OSSL_PROVIDER-legacy.pod 2.6 KB

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129
  1. =pod
  2. =head1 NAME
  3. OSSL_PROVIDER-legacy - OpenSSL legacy provider
  4. =head1 DESCRIPTION
  5. The OpenSSL legacy provider supplies OpenSSL implementations of algorithms
  6. that have been deemed legacy. Such algorithms have commonly fallen out of
  7. use, have been deemed insecure by the cryptography community, or something
  8. similar.
  9. We can consider this the retirement home of cryptographic algorithms.
  10. =head2 Properties
  11. The implementations in this provider specifically has this property
  12. defined:
  13. =over 4
  14. =item "provider=legacy"
  15. =back
  16. It may be used in a property query string with fetching functions such as
  17. L<EVP_MD_fetch(3)> or L<EVP_CIPHER_fetch(3)>, as well as with other
  18. functions that take a property query string, such as
  19. L<EVP_PKEY_CTX_new_from_name(3)>.
  20. It isn't mandatory to query for any of these properties, except to
  21. make sure to get implementations of this provider and none other.
  22. =head1 OPERATIONS AND ALGORITHMS
  23. The OpenSSL legacy provider supports these operations and algorithms:
  24. =head2 Hashing Algorithms / Message Digests
  25. =over 4
  26. =item MD2, see L<EVP_MD-MD2(7)>
  27. =item MD4, see L<EVP_MD-MD4(7)>
  28. =item MDC2, see L<EVP_MD-MDC2(7)>
  29. =item WHIRLPOOL, see L<EVP_MD-WHIRLPOOL(7)>
  30. =item RIPEMD160, see L<EVP_MD-RIPEMD160(7)>
  31. =back
  32. =head2 Symmetric Ciphers
  33. Not all of these symmetric cipher algorithms are enabled by default.
  34. =over 4
  35. =item Blowfish, see L<EVP_CIPHER-BLOWFISH(7)>
  36. =item CAST, see L<EVP_CIPHER-CAST(7)>
  37. =item DES, see L<EVP_CIPHER-DES(7)>
  38. The algorithm names are: DES_ECB, DES_CBC, DES_OFB, DES_CFB, DES_CFB1, DES_CFB8
  39. and DESX_CBC.
  40. =item IDEA, see L<EVP_CIPHER-IDEA(7)>
  41. =item RC2, see L<EVP_CIPHER-RC2(7)>
  42. =item RC4, see L<EVP_CIPHER-RC4(7)>
  43. =item RC5, see L<EVP_CIPHER-RC5(7)>
  44. Disabled by default. Use I<enable-rc5> config option to enable.
  45. =item SEED, see L<EVP_CIPHER-SEED(7)>
  46. =back
  47. =head2 Key Derivation Function (KDF)
  48. =over 4
  49. =item PBKDF1
  50. =item PVKKDF
  51. =back
  52. =begin comment
  53. When algorithms for other operations start appearing, the
  54. following =head2 titles are appropriate to use:
  55. - Message Authentication Code (MAC)
  56. - Key Derivation Function (KDF)
  57. - Key Exchange
  58. - Signature
  59. - Asymmetric Cipher
  60. - Asymmetric Key Management
  61. =end comment
  62. =head1 SEE ALSO
  63. L<OSSL_PARAM(3)>,
  64. L<openssl-core.h(7)>,
  65. L<openssl-core_dispatch.h(7)>,
  66. L<provider(7)>
  67. =head1 COPYRIGHT
  68. Copyright 2020-2021 The OpenSSL Project Authors. All Rights Reserved.
  69. Licensed under the Apache License 2.0 (the "License"). You may not use
  70. this file except in compliance with the License. You can obtain a copy
  71. in the file LICENSE in the source distribution or at
  72. L<https://www.openssl.org/source/license.html>.
  73. =cut