From a51675fabe3af33cd7a942b71409f6546c3fad1d Mon Sep 17 00:00:00 2001
From: Werner Koch <wk@gnupg.org>
Date: Thu, 10 Dec 2009 13:00:30 +0000
Subject: Add option --cert-extension.

---
 doc/gpgsm.texi | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

(limited to 'doc')

diff --git a/doc/gpgsm.texi b/doc/gpgsm.texi
index ffa325aa8..b2c290934 100644
--- a/doc/gpgsm.texi
+++ b/doc/gpgsm.texi
@@ -446,7 +446,16 @@ use of the chain model.  The chain model is also used if an option in
 the @file{trustlist.txt} or an attribute of the certificate requests it.
 However the standard model (shell) is in that case always tried first.
 
-
+@item --ignore-cert-extension @var{oid}
+@opindex ignore-cert-extension
+Add @var{oid} to the list of ignored certificate extensions.  The
+@var{oid} is expected to be in dotted decimal form, like
+@code{2.5.29.3}.  This option may used more than once.  Critical
+flagged certificate extensions matching one of the OIDs in the list
+are treated as if they are actually handled and thus the certificate
+won't be rejected due to an unknown critical extension.  Use this
+option with care because extensions are usually flagged as critical
+for a reason.
 
 @end table
 
-- 
cgit v1.2.3