1 files changed, 20 insertions, 13 deletions

diff --git a/secure/lib/libcrypto/man/man3/RAND_add.3 b/secure/lib/libcrypto/man/man3/RAND_add.3
index b20e10af12a8..236fd3e9c8b4 100644
--- a/secure/lib/libcrypto/man/man3/RAND_add.3
+++ b/secure/lib/libcrypto/man/man3/RAND_add.3
@@ -1,4 +1,4 @@
-.\" Automatically generated by Pod::Man 4.14 (Pod::Simple 3.43)
+.\" Automatically generated by Pod::Man 4.14 (Pod::Simple 3.42)
 .\"
 .\" Standard preamble:
 .\" ========================================================================
@@ -68,8 +68,6 @@
 .    \}
 .\}
 .rr rF
-.\"
-.\" Accent mark definitions (@(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2).
 .\" Fear.  Run.  Save yourself.  No user-serviceable parts.
 .    \" fudge factors for nroff and troff
 .if n \{\
@@ -132,14 +130,16 @@
 .rm #[ #] #H #V #F C
 .\" ========================================================================
 .\"
-.IX Title "RAND_ADD 3"
-.TH RAND_ADD 3 "2022-05-03" "1.1.1o" "OpenSSL"
+.IX Title "RAND_ADD 3ossl"
+.TH RAND_ADD 3ossl "2023-09-19" "3.0.11" "OpenSSL"
 .\" For nroff, turn off justification.  Always turn off hyphenation; it makes
 .\" way too many mistakes in technical documents.
 .if n .ad l
 .nh
 .SH "NAME"
-RAND_add, RAND_poll, RAND_seed, RAND_status, RAND_event, RAND_screen, RAND_keep_random_devices_open \&\- add randomness to the PRNG or get its status
+RAND_add, RAND_poll, RAND_seed, RAND_status, RAND_event, RAND_screen,
+RAND_keep_random_devices_open
+\&\- add randomness to the PRNG or get its status
 .SH "SYNOPSIS"
 .IX Header "SYNOPSIS"
 .Vb 1
@@ -154,13 +154,13 @@ RAND_add, RAND_poll, RAND_seed, RAND_status, RAND_event, RAND_screen, RAND_keep_
 \& void RAND_keep_random_devices_open(int keep);
 .Ve
 .PP
-Deprecated:
+The following functions have been deprecated since OpenSSL 1.1.0, and can be
+hidden entirely by defining \fB\s-1OPENSSL_API_COMPAT\s0\fR with a suitable version value,
+see \fBopenssl_user_macros\fR\|(7):
 .PP
-.Vb 4
-\& #if OPENSSL_API_COMPAT < 0x10100000L
+.Vb 2
 \& int RAND_event(UINT iMsg, WPARAM wParam, LPARAM lParam);
 \& void RAND_screen(void);
-\& #endif
 .Ve
 .SH "DESCRIPTION"
 .IX Header "DESCRIPTION"
@@ -192,6 +192,11 @@ The content of \fBbuf\fR cannot be recovered from subsequent random generator ou
 Applications that intend to save and restore random state in an external file
 should consider using \fBRAND_load_file\fR\|(3) instead.
 .PP
+\&\s-1NOTE:\s0 In \s-1FIPS\s0 mode, random data provided by the application is not considered to
+be a trusted entropy source. It is mixed into the internal state of the \s-1RNG\s0 as
+additional data only and this does not count as a full reseed.
+For more details, see \s-1\fBEVP_RAND\s0\fR\|(7).
+.PP
 \&\fBRAND_seed()\fR is equivalent to \fBRAND_add()\fR with \fBrandomness\fR set to \fBnum\fR.
 .PP
 \&\fBRAND_keep_random_devices_open()\fR is used to control file descriptor
@@ -201,7 +206,8 @@ descriptors by default, which allows such sources to operate in a
 the \fBkeep\fR argument is zero, this call disables the retention of file
 descriptors. Conversely, a nonzero argument enables the retention of
 file descriptors. This function is usually called during initialization
-and it takes effect immediately.
+and it takes effect immediately. This capability only applies to the default
+provider.
 .PP
 \&\fBRAND_event()\fR and \fBRAND_screen()\fR are equivalent to \fBRAND_poll()\fR and exist
 for compatibility reasons only. See \s-1HISTORY\s0 section below.
@@ -221,15 +227,16 @@ The other functions do not return values.
 \&\fBRAND_egd\fR\|(3),
 \&\fBRAND_load_file\fR\|(3),
 \&\s-1\fBRAND\s0\fR\|(7)
+\&\s-1\fBEVP_RAND\s0\fR\|(7)
 .SH "HISTORY"
 .IX Header "HISTORY"
 \&\fBRAND_event()\fR and \fBRAND_screen()\fR were deprecated in OpenSSL 1.1.0 and should
 not be used.
 .SH "COPYRIGHT"
 .IX Header "COPYRIGHT"
-Copyright 2000\-2020 The OpenSSL Project Authors. All Rights Reserved.
+Copyright 2000\-2021 The OpenSSL Project Authors. All Rights Reserved.
 .PP
-Licensed under the OpenSSL license (the \*(L"License\*(R").  You may not use
+Licensed under the Apache License 2.0 (the \*(L"License\*(R").  You may not use
 this file except in compliance with the License.  You can obtain a copy
 in the file \s-1LICENSE\s0 in the source distribution or at
 <https://www.openssl.org/source/license.html>.