Bug 608639
| Summary: | man pages and help text do not list all digests | |||
|---|---|---|---|---|
| Product: | Red Hat Enterprise Linux 5 | Reporter: | Martin Poole <mpoole> | |
| Component: | openssl | Assignee: | Tomas Mraz <tmraz> | |
| Status: | CLOSED ERRATA | QA Contact: | BaseOS QE Security Team <qe-baseos-security> | |
| Severity: | low | Docs Contact: | ||
| Priority: | low | |||
| Version: | 5.5 | CC: | mvadkert, pvrabec | |
| Target Milestone: | rc | |||
| Target Release: | --- | |||
| Hardware: | All | |||
| OS: | Linux | |||
| Whiteboard: | ||||
| Fixed In Version: | openssl-0.9.8e-19.el5 | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | ||
| Clone Of: | ||||
| : | 693858 (view as bug list) | Environment: | ||
| Last Closed: | 2011-07-21 07:38:35 UTC | Type: | --- | |
| Regression: | --- | Mount Type: | --- | |
| Documentation: | --- | CRM: | ||
| Verified Versions: | Category: | --- | ||
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | ||
| Cloudforms Team: | --- | Target Upstream Version: | ||
| Embargoed: | ||||
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on therefore solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2011-1010.html |
Description of problem: The various sub-commands of openssl that use digests only list a few older types and do not indicate there are more available. Version-Release number of selected component (if applicable): openssl-0.9.8e-12.el5_4.6 How reproducible: $ openssl x509 -h [snip] -md2/-md5/-sha1/-mdc2 - digest to use $ openssl req -h [snip] -[digest] Digest to sign with (md5, sha1, md2, mdc2, md4) $ man x509 [snip] -md2|-md5|-sha1|-mdc2 the digest to use. etc. And the dgst sub-command man page does not provide the full list of supported digests. Only by calling the dgst sub-command with an invalid parameter can one see the full list of digests available. -md5 to use the md5 message digest algorithm (default) -md4 to use the md4 message digest algorithm -md2 to use the md2 message digest algorithm -sha1 to use the sha1 message digest algorithm -sha to use the sha message digest algorithm -sha224 to use the sha224 message digest algorithm -sha256 to use the sha256 message digest algorithm -sha384 to use the sha384 message digest algorithm -sha512 to use the sha512 message digest algorithm -mdc2 to use the mdc2 message digest algorithm -ripemd160 to use the ripemd160 message digest algorithm Additional info: Since the list can change probably the best solution would be to have the various sub-commands indicate there are more digests available, and give the dgst a clearer method of listing the full list of those available.