openssl-dgst.1 - OpenGrok cross reference for /freebsd/secure/usr.bin/openssl/man/openssl-dgst.1

Lines Matching +full:dsa +full:- +full:specific
1 .\" -*- mode: troff; coding: utf-8 -*-
57 .IX Title "OPENSSL-DGST 1ossl"
58 .TH OPENSSL-DGST 1ossl 2025-09-30 3.5.4 OpenSSL
64 openssl\-dgst \- perform digest operations
68 [\fB\-\fR\f(BIdigest\fR]
69 [\fB\-list\fR]
70 [\fB\-help\fR]
71 [\fB\-c\fR]
72 [\fB\-d\fR]
73 [\fB\-debug\fR]
74 [\fB\-hex\fR]
75 [\fB\-binary\fR]
76 [\fB\-xoflen\fR \fIlength\fR]
77 [\fB\-r\fR]
78 [\fB\-out\fR \fIfilename\fR]
79 [\fB\-sign\fR \fIfilename\fR|\fIuri\fR]
80 [\fB\-keyform\fR \fBDER\fR|\fBPEM\fR|\fBP12\fR|\fBENGINE\fR]
81 [\fB\-passin\fR \fIarg\fR]
82 [\fB\-verify\fR \fIfilename\fR]
83 [\fB\-prverify\fR \fIfilename\fR]
84 [\fB\-signature\fR \fIfilename\fR]
85 [\fB\-sigopt\fR \fInm\fR:\fIv\fR]
86 [\fB\-hmac\fR \fIkey\fR]
87 [\fB\-mac\fR \fIalg\fR]
88 [\fB\-macopt\fR \fInm\fR:\fIv\fR]
89 [\fB\-fips\-fingerprint\fR]
90 [\fB\-engine\fR \fIid\fR]
91 [\fB\-engine_impl\fR \fIid\fR]
92 [\fB\-rand\fR \fIfiles\fR]
93 [\fB\-writerand\fR \fIfile\fR]
94 [\fB\-provider\fR \fIname\fR]
95 [\fB\-provider\-path\fR \fIpath\fR]
96 [\fB\-provparam\fR \fI[name:]key=value\fR]
97 [\fB\-propquery\fR \fIpropq\fR]
108 A supported \fIdigest\fR name may also be used as the sub-command name.
109 To see the list of supported algorithms, use \f(CW\*(C`openssl list \-digest\-algorithms\*(C'\fR
112 .IP \fB\-help\fR 4
113 .IX Item "-help"
115 .IP \fB\-\fR\f(BIdigest\fR 4
116 .IX Item "-digest"
117 Specifies name of a supported digest to be used. See option \fB\-list\fR below :
118 .IP \fB\-list\fR 4
119 .IX Item "-list"
121 .IP \fB\-c\fR 4
122 .IX Item "-c"
124 the \fB\-hex\fR option is given as well.
125 .IP "\fB\-d\fR, \fB\-debug\fR" 4
126 .IX Item "-d, -debug"
128 .IP \fB\-hex\fR 4
129 .IX Item "-hex"
132 signatures using \fB\-hex\fR.
133 .IP \fB\-binary\fR 4
134 .IX Item "-binary"
136 .IP "\fB\-xoflen\fR \fIlength\fR" 4
137 .IX Item "-xoflen length"
154 .IP \fB\-r\fR 4
155 .IX Item "-r"
158 .IP "\fB\-out\fR \fIfilename\fR" 4
159 .IX Item "-out filename"
161 .IP "\fB\-sign\fR \fIfilename\fR|\fIuri\fR" 4
162 .IX Item "-sign filename|uri"
165 Note that for algorithms that only support one-shot signing
166 (such as Ed25519, ED448, ML\-DSA\-44, ML\-DSA\-65 andML\-DSA\-87) the digest must not
170 .IP "\fB\-keyform\fR \fBDER\fR|\fBPEM\fR|\fBP12\fR|\fBENGINE\fR" 4
171 .IX Item "-keyform DER|PEM|P12|ENGINE"
173 See \fBopenssl\-format\-options\fR\|(1) for details.
174 .IP "\fB\-sigopt\fR \fInm\fR:\fIv\fR" 4
175 .IX Item "-sigopt nm:v"
177 Names and values of these options are algorithm-specific and documented
178 in "Signature parameters" in \fBprovider\-signature\fR\|(7).
179 .IP "\fB\-passin\fR \fIarg\fR" 4
180 .IX Item "-passin arg"
182 see \fBopenssl\-passphrase\-options\fR\|(1).
183 .IP "\fB\-verify\fR \fIfilename\fR" 4
184 .IX Item "-verify filename"
187 .IP "\fB\-prverify\fR \fIfilename\fR" 4
188 .IX Item "-prverify filename"
190 .IP "\fB\-signature\fR \fIfilename\fR" 4
191 .IX Item "-signature filename"
193 .IP "\fB\-hmac\fR \fIkey\fR" 4
194 .IX Item "-hmac key"
197 The \fBopenssl\-mac\fR\|(1) command should be preferred to using this command line
199 .IP "\fB\-mac\fR \fIalg\fR" 4
200 .IX Item "-mac alg"
202 algorithm is HMAC (hash-based MAC), but there are other MAC algorithms
203 which are not based on hash, for instance \fBgost-mac\fR algorithm,
205 via \fB\-macopt\fR parameter.
207 The \fBopenssl\-mac\fR\|(1) command should be preferred to using this command line
209 .IP "\fB\-macopt\fR \fInm\fR:\fIv\fR" 4
210 .IX Item "-macopt nm:v"
211 Passes options to MAC algorithm, specified by \fB\-mac\fR key.
212 Following options are supported by both by \fBHMAC\fR and \fBgost-mac\fR:
218 the MAC algorithm for example exactly 32 chars for gost-mac.
223 for example exactly 32 chars for gost-mac.
227 The \fBopenssl\-mac\fR\|(1) command should be preferred to using this command line
230 .IP \fB\-fips\-fingerprint\fR 4
231 .IX Item "-fips-fingerprint"
232 Compute HMAC using a specific key for certain OpenSSL-FIPS operations.
233 .IP "\fB\-rand\fR \fIfiles\fR, \fB\-writerand\fR \fIfile\fR" 4
234 .IX Item "-rand files, -writerand file"
236 .IP "\fB\-engine\fR \fIid\fR" 4
237 .IX Item "-engine id"
241 The engine is not used for digests unless the \fB\-engine_impl\fR option is
243 .IP "\fB\-engine_impl\fR \fIid\fR" 4
244 .IX Item "-engine_impl id"
245 When used with the \fB\-engine\fR option, it specifies to also use
247 .IP "\fB\-provider\fR \fIname\fR" 4
248 .IX Item "-provider name"
250 .IP "\fB\-provider\-path\fR \fIpath\fR" 4
251 .IX Item "-provider-path path"
252 .IP "\fB\-provparam\fR \fI[name:]key=value\fR" 4
253 .IX Item "-provparam [name:]key=value"
254 .IP "\fB\-propquery\fR \fIpropq\fR" 4
255 .IX Item "-propquery propq"
264 To create a hex-encoded message digest of a file:
267 \& openssl dgst \-md5 \-hex file.txt
272 To sign a file using SHA\-256 with binary file output:
275 \& openssl dgst \-sha256 \-sign privatekey.pem \-out signature.sign file.txt
277 \& openssl sha256 \-sign privatekey.pem \-out signature.sign file.txt
283 \& openssl dgst \-sha256 \-verify publickey.pem \e
284 \& \-signature signature.sign \e
291 The \f(CW\*(C`openssl list \-digest\-algorithms\*(C'\fR command can be used to list them.
293 New or agile applications should use probably use SHA\-256. Other digests,
294 particularly SHA\-1 and MD5, are still widely used for interoperating
299 When verifying signatures, it only handles the RSA, DSA, or ECDSA signature
304 particular ECDSA and DSA.
309 Hex signatures cannot be verified using \fBopenssl\fR.  Instead, use "xxd \-r"
313 The \fBopenssl\-mac\fR\|(1) command is preferred over the \fB\-hmac\fR, \fB\-mac\fR and
314 \&\fB\-macopt\fR command line options.
317 \&\fBopenssl\-mac\fR\|(1)
321 The FIPS-related options were removed in OpenSSL 1.1.0.
323 The \fB\-engine\fR and \fB\-engine_impl\fR options were deprecated in OpenSSL 3.0.
326 Copyright 2000\-2025 The OpenSSL Project Authors. All Rights Reserved.