Ellipses were used to express that the '-rand' value can specify
multiple files, like this:
B<-rand> I<file...>
Because there are conventions around ellipses, this becomes confusing,
because '-rand file...' is normally intepreted to mean that
'-rand file1 file2 file3' would be processed as three randomness
files, which makes no sense.
Rather than making things complicated with more elaborate syntax, we
change it to:
B<-rand> I<files>
Reviewed-by: Tomas Mraz <tmraz@fedoraproject.org>
(Merged from https://github.com/openssl/openssl/pull/10065)
24 files changed:
[B<-create_serial>]
[B<-rand_serial>]
[B<-multivalue-rdn>]
[B<-create_serial>]
[B<-rand_serial>]
[B<-multivalue-rdn>]
[B<-writerand> I<file>]
[B<-sm2-id> I<string>]
[B<-sm2-hex-id> I<hex-string>]
[B<-writerand> I<file>]
[B<-sm2-id> I<string>]
[B<-sm2-hex-id> I<hex-string>]
If -multi-rdn is not used then the UID value is I<123456+CN=John Doe>.
If -multi-rdn is not used then the UID value is I<123456+CN=John Doe>.
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-inkey> I<file>]
[B<-keyopt> I<name>:I<parameter>]
[B<-passin> I<arg>]
[B<-inkey> I<file>]
[B<-keyopt> I<name>:I<parameter>]
[B<-passin> I<arg>]
[B<-writerand> I<file>]
[B<-to> I<addr>]
[B<-from> I<addr>]
[B<-writerand> I<file>]
[B<-to> I<addr>]
[B<-from> I<addr>]
The private key password source. For more information about the format of B<arg>
see L<openssl(1)/Pass phrase options>.
The private key password source. For more information about the format of B<arg>
see L<openssl(1)/Pass phrase options>.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-sigopt> I<nm>:I<v>]
[B<-hmac> I<key>]
[B<-fips-fingerprint>]
[B<-sigopt> I<nm>:I<v>]
[B<-hmac> I<key>]
[B<-fips-fingerprint>]
[B<-engine> I<id>]
[B<-engine_impl>]
[I<file> ...]
[B<-engine> I<id>]
[B<-engine_impl>]
[I<file> ...]
The L<openssl-mac(1)> command should be preferred to using this command line
option.
The L<openssl-mac(1)> command should be preferred to using this command line
option.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-writerand> I<file>]
[B<-engine> I<id>]
[I<numbits>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[I<numbits>]
present but B<numbits> is present, parameters are generated with the
default generator 2.
present but B<numbits> is present, parameters are generated with the
default generator 2.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-noout>]
[B<-text>]
[B<-C>]
[B<-noout>]
[B<-text>]
[B<-C>]
[B<-writerand> I<file>]
[B<-genkey>]
[B<-engine> I<id>]
[B<-writerand> I<file>]
[B<-genkey>]
[B<-engine> I<id>]
This option will generate a DSA either using the specified or generated
parameters.
This option will generate a DSA either using the specified or generated
parameters.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-conv_form> I<arg>]
[B<-param_enc> I<arg>]
[B<-no_seed>]
[B<-conv_form> I<arg>]
[B<-param_enc> I<arg>]
[B<-no_seed>]
[B<-writerand> I<file>]
[B<-genkey>]
[B<-engine> I<id>]
[B<-writerand> I<file>]
[B<-genkey>]
[B<-engine> I<id>]
This option will generate an EC private key using the specified parameters.
This option will generate an EC private key using the specified parameters.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-nopad>]
[B<-debug>]
[B<-none>]
[B<-nopad>]
[B<-debug>]
[B<-none>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
Use NULL cipher (no encryption or decryption of input).
Use NULL cipher (no encryption or decryption of input).
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-des>]
[B<-des3>]
[B<-idea>]
[B<-des>]
[B<-des3>]
[B<-idea>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-verbose>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-verbose>]
cipher before outputting it. A pass phrase is prompted for.
If none of these options is specified no encryption is used.
cipher before outputting it. A pass phrase is prompted for.
If none of these options is specified no encryption is used.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-idea>]
[B<-f4>]
[B<-3>]
[B<-idea>]
[B<-f4>]
[B<-3>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-primes> I<num>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-primes> I<num>]
The public exponent to use, either 65537 or 3. The default is 65537.
The public exponent to use, either 65537 or 3. The default is 65537.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-noverify>]
[B<-quiet>]
[B<-table>]
[B<-noverify>]
[B<-quiet>]
[B<-table>]
[B<-writerand> I<file>]
{I<password>}
[B<-writerand> I<file>]
{I<password>}
In the output list, prepend the cleartext password and a TAB character
to each password hash.
In the output list, prepend the cleartext password and a TAB character
to each password hash.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-password> I<arg>]
[B<-passin> I<arg>]
[B<-passout> I<arg>]
[B<-password> I<arg>]
[B<-passin> I<arg>]
[B<-passout> I<arg>]
[B<-writerand> I<file>]
[B<-CAfile> I<file>]
[B<-CApath> I<dir>]
[B<-writerand> I<file>]
[B<-CAfile> I<file>]
[B<-CApath> I<dir>]
Don't attempt to provide the MAC integrity.
Don't attempt to provide the MAC integrity.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-passout> I<arg>]
[B<-iter> I<count>]
[B<-noiter>]
[B<-passout> I<arg>]
[B<-iter> I<count>]
[B<-noiter>]
[B<-writerand> I<file>]
[B<-nocrypt>]
[B<-traditional>]
[B<-writerand> I<file>]
[B<-nocrypt>]
[B<-traditional>]
when absolutely necessary. Certain software such as some versions of Java
code signing software used unencrypted private keys.
when absolutely necessary. Certain software such as some versions of Java
code signing software used unencrypted private keys.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-pkeyopt_passin> I<opt:passarg>]
[B<-hexdump>]
[B<-asn1parse>]
[B<-pkeyopt_passin> I<opt:passarg>]
[B<-hexdump>]
[B<-asn1parse>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-engine_impl>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-engine_impl>]
Parse the ASN.1 output data, this is useful when combined with the
B<-verifyrecover> option when an ASN1 structure is signed.
Parse the ASN.1 output data, this is useful when combined with the
B<-verifyrecover> option when an ASN1 structure is signed.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
B<openssl rand>
[B<-help>]
[B<-out> I<file>]
B<openssl rand>
[B<-help>]
[B<-out> I<file>]
[B<-writerand> I<file>]
[B<-base64>]
[B<-hex>]
[B<-writerand> I<file>]
[B<-base64>]
[B<-hex>]
Write to I<file> instead of standard output.
Write to I<file> instead of standard output.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-verify>]
[B<-modulus>]
[B<-new>]
[B<-verify>]
[B<-modulus>]
[B<-new>]
[B<-writerand> I<file>]
[B<-newkey> I<rsa:bits>]
[B<-newkey> I<alg:file>]
[B<-writerand> I<file>]
[B<-newkey> I<rsa:bits>]
[B<-newkey> I<alg:file>]
If the B<-key> option is not used it will generate a new RSA private
key using information specified in the configuration file.
If the B<-key> option is not used it will generate a new RSA private
key using information specified in the configuration file.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-verify>]
[B<-encrypt>]
[B<-decrypt>]
[B<-verify>]
[B<-encrypt>]
[B<-decrypt>]
[B<-writerand> I<file>]
[B<-pkcs>]
[B<-ssl>]
[B<-writerand> I<file>]
[B<-pkcs>]
[B<-ssl>]
Decrypt the input data using an RSA private key.
Decrypt the input data using an RSA private key.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-no_ticket>]
[B<-sess_out> I<filename>]
[B<-sess_in> I<filename>]
[B<-no_ticket>]
[B<-sess_out> I<filename>]
[B<-sess_in> I<filename>]
[B<-writerand> I<file>]
[B<-serverinfo> I<types>]
[B<-status>]
[B<-writerand> I<file>]
[B<-serverinfo> I<types>]
[B<-status>]
thus initialising it if needed. The engine will then be set as the default
for all available algorithms.
thus initialising it if needed. The engine will then be set as the default
for all available algorithms.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-tlsextdebug>]
[B<-HTTP>]
[B<-id_prefix> I<val>]
[B<-tlsextdebug>]
[B<-HTTP>]
[B<-id_prefix> I<val>]
[B<-writerand> I<file>]
[B<-keymatexport> I<val>]
[B<-keymatexportlen> I<+int>]
[B<-writerand> I<file>]
[B<-keymatexport> I<val>]
[B<-keymatexportlen> I<+int>]
servers, when each of which might be generating a unique range of session
IDs (eg. with a certain prefix).
servers, when each of which might be generating a unique range of session
IDs (eg. with a certain prefix).
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-indef>]
[B<-noindef>]
[B<-stream>]
[B<-indef>]
[B<-noindef>]
[B<-stream>]
[B<-writerand> I<file>]
[B<-md> I<digest>]
I<cert.pem> ...
[B<-writerand> I<file>]
[B<-md> I<digest>]
I<cert.pem> ...
The private key password source. For more information about the format of B<arg>
see L<openssl(1)/Pass phrase options>.
The private key password source. For more information about the format of B<arg>
see L<openssl(1)/Pass phrase options>.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-hmac> I<algo>]
[B<-cmac> I<algo>]
[B<-decrypt>]
[B<-hmac> I<algo>]
[B<-cmac> I<algo>]
[B<-decrypt>]
[B<-writerand> I<file>]
[B<-primes> I<num>]
[B<-seconds> I<num>]
[B<-writerand> I<file>]
[B<-primes> I<num>]
[B<-seconds> I<num>]
Time the decryption instead of encryption. Affects only the EVP testing.
Time the decryption instead of encryption. Affects only the EVP testing.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-config> I<file>]
[B<-srpvfile> I<file>]
[B<-gn> I<identifier>]
[B<-config> I<file>]
[B<-srpvfile> I<file>]
[B<-gn> I<identifier>]
-[B<-userinfo> I<text...>]
[B<-passin> I<arg>]
[B<-passout> I<arg>]
[I<user> ...]
[B<-passin> I<arg>]
[B<-passout> I<arg>]
[I<user> ...]
B<openssl> B<ts>
B<-query>
B<openssl> B<ts>
B<-query>
[B<-writerand> I<file>]
[B<-config> I<configfile>]
[B<-data> I<file_to_hash>]
[B<-writerand> I<file>]
[B<-config> I<configfile>]
[B<-data> I<file_to_hash>]
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
[B<-extfile> I<filename>]
[B<-extensions> I<section>]
[B<-sigopt> I<nm>:I<v>]
[B<-extfile> I<filename>]
[B<-extensions> I<section>]
[B<-sigopt> I<nm>:I<v>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-preserve_dates>]
[B<-writerand> I<file>]
[B<-engine> I<id>]
[B<-preserve_dates>]
If not specified then SHA1 is used with B<-fingerprint> or
the default digest for the signing algorithm is used, typically SHA256.
If not specified then SHA1 is used with B<-fingerprint> or
the default digest for the signing algorithm is used, typically SHA256.
-=item B<-rand> I<file...>
-A file or files containing random data used to seed the random number
-generator.
+The files containing random data used to seed the random number generator.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
Multiple files can be specified separated by an OS-dependent character.
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
all others.
-=item B<OPENSSL_TRACE=>I<name,...>
+=item B<OPENSSL_TRACE=>I<name>[,...]
Enable tracing output of OpenSSL library, by name.
This output will only make sense if you know OpenSSL internals well.
Enable tracing output of OpenSSL library, by name.
This output will only make sense if you know OpenSSL internals well.