From de87dd46c1283f899a9ecf4ccc72db74f36afbf2 Mon Sep 17 00:00:00 2001
From: =?utf8?q?Andr=C3=A9=20Guerreiro?= <aguerreiro1985@gmail.com>
Date: Thu, 27 Nov 2014 10:11:33 +0000
Subject: [PATCH] Add documentation on -timeout option in the ocsp utility

PR#3612

Reviewed-by: Dr. Stephen Henson <steve@openssl.org>
---
 apps/ocsp.c       | 1 +
 doc/apps/ocsp.pod | 4 ++++
 2 files changed, 5 insertions(+)

diff --git a/apps/ocsp.c b/apps/ocsp.c
index 902546ff61..5143a4dd22 100644
--- a/apps/ocsp.c
+++ b/apps/ocsp.c
@@ -650,6 +650,7 @@ int MAIN(int argc, char **argv)
 		BIO_printf (bio_err, "-resp_key_id       identify reponse by signing certificate key ID\n");
 		BIO_printf (bio_err, "-nrequest n        number of requests to accept (default unlimited)\n");
 		BIO_printf (bio_err, "-<dgst alg>     use specified digest in the request\n");
+		BIO_printf (bio_err, "-timeout n timeout connection to OCSP responder after n seconds\n");
 		goto end;
 		}
 
diff --git a/doc/apps/ocsp.pod b/doc/apps/ocsp.pod
index 9758474f1c..296b13ce50 100644
--- a/doc/apps/ocsp.pod
+++ b/doc/apps/ocsp.pod
@@ -159,6 +159,10 @@ if the B<host> option is present then the OCSP request is sent to the host
 B<hostname> on port B<port>. B<path> specifies the HTTP path name to use
 or "/" by default.
 
+=item B<-timeout seconds>
+
+connection timeout to the OCSP responder in seconds
+
 =item B<-CAfile file>, B<-CApath pathname>
 
 file or pathname containing trusted CA certificates. These are used to verify
-- 
2.25.1