| Index: openssl/doc/apps/enc.pod
|
| ===================================================================
|
| --- openssl/doc/apps/enc.pod (revision 105093)
|
| +++ openssl/doc/apps/enc.pod (working copy)
|
| @@ -12,17 +12,24 @@
|
| [B<-pass arg>]
|
| [B<-e>]
|
| [B<-d>]
|
| -[B<-a>]
|
| +[B<-a/-base64>]
|
| [B<-A>]
|
| [B<-k password>]
|
| [B<-kfile filename>]
|
| [B<-K key>]
|
| [B<-iv IV>]
|
| +[B<-S salt>]
|
| +[B<-salt>]
|
| +[B<-nosalt>]
|
| +[B<-z>]
|
| +[B<-md>]
|
| [B<-p>]
|
| [B<-P>]
|
| [B<-bufsize number>]
|
| [B<-nopad>]
|
| [B<-debug>]
|
| +[B<-none>]
|
| +[B<-engine id>]
|
|
|
| =head1 DESCRIPTION
|
|
|
| @@ -72,6 +79,10 @@
|
| the data is base64 encoded after encryption. If decryption is set then
|
| the input data is base64 decoded before being decrypted.
|
|
|
| +=item B<-base64>
|
| +
|
| +same as B<-a>
|
| +
|
| =item B<-A>
|
|
|
| if the B<-a> option is set then base64 process the data on one line.
|
| @@ -87,10 +98,18 @@
|
| This is for compatibility with previous versions of OpenSSL. Superseded by
|
| the B<-pass> argument.
|
|
|
| +=item B<-nosalt>
|
| +
|
| +do not use a salt
|
| +
|
| +=item B<-salt>
|
| +
|
| +use salt (randomly generated or provide with B<-S> option) when
|
| +encrypting (this is the default).
|
| +
|
| =item B<-S salt>
|
|
|
| -the actual salt to use: this must be represented as a string comprised only
|
| -of hex digits.
|
| +the actual salt to use: this must be represented as a string of hex digits.
|
|
|
| =item B<-K key>
|
|
|
| @@ -129,13 +148,35 @@
|
|
|
| debug the BIOs used for I/O.
|
|
|
| +=item B<-z>
|
| +
|
| +Compress or decompress clear text using zlib before encryption or after
|
| +decryption. This option exists only if OpenSSL with compiled with zlib
|
| +or zlib-dynamic option.
|
| +
|
| +=item B<-none>
|
| +
|
| +Use NULL cipher (no encryption or decryption of input).
|
| +
|
| =back
|
|
|
| =head1 NOTES
|
|
|
| The program can be called either as B<openssl ciphername> or
|
| -B<openssl enc -ciphername>.
|
| +B<openssl enc -ciphername>. But the first form doesn't work with
|
| +engine-provided ciphers, because this form is processed before the
|
| +configuration file is read and any ENGINEs loaded.
|
|
|
| +Engines which provide entirely new encryption algorithms (such as ccgost
|
| +engine which provides gost89 algorithm) should be configured in the
|
| +configuration file. Engines, specified in the command line using -engine
|
| +options can only be used for hadrware-assisted implementations of
|
| +ciphers, which are supported by OpenSSL core or other engine, specified
|
| +in the configuration file.
|
| +
|
| +When enc command lists supported ciphers, ciphers provided by engines,
|
| +specified in the configuration files are listed too.
|
| +
|
| A password will be prompted for to derive the key and IV if necessary.
|
|
|
| The B<-salt> option should B<ALWAYS> be used if the key is being derived
|
| @@ -167,6 +208,14 @@
|
|
|
| =head1 SUPPORTED CIPHERS
|
|
|
| +Note that some of these ciphers can be disabled at compile time
|
| +and some are available only if an appropriate engine is configured
|
| +in the configuration file. The output of the B<enc> command run with
|
| +unsupported options (for example B<openssl enc -help>) includes a
|
| +list of ciphers, supported by your versesion of OpenSSL, including
|
| +ones provided by configured engines.
|
| +
|
| +
|
| base64 Base 64
|
|
|
| bf-cbc Blowfish in CBC mode
|
| @@ -201,6 +250,9 @@
|
|
|
| desx DESX algorithm.
|
|
|
| + gost89 GOST 28147-89 in CFB mode (provided by ccgost engine)
|
| + gost89-cnt `GOST 28147-89 in CNT mode (provided by ccgost engine)
|
| +
|
| idea-cbc IDEA algorithm in CBC mode
|
| idea same as idea-cbc
|
| idea-cfb IDEA in CFB mode
|
|
|
Chromium Code Reviews
Issue 9254031:
Upgrade chrome's OpenSSL to same version Android ships with. (Closed)
Base URL: http://src.chromium.org/svn/trunk/deps/third_party/openssl/