[openssl-dev] [openssl.org #3505] rewrite c_rehash in C
Viktor Dukhovni
openssl-users at dukhovni.org
Tue Sep 8 01:46:49 UTC 2015
On Tue, Sep 08, 2015 at 01:36:58AM +0000, Rich Salz via RT wrote:
> delivered in main
The documentation looks a bit out of date relative to the code.
The program uses the B<openssl> program to compute the hashes and
fingerprints. If not found in the user's B<PATH>, then set the
B<OPENSSL> environment variable to the full pathname.
Any program can be used, it will be invoked as follows for either
a certificate or CRL:
$OPENSSL x509 -hash -fingerprint -noout -in FILENAME
$OPENSSL crl -hash -fingerprint -noout -in FILENAME
where B<FILENAME> is the filename. It must output the hash of the
file on the first line, and the fingerprint on the second,
optionally prefixed with some text and an equals sign.
In fact no such silliness seems to take place, as far as I can
tell, hashes are computed internally via the relevant C APIs.
There may be other inaccuracies, it is likely worth comparing the
documentation and code more thoroughly.
--
Viktor.
More information about the openssl-dev
mailing list