updates for openssl gen{d,r}sa:

- sort options - document "-out filename" for gendsa - typos and grammar
author: jmc <> 2003-12-29 13:44:43 +0000
committer: jmc <> 2003-12-29 13:44:43 +0000
commit: a4e0b6e6e2f17d789d08372954d6335a87ed59af (patch)
tree: 28c20f75dd335d175e669d047487ebab02b3422d
parent: 6ce8ea96efa17acf7e15c5870d98374d2f856447 (diff)
download: openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.tar.gz
openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.tar.bz2
openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.zip
1 files changed, 55 insertions, 51 deletions
diff --git a/src/usr.sbin/openssl/openssl.1 b/src/usr.sbin/openssl/openssl.1
index 2849c4ec22..a5f14ee735 100644
--- a/src/usr.sbin/openssl/openssl.1
+++ b/src/usr.sbin/openssl/openssl.1
@@ -1,4 +1,4 @@
-.\" $OpenBSD: openssl.1,v 1.27 2003/12/21 15:00:41 jmc Exp $
+.\" $OpenBSD: openssl.1,v 1.28 2003/12/29 13:44:43 jmc Exp $
 .\" ====================================================================
 .\" Copyright (c) 1998-2002 The OpenSSL Project.  All rights reserved.
 .\"
@@ -2783,13 +2783,13 @@ above.
 .Sh GENDSA
 .Nm openssl gendsa
 .Bk -words
-.Op Fl out Ar filename
-.Op Fl rand Ar file ...
-.Op Fl engine Ar id
 .Oo
-.Fl des | des3 | aes128 |
+.Fl aes128 | aes192 | aes256 |
-.Fl aes192 | aes256
+.Fl des | des3
 .Oc
+.Op Fl engine Ar id
+.Op Fl out Ar filename
+.Op Fl rand Ar file ...
 .Op Ar paramfile
 .Ek
 .Pp
@@ -2803,19 +2803,13 @@ command).
 The options are as follows:
 .Bl -tag -width "XXXX"
 .It Xo
-.Fl des | des3 | aes128 |
+.Fl aes128 | aes192 | aes256 |
-.Fl aes192 | aes256
+.Fl des | des3
 .Xc
-These options encrypt the private key with the DES, triple DES,
+These options encrypt the private key with the AES, DES,
-or the AES ciphers, respectively, before outputting it.
+or the triple DES ciphers, respectively, before outputting it.
 A pass phrase is prompted for.
-If none of these options is specified, no encryption is used.
+If none of these options are specified, no encryption is used.
-.It Fl rand Ar file ...
-A file or files containing random data used to seed the random number
-generator, or an EGD socket (see
-.Xr RAND_egd 3 ) .
-Multiple files can be specified separated by a
-.Sq \&: .
 .It Fl engine Ar id
 Specifying an engine (by it's unique
 .Ar id
@@ -2824,16 +2818,26 @@ string) will cause
 to attempt to obtain a functional reference to the specified engine,
 thus initialising it if needed.
 The engine will then be set as the default for all available algorithms.
+.It Fl out Ar filename
+The output
+.Ar filename .
+If this argument is not specified, standard output is used.
 .It Ar paramfile
 This option specifies the DSA parameter file to use.
 The parameters in this file determine the size of the private key.
 DSA parameters can be generated and examined using the
 .Nm openssl dsaparam
 command.
+.It Fl rand Ar file ...
+A file or files containing random data used to seed the random number
+generator, or an EGD socket (see
+.Xr RAND_egd 3 ) .
+Multiple files can be specified separated by a
+.Sq \&: .
 .El
 .Sh GENDSA NOTES
 DSA key generation is little more than random number generation so it is
-much quicker that RSA key generation for example.
+much quicker than RSA key generation, for example.
 .\"
 .\" GENRSA
 .\"
@@ -2841,14 +2845,14 @@ much quicker that RSA key generation for example.
 .Nm openssl genrsa
 .Bk -words
 .Oo
-.Fl des | des3 | aes128 |
+.Fl aes128 | aes192 | aes256 |
-.Fl aes192 | aes256
+.Fl des | des3
 .Oc
+.Op Fl engine Ar id
+.Op Fl 3 | f4
 .Op Fl out Ar filename
 .Op Fl passout Ar arg
-.Op Fl f4 | 3
 .Op Fl rand Ar file ...
-.Op Fl engine Ar id
 .Op Ar numbits
 .Ek
 .Pp
@@ -2858,38 +2862,17 @@ command generates an RSA private key.
 .Pp
 The options are as follows:
 .Bl -tag -width "XXXX"
-.It Fl out Ar filename
-The output
-.Ar filename .
-If this argument is not specified then standard output is used.
-.It Fl passout Ar arg
-The output file password source.
-For more information about the format of
-.Ar arg ,
-see the
-.Sx PASS PHRASE ARGUMENTS
-section above.
 .It Xo
-.Fl des | des3 | aes128 |
+.Fl aes128 | aes192 | aes256 |
-.Fl aes192 | aes256
+.Fl des | des3
 .Xc
-These options encrypt the private key with the DES, triple DES, or the
+These options encrypt the private key with the AES, DES,
-AES ciphers, respectively, before outputting it.
+or the triple DES ciphers, respectively, before outputting it.
-If none of these options is specified, no encryption is used.
+If none of these options are specified, no encryption is used.
-If encryption is used a pass phrase is prompted for,
+If encryption is used, a pass phrase is prompted for,
 if it is not supplied via the
 .Fl passout
 option.
-.It Fl F4 | 3
-The public exponent to use, either 65537 or 3.
-The default is 65537.
-.It Fl rand Ar file ...
-A file or files
-containing random data used to seed the random number
-generator, or an EGD socket (see
-.Xr RAND_egd 3 ) .
-Multiple files can be specified separated by a
-.Sq \&: .
 .It Fl engine Ar id
 Specifying an engine (by it's unique
 .Ar id
@@ -2898,10 +2881,31 @@ string) will cause
 to attempt to obtain a functional reference to the specified engine,
 thus initialising it if needed.
 The engine will then be set as the default for all available algorithms.
+.It Fl 3 | f4
+The public exponent to use, either 3 or 65537.
+The default is 65537.
 .It Ar numbits
 The size of the private key to generate in bits.
 This must be the last option specified.
 The default is 512.
+.It Fl out Ar filename
+The output
+.Ar filename .
+If this argument is not specified, standard output is used.
+.It Fl passout Ar arg
+The output file password source.
+For more information about the format of
+.Ar arg ,
+see the
+.Sx PASS PHRASE ARGUMENTS
+section above.
+.It Fl rand Ar file ...
+A file or files
+containing random data used to seed the random number
+generator, or an EGD socket (see
+.Xr RAND_egd 3 ) .
+Multiple files can be specified separated by a
+.Sq \&: .
 .El
 .Sh GENRSA NOTES
 RSA private key generation essentially involves the generation of two prime
@@ -2916,8 +2920,8 @@ means a number has passed a single round of the Miller-Rabin primality test.
 A newline means that the number has passed all the prime tests
 .Pq the actual number depends on the key size .
 .Pp
-Because key generation is a random process the time taken to generate a key
+Because key generation is a random process,
-may vary somewhat.
+the time taken to generate a key may vary somewhat.
 .Sh GENRSA BUGS
 A quirk of the prime generation algorithm is that it cannot generate small
 primes.
author	jmc <>	2003-12-29 13:44:43 +0000
committer	jmc <>	2003-12-29 13:44:43 +0000
commit	a4e0b6e6e2f17d789d08372954d6335a87ed59af (patch)
tree	28c20f75dd335d175e669d047487ebab02b3422d
parent	6ce8ea96efa17acf7e15c5870d98374d2f856447 (diff)
download	openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.tar.gz openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.tar.bz2 openbsd-a4e0b6e6e2f17d789d08372954d6335a87ed59af.zip

diff --git a/src/usr.sbin/openssl/openssl.1 b/src/usr.sbin/openssl/openssl.1 index 2849c4ec22..a5f14ee735 100644 --- a/src/usr.sbin/openssl/openssl.1 +++ b/src/usr.sbin/openssl/openssl.1
@@ -1,4 +1,4 @@
1	.\" $OpenBSD: openssl.1,v 1.27 2003/12/21 15:00:41 jmc Exp $	1	.\" $OpenBSD: openssl.1,v 1.28 2003/12/29 13:44:43 jmc Exp $
2	.\" ====================================================================	2	.\" ====================================================================
3	.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved.	3	.\" Copyright (c) 1998-2002 The OpenSSL Project. All rights reserved.
4	.\"	4	.\"
@@ -2783,13 +2783,13 @@ above.
2783	.Sh GENDSA	2783	.Sh GENDSA
2784	.Nm openssl gendsa	2784	.Nm openssl gendsa
2785	.Bk -words	2785	.Bk -words
2786	.Op Fl out Ar filename
2787	.Op Fl rand Ar file ...
2788	.Op Fl engine Ar id
2789	.Oo	2786	.Oo
2790	.Fl des \| des3 \| aes128 \|	2787	.Fl aes128 \| aes192 \| aes256 \|
2791	.Fl aes192 \| aes256	2788	.Fl des \| des3
2792	.Oc	2789	.Oc
		2790	.Op Fl engine Ar id
		2791	.Op Fl out Ar filename
		2792	.Op Fl rand Ar file ...
2793	.Op Ar paramfile	2793	.Op Ar paramfile
2794	.Ek	2794	.Ek
2795	.Pp	2795	.Pp
@@ -2803,19 +2803,13 @@ command).
2803	The options are as follows:	2803	The options are as follows:
2804	.Bl -tag -width "XXXX"	2804	.Bl -tag -width "XXXX"
2805	.It Xo	2805	.It Xo
2806	.Fl des \| des3 \| aes128 \|	2806	.Fl aes128 \| aes192 \| aes256 \|
2807	.Fl aes192 \| aes256	2807	.Fl des \| des3
2808	.Xc	2808	.Xc
2809	These options encrypt the private key with the DES, triple DES,	2809	These options encrypt the private key with the AES, DES,
2810	or the AES ciphers, respectively, before outputting it.	2810	or the triple DES ciphers, respectively, before outputting it.
2811	A pass phrase is prompted for.	2811	A pass phrase is prompted for.
2812	If none of these options is specified, no encryption is used.	2812	If none of these options are specified, no encryption is used.
2813	.It Fl rand Ar file ...
2814	A file or files containing random data used to seed the random number
2815	generator, or an EGD socket (see
2816	.Xr RAND_egd 3 ) .
2817	Multiple files can be specified separated by a
2818	.Sq \&: .
2819	.It Fl engine Ar id	2813	.It Fl engine Ar id
2820	Specifying an engine (by it's unique	2814	Specifying an engine (by it's unique
2821	.Ar id	2815	.Ar id
@@ -2824,16 +2818,26 @@ string) will cause
2824	to attempt to obtain a functional reference to the specified engine,	2818	to attempt to obtain a functional reference to the specified engine,
2825	thus initialising it if needed.	2819	thus initialising it if needed.
2826	The engine will then be set as the default for all available algorithms.	2820	The engine will then be set as the default for all available algorithms.
		2821	.It Fl out Ar filename
		2822	The output
		2823	.Ar filename .
		2824	If this argument is not specified, standard output is used.
2827	.It Ar paramfile	2825	.It Ar paramfile
2828	This option specifies the DSA parameter file to use.	2826	This option specifies the DSA parameter file to use.
2829	The parameters in this file determine the size of the private key.	2827	The parameters in this file determine the size of the private key.
2830	DSA parameters can be generated and examined using the	2828	DSA parameters can be generated and examined using the
2831	.Nm openssl dsaparam	2829	.Nm openssl dsaparam
2832	command.	2830	command.
		2831	.It Fl rand Ar file ...
		2832	A file or files containing random data used to seed the random number
		2833	generator, or an EGD socket (see
		2834	.Xr RAND_egd 3 ) .
		2835	Multiple files can be specified separated by a
		2836	.Sq \&: .
2833	.El	2837	.El
2834	.Sh GENDSA NOTES	2838	.Sh GENDSA NOTES
2835	DSA key generation is little more than random number generation so it is	2839	DSA key generation is little more than random number generation so it is
2836	much quicker that RSA key generation for example.	2840	much quicker than RSA key generation, for example.
2837	.\"	2841	.\"
2838	.\" GENRSA	2842	.\" GENRSA
2839	.\"	2843	.\"
@@ -2841,14 +2845,14 @@ much quicker that RSA key generation for example.
2841	.Nm openssl genrsa	2845	.Nm openssl genrsa
2842	.Bk -words	2846	.Bk -words
2843	.Oo	2847	.Oo
2844	.Fl des \| des3 \| aes128 \|	2848	.Fl aes128 \| aes192 \| aes256 \|
2845	.Fl aes192 \| aes256	2849	.Fl des \| des3
2846	.Oc	2850	.Oc
		2851	.Op Fl engine Ar id
		2852	.Op Fl 3 \| f4
2847	.Op Fl out Ar filename	2853	.Op Fl out Ar filename
2848	.Op Fl passout Ar arg	2854	.Op Fl passout Ar arg
2849	.Op Fl f4 \| 3
2850	.Op Fl rand Ar file ...	2855	.Op Fl rand Ar file ...
2851	.Op Fl engine Ar id
2852	.Op Ar numbits	2856	.Op Ar numbits
2853	.Ek	2857	.Ek
2854	.Pp	2858	.Pp
@@ -2858,38 +2862,17 @@ command generates an RSA private key.
2858	.Pp	2862	.Pp
2859	The options are as follows:	2863	The options are as follows:
2860	.Bl -tag -width "XXXX"	2864	.Bl -tag -width "XXXX"
2861	.It Fl out Ar filename
2862	The output
2863	.Ar filename .
2864	If this argument is not specified then standard output is used.
2865	.It Fl passout Ar arg
2866	The output file password source.
2867	For more information about the format of
2868	.Ar arg ,
2869	see the
2870	.Sx PASS PHRASE ARGUMENTS
2871	section above.
2872	.It Xo	2865	.It Xo
2873	.Fl des \| des3 \| aes128 \|	2866	.Fl aes128 \| aes192 \| aes256 \|
2874	.Fl aes192 \| aes256	2867	.Fl des \| des3
2875	.Xc	2868	.Xc
2876	These options encrypt the private key with the DES, triple DES, or the	2869	These options encrypt the private key with the AES, DES,
2877	AES ciphers, respectively, before outputting it.	2870	or the triple DES ciphers, respectively, before outputting it.
2878	If none of these options is specified, no encryption is used.	2871	If none of these options are specified, no encryption is used.
2879	If encryption is used a pass phrase is prompted for,	2872	If encryption is used, a pass phrase is prompted for,
2880	if it is not supplied via the	2873	if it is not supplied via the
2881	.Fl passout	2874	.Fl passout
2882	option.	2875	option.
2883	.It Fl F4 \| 3
2884	The public exponent to use, either 65537 or 3.
2885	The default is 65537.
2886	.It Fl rand Ar file ...
2887	A file or files
2888	containing random data used to seed the random number
2889	generator, or an EGD socket (see
2890	.Xr RAND_egd 3 ) .
2891	Multiple files can be specified separated by a
2892	.Sq \&: .
2893	.It Fl engine Ar id	2876	.It Fl engine Ar id
2894	Specifying an engine (by it's unique	2877	Specifying an engine (by it's unique
2895	.Ar id	2878	.Ar id
@@ -2898,10 +2881,31 @@ string) will cause
2898	to attempt to obtain a functional reference to the specified engine,	2881	to attempt to obtain a functional reference to the specified engine,
2899	thus initialising it if needed.	2882	thus initialising it if needed.
2900	The engine will then be set as the default for all available algorithms.	2883	The engine will then be set as the default for all available algorithms.
		2884	.It Fl 3 \| f4
		2885	The public exponent to use, either 3 or 65537.
		2886	The default is 65537.
2901	.It Ar numbits	2887	.It Ar numbits
2902	The size of the private key to generate in bits.	2888	The size of the private key to generate in bits.
2903	This must be the last option specified.	2889	This must be the last option specified.
2904	The default is 512.	2890	The default is 512.
		2891	.It Fl out Ar filename
		2892	The output
		2893	.Ar filename .
		2894	If this argument is not specified, standard output is used.
		2895	.It Fl passout Ar arg
		2896	The output file password source.
		2897	For more information about the format of
		2898	.Ar arg ,
		2899	see the
		2900	.Sx PASS PHRASE ARGUMENTS
		2901	section above.
		2902	.It Fl rand Ar file ...
		2903	A file or files
		2904	containing random data used to seed the random number
		2905	generator, or an EGD socket (see
		2906	.Xr RAND_egd 3 ) .
		2907	Multiple files can be specified separated by a
		2908	.Sq \&: .
2905	.El	2909	.El
2906	.Sh GENRSA NOTES	2910	.Sh GENRSA NOTES
2907	RSA private key generation essentially involves the generation of two prime	2911	RSA private key generation essentially involves the generation of two prime
@@ -2916,8 +2920,8 @@ means a number has passed a single round of the Miller-Rabin primality test.
2916	A newline means that the number has passed all the prime tests	2920	A newline means that the number has passed all the prime tests
2917	.Pq the actual number depends on the key size .	2921	.Pq the actual number depends on the key size .
2918	.Pp	2922	.Pp
2919	Because key generation is a random process the time taken to generate a key	2923	Because key generation is a random process,
2920	may vary somewhat.	2924	the time taken to generate a key may vary somewhat.
2921	.Sh GENRSA BUGS	2925	.Sh GENRSA BUGS
2922	A quirk of the prime generation algorithm is that it cannot generate small	2926	A quirk of the prime generation algorithm is that it cannot generate small
2923	primes.	2927	primes.