• Home
  • Raw
  • Download

Lines Matching +full:- +full:- +full:openssl

5 openssl - OpenSSL command line program
9 B<openssl>
14 B<openssl> B<no->I<XXX> [ I<options> ]
18 OpenSSL is a cryptography toolkit implementing the Secure Sockets Layer (SSL
22 The B<openssl> program is a command line program for using the various
23 cryptography functions of OpenSSL's B<crypto> library from the shell.
37 The B<openssl> program provides a rich variety of commands (I<command> in
43 (e.g., L<openssl-x509(1)>). The subcommand L<openssl-list(1)> may be used to list
46 The command B<no->I<XXX> tests whether a command of the
48 returns 0 (success) and prints B<no->I<XXX>; otherwise it returns 1
53 availability of ciphers in the B<openssl> program.  (B<no->I<XXX> is
54 not able to detect pseudo-commands such as B<quit>,
55 B<list>, or B<no->I<XXX> itself.)
60 arguments and have a B<-config> option to specify that file.
61 The default name of the file is F<openssl.cnf> in the default certificate
62 storage area, which can be determined from the L<openssl-version(1)>
63 command using the B<-d> or B<-a> option.
102 L<openssl-mac(1)>.
106 Generation and Management of Diffie-Hellman Parameters. Superseded by
107 L<openssl-genpkey(1)> and L<openssl-pkeyparam(1)>.
116 L<openssl-genpkey(1)> and L<openssl-pkeyparam(1)>.
145 L<openssl-genpkey(1)> and L<openssl-pkey(1)>.
153 Generation of RSA Private Key. Superseded by L<openssl-genpkey(1)>.
161 Display diverse information built into the OpenSSL libraries.
217 Generate pseudo-random bytes.
234 by  L<openssl-pkeyutl(1)>.
241 internally uses mostly all functionality of the OpenSSL B<ssl> library.
248 functionality of the OpenSSL B<ssl> library.  It provides both an own command
250 facility to emulate an SSL/TLS-aware webserver.
287 See also the L<openssl-verification-options(1)> manual page.
291 OpenSSL Version Information.
305 BLAKE2b-512 Digest
309 BLAKE2s-256 Digest
329 RMD-160 Digest
333 SHA-1 Digest
337 SHA-2 224 Digest
341 SHA-2 256 Digest
345 SHA-2 384 Digest
349 SHA-2 512 Digest
351 =item B<sha3-224>
353 SHA-3 224 Digest
355 =item B<sha3-256>
357 SHA-3 256 Digest
359 =item B<sha3-384>
361 SHA-3 384 Digest
363 =item B<sha3-512>
365 SHA-3 512 Digest
369 SHA-3 SHAKE128 Digest
373 SHA-3 SHAKE256 Digest
386 Depending on how OpenSSL was configured and built, not all ciphers listed
387 here may be present. See L<openssl-enc(1)> for more information.
391 =item B<aes128>, B<aes-128-cbc>, B<aes-128-cfb>, B<aes-128-ctr>, B<aes-128-ecb>, B<aes-128-ofb>
393 AES-128 Cipher
395 =item B<aes192>, B<aes-192-cbc>, B<aes-192-cfb>, B<aes-192-ctr>, B<aes-192-ecb>, B<aes-192-ofb>
397 AES-192 Cipher
399 =item B<aes256>, B<aes-256-cbc>, B<aes-256-cfb>, B<aes-256-ctr>, B<aes-256-ecb>, B<aes-256-ofb>
401 AES-256 Cipher
403 =item B<aria128>, B<aria-128-cbc>, B<aria-128-cfb>, B<aria-128-ctr>, B<aria-128-ecb>, B<aria-128-of…
405 Aria-128 Cipher
407 =item B<aria192>, B<aria-192-cbc>, B<aria-192-cfb>, B<aria-192-ctr>, B<aria-192-ecb>, B<aria-192-of…
409 Aria-192 Cipher
411 =item B<aria256>, B<aria-256-cbc>, B<aria-256-cfb>, B<aria-256-ctr>, B<aria-256-ecb>, B<aria-256-of…
413 Aria-256 Cipher
419 =item B<bf>, B<bf-cbc>, B<bf-cfb>, B<bf-ecb>, B<bf-ofb>
423 =item B<camellia128>, B<camellia-128-cbc>, B<camellia-128-cfb>, B<camellia-128-ctr>, B<camellia-128
425 Camellia-128 Cipher
427 =item B<camellia192>, B<camellia-192-cbc>, B<camellia-192-cfb>, B<camellia-192-ctr>, B<camellia-192
429 Camellia-192 Cipher
431 =item B<camellia256>, B<camellia-256-cbc>, B<camellia-256-cfb>, B<camellia-256-ctr>, B<camellia-256
433 Camellia-256 Cipher
435 =item B<cast>, B<cast-cbc>
439 =item B<cast5-cbc>, B<cast5-cfb>, B<cast5-ecb>, B<cast5-ofb>
447 =item B<des>, B<des-cbc>, B<des-cfb>, B<des-ecb>, B<des-ede>, B<des-ede-cbc>, B<des-ede-cfb>, B<des
451 =item B<des3>, B<desx>, B<des-ede3>, B<des-ede3-cbc>, B<des-ede3-cfb>, B<des-ede3-ofb>
453 Triple-DES Cipher
455 =item B<idea>, B<idea-cbc>, B<idea-cfb>, B<idea-ecb>, B<idea-ofb>
459 =item B<rc2>, B<rc2-cbc>, B<rc2-cfb>, B<rc2-ecb>, B<rc2-ofb>
467 =item B<rc5>, B<rc5-cbc>, B<rc5-cfb>, B<rc5-ecb>, B<rc5-ofb>
471 =item B<seed>, B<seed-cbc>, B<seed-cfb>, B<seed-ecb>, B<seed-ofb>
475 =item B<sm4>, B<sm4-cbc>, B<sm4-cfb>, B<sm4-ctr>, B<sm4-ecb>, B<sm4-ofb>
490 =item B<-help>
495 =item B<-->
500  openssl verify [flags...] -- -cert1.pem...
506 See L<openssl-format-options(1)> for manual page.
510 See the L<openssl-passphrase-options(1)> manual page.
514 Prior to OpenSSL 1.1.1, it was common for applications to store information
515 about the state of the random-number generator in a file that was loaded
517 generally no longer necessary as OpenSSL will seed itself from a trusted
522 every use of B<-rand> should be paired with B<-writerand>.
526 =item B<-rand> I<files>
530 Multiple files can be specified separated by an OS-dependent character.
531 The separator is C<;> for MS-Windows, C<,> for OpenVMS, and C<:> for
535 =item B<-writerand> I<file>
544 See the L<openssl-verification-options(1)> manual page.
548 See the L<openssl-namedisplay-options(1)> manual page.
560 OpenSSL was built.
564 =item B<-ssl3>, B<-tls1>, B<-tls1_1>, B<-tls1_2>, B<-tls1_3>, B<-no_ssl3>, B<-no_tls1>, B<-no_tls1_…
574 =item B<-dtls>, B<-dtls1>, B<-dtls1_2>
577 With B<-dtls>, clients will negotiate any supported DTLS protocol version.
578 Use the B<-dtls1> or B<-dtls1_2> options to support only DTLS1.0 or DTLS1.2,
587 =item B<-engine> I<id>
591 command-specific documentation or it is configured to do so, as described in
594 The engine will be used for key ids specified with B<-key> and similar
595 options when an option like B<-keyform engine> is given.
598 is meant just for internal OpenSSL testing purposes and
605 Options specifying keys, like B<-key> and similar, can use the generic
606 OpenSSL engine key loading URI scheme C<org.openssl.engine:> to retrieve
610     org.openssl.engine:{engineid}:{keyid}
618     -key org.openssl.engine:pkcs11:label_some-private-key
621 their own L<OSSL_STORE_LOADER(3)>, C<org.openssl.engine:> should not be
625     -key pkcs11:object=some-private-key;pin-value=1234
631 =item B<-provider> I<name>
638 specified by B<-provider-path> is prepended to relative paths.
641 =item B<-provider-path> I<path>
646 =item B<-propquery> I<propq>
656 The OpenSSL library can be take some configuration parameters from the
658 about specific commands, see L<openssl-engine(1)>,
659 L<openssl-rehash(1)>, and L<tsget(1)>.
667 For information about all environment variables used by the OpenSSL libraries,
668 see L<openssl-env(7)>.
674 Enable tracing output of OpenSSL library, by name.
675 This output will only make sense if you know OpenSSL internals well.
677 OpenSSL was built.
686 Traces the OpenSSL trace API itself.
690 Traces OpenSSL library initialization and cleanup.
762 L<openssl-asn1parse(1)>,
763 L<openssl-ca(1)>,
764 L<openssl-ciphers(1)>,
765 L<openssl-cms(1)>,
766 L<openssl-crl(1)>,
767 L<openssl-crl2pkcs7(1)>,
768 L<openssl-dgst(1)>,
769 L<openssl-dhparam(1)>,
770 L<openssl-dsa(1)>,
771 L<openssl-dsaparam(1)>,
772 L<openssl-ec(1)>,
773 L<openssl-ecparam(1)>,
774 L<openssl-enc(1)>,
775 L<openssl-engine(1)>,
776 L<openssl-errstr(1)>,
777 L<openssl-gendsa(1)>,
778 L<openssl-genpkey(1)>,
779 L<openssl-genrsa(1)>,
780 L<openssl-kdf(1)>,
781 L<openssl-list(1)>,
782 L<openssl-mac(1)>,
783 L<openssl-nseq(1)>,
784 L<openssl-ocsp(1)>,
785 L<openssl-passwd(1)>,
786 L<openssl-pkcs12(1)>,
787 L<openssl-pkcs7(1)>,
788 L<openssl-pkcs8(1)>,
789 L<openssl-pkey(1)>,
790 L<openssl-pkeyparam(1)>,
791 L<openssl-pkeyutl(1)>,
792 L<openssl-prime(1)>,
793 L<openssl-rand(1)>,
794 L<openssl-rehash(1)>,
795 L<openssl-req(1)>,
796 L<openssl-rsa(1)>,
797 L<openssl-rsautl(1)>,
798 L<openssl-s_client(1)>,
799 L<openssl-s_server(1)>,
800 L<openssl-s_time(1)>,
801 L<openssl-sess_id(1)>,
802 L<openssl-smime(1)>,
803 L<openssl-speed(1)>,
804 L<openssl-spkac(1)>,
805 L<openssl-srp(1)>,
806 L<openssl-storeutl(1)>,
807 L<openssl-ts(1)>,
808 L<openssl-verify(1)>,
809 L<openssl-version(1)>,
810 L<openssl-x509(1)>,
813 L<openssl-env(7)>.
820 The B<list> -I<XXX>B<-algorithms> options were added in OpenSSL 1.0.0;
824 The B<-issuer_checks> option is deprecated as of OpenSSL 1.1.0 and
827 The B<-xcertform> and B<-xkeyform> options
828 are obsolete since OpenSSL 3.0 and have no effect.
830 The interactive mode, which could be invoked by running C<openssl>
831 with no further arguments, was removed in OpenSSL 3.0, and running
832 that program with no arguments is now equivalent to C<openssl help>.
836 Copyright 2000-2023 The OpenSSL Project Authors. All Rights Reserved.
841 L<https://www.openssl.org/source/license.html>.