diff options
Diffstat (limited to 'doc/man1')
| -rw-r--r-- | doc/man1/ca.pod | 19 | ||||
| -rw-r--r-- | doc/man1/cms.pod | 12 | ||||
| -rw-r--r-- | doc/man1/dgst.pod | 10 | ||||
| -rw-r--r-- | doc/man1/dhparam.pod | 12 | ||||
| -rw-r--r-- | doc/man1/dsaparam.pod | 12 | ||||
| -rw-r--r-- | doc/man1/ecparam.pod | 12 | ||||
| -rw-r--r-- | doc/man1/enc.pod | 15 | ||||
| -rw-r--r-- | doc/man1/gendsa.pod | 12 | ||||
| -rw-r--r-- | doc/man1/genrsa.pod | 12 | ||||
| -rw-r--r-- | doc/man1/passwd.pod | 15 | ||||
| -rw-r--r-- | doc/man1/pkcs12.pod | 12 | ||||
| -rw-r--r-- | doc/man1/pkcs8.pod | 15 | ||||
| -rw-r--r-- | doc/man1/pkeyutl.pod | 15 | ||||
| -rw-r--r-- | doc/man1/rand.pod | 16 | ||||
| -rw-r--r-- | doc/man1/req.pod | 16 | ||||
| -rw-r--r-- | doc/man1/rsautl.pod | 15 | ||||
| -rw-r--r-- | doc/man1/s_client.pod | 12 | ||||
| -rw-r--r-- | doc/man1/s_server.pod | 12 | ||||
| -rw-r--r-- | doc/man1/smime.pod | 12 | ||||
| -rw-r--r-- | doc/man1/speed.pod | 15 | ||||
| -rw-r--r-- | doc/man1/ts.pod | 18 | ||||
| -rw-r--r-- | doc/man1/x509.pod | 15 |
22 files changed, 255 insertions, 49 deletions
diff --git a/doc/man1/ca.pod b/doc/man1/ca.pod index 26d648e924..4a5970892c 100644 --- a/doc/man1/ca.pod +++ b/doc/man1/ca.pod @@ -52,6 +52,8 @@ B<openssl> B<ca> [B<-utf8>] [B<-create_serial>] [B<-multivalue-rdn>] +[B<-rand file...>] +[B<-writerand file>] =head1 DESCRIPTION @@ -266,6 +268,19 @@ I</DC=org/DC=OpenSSL/DC=users/UID=123456+CN=John Doe> If -multi-rdn is not used then the UID value is I<123456+CN=John Doe>. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =back =head1 CRL OPTIONS @@ -397,8 +412,8 @@ CA private key. Mandatory. =item B<RANDFILE> -A file used to read and write random number seed information, or -an EGD socket (see L<RAND_egd(3)>). +At startup the specified file is loaded into the random number generator, +and at exit 256 bytes will be written to it. =item B<default_days> diff --git a/doc/man1/cms.pod b/doc/man1/cms.pod index c63ac4543a..33549d4859 100644 --- a/doc/man1/cms.pod +++ b/doc/man1/cms.pod @@ -92,7 +92,8 @@ B<openssl> B<cms> [B<-inkey file>] [B<-keyopt name:parameter>] [B<-passin arg>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<cert.pem...>] [B<-to addr>] [B<-from addr>] @@ -461,14 +462,19 @@ or to modify default parameters for ECDH. The private key password source. For more information about the format of B<arg> see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)>. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<cert.pem...> One or more certificates of message recipients: used when encrypting diff --git a/doc/man1/dgst.pod b/doc/man1/dgst.pod index 677f2b21ef..0cbcf850f5 100644 --- a/doc/man1/dgst.pod +++ b/doc/man1/dgst.pod @@ -23,6 +23,7 @@ B<openssl> B<dgst> [B<-signature filename>] [B<-hmac key>] [B<-fips-fingerprint>] +[B<-rand file...>] [B<-engine id>] [B<-engine_impl>] [B<file...>] @@ -149,14 +150,19 @@ for example exactly 32 chars for gost-mac. =back -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-fips-fingerprint> Compute HMAC using a specific key for certain OpenSSL-FIPS operations. diff --git a/doc/man1/dhparam.pod b/doc/man1/dhparam.pod index a6317a95a5..852469dbbd 100644 --- a/doc/man1/dhparam.pod +++ b/doc/man1/dhparam.pod @@ -19,7 +19,8 @@ B<openssl dhparam> [B<-C>] [B<-2>] [B<-5>] -[B<-rand> I<file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] [I<numbits>] @@ -82,14 +83,19 @@ input file is ignored and parameters are generated instead. If not present but B<numbits> is present, parameters are generated with the default generator 2. -=item B<-rand> I<file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item I<numbits> This option specifies that a parameter set should be generated of size diff --git a/doc/man1/dsaparam.pod b/doc/man1/dsaparam.pod index 0a34c29411..4c07463341 100644 --- a/doc/man1/dsaparam.pod +++ b/doc/man1/dsaparam.pod @@ -15,7 +15,8 @@ B<openssl dsaparam> [B<-noout>] [B<-text>] [B<-C>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-genkey>] [B<-engine id>] [B<numbits>] @@ -74,14 +75,19 @@ be loaded by calling the get_dsaXXX() function. This option will generate a DSA either using the specified or generated parameters. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<numbits> This option specifies that a parameter set should be generated of size diff --git a/doc/man1/ecparam.pod b/doc/man1/ecparam.pod index 7e0d074542..3f76dc0a82 100644 --- a/doc/man1/ecparam.pod +++ b/doc/man1/ecparam.pod @@ -21,7 +21,8 @@ B<openssl ecparam> [B<-conv_form arg>] [B<-param_enc arg>] [B<-no_seed>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-genkey>] [B<-engine id>] @@ -116,14 +117,19 @@ is included in the ECParameters structure (see RFC 3279). This option will generate an EC private key using the specified parameters. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-engine id> Specifying an engine (by its unique B<id> string) will cause B<ecparam> diff --git a/doc/man1/enc.pod b/doc/man1/enc.pod index 13f1272d81..ad76be0cb7 100644 --- a/doc/man1/enc.pod +++ b/doc/man1/enc.pod @@ -31,6 +31,8 @@ B<openssl enc -ciphername> [B<-nopad>] [B<-debug>] [B<-none>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] =head1 DESCRIPTION @@ -165,6 +167,19 @@ or zlib-dynamic option. Use NULL cipher (no encryption or decryption of input). +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =back =head1 NOTES diff --git a/doc/man1/gendsa.pod b/doc/man1/gendsa.pod index 1068ffdfd0..9cb84dfbeb 100644 --- a/doc/man1/gendsa.pod +++ b/doc/man1/gendsa.pod @@ -21,7 +21,8 @@ B<openssl> B<gendsa> [B<-des>] [B<-des3>] [B<-idea>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] [B<paramfile>] @@ -49,14 +50,19 @@ These options encrypt the private key with specified cipher before outputting it. A pass phrase is prompted for. If none of these options is specified no encryption is used. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-engine id> Specifying an engine (by its unique B<id> string) will cause B<gendsa> diff --git a/doc/man1/genrsa.pod b/doc/man1/genrsa.pod index 4e44fe51d6..57b4cf879b 100644 --- a/doc/man1/genrsa.pod +++ b/doc/man1/genrsa.pod @@ -24,7 +24,8 @@ B<openssl> B<genrsa> [B<-idea>] [B<-f4>] [B<-3>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] [B<numbits>] @@ -61,14 +62,19 @@ for if it is not supplied via the B<-passout> argument. The public exponent to use, either 65537 or 3. The default is 65537. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-engine id> Specifying an engine (by its unique B<id> string) will cause B<genrsa> diff --git a/doc/man1/passwd.pod b/doc/man1/passwd.pod index 02f6339883..3c16946078 100644 --- a/doc/man1/passwd.pod +++ b/doc/man1/passwd.pod @@ -20,6 +20,8 @@ B<openssl passwd> [B<-noverify>] [B<-quiet>] [B<-table>] +[B<-rand file...>] +[B<-writerand file>] {I<password>} =head1 DESCRIPTION @@ -88,6 +90,19 @@ Don't output warnings when passwords given at the command line are truncated. In the output list, prepend the cleartext password and a TAB character to each password hash. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =back =head1 EXAMPLES diff --git a/doc/man1/pkcs12.pod b/doc/man1/pkcs12.pod index a40ae7f04f..2eb6b078a4 100644 --- a/doc/man1/pkcs12.pod +++ b/doc/man1/pkcs12.pod @@ -36,7 +36,8 @@ B<openssl> B<pkcs12> [B<-password arg>] [B<-passin arg>] [B<-passout arg>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-CAfile file>] [B<-CApath dir>] [B<-no-CAfile>] @@ -275,14 +276,19 @@ to be needed to use MAC iterations counts but they are now used by default. Don't attempt to provide the MAC integrity. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-CAfile file> CA storage as a file. diff --git a/doc/man1/pkcs8.pod b/doc/man1/pkcs8.pod index ebdcea98b7..42e2468a27 100644 --- a/doc/man1/pkcs8.pod +++ b/doc/man1/pkcs8.pod @@ -17,6 +17,8 @@ B<openssl> B<pkcs8> [B<-passout arg>] [B<-iter count>] [B<-noiter>] +[B<-rand file...>] +[B<-writerand file>] [B<-nocrypt>] [B<-traditional>] [B<-v2 alg>] @@ -99,6 +101,19 @@ This option does not encrypt private keys at all and should only be used when absolutely necessary. Certain software such as some versions of Java code signing software used unencrypted private keys. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-v2 alg> This option sets the PKCS#5 v2.0 algorithm. diff --git a/doc/man1/pkeyutl.pod b/doc/man1/pkeyutl.pod index ee8a58825f..5e16bc6e00 100644 --- a/doc/man1/pkeyutl.pod +++ b/doc/man1/pkeyutl.pod @@ -30,6 +30,8 @@ B<openssl> B<pkeyutl> [B<-pkeyopt opt:value>] [B<-hexdump>] [B<-asn1parse>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] [B<-engine_impl>] @@ -146,6 +148,19 @@ hex dump the output data. Parse the ASN.1 output data, this is useful when combined with the B<-verifyrecover> option when an ASN1 structure is signed. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-engine id> Specifying an engine (by its unique B<id> string) will cause B<pkeyutl> diff --git a/doc/man1/rand.pod b/doc/man1/rand.pod index 0faf6872a2..22482033fc 100644 --- a/doc/man1/rand.pod +++ b/doc/man1/rand.pod @@ -9,7 +9,8 @@ rand - generate pseudo-random bytes B<openssl rand> [B<-help>] [B<-out> I<file>] -[B<-rand> I<file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-base64>] [B<-hex>] I<num> @@ -31,18 +32,23 @@ seeding was obtained from these sources. Print out a usage message. -=item B<-out> I<file> +=item B<-out file> Write to I<file> instead of standard output. -=item B<-rand> I<file(s)> +=item B<-rand file...> -Use specified file or files or EGD socket (see L<RAND_egd(3)>) -for seeding the random number generator. +A file or files containing random data used to seed the random number +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-base64> Perform base64 encoding on the output. diff --git a/doc/man1/req.pod b/doc/man1/req.pod index 4dbd489ffe..e15434a1bb 100644 --- a/doc/man1/req.pod +++ b/doc/man1/req.pod @@ -20,7 +20,8 @@ B<openssl> B<req> [B<-verify>] [B<-modulus>] [B<-new>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-newkey rsa:bits>] [B<-newkey alg:file>] [B<-nodes>] @@ -130,14 +131,19 @@ in the configuration file and any requested extensions. If the B<-key> option is not used it will generate a new RSA private key using information specified in the configuration file. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-newkey arg> This option creates a new certificate request and a new private @@ -365,8 +371,8 @@ and long names are the same when this option is used. =item B<RANDFILE> -This specifies a filename in which random number seed information is -placed and read from, or an EGD socket (see L<RAND_egd(3)>). +At startup the specified file is loaded into the random number generator, +and at exit 256 bytes will be written to it. It is used for private key generation. =item B<encrypt_key> diff --git a/doc/man1/rsautl.pod b/doc/man1/rsautl.pod index 8883c7bfdb..f80bf42864 100644 --- a/doc/man1/rsautl.pod +++ b/doc/man1/rsautl.pod @@ -18,6 +18,8 @@ B<openssl> B<rsautl> [B<-verify>] [B<-encrypt>] [B<-decrypt>] +[B<-rand file...>] +[B<-writerand file>] [B<-pkcs>] [B<-ssl>] [B<-raw>] @@ -80,6 +82,19 @@ Encrypt the input data using an RSA public key. Decrypt the input data using an RSA private key. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-pkcs, -oaep, -ssl, -raw> The padding to use: PKCS#1 v1.5 (the default), PKCS#1 OAEP, diff --git a/doc/man1/s_client.pod b/doc/man1/s_client.pod index c262d4a496..7f2fd7be27 100644 --- a/doc/man1/s_client.pod +++ b/doc/man1/s_client.pod @@ -105,7 +105,8 @@ B<openssl> B<s_client> [B<-no_ticket>] [B<-sess_out filename>] [B<-sess_in filename>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-serverinfo types>] [B<-status>] [B<-alpn protocols>] @@ -536,14 +537,19 @@ to attempt to obtain a functional reference to the specified engine, thus initialising it if needed. The engine will then be set as the default for all available algorithms. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-serverinfo types> A list of comma-separated TLS Extension Types (numbers between 0 and diff --git a/doc/man1/s_server.pod b/doc/man1/s_server.pod index b1195fdae3..986578937e 100644 --- a/doc/man1/s_server.pod +++ b/doc/man1/s_server.pod @@ -52,7 +52,8 @@ B<openssl> B<s_server> [B<-tlsextdebug>] [B<-HTTP>] [B<-id_prefix val>] -[B<-rand val>] +[B<-rand file...>] +[B<-writerand file>] [B<-keymatexport val>] [B<-keymatexportlen +int>] [B<-CRL infile>] @@ -381,14 +382,19 @@ for testing any SSL/TLS code (eg. proxies) that wish to deal with multiple servers, when each of which might be generating a unique range of session IDs (eg. with a certain prefix). -=item B<-rand val> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-verify_return_error> Verification errors normally just print a message but allow the diff --git a/doc/man1/smime.pod b/doc/man1/smime.pod index 7df780f5e0..5b13fdac12 100644 --- a/doc/man1/smime.pod +++ b/doc/man1/smime.pod @@ -65,7 +65,8 @@ B<openssl> B<smime> [B<-indef>] [B<-noindef>] [B<-stream>] -[B<-rand file(s)>] +[B<-rand file...>] +[B<-writerand file>] [B<-md digest>] [cert.pem]... @@ -295,14 +296,19 @@ specified, the argument is given to the engine as a key identifier. The private key password source. For more information about the format of B<arg> see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)>. -=item B<-rand file(s)> +=item B<-rand file...> A file or files containing random data used to seed the random number -generator, or an EGD socket (see L<RAND_egd(3)>). +generator. Multiple files can be specified separated by an OS-dependent character. The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for all others. +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<cert.pem...> One or more certificates of message recipients: used when encrypting diff --git a/doc/man1/speed.pod b/doc/man1/speed.pod index b0d4daa7aa..0e5bb571a5 100644 --- a/doc/man1/speed.pod +++ b/doc/man1/speed.pod @@ -12,6 +12,8 @@ B<openssl speed> [B<-elapsed>] [B<-evp algo>] [B<-decrypt>] +[B<-rand file...>] +[B<-writerand file>] [B<algorithm...>] =head1 DESCRIPTION @@ -48,6 +50,19 @@ Use the specified cipher or message digest algorithm via the EVP interface. Time the decryption instead of encryption. Affects only the EVP testing. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<[zero or more test algorithms]> If any options are given, B<speed> tests those algorithms, otherwise all of diff --git a/doc/man1/ts.pod b/doc/man1/ts.pod index c04a623785..56ace24817 100644 --- a/doc/man1/ts.pod +++ b/doc/man1/ts.pod @@ -8,7 +8,8 @@ ts - Time Stamping Authority tool (client/server) B<openssl> B<ts> B<-query> -[B<-rand> file:file...] +[B<-rand file...>] +[B<-writerand file>] [B<-config> configfile] [B<-data> file_to_hash] [B<-digest> digest_bytes] @@ -131,11 +132,18 @@ request with the following options: =over 4 -=item B<-rand> file:file... +=item B<-rand file...> -The files containing random data for seeding the random number -generator. Multiple files can be specified, the separator is B<;> for -MS-Windows, B<,> for VMS and B<:> for all other platforms. (Optional) +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. =item B<-config> configfile diff --git a/doc/man1/x509.pod b/doc/man1/x509.pod index 587c630065..68fbf81f67 100644 --- a/doc/man1/x509.pod +++ b/doc/man1/x509.pod @@ -59,6 +59,8 @@ B<openssl> B<x509> [B<-clrext>] [B<-extfile filename>] [B<-extensions section>] +[B<-rand file...>] +[B<-writerand file>] [B<-engine id>] [B<-preserve_dates>] @@ -115,6 +117,19 @@ Any digest supported by the OpenSSL B<dgst> command can be used. If not specified then SHA1 is used with B<-fingerprint> or the default digest for the signing algorithm is used, typically SHA256. +=item B<-rand file...> + +A file or files containing random data used to seed the random number +generator. +Multiple files can be specified separated by an OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for +all others. + +=item [B<-writerand file>] + +Writes random data to the specified I<file> upon exit. +This can be used with a subsequent B<-rand> flag. + =item B<-engine id> Specifying an engine (by its unique B<id> string) will cause B<x509> |