Where to get info about deprecated options of OpenSSL RSAUTIL of Mojave?
Clash Royale CLAN TAG#URR8PPP
It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.
$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5
Where can I get these update releases info? I googled the net but couldn't find them...
If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.
$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output
But in the manual, the -ssl option doesn't appear.
$ man openssl
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...
I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.
But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.
I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).
$ man openssl | tail -1
BSD January 29, 2019 BSD
So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.
Where can I get info of these changes and/or report to update the --help?
osx openssl ssl
asked Jan 29 at 7:23
KEINOSKEINOS
13
add a comment |
It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.
$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5
Where can I get these update releases info? I googled the net but couldn't find them...
If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.
$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output
But in the manual, the -ssl option doesn't appear.
$ man openssl
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...
I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.
But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.
I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).
$ man openssl | tail -1
BSD January 29, 2019 BSD
So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.
Where can I get info of these changes and/or report to update the --help?
osx openssl ssl
asked Jan 29 at 7:23
KEINOSKEINOS
13
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06
add a comment |
It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.
$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5
Where can I get these update releases info? I googled the net but couldn't find them...
If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.
$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output
But in the manual, the -ssl option doesn't appear.
$ man openssl
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...
I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.
But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.
I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).
$ man openssl | tail -1
BSD January 29, 2019 BSD
So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.
Where can I get info of these changes and/or report to update the --help?
osx openssl ssl
asked Jan 29 at 7:23
KEINOSKEINOS
13
It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.
$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5
Where can I get these update releases info? I googled the net but couldn't find them...
If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.
$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output
But in the manual, the -ssl option doesn't appear.
$ man openssl
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...
I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.
But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.
I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).
$ man openssl | tail -1
BSD January 29, 2019 BSD
So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.
Where can I get info of these changes and/or report to update the --help?
osx openssl ssl
osx openssl ssl
asked Jan 29 at 7:23
KEINOSKEINOS
13
asked Jan 29 at 7:23
KEINOSKEINOS
13
asked Jan 29 at 7:23
KEINOSKEINOS
13
asked Jan 29 at 7:23
KEINOSKEINOS
13
asked Jan 29 at 7:23
KEINOSKEINOS
13
13
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06
add a comment |
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06
add a comment |
1 Answer
1
active
oldest
votes
I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.
OpenBSD for LibreSSL @ GitHub
In the latest commit's source code below, there still was the -ssl option.
- "rsautl.c" (Line 321 / Commit 19a8bdc)
I think this is the place to see the changes and report an issue.
answered Jan 29 at 8:07
KEINOSKEINOS
13
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see thatopensslhas indeed been fixed.
– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
add a comment |
Your Answer
StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);
StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);
else
createEditor();
);
function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);
);
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f497366%2fwhere-to-get-info-about-deprecated-options-of-openssl-rsautil-of-mojave%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
1 Answer
1
active
oldest
votes
1 Answer
1
active
oldest
votes
active
oldest
votes
active
oldest
votes
I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.
OpenBSD for LibreSSL @ GitHub
In the latest commit's source code below, there still was the -ssl option.
- "rsautl.c" (Line 321 / Commit 19a8bdc)
I think this is the place to see the changes and report an issue.
answered Jan 29 at 8:07
KEINOSKEINOS
13
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see thatopensslhas indeed been fixed.
– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
add a comment |
I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.
OpenBSD for LibreSSL @ GitHub
In the latest commit's source code below, there still was the -ssl option.
- "rsautl.c" (Line 321 / Commit 19a8bdc)
I think this is the place to see the changes and report an issue.
answered Jan 29 at 8:07
KEINOSKEINOS
13
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see thatopensslhas indeed been fixed.
– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
add a comment |
I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.
OpenBSD for LibreSSL @ GitHub
In the latest commit's source code below, there still was the -ssl option.
- "rsautl.c" (Line 321 / Commit 19a8bdc)
I think this is the place to see the changes and report an issue.
answered Jan 29 at 8:07
KEINOSKEINOS
13
I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.
OpenBSD for LibreSSL @ GitHub
In the latest commit's source code below, there still was the -ssl option.
- "rsautl.c" (Line 321 / Commit 19a8bdc)
I think this is the place to see the changes and report an issue.
answered Jan 29 at 8:07
KEINOSKEINOS
13
answered Jan 29 at 8:07
KEINOSKEINOS
13
answered Jan 29 at 8:07
KEINOSKEINOS
13
answered Jan 29 at 8:07
KEINOSKEINOS
13
13
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see thatopensslhas indeed been fixed.
– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
add a comment |
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see thatopensslhas indeed been fixed.
– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.
– Kusalananda
Jan 29 at 8:57
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.
– Kusalananda
Jan 29 at 11:33
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!
– KEINOS
Jan 30 at 7:01
... and on my OpenBSD-current system, I can now see that
openssl has indeed been fixed.– Kusalananda
Jan 31 at 12:43
... and on my OpenBSD-current system, I can now see that
openssl has indeed been fixed.– Kusalananda
Jan 31 at 12:43
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…
– KEINOS
Feb 1 at 3:45
add a comment |
Thanks for contributing an answer to Unix & Linux Stack Exchange!
- Please be sure to answer the question. Provide details and share your research!
But avoid …
- Asking for help, clarification, or responding to other answers.
- Making statements based on opinion; back them up with references or personal experience.
To learn more, see our tips on writing great answers.
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f497366%2fwhere-to-get-info-about-deprecated-options-of-openssl-rsautil-of-mojave%23new-answer', 'question_page');
);
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Sign up or log in
StackExchange.ready(function ()
StackExchange.helpers.onClickDraftSave('#login-link');
);
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Sign up using Google
Sign up using Facebook
Sign up using Email and Password
Post as a guest
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
Required, but never shown
The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.
– Kusalananda
Jan 29 at 8:06