14 [B<-digest> I<algorithm>]
69 which is not hashed by any message digest algorithm.
71 the user can specify a digest algorithm by using the B<-digest> option.
73 the default digest algorithm is SHA-256. For SM2, it is SM3.
79 The B<-digest> option implies B<-rawin> since OpenSSL 3.5.
81 =item B<-digest> I<algorithm>
84 It specifies the digest algorithm that is used to hash the input data
94 so the B<-digest> option cannot be used with EdDSA.
151 Using a message digest operation along with this is recommended,
152 when applicable, see the B<-rawin> and B<-digest> options for details.
154 be a digest, but this may then require an additional B<-pkeyopt> C<digest:>I<md>
158 checking that the input length is consistent with the intended digest.
166 With raw data, when a digest algorithm is applicable, though it may be inferred
173 DER encoding of the digest algorithm OID and value as specified in
275 Unless otherwise mentioned, all algorithms support the B<digest:>I<alg> option,
276 which specifies the digest in use for the signing and verification operations.
277 The value I<alg> should represent a digest name as used in the
289 In any event the input size must not be larger than the largest supported digest
292 In other words, if the value of digest is B<sha1> the input should be the 20
310 In PKCS#1 padding, if the message digest is not set, then the supplied data is
312 digest is set, then the B<DigestInfo> structure is used and its length
313 must correspond to the digest type.
322 For B<x931> if the digest type is set it is used to format the block data
323 otherwise the first byte is used to specify the X9.31 digest ID. Sign,
326 For B<pss> mode only sign and verify are supported and the digest type must be
332 values are supported: B<digest> sets the salt length to the digest length,
337 =item B<rsa_mgf1_md:>I<digest>
339 For PSS and OAEP padding sets the MGF1 digest. If the MGF1 digest is not
340 explicitly set in PSS mode then the signing digest is used.
342 =item B<rsa_oaep_md:>I<digest>
344 Sets the digest used for the OAEP hash function. If not explicitly set then
368 B<rsa_mgf1_md:>I<digest>
374 If the key has parameter restrictions then the digest, MGF1
375 digest and salt length are set to the values specified in the parameters.
376 The digest and MG cannot be changed and the salt length cannot be set to a
384 there are no additional B<-pkeyopt> options other than B<digest>. The SHA1
385 digest is assumed by default.
396 the B<-pkeyopt> B<digest> option.
408 algorithms with no B<-digest> specified. Additionally OpenSSL only supports
452 Sign data using a message digest value (this is currently only valid for RSA):
454  openssl pkeyutl -sign -in file -inkey key.pem -out sig -pkeyopt digest:sha256
460 Hexdump 48 bytes of TLS1 PRF using digest B<SHA256> and shared secret and
478  openssl pkeyutl -sign -in file -inkey sm2.key -out sig -rawin -digest sm3 \
484     -rawin -digest sm3 -pkeyopt distid:someid
507 the B<-digest> option implies B<-rawin>, and these two options are

Last Index update Fri Nov 29 20:06:09 UTC 2024

Dedicated to & Maintained by Room-11