Pass phrase reorganisation.

[openssl.git] / doc / apps / spkac.pod

diff --git a/doc/apps/spkac.pod b/doc/apps/spkac.pod
index 75d58e772bbc636471706e025cfcf5227227856b..bb84dfbe335299ef542841e7f4530f1869cf6e23 100644 (file)
--- a/doc/apps/spkac.pod
+++ b/doc/apps/spkac.pod
@@ -10,7 +10,9 @@ B<openssl> B<spkac>
 [B<-in filename>]
 [B<-out filename>]
 [B<-key keyfile>]
+[B<-passin arg>]
 [B<-challenge string>]
+[B<-pubkey>]
 [B<-spkac spkacname>]
 [B<-spksect section>]
 [B<-noout>]
@@ -43,6 +45,11 @@ create an SPKAC file using the private key in B<keyfile>. The
 B<-in>, B<-noout>, B<-spksect> and B<-verify> options are ignored if
 present.
 
+=item B<-passin password>
+
+the input file password source. For more information about the format of B<arg>
+see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)|openssl(1)>.
+
 =item B<-challenge string>
 
 specifies the challenge string if an SPKAC is being created.
@@ -63,6 +70,11 @@ SPKAC. The default is the default section.
 don't output the text version of the SPKAC (not used if an
 SPKAC is being created).
 
+=item B<-pubkey>
+
+output the public key of an SPKAC (not used if an SPKAC is
+being created).
+
 =item B<-verify>
 
 verifies the digital signature on the supplied SPKAC.
@@ -110,6 +122,6 @@ to be used in a "replay attack".
 
 =head1 SEE ALSO
 
-ca(1)
+L<ca(1)|ca(1)>
 
 =cut