Where to get info about deprecated options of OpenSSL RSAUTIL of Mojave?

The name of the pictureThe name of the pictureThe name of the pictureClash Royale CLAN TAG#URR8PPP












0















It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.



$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5


Where can I get these update releases info? I googled the net but couldn't find them...




If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.



$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output


But in the manual, the -ssl option doesn't appear.



$ man openssl 
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...


I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.



But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.



I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).



$ man openssl | tail -1
BSD January 29, 2019 BSD


So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.



Where can I get info of these changes and/or report to update the --help?










share|improve this question






















  • The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

    – Kusalananda
    Jan 29 at 8:06















0















It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.



$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5


Where can I get these update releases info? I googled the net but couldn't find them...




If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.



$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output


But in the manual, the -ssl option doesn't appear.



$ man openssl 
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...


I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.



But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.



I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).



$ man openssl | tail -1
BSD January 29, 2019 BSD


So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.



Where can I get info of these changes and/or report to update the --help?










share|improve this question






















  • The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

    – Kusalananda
    Jan 29 at 8:06













0












0








0


0






It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.



$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5


Where can I get these update releases info? I googled the net but couldn't find them...




If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.



$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output


But in the manual, the -ssl option doesn't appear.



$ man openssl 
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...


I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.



But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.



I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).



$ man openssl | tail -1
BSD January 29, 2019 BSD


So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.



Where can I get info of these changes and/or report to update the --help?










share|improve this question














It seems that on macOS since Mojave (OSX 10.14.3), the -ssl option had been deprecated from RSA Utils (rsautl command) on it's default OpenSSL.



$ sw_vers
ProductName: Mac OS X
ProductVersion: 10.14.3
BuildVersion: 18D42
$
$ openssl version
LibreSSL 2.6.5


Where can I get these update releases info? I googled the net but couldn't find them...




If I try to use -ssl option then it returns the help as an error. But the -ssl option is still there.



$ openssl rsautl -encrypt -pubin -inkey id_rsa.pub.pkcs8 -ssl -in test.txt -out test.txt.enc
Usage: rsautl [options]
-in file input file
-out file output file
-inkey file input key
-keyform arg private key format - default PEM
-pubin input is an RSA public
-certin input is a certificate carrying an RSA public key
-ssl use SSL v2 padding
-raw use no padding
-pkcs use PKCS#1 v1.5 padding (default)
-oaep use PKCS#1 OAEP
-sign sign with private key
-verify verify with public key
-encrypt encrypt with public key
-decrypt decrypt with private key
-hexdump hex dump output


But in the manual, the -ssl option doesn't appear.



$ man openssl 
...
RSAUTL
openssl rsautl [-asn1parse] [-certin] [-decrypt] [-encrypt] [-hexdump] [-in
file] [-inkey file] [-keyform der | pem] [-oaep | -pkcs | -raw] [-out file]
[-pubin] [-sign] [-verify]
...


I understand that since SSL v2 is no longer good to use, they deprecated the -ssl option.



But I need some kind of confirmation about this so to let my client know and change their protocol to send encrypted files.



I noticed that the man was updated today (my time, Jan 29, 2019, Tokyo).



$ man openssl | tail -1
BSD January 29, 2019 BSD


So I thought that Apple just forgot to update the -help, but even in the Mojave release notes there was no info about it.



Where can I get info of these changes and/or report to update the --help?







osx openssl ssl






share|improve this question













share|improve this question











share|improve this question




share|improve this question










asked Jan 29 at 7:23









KEINOSKEINOS

13




13












  • The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

    – Kusalananda
    Jan 29 at 8:06

















  • The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

    – Kusalananda
    Jan 29 at 8:06
















The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

– Kusalananda
Jan 29 at 8:06





The LibreSSL site is at libressl.org and it contains changelogs for all versions of LibreSSL.

– Kusalananda
Jan 29 at 8:06










1 Answer
1






active

oldest

votes


















0














I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.




  • OpenBSD for LibreSSL @ GitHub

In the latest commit's source code below, there still was the -ssl option.



  • "rsautl.c" (Line 321 / Commit 19a8bdc)

I think this is the place to see the changes and report an issue.






share|improve this answer























  • This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

    – Kusalananda
    Jan 29 at 8:57












  • This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

    – Kusalananda
    Jan 29 at 11:33











  • @Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

    – KEINOS
    Jan 30 at 7:01











  • ... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

    – Kusalananda
    Jan 31 at 12:43











  • @Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

    – KEINOS
    Feb 1 at 3:45










Your Answer








StackExchange.ready(function()
var channelOptions =
tags: "".split(" "),
id: "106"
;
initTagRenderer("".split(" "), "".split(" "), channelOptions);

StackExchange.using("externalEditor", function()
// Have to fire editor after snippets, if snippets enabled
if (StackExchange.settings.snippets.snippetsEnabled)
StackExchange.using("snippets", function()
createEditor();
);

else
createEditor();

);

function createEditor()
StackExchange.prepareEditor(
heartbeatType: 'answer',
autoActivateHeartbeat: false,
convertImagesToLinks: false,
noModals: true,
showLowRepImageUploadWarning: true,
reputationToPostImages: null,
bindNavPrevention: true,
postfix: "",
imageUploader:
brandingHtml: "Powered by u003ca class="icon-imgur-white" href="https://imgur.com/"u003eu003c/au003e",
contentPolicyHtml: "User contributions licensed under u003ca href="https://creativecommons.org/licenses/by-sa/3.0/"u003ecc by-sa 3.0 with attribution requiredu003c/au003e u003ca href="https://stackoverflow.com/legal/content-policy"u003e(content policy)u003c/au003e",
allowUrls: true
,
onDemand: true,
discardSelector: ".discard-answer"
,immediatelyShowMarkdownHelp:true
);



);













draft saved

draft discarded


















StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f497366%2fwhere-to-get-info-about-deprecated-options-of-openssl-rsautil-of-mojave%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown

























1 Answer
1






active

oldest

votes








1 Answer
1






active

oldest

votes









active

oldest

votes






active

oldest

votes









0














I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.




  • OpenBSD for LibreSSL @ GitHub

In the latest commit's source code below, there still was the -ssl option.



  • "rsautl.c" (Line 321 / Commit 19a8bdc)

I think this is the place to see the changes and report an issue.






share|improve this answer























  • This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

    – Kusalananda
    Jan 29 at 8:57












  • This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

    – Kusalananda
    Jan 29 at 11:33











  • @Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

    – KEINOS
    Jan 30 at 7:01











  • ... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

    – Kusalananda
    Jan 31 at 12:43











  • @Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

    – KEINOS
    Feb 1 at 3:45















0














I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.




  • OpenBSD for LibreSSL @ GitHub

In the latest commit's source code below, there still was the -ssl option.



  • "rsautl.c" (Line 321 / Commit 19a8bdc)

I think this is the place to see the changes and report an issue.






share|improve this answer























  • This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

    – Kusalananda
    Jan 29 at 8:57












  • This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

    – Kusalananda
    Jan 29 at 11:33











  • @Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

    – KEINOS
    Jan 30 at 7:01











  • ... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

    – Kusalananda
    Jan 31 at 12:43











  • @Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

    – KEINOS
    Feb 1 at 3:45













0












0








0







I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.




  • OpenBSD for LibreSSL @ GitHub

In the latest commit's source code below, there still was the -ssl option.



  • "rsautl.c" (Line 321 / Commit 19a8bdc)

I think this is the place to see the changes and report an issue.






share|improve this answer













I think I found where. And seems that it wasn't the Apple's issue but LibreSSL's OpenBSD issue. I'm sorry Apple.




  • OpenBSD for LibreSSL @ GitHub

In the latest commit's source code below, there still was the -ssl option.



  • "rsautl.c" (Line 321 / Commit 19a8bdc)

I think this is the place to see the changes and report an issue.







share|improve this answer












share|improve this answer



share|improve this answer










answered Jan 29 at 8:07









KEINOSKEINOS

13




13












  • This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

    – Kusalananda
    Jan 29 at 8:57












  • This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

    – Kusalananda
    Jan 29 at 11:33











  • @Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

    – KEINOS
    Jan 30 at 7:01











  • ... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

    – Kusalananda
    Jan 31 at 12:43











  • @Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

    – KEINOS
    Feb 1 at 3:45

















  • This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

    – Kusalananda
    Jan 29 at 8:57












  • This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

    – Kusalananda
    Jan 29 at 11:33











  • @Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

    – KEINOS
    Jan 30 at 7:01











  • ... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

    – Kusalananda
    Jan 31 at 12:43











  • @Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

    – KEINOS
    Feb 1 at 3:45
















This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

– Kusalananda
Jan 29 at 8:57






This looks like a documentation bug. The actual code that uses this option was removed in August 2017: github.com/libressl-portable/openbsd/commit/… I might file a bug report with a patch against the base OpenBSD tree.

– Kusalananda
Jan 29 at 8:57














This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

– Kusalananda
Jan 29 at 11:33





This has been fixed now, but it'll take some time before Apple updates its OpenSSL. Your bug report was ever so slightly earlier than mine.

– Kusalananda
Jan 29 at 11:33













@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

– KEINOS
Jan 30 at 7:01





@Kusalananda Thank you! Your report backed me up to tell my client that the documentation was wrong and all we have to do is wait!

– KEINOS
Jan 30 at 7:01













... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

– Kusalananda
Jan 31 at 12:43





... and on my OpenBSD-current system, I can now see that openssl has indeed been fixed.

– Kusalananda
Jan 31 at 12:43













@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

– KEINOS
Feb 1 at 3:45





@Kusalananda Thanks announcing me. I confirmed the fix too! github.com/libressl-portable/openbsd/commit/…

– KEINOS
Feb 1 at 3:45

















draft saved

draft discarded
















































Thanks for contributing an answer to Unix & Linux Stack Exchange!


  • Please be sure to answer the question. Provide details and share your research!

But avoid


  • Asking for help, clarification, or responding to other answers.

  • Making statements based on opinion; back them up with references or personal experience.

To learn more, see our tips on writing great answers.




draft saved


draft discarded














StackExchange.ready(
function ()
StackExchange.openid.initPostLogin('.new-post-login', 'https%3a%2f%2funix.stackexchange.com%2fquestions%2f497366%2fwhere-to-get-info-about-deprecated-options-of-openssl-rsautil-of-mojave%23new-answer', 'question_page');

);

Post as a guest















Required, but never shown





















































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown

































Required, but never shown














Required, but never shown












Required, but never shown







Required, but never shown






Popular posts from this blog

How to check contact read email or not when send email to Individual?

Displaying single band from multi-band raster using QGIS

How many registers does an x86_64 CPU actually have?