On Mon, Dec 16, 2019 at 07:15:15PM +0100, Fabio Scotoni wrote:
> This diff changes the documentation of openssl(1) enc to note the
> default value (sha256) and replace the "hardcoded" list of md5, sha1
> with instructions to use list-message-digest-algorithms instead.
>
i'm happy to commit this if an obsd developer oks it.
> Inspired by a conversation on misc@ a few weeks ago ("LibreSSL vs.
> OpenSSL enc command").
> Perhaps it's also worthwhile to have a HISTORY section/subsection or
> historical note about this since it's probably of interoperability
> concern for older files.
>
i don;t know if i want to add an excess of text to this page, but if
there's a specific detail you want to add, feel free to submit it.
jmc
> Index: usr.bin/openssl/openssl.1
> ===================================================================
> RCS file: /cvs/src/usr.bin/openssl/openssl.1,v
> retrieving revision 1.116
> diff -u -p -r1.116 openssl.1
> --- usr.bin/openssl/openssl.1 28 Nov 2019 11:21:33 -0000 1.116
> +++ usr.bin/openssl/openssl.1 16 Dec 2019 18:09:54 -0000
> @@ -416,10 +416,10 @@ The default is
> .Cm pem .
> .It Fl md Ar alg
> The message digest to use.
> -Possible values include
> -.Ar md5
> -and
> -.Ar sha1 .
> +A list of possible values can be obtained with the pseudo-command
> +.Cm list-message-digest-algorithms .
> +The default value is
> +.Ar sha256 .
> This option also applies to CRLs.
> .It Fl msie_hack
> This is a legacy option to make
>
