2000-04-13 06:33:22 +00:00
|
|
|
=pod
|
|
|
|
|
|
|
|
|
|
=head1 NAME
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
dgst, md5, md4, md2, sha1, sha, mdc2, ripemd160 - message digests
|
2000-04-13 06:33:22 +00:00
|
|
|
|
|
|
|
|
=head1 SYNOPSIS
|
|
|
|
|
|
|
|
|
|
B<openssl> B<dgst>
|
2000-11-13 01:03:58 +00:00
|
|
|
[B<-md5|-md4|-md2|-sha1|-sha|-mdc2|-ripemd160|-dss1>]
|
2000-04-13 06:33:22 +00:00
|
|
|
[B<-c>]
|
|
|
|
|
[B<-d>]
|
2000-11-13 01:03:58 +00:00
|
|
|
[B<-hex>]
|
|
|
|
|
[B<-binary>]
|
|
|
|
|
[B<-out filename>]
|
|
|
|
|
[B<-sign filename>]
|
2006-07-29 19:10:21 +00:00
|
|
|
[B<-passin arg>]
|
2000-11-13 01:03:58 +00:00
|
|
|
[B<-verify filename>]
|
|
|
|
|
[B<-prverify filename>]
|
|
|
|
|
[B<-signature filename>]
|
2008-09-21 14:56:30 +00:00
|
|
|
[B<-hmac key>]
|
2000-04-13 06:33:22 +00:00
|
|
|
[B<file...>]
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
[B<md5|md4|md2|sha1|sha|mdc2|ripemd160>]
|
2000-04-13 06:33:22 +00:00
|
|
|
[B<-c>]
|
|
|
|
|
[B<-d>]
|
|
|
|
|
[B<file...>]
|
|
|
|
|
|
|
|
|
|
=head1 DESCRIPTION
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
The digest functions output the message digest of a supplied file or files
|
|
|
|
|
in hexadecimal form. They can also be used for digital signing and verification.
|
2000-04-13 06:33:22 +00:00
|
|
|
|
|
|
|
|
=head1 OPTIONS
|
|
|
|
|
|
|
|
|
|
=over 4
|
|
|
|
|
|
|
|
|
|
=item B<-c>
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
print out the digest in two digit groups separated by colons, only relevant if
|
|
|
|
|
B<hex> format output is used.
|
2000-04-13 06:33:22 +00:00
|
|
|
|
|
|
|
|
=item B<-d>
|
|
|
|
|
|
|
|
|
|
print out BIO debugging information.
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
=item B<-hex>
|
|
|
|
|
|
|
|
|
|
digest is to be output as a hex dump. This is the default case for a "normal"
|
|
|
|
|
digest as opposed to a digital signature.
|
|
|
|
|
|
|
|
|
|
=item B<-binary>
|
|
|
|
|
|
|
|
|
|
output the digest or signature in binary form.
|
|
|
|
|
|
|
|
|
|
=item B<-out filename>
|
|
|
|
|
|
|
|
|
|
filename to output to, or standard output by default.
|
|
|
|
|
|
|
|
|
|
=item B<-sign filename>
|
|
|
|
|
|
|
|
|
|
digitally sign the digest using the private key in "filename".
|
|
|
|
|
|
2006-07-29 19:10:21 +00:00
|
|
|
=item B<-passin arg>
|
|
|
|
|
|
|
|
|
|
the private key password source. For more information about the format of B<arg>
|
|
|
|
|
see the B<PASS PHRASE ARGUMENTS> section in L<openssl(1)|openssl(1)>.
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
=item B<-verify filename>
|
|
|
|
|
|
|
|
|
|
verify the signature using the the public key in "filename".
|
|
|
|
|
The output is either "Verification OK" or "Verification Failure".
|
|
|
|
|
|
|
|
|
|
=item B<-prverify filename>
|
|
|
|
|
|
|
|
|
|
verify the signature using the the private key in "filename".
|
|
|
|
|
|
|
|
|
|
=item B<-signature filename>
|
|
|
|
|
|
|
|
|
|
the actual signature to verify.
|
|
|
|
|
|
2008-09-21 14:56:30 +00:00
|
|
|
=item B<-hmac key>
|
|
|
|
|
|
|
|
|
|
create a hashed MAC using "key".
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
=item B<-rand file(s)>
|
|
|
|
|
|
|
|
|
|
a file or files containing random data used to seed the random number
|
|
|
|
|
generator, or an EGD socket (see L<RAND_egd(3)|RAND_egd(3)>).
|
|
|
|
|
Multiple files can be specified separated by a OS-dependent character.
|
|
|
|
|
The separator is B<;> for MS-Windows, B<,> for OpenVMS, and B<:> for
|
|
|
|
|
all others.
|
|
|
|
|
|
2000-04-13 06:33:22 +00:00
|
|
|
=item B<file...>
|
|
|
|
|
|
|
|
|
|
file or files to digest. If no files are specified then standard input is
|
|
|
|
|
used.
|
|
|
|
|
|
|
|
|
|
=back
|
|
|
|
|
|
|
|
|
|
=head1 NOTES
|
|
|
|
|
|
|
|
|
|
The digest of choice for all new applications is SHA1. Other digests are
|
|
|
|
|
however still widely used.
|
|
|
|
|
|
2000-11-13 01:03:58 +00:00
|
|
|
If you wish to sign or verify data using the DSA algorithm then the dss1
|
|
|
|
|
digest must be used.
|
|
|
|
|
|
|
|
|
|
A source of random numbers is required for certain signing algorithms, in
|
|
|
|
|
particular DSA.
|
|
|
|
|
|
|
|
|
|
The signing and verify options should only be used if a single file is
|
|
|
|
|
being signed or verified.
|
|
|
|
|
|
2000-04-13 06:33:22 +00:00
|
|
|
=cut
|
