificate offered by the
+		## server.
 		issuer_subject:   string           &log &optional;
 		## NotValidBefore field value from the server certificate.
 		not_valid_before: time             &log &optional;
@ -37,7 +38,8 @@ export {

 		## Subject of the X.509 certificate offered by the client.
 		client_subject:          string           &log &optional;
-		## Subject of the signer of the X.509 certificate offered by the client.
+		## Subject of the signer of the X.509 certificate offered by the
+		## client.
 		client_issuer_subject:   string           &log &optional;

 		## Full binary server certificate stored in DER format.
@ -58,8 +60,8 @@ export {
 		analyzer_id:      count            &optional;
 	};

-	## The default root CA bundle.  By loading the
-	## mozilla-ca-list.bro script it will be set to Mozilla's root CA list.
+	## The default root CA bundle.  By default, the mozilla-ca-list.bro
+	## script sets this to Mozilla's root CA list.
 	const root_certs: table[string] of string = {} &redef;

 	## If true, detach the SSL analyzer from the connection to prevent
@ -67,8 +69,8 @@ export {
 	## (especially with large file transfers).
 	const disable_analyzer_after_detection = T &redef;

-	## Delays an SSL record for a specific token: the record will not be logged
-	## as longs the token exists or until 15 seconds elapses.
+	## Delays an SSL record for a specific token: the record will not be
+	## logged as long as the token exists or until 15 seconds elapses.
 	global delay_log: function(info: Info, token: string);

 	## Undelays an SSL record for a previously inserted token, allowing the