+* [Bug 810] Fix ntp-keygen documentation.
* [Bug 789] Fix multicast client crypto authentication and make sure arriving
multicast packets do not disturb the autokey dance.
* [Bug 787] Bug fixes for 64-bit time_t on Windows.
*
* DO NOT EDIT THIS FILE (ntp-keygen-opts.c)
*
- * It has been AutoGen-ed Thursday April 12, 2007 at 08:18:48 AM EDT
+ * It has been AutoGen-ed Friday April 13, 2007 at 02:00:08 AM EDT
* From the definitions ntp-keygen-opts.def
* and the template file options
*
ifdef = OPENSSL;
descrip = "certificate scheme";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ scheme is one of
+ RSA-MD2, RSA-MD5, RSA-SHA, RSA-SHA1, RSA-MDC2, RSA-RIPEMD160,
+ DSA-SHA, or DSA-SHA1.
+
+ Select the certificate message digest/signature encryption scheme.
+ Note that RSA schemes must be used with a RSA sign key and DSA
+ schemes must be used with a DSA sign key. The default without
+ this option is RSA-MD5.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "Write identity keys";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Write the IFF client keys to the standard output. This is
+ intended for automatic key distribution by mail.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "Generate GQ parameters and keys";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate parameters and keys for the GQ identification scheme,
+ obsoleting any that may exist.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "update GQ keys";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate keys for the GQ identification scheme using the existing
+ GQ parameters. If the GQ parameters do not yet exist, create
+ them first.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "generate RSA host key";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate new host keys, obsoleting any that may exist.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "generate IFF parameters";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate parameters for the IFF identification scheme, obsoleting
+ any that may exist.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "set issuer name";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Set the suject name to name. This is used as the subject field
+ in certificates and in the file name for host and sign keys.
_EndOfDoc_;
};
value = M;
descrip = "generate MD5 keys";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate MD5 keys, obsoleting any that may exist.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "modulus";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ The number of bits in the prime modulus. The default is 512.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "generate PC private certificate";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate a private certificate. By default, the program generates
+ public certificates.
_EndOfDoc_;
};
arg-name = passwd;
descrip = "output private password";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Encrypt generated files containing private data with the specified
+ password and the DES-CBC algorithm.
_EndOfDoc_;
};
arg-name = passwd;
descrip = "input private password";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Set the password for reading files to the specified password.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "generate sign key (RSA or DSA)";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate a new sign key of the designated type, obsoleting any
+ that may exist. By default, the program uses the host key as the
+ sign key.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "set subject name";
doc = <<- _EndOfDoc_
- Just some descriptive text.
- _EndOfDoc_;
+ Set the issuer name to name. This is used for the issuer field
+ in certificates and in the file name for identity files.
+ _EndOfDoc_;
};
flag = {
ifdef = OPENSSL;
descrip = "trusted certificate (TC scheme)";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate a trusted certificate. By default, the program generates
+ a non-trusted certificate.
_EndOfDoc_;
};
ifdef = OPENSSL;
descrip = "generate <num> MV parameters";
doc = <<- _EndOfDoc_
- Just some descriptive text.
+ Generate parameters and keys for the Mu-Varadharajan (MV)
+ identification scheme.
_EndOfDoc_;
};
arg-name = num;
ifdef = OPENSSL;
descrip = "update <num> MV keys";
- doc = <<- _EndOfDoc_
- Just some descriptive text.
- _EndOfDoc_;
};
detail = <<- _EODetail_
*
* DO NOT EDIT THIS FILE (ntp-keygen-opts.h)
*
- * It has been AutoGen-ed Thursday April 12, 2007 at 08:18:47 AM EDT
+ * It has been AutoGen-ed Friday April 13, 2007 at 02:00:07 AM EDT
* From the definitions ntp-keygen-opts.def
* and the template file options
*
#
# DO NOT EDIT THIS FILE (ntp-keygen-opts.texi)
#
-# It has been AutoGen-ed Thursday April 12, 2007 at 08:18:51 AM EDT
+# It has been AutoGen-ed Friday April 13, 2007 at 02:00:10 AM EDT
# From the definitions ntp-keygen-opts.def
# and the template file aginfo.tpl
@end ignore
The following option preset mechanisms are supported:
- reading file /users/stenn/.ntprc
- - reading file /deacon/backroom/snaps/ntp-dev/util/.ntprc
+ - reading file /deacon/backroom/ntp-dev/util/.ntprc
- examining environment variables named NTP_KEYGEN_*
If there is no new host key, look for an existing one.
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+scheme is one of
+RSA-MD2, RSA-MD5, RSA-SHA, RSA-SHA1, RSA-MDC2, RSA-RIPEMD160,
+DSA-SHA, or DSA-SHA1.
+
+Select the certificate message digest/signature encryption scheme.
+Note that RSA schemes must be used with a RSA sign key and DSA
+schemes must be used with a DSA sign key. The default without
+this option is RSA-MD5.
@node ntp-keygen debug-level
@subsection debug-level option (-d)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Write the IFF client keys to the standard output. This is
+intended for automatic key distribution by mail.
@node ntp-keygen gq-params
@subsection gq-params option (-G)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate parameters and keys for the GQ identification scheme,
+obsoleting any that may exist.
@node ntp-keygen gq-keys
@subsection gq-keys option (-g)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate keys for the GQ identification scheme using the existing
+GQ parameters. If the GQ parameters do not yet exist, create
+them first.
@node ntp-keygen host-key
@subsection host-key option (-H)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate new host keys, obsoleting any that may exist.
@node ntp-keygen iffkey
@subsection iffkey option (-I)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate parameters for the IFF identification scheme, obsoleting
+any that may exist.
@node ntp-keygen issuer-name
@subsection issuer-name option (-i)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Set the suject name to name. This is used as the subject field
+in certificates and in the file name for host and sign keys.
@node ntp-keygen md5key
@subsection md5key option (-M)
@cindex ntp-keygen-md5key
This is the ``generate md5 keys'' option.
-Just some descriptive text.
+Generate MD5 keys, obsoleting any that may exist.
@node ntp-keygen modulus
@subsection modulus option (-m)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+The number of bits in the prime modulus. The default is 512.
@node ntp-keygen pvt-cert
@subsection pvt-cert option (-P)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate a private certificate. By default, the program generates
+public certificates.
@node ntp-keygen pvt-passwd
@subsection pvt-passwd option (-p)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Encrypt generated files containing private data with the specified
+password and the DES-CBC algorithm.
@node ntp-keygen get-pvt-passwd
@subsection get-pvt-passwd option (-q)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Set the password for reading files to the specified password.
@node ntp-keygen sign-key
@subsection sign-key option (-S)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate a new sign key of the designated type, obsoleting any
+that may exist. By default, the program uses the host key as the
+sign key.
@node ntp-keygen subject-name
@subsection subject-name option (-s)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Set the issuer name to name. This is used for the issuer field
+in certificates and in the file name for identity files.
@node ntp-keygen trusted-cert
@subsection trusted-cert option (-T)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate a trusted certificate. By default, the program generates
+a non-trusted certificate.
@node ntp-keygen mv-params
@subsection mv-params option (-V)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+Generate parameters and keys for the Mu-Varadharajan (MV)
+identification scheme.
@node ntp-keygen mv-keys
@subsection mv-keys option (-v)
must be compiled in by defining @code{OPENSSL} during the compilation.
@end itemize
-Just some descriptive text.
+This option has no @samp{doc} documentation.
-.TH NTP-KEYGEN 1 2007-04-12 "(ntp 4.2.5p21)" "Programmer's Manual"
+.TH NTP-KEYGEN 1 2007-04-13 "(ntp 4.2.5p21)" "Programmer's Manual"
.\" DO NOT EDIT THIS FILE (ntp-keygen.1)
.\"
-.\" It has been AutoGen-ed Thursday April 12, 2007 at 08:18:49 AM EDT
+.\" It has been AutoGen-ed Friday April 13, 2007 at 02:00:09 AM EDT
.\" From the definitions ntp-keygen-opts.def
.\" and the template file agman1.tpl
.\"
.BR \-c " \fIscheme\fP, " \--certificate "=" \fIscheme\fP
certificate scheme.
.sp
-Just some descriptive text.
+scheme is one of
+RSA-MD2, RSA-MD5, RSA-SHA, RSA-SHA1, RSA-MDC2, RSA-RIPEMD160,
+DSA-SHA, or DSA-SHA1.
+
+Select the certificate message digest/signature encryption scheme.
+Note that RSA schemes must be used with a RSA sign key and DSA
+schemes must be used with a DSA sign key. The default without
+this option is RSA-MD5.
.TP
.BR \-d ", " \--debug-level
Increase output debug message level.
.BR \-e ", " \--id-key
Write identity keys.
.sp
-Just some descriptive text.
+Write the IFF client keys to the standard output. This is
+intended for automatic key distribution by mail.
.TP
.BR \-G ", " \--gq-params
Generate GQ parameters and keys.
.sp
-Just some descriptive text.
+Generate parameters and keys for the GQ identification scheme,
+obsoleting any that may exist.
.TP
.BR \-g ", " \--gq-keys
update GQ keys.
.sp
-Just some descriptive text.
+Generate keys for the GQ identification scheme using the existing
+GQ parameters. If the GQ parameters do not yet exist, create
+them first.
.TP
.BR \-H ", " \--host-key
generate RSA host key.
.sp
-Just some descriptive text.
+Generate new host keys, obsoleting any that may exist.
.TP
.BR \-I ", " \--iffkey
generate IFF parameters.
.sp
-Just some descriptive text.
+Generate parameters for the IFF identification scheme, obsoleting
+any that may exist.
.TP
.BR \-i ", " \--issuer-name
set issuer name.
.sp
-Just some descriptive text.
+Set the suject name to name. This is used as the subject field
+in certificates and in the file name for host and sign keys.
.TP
.BR \-M ", " \--md5key
generate MD5 keys.
.sp
-Just some descriptive text.
+Generate MD5 keys, obsoleting any that may exist.
.TP
.BR \-m " \fImodulus\fP, " \--modulus "=" \fImodulus\fP
modulus.
.fi
.in -4
.sp
-Just some descriptive text.
+The number of bits in the prime modulus. The default is 512.
.TP
.BR \-P ", " \--pvt-cert
generate PC private certificate.
.sp
-Just some descriptive text.
+Generate a private certificate. By default, the program generates
+public certificates.
.TP
.BR \-p " \fIpasswd\fP, " \--pvt-passwd "=" \fIpasswd\fP
output private password.
.sp
-Just some descriptive text.
+Encrypt generated files containing private data with the specified
+password and the DES-CBC algorithm.
.TP
.BR \-q " \fIpasswd\fP, " \--get-pvt-passwd "=" \fIpasswd\fP
input private password.
.sp
-Just some descriptive text.
+Set the password for reading files to the specified password.
.TP
.BR \-S " \fIsign\fP, " \--sign-key "=" \fIsign\fP
generate sign key (RSA or DSA).
.sp
-Just some descriptive text.
+Generate a new sign key of the designated type, obsoleting any
+that may exist. By default, the program uses the host key as the
+sign key.
.TP
.BR \-s " \fIhost\fP, " \--subject-name "=" \fIhost\fP
set subject name.
.sp
-Just some descriptive text.
+Set the issuer name to name. This is used for the issuer field
+in certificates and in the file name for identity files.
.TP
.BR \-T ", " \--trusted-cert
trusted certificate (TC scheme).
.sp
-Just some descriptive text.
+Generate a trusted certificate. By default, the program generates
+a non-trusted certificate.
.TP
.BR \-V " \fInum\fP, " \--mv-params "=" \fInum\fP
generate <num> MV parameters.
This option takes an integer number as its argument.
.sp
-Just some descriptive text.
+Generate parameters and keys for the Mu-Varadharajan (MV)
+identification scheme.
.TP
.BR \-v " \fInum\fP, " \--mv-keys "=" \fInum\fP
update <num> MV keys.
This option takes an integer number as its argument.
.sp
-Just some descriptive text.
+This option has not been fully documented.
.TP
.BR \-? , " \--help"
Display usage information and exit.
projects / thirdparty / ntp.git / commitdiff
