{
    "mode": "man",
    "parameter": "openssl-env",
    "section": "7",
    "url": "https://www.chedong.com/phpMan.php/man/openssl-env/7/json",
    "generated": "2026-06-03T01:28:48Z",
    "sections": {
        "NAME": {
            "content": "openssl-env - OpenSSL environment variables\n",
            "subsections": []
        },
        "DESCRIPTION": {
            "content": "The OpenSSL libraries use environment variables to override the compiled-in default paths for\nvarious data.  To avoid security risks, the environment is usually not consulted when the\nexecutable is set-user-ID or set-group-ID.\n\nCTLOGFILE\nSpecifies the path to a certificate transparency log list.  See CTLOGSTOREnew(3).\n\nOPENSSL\nSpecifies the path to the openssl executable. Used by the rehash script (see \"Script\nConfiguration\" in openssl-rehash(1)) and by the CA.pl script (see \"NOTES\" in CA.pl(1)\n\nOPENSSLCONF, OPENSSLCONFINCLUDE\nSpecifies the path to a configuration file and the directory for included files.  See\nconfig(5).\n\nOPENSSLCONFIG\nSpecifies a configuration option and filename for the req and ca commands invoked by the\nCA.pl script.  See CA.pl(1).\n\nOPENSSLENGINES\nSpecifies the directory from which dynamic engines are loaded.  See openssl-engine(1).\n\nOPENSSLMALLOCFD, OPENSSLMALLOCFAILURES\nIf built with debugging, this allows memory allocation to fail.  See OPENSSLmalloc(3).\n\nOPENSSLMODULES\nSpecifies the directory from which cryptographic providers are loaded.  Equivalently, the\ngeneric -provider-path command-line option may be used.\n\nOPENSSLWIN32UTF8\nIf set, then UIOpenSSL(3) returns UTF-8 encoded strings, rather than ones encoded in the\ncurrent code page, and the openssl(1) program also transcodes the command-line parameters\nfrom the current code page to UTF-8.  This environment variable is only checked on\nMicrosoft Windows platforms.\n\nRANDFILE\nThe state file for the random number generator.  This should not be needed in normal use.\nSee RANDloadfile(3).\n\nSSLCERTDIR, SSLCERTFILE\nSpecify the default directory or file containing CA certificates.  See\nSSLCTXloadverifylocations(3).\n\nTSGET\nAdditional arguments for the tsget(1) command.\n\nOPENSSLia32cap, OPENSSLsparcv9cap, OPENSSLppccap, OPENSSLarmcap, OPENSSLs390xcap\nOpenSSL supports a number of different algorithm implementations for various machines\nand, by default, it determines which to use based on the processor capabilities and run\ntime feature enquiry.  These environment variables can be used to exert more control over\nthis selection process.  See OPENSSLia32cap(3), OPENSSLs390xcap(3).\n\nNOPROXY, HTTPSPROXY, HTTPPROXY\nSpecify a proxy hostname.  See OSSLHTTPparseurl(3).\n",
            "subsections": []
        },
        "COPYRIGHT": {
            "content": "Copyright 2019-2021 The OpenSSL Project Authors. All Rights Reserved.\n\nLicensed under the Apache License 2.0 (the \"License\").  You may not use this file except in\ncompliance with the License.  You can obtain a copy in the file LICENSE in the source\ndistribution or at <https://www.openssl.org/source/license.html>.\n\n\n\n3.0.2                                        2026-04-07                            OPENSSL-ENV(7SSL)",
            "subsections": []
        }
    },
    "summary": "openssl-env - OpenSSL environment variables",
    "flags": [],
    "examples": [],
    "see_also": []
}