X-Git-Url: https://git.openssl.org/gitweb/?p=openssl.git;a=blobdiff_plain;f=doc%2Fapps%2Fgenrsa.pod;h=a2d878410b08daa88c0d97a6da5df30707a21d4e;hp=9eca3254ca6fde3325eec599708db8d5d9a31974;hb=9886f420145883100ada06a1184eff195a133b39;hpb=bb075f883356589425b7e57f788c7498a83b0219 diff --git a/doc/apps/genrsa.pod b/doc/apps/genrsa.pod index 9eca3254ca..a2d878410b 100644 --- a/doc/apps/genrsa.pod +++ b/doc/apps/genrsa.pod @@ -4,11 +4,11 @@ genrsa - generate an RSA private key - =head1 SYNOPSIS B B [B<-out filename>] +[B<-passout arg>] [B<-des>] [B<-des3>] [B<-idea>] @@ -25,11 +25,22 @@ The B command generates an RSA private key. =over 4 +=item B<-out filename> + +the output filename. If this argument is not specified then standard output is +used. + +=item B<-passout arg> + +the output file password source. For more information about the format of B +see the B section in L. + =item B<-des|-des3|-idea> These options encrypt the private key with the DES, triple DES, or the -IDEA ciphers respectively before outputting it. A pass phrase is prompted for. -If none of these options is specified no encryption is used. +IDEA ciphers respectively before outputting it. If none of these options is +specified no encryption is used. If encryption is used a pass phrase is prompted +for if it is not supplied via the B<-passout> argument. =item B<-F4|-3> @@ -38,9 +49,10 @@ the public exponent to use, either 65537 or 3. The default is 65537. =item B<-rand file(s)> a file or files containing random data used to seed the random number -generator. Multiple files can be specified separated by a OS-dependent -character. For MS-Windows, the separator is B<;>. For OpenVMS, it's -B<,>. For all others, it's B<:>. +generator, or an EGD socket (see L). +Multiple files can be specified separated by a OS-dependent character. +The separator is B<;> for MS-Windows, B<,> for OpenVSM, and B<:> for +all others. =item B @@ -53,9 +65,10 @@ specified. The default is 512. RSA private key generation essentially involves the generation of two prime numbers. When generating a private key various symbols will be output to -indicate the progress of the generation. A B<.> represents each number tested. -A B<+> means a number has passed a single primality test. A newline means that -the number has passed all the prime tests (currently set to 5 single tests). +indicate the progress of the generation. A B<.> represents each number which +has passed an initial sieve test, B<+> means a number has passed a single +round of the Miller-Rabin primality test. A newline means that the number has +passed all the prime tests (the actual number depends on the key size). Because key generation is a random process the time taken to generate a key may vary somewhat.