{ "mode": "man", "parameter": "OPENSSL-CIPHERS", "section": "1SSL", "url": "https://www.chedong.com/phpMan.php/man/OPENSSL-CIPHERS/1SSL/json", "generated": "2026-05-30T06:10:47Z", "synopsis": "openssl ciphers [-help] [-s] [-v] [-V] [-ssl3] [-tls1] [-tls11] [-tls12] [-tls13] [-s]\n[-psk] [-srp] [-stdname] [-convert name] [-ciphersuites val] [-provider name] [-provider-path\npath] [-propquery propq] [cipherlist]", "sections": { "NAME": { "content": "openssl-ciphers - SSL cipher display and cipher list command\n", "subsections": [] }, "SYNOPSIS": { "content": "openssl ciphers [-help] [-s] [-v] [-V] [-ssl3] [-tls1] [-tls11] [-tls12] [-tls13] [-s]\n[-psk] [-srp] [-stdname] [-convert name] [-ciphersuites val] [-provider name] [-provider-path\npath] [-propquery propq] [cipherlist]\n", "subsections": [] }, "DESCRIPTION": { "content": "This command converts textual OpenSSL cipher lists into ordered SSL cipher preference lists.\nIt can be used to determine the appropriate cipherlist.\n", "subsections": [] }, "OPTIONS": { "content": "", "subsections": [ { "name": "-help", "content": "Print a usage message.\n" }, { "name": "-provider", "content": "" }, { "name": "-provider-path", "content": "" }, { "name": "-propquery", "content": "See \"Provider Options\" in openssl(1), provider(7), and property(7).\n" }, { "name": "-s", "content": "maximum protocol version. This is closer to the actual cipher list an application will\nsupport.\n\nPSK and SRP ciphers are not enabled by default: they require -psk or -srp to enable them.\n\nIt also does not change the default list of supported signature algorithms.\n\nOn a server the list of supported ciphers might also exclude other ciphers depending on\nthe configured certificates and presence of DH parameters.\n\nIf this option is not used then all ciphers that match the cipherlist will be listed.\n", "flag": "-s" }, { "name": "-psk", "content": "When combined with -s includes cipher suites which require PSK.\n" }, { "name": "-srp", "content": "When combined with -s includes cipher suites which require SRP. This option is\ndeprecated.\n" }, { "name": "-v", "content": "SSLCIPHERdescription(3).\n", "flag": "-v" }, { "name": "-V -v", "content": "", "flag": "-v" }, { "name": "-tls1 -tls1 -tls1 -tls1 -ssl3", "content": "In combination with the -s option, list the ciphers which could be used if the specified\nprotocol were negotiated. Note that not all protocols and flags may be available,\ndepending on how OpenSSL was built.\n" }, { "name": "-stdname", "content": "Precede each cipher suite by its standard name.\n" }, { "name": "-convert", "content": "Convert a standard cipher name to its OpenSSL name.\n" }, { "name": "-ciphersuites", "content": "Sets the list of TLSv1.3 ciphersuites. This list will be combined with any TLSv1.2 and\nbelow ciphersuites that have been configured. The format for this list is a simple colon\n(\":\") separated list of TLSv1.3 ciphersuite names. By default this value is:\n\nTLSAES256GCMSHA384:TLSCHACHA20POLY1305SHA256:TLSAES128GCMSHA256\n" }, { "name": "cipherlist", "content": "A cipher list of TLSv1.2 and below ciphersuites to convert to a cipher preference list.\nThis list will be combined with any TLSv1.3 ciphersuites that have been configured. If it\nis not included then the default cipher list will be used. The format is described below.\n" } ] }, "CIPHER LIST FORMAT": { "content": "The cipher list consists of one or more cipher strings separated by colons. Commas or spaces\nare also acceptable separators but colons are normally used.\n\nThe actual cipher string can take several different forms.\n\nIt can consist of a single cipher suite such as RC4-SHA.\n\nIt can represent a list of cipher suites containing a certain algorithm, or cipher suites of\na certain type. For example SHA1 represents all ciphers suites using the digest algorithm\nSHA1 and SSLv3 represents all SSL v3 algorithms.\n\nLists of cipher suites can be combined in a single cipher string using the + character. This\nis used as a logical and operation. For example SHA1+DES represents all cipher suites\ncontaining the SHA1 and the DES algorithms.\n\nEach cipher string can be optionally preceded by the characters !, - or +.\n\nIf ! is used then the ciphers are permanently deleted from the list. The ciphers deleted can\nnever reappear in the list even if they are explicitly stated.\n\nIf - is used then the ciphers are deleted from the list, but some or all of the ciphers can\nbe added again by later options.\n\nIf + is used then the ciphers are moved to the end of the list. This option doesn't add any\nnew ciphers it just moves matching existing ones.\n\nIf none of these characters is present then the string is just interpreted as a list of\nciphers to be appended to the current preference list. If the list includes any ciphers\nalready present they will be ignored: that is they will not moved to the end of the list.\n\nThe cipher string @STRENGTH can be used at any point to sort the current cipher list in order\nof encryption algorithm key length.\n\nThe cipher string @SECLEVEL=n can be used at any point to set the security level to n, which\nshould be a number between zero and five, inclusive. See SSLCTXsetsecuritylevel(3) for a\ndescription of what each level means.\n\nThe cipher list can be prefixed with the DEFAULT keyword, which enables the default cipher\nlist as defined below. Unlike cipher strings, this prefix may not be combined with other\nstrings using + character. For example, DEFAULT+DES is not valid.\n\nThe content of the default list is determined at compile time and normally corresponds to\nALL:!COMPLEMENTOFDEFAULT:!eNULL.\n", "subsections": [] }, "CIPHER STRINGS": { "content": "The following is a list of all permitted cipher strings and their meanings.\n\nCOMPLEMENTOFDEFAULT\nThe ciphers included in ALL, but not enabled by default. Currently this includes all RC4\nand anonymous ciphers. Note that this rule does not cover eNULL, which is not included by\nALL (use COMPLEMENTOFALL if necessary). Note that RC4 based cipher suites are not built\ninto OpenSSL by default (see the enable-weak-ssl-ciphers option to Configure).\n\nALL All cipher suites except the eNULL ciphers (which must be explicitly enabled if needed).\nAs of OpenSSL 1.0.0, the ALL cipher suites are sensibly ordered by default.\n\nCOMPLEMENTOFALL\nThe cipher suites not enabled by ALL, currently eNULL.\n\nHIGH\n\"High\" encryption cipher suites. This currently means those with key lengths larger than\n128 bits, and some cipher suites with 128-bit keys.\n\nMEDIUM\n\"Medium\" encryption cipher suites, currently some of those using 128 bit encryption.\n\nLOW \"Low\" encryption cipher suites, currently those using 64 or 56 bit encryption algorithms\nbut excluding export cipher suites. All these cipher suites have been removed as of\nOpenSSL 1.1.0.\n\neNULL, NULL\nThe \"NULL\" ciphers that is those offering no encryption. Because these offer no\nencryption at all and are a security risk they are not enabled via either the DEFAULT or\nALL cipher strings. Be careful when building cipherlists out of lower-level primitives\nsuch as kRSA or aECDSA as these do overlap with the eNULL ciphers. When in doubt,\ninclude !eNULL in your cipherlist.\n", "subsections": [ { "name": "aNULL", "content": "The cipher suites offering no authentication. This is currently the anonymous DH\nalgorithms and anonymous ECDH algorithms. These cipher suites are vulnerable to \"man in\nthe middle\" attacks and so their use is discouraged. These are excluded from the DEFAULT\nciphers, but included in the ALL ciphers. Be careful when building cipherlists out of\nlower-level primitives such as kDHE or AES as these do overlap with the aNULL ciphers.\nWhen in doubt, include !aNULL in your cipherlist.\n\nkRSA, aRSA, RSA\nCipher suites using RSA key exchange or authentication. RSA is an alias for kRSA.\n\nkDHr, kDHd, kDH\nCipher suites using static DH key agreement and DH certificates signed by CAs with RSA\nand DSS keys or either respectively. All these cipher suites have been removed in\nOpenSSL 1.1.0.\n\nkDHE, kEDH, DH\nCipher suites using ephemeral DH key agreement, including anonymous cipher suites.\n\nDHE, EDH\nCipher suites using authenticated ephemeral DH key agreement.\n\nADH Anonymous DH cipher suites, note that this does not include anonymous Elliptic Curve DH\n(ECDH) cipher suites.\n\nkEECDH, kECDHE, ECDH\nCipher suites using ephemeral ECDH key agreement, including anonymous cipher suites.\n\nECDHE, EECDH\nCipher suites using authenticated ephemeral ECDH key agreement.\n\nAECDH\nAnonymous Elliptic Curve Diffie-Hellman cipher suites.\n\naDSS, DSS\nCipher suites using DSS authentication, i.e. the certificates carry DSS keys.\n\naDH Cipher suites effectively using DH authentication, i.e. the certificates carry DH keys.\nAll these cipher suites have been removed in OpenSSL 1.1.0.\n\naECDSA, ECDSA\nCipher suites using ECDSA authentication, i.e. the certificates carry ECDSA keys.\n\nTLSv1.2, TLSv1.0, SSLv3\nLists cipher suites which are only supported in at least TLS v1.2, TLS v1.0 or SSL v3.0\nrespectively. Note: there are no cipher suites specific to TLS v1.1. Since this is only\nthe minimum version, if, for example, TLSv1.0 is negotiated then both TLSv1.0 and SSLv3.0\ncipher suites are available.\n\nNote: these cipher strings do not change the negotiated version of SSL or TLS, they only\naffect the list of available cipher suites.\n\nAES128, AES256, AES\ncipher suites using 128 bit AES, 256 bit AES or either 128 or 256 bit AES.\n\nAESGCM\nAES in Galois Counter Mode (GCM): these cipher suites are only supported in TLS v1.2.\n\nAESCCM, AESCCM8\nAES in Cipher Block Chaining - Message Authentication Mode (CCM): these cipher suites are\nonly supported in TLS v1.2. AESCCM references CCM cipher suites using both 16 and 8 octet\nIntegrity Check Value (ICV) while AESCCM8 only references 8 octet ICV.\n\nARIA128, ARIA256, ARIA\nCipher suites using 128 bit ARIA, 256 bit ARIA or either 128 or 256 bit ARIA.\n\nCAMELLIA128, CAMELLIA256, CAMELLIA\nCipher suites using 128 bit CAMELLIA, 256 bit CAMELLIA or either 128 or 256 bit CAMELLIA.\n\nCHACHA20\nCipher suites using ChaCha20.\n" }, { "name": "3DES", "content": "Cipher suites using triple DES.\n\nDES Cipher suites using DES (not triple DES). All these cipher suites have been removed in\nOpenSSL 1.1.0.\n\nRC4 Cipher suites using RC4.\n\nRC2 Cipher suites using RC2.\n\nIDEA\nCipher suites using IDEA.\n\nSEED\nCipher suites using SEED.\n\nMD5 Cipher suites using MD5.\n\nSHA1, SHA\nCipher suites using SHA1.\n\nSHA256, SHA384\nCipher suites using SHA256 or SHA384.\n" }, { "name": "aGOST", "content": "Cipher suites using GOST R 34.10 (either 2001 or 94) for authentication (needs an engine\nsupporting GOST algorithms).\n" }, { "name": "aGOST01", "content": "Cipher suites using GOST R 34.10-2001 authentication.\n" }, { "name": "kGOST", "content": "Cipher suites, using VKO 34.10 key exchange, specified in the RFC 4357.\n\nGOST94\nCipher suites, using HMAC based on GOST R 34.11-94.\n\nGOST89MAC\nCipher suites using GOST 28147-89 MAC instead of HMAC.\n\nPSK All cipher suites using pre-shared keys (PSK).\n\nkPSK, kECDHEPSK, kDHEPSK, kRSAPSK\nCipher suites using PSK key exchange, ECDHEPSK, DHEPSK or RSAPSK.\n" }, { "name": "aPSK", "content": "Cipher suites using PSK authentication (currently all PSK modes apart from RSAPSK).\n\nSUITEB128, SUITEB128ONLY, SUITEB192\nEnables suite B mode of operation using 128 (permitting 192 bit mode by peer) 128 bit\n(not permitting 192 bit by peer) or 192 bit level of security respectively. If used\nthese cipherstrings should appear first in the cipher list and anything after them is\nignored. Setting Suite B mode has additional consequences required to comply with\nRFC6460. In particular the supported signature algorithms is reduced to support only\nECDSA and SHA256 or SHA384, only the elliptic curves P-256 and P-384 can be used and only\nthe two suite B compliant cipher suites (ECDHE-ECDSA-AES128-GCM-SHA256 and\nECDHE-ECDSA-AES256-GCM-SHA384) are permissible.\n\nCBC All cipher suites using encryption algorithm in Cipher Block Chaining (CBC) mode. These\ncipher suites are only supported in TLS v1.2 and earlier. Currently it's an alias for the\nfollowing cipherstrings: SSLDES, SSL3DES, SSLRC2, SSLIDEA, SSLAES128, SSLAES256,\nSSLCAMELLIA128, SSLCAMELLIA256, SSLSEED.\n" } ] }, "CIPHER SUITE NAMES": { "content": "The following lists give the SSL or TLS cipher suites names from the relevant specification\nand their OpenSSL equivalents. It should be noted, that several cipher suite names do not\ninclude the authentication used, e.g. DES-CBC3-SHA. In these cases, RSA authentication is\nused.\n", "subsections": [ { "name": "SSL v3.0 cipher suites", "content": "SSLRSAWITHNULLMD5 NULL-MD5\nSSLRSAWITHNULLSHA NULL-SHA\nSSLRSAWITHRC4128MD5 RC4-MD5\nSSLRSAWITHRC4128SHA RC4-SHA\nSSLRSAWITHIDEACBCSHA IDEA-CBC-SHA\nSSLRSAWITH3DESEDECBCSHA DES-CBC3-SHA\n\nSSLDHDSSWITH3DESEDECBCSHA DH-DSS-DES-CBC3-SHA\nSSLDHRSAWITH3DESEDECBCSHA DH-RSA-DES-CBC3-SHA\nSSLDHEDSSWITH3DESEDECBCSHA DHE-DSS-DES-CBC3-SHA\nSSLDHERSAWITH3DESEDECBCSHA DHE-RSA-DES-CBC3-SHA\n\nSSLDHanonWITHRC4128MD5 ADH-RC4-MD5\nSSLDHanonWITH3DESEDECBCSHA ADH-DES-CBC3-SHA\n\nSSLFORTEZZAKEAWITHNULLSHA Not implemented.\nSSLFORTEZZAKEAWITHFORTEZZACBCSHA Not implemented.\nSSLFORTEZZAKEAWITHRC4128SHA Not implemented.\n" }, { "name": "TLS v1.0 cipher suites", "content": "TLSRSAWITHNULLMD5 NULL-MD5\nTLSRSAWITHNULLSHA NULL-SHA\nTLSRSAWITHRC4128MD5 RC4-MD5\nTLSRSAWITHRC4128SHA RC4-SHA\nTLSRSAWITHIDEACBCSHA IDEA-CBC-SHA\nTLSRSAWITH3DESEDECBCSHA DES-CBC3-SHA\n\nTLSDHDSSWITH3DESEDECBCSHA Not implemented.\nTLSDHRSAWITH3DESEDECBCSHA Not implemented.\nTLSDHEDSSWITH3DESEDECBCSHA DHE-DSS-DES-CBC3-SHA\nTLSDHERSAWITH3DESEDECBCSHA DHE-RSA-DES-CBC3-SHA\n\nTLSDHanonWITHRC4128MD5 ADH-RC4-MD5\nTLSDHanonWITH3DESEDECBCSHA ADH-DES-CBC3-SHA\n" }, { "name": "AES cipher suites from RFC3268, extending TLS v1.0", "content": "TLSRSAWITHAES128CBCSHA AES128-SHA\nTLSRSAWITHAES256CBCSHA AES256-SHA\n\nTLSDHDSSWITHAES128CBCSHA DH-DSS-AES128-SHA\nTLSDHDSSWITHAES256CBCSHA DH-DSS-AES256-SHA\nTLSDHRSAWITHAES128CBCSHA DH-RSA-AES128-SHA\nTLSDHRSAWITHAES256CBCSHA DH-RSA-AES256-SHA\n\nTLSDHEDSSWITHAES128CBCSHA DHE-DSS-AES128-SHA\nTLSDHEDSSWITHAES256CBCSHA DHE-DSS-AES256-SHA\nTLSDHERSAWITHAES128CBCSHA DHE-RSA-AES128-SHA\nTLSDHERSAWITHAES256CBCSHA DHE-RSA-AES256-SHA\n\nTLSDHanonWITHAES128CBCSHA ADH-AES128-SHA\nTLSDHanonWITHAES256CBCSHA ADH-AES256-SHA\n" }, { "name": "Camellia cipher suites from RFC4132, extending TLS v1.0", "content": "TLSRSAWITHCAMELLIA128CBCSHA CAMELLIA128-SHA\nTLSRSAWITHCAMELLIA256CBCSHA CAMELLIA256-SHA\n\nTLSDHDSSWITHCAMELLIA128CBCSHA DH-DSS-CAMELLIA128-SHA\nTLSDHDSSWITHCAMELLIA256CBCSHA DH-DSS-CAMELLIA256-SHA\nTLSDHRSAWITHCAMELLIA128CBCSHA DH-RSA-CAMELLIA128-SHA\nTLSDHRSAWITHCAMELLIA256CBCSHA DH-RSA-CAMELLIA256-SHA\n\nTLSDHEDSSWITHCAMELLIA128CBCSHA DHE-DSS-CAMELLIA128-SHA\nTLSDHEDSSWITHCAMELLIA256CBCSHA DHE-DSS-CAMELLIA256-SHA\nTLSDHERSAWITHCAMELLIA128CBCSHA DHE-RSA-CAMELLIA128-SHA\nTLSDHERSAWITHCAMELLIA256CBCSHA DHE-RSA-CAMELLIA256-SHA\n\nTLSDHanonWITHCAMELLIA128CBCSHA ADH-CAMELLIA128-SHA\nTLSDHanonWITHCAMELLIA256CBCSHA ADH-CAMELLIA256-SHA\n" }, { "name": "SEED cipher suites from RFC4162, extending TLS v1.0", "content": "TLSRSAWITHSEEDCBCSHA SEED-SHA\n\nTLSDHDSSWITHSEEDCBCSHA DH-DSS-SEED-SHA\nTLSDHRSAWITHSEEDCBCSHA DH-RSA-SEED-SHA\n\nTLSDHEDSSWITHSEEDCBCSHA DHE-DSS-SEED-SHA\nTLSDHERSAWITHSEEDCBCSHA DHE-RSA-SEED-SHA\n\nTLSDHanonWITHSEEDCBCSHA ADH-SEED-SHA\n" }, { "name": "GOST cipher suites from draft-chudov-cryptopro-cptls, extending TLS v1.0", "content": "Note: these ciphers require an engine which including GOST cryptographic algorithms, such as\nthe gost engine, which isn't part of the OpenSSL distribution.\n\nTLSGOSTR341094WITH28147CNTIMIT GOST94-GOST89-GOST89\nTLSGOSTR341001WITH28147CNTIMIT GOST2001-GOST89-GOST89\nTLSGOSTR341094WITHNULLGOSTR3411 GOST94-NULL-GOST94\nTLSGOSTR341001WITHNULLGOSTR3411 GOST2001-NULL-GOST94\n" }, { "name": "GOST cipher suites, extending TLS v1.2", "content": "Note: these ciphers require an engine which including GOST cryptographic algorithms, such as\nthe gost engine, which isn't part of the OpenSSL distribution.\n\nTLSGOSTR341112256WITH28147CNTIMIT GOST2012-GOST8912-GOST8912\nTLSGOSTR341112256WITHNULLGOSTR3411 GOST2012-NULL-GOST12\n\nNote: GOST2012-GOST8912-GOST8912 is an alias for two ciphers ID old\nLEGACY-GOST2012-GOST8912-GOST8912 and new IANA-GOST2012-GOST8912-GOST8912\n" }, { "name": "Additional Export 1024 and other cipher suites", "content": "Note: these ciphers can also be used in SSL v3.\n\nTLSDHEDSSWITHRC4128SHA DHE-DSS-RC4-SHA\n" }, { "name": "Elliptic curve cipher suites", "content": "TLSECDHERSAWITHNULLSHA ECDHE-RSA-NULL-SHA\nTLSECDHERSAWITHRC4128SHA ECDHE-RSA-RC4-SHA\nTLSECDHERSAWITH3DESEDECBCSHA ECDHE-RSA-DES-CBC3-SHA\nTLSECDHERSAWITHAES128CBCSHA ECDHE-RSA-AES128-SHA\nTLSECDHERSAWITHAES256CBCSHA ECDHE-RSA-AES256-SHA\n\nTLSECDHEECDSAWITHNULLSHA ECDHE-ECDSA-NULL-SHA\nTLSECDHEECDSAWITHRC4128SHA ECDHE-ECDSA-RC4-SHA\nTLSECDHEECDSAWITH3DESEDECBCSHA ECDHE-ECDSA-DES-CBC3-SHA\nTLSECDHEECDSAWITHAES128CBCSHA ECDHE-ECDSA-AES128-SHA\nTLSECDHEECDSAWITHAES256CBCSHA ECDHE-ECDSA-AES256-SHA\n\nTLSECDHanonWITHNULLSHA AECDH-NULL-SHA\nTLSECDHanonWITHRC4128SHA AECDH-RC4-SHA\nTLSECDHanonWITH3DESEDECBCSHA AECDH-DES-CBC3-SHA\nTLSECDHanonWITHAES128CBCSHA AECDH-AES128-SHA\nTLSECDHanonWITHAES256CBCSHA AECDH-AES256-SHA\n" }, { "name": "TLS v1.2 cipher suites", "content": "TLSRSAWITHNULLSHA256 NULL-SHA256\n\nTLSRSAWITHAES128CBCSHA256 AES128-SHA256\nTLSRSAWITHAES256CBCSHA256 AES256-SHA256\nTLSRSAWITHAES128GCMSHA256 AES128-GCM-SHA256\nTLSRSAWITHAES256GCMSHA384 AES256-GCM-SHA384\n\nTLSDHRSAWITHAES128CBCSHA256 DH-RSA-AES128-SHA256\nTLSDHRSAWITHAES256CBCSHA256 DH-RSA-AES256-SHA256\nTLSDHRSAWITHAES128GCMSHA256 DH-RSA-AES128-GCM-SHA256\nTLSDHRSAWITHAES256GCMSHA384 DH-RSA-AES256-GCM-SHA384\n\nTLSDHDSSWITHAES128CBCSHA256 DH-DSS-AES128-SHA256\nTLSDHDSSWITHAES256CBCSHA256 DH-DSS-AES256-SHA256\nTLSDHDSSWITHAES128GCMSHA256 DH-DSS-AES128-GCM-SHA256\nTLSDHDSSWITHAES256GCMSHA384 DH-DSS-AES256-GCM-SHA384\n\nTLSDHERSAWITHAES128CBCSHA256 DHE-RSA-AES128-SHA256\nTLSDHERSAWITHAES256CBCSHA256 DHE-RSA-AES256-SHA256\nTLSDHERSAWITHAES128GCMSHA256 DHE-RSA-AES128-GCM-SHA256\nTLSDHERSAWITHAES256GCMSHA384 DHE-RSA-AES256-GCM-SHA384\n\nTLSDHEDSSWITHAES128CBCSHA256 DHE-DSS-AES128-SHA256\nTLSDHEDSSWITHAES256CBCSHA256 DHE-DSS-AES256-SHA256\nTLSDHEDSSWITHAES128GCMSHA256 DHE-DSS-AES128-GCM-SHA256\nTLSDHEDSSWITHAES256GCMSHA384 DHE-DSS-AES256-GCM-SHA384\n\nTLSECDHERSAWITHAES128CBCSHA256 ECDHE-RSA-AES128-SHA256\nTLSECDHERSAWITHAES256CBCSHA384 ECDHE-RSA-AES256-SHA384\nTLSECDHERSAWITHAES128GCMSHA256 ECDHE-RSA-AES128-GCM-SHA256\nTLSECDHERSAWITHAES256GCMSHA384 ECDHE-RSA-AES256-GCM-SHA384\n\nTLSECDHEECDSAWITHAES128CBCSHA256 ECDHE-ECDSA-AES128-SHA256\nTLSECDHEECDSAWITHAES256CBCSHA384 ECDHE-ECDSA-AES256-SHA384\nTLSECDHEECDSAWITHAES128GCMSHA256 ECDHE-ECDSA-AES128-GCM-SHA256\nTLSECDHEECDSAWITHAES256GCMSHA384 ECDHE-ECDSA-AES256-GCM-SHA384\n\nTLSDHanonWITHAES128CBCSHA256 ADH-AES128-SHA256\nTLSDHanonWITHAES256CBCSHA256 ADH-AES256-SHA256\nTLSDHanonWITHAES128GCMSHA256 ADH-AES128-GCM-SHA256\nTLSDHanonWITHAES256GCMSHA384 ADH-AES256-GCM-SHA384\n\nRSAWITHAES128CCM AES128-CCM\nRSAWITHAES256CCM AES256-CCM\nDHERSAWITHAES128CCM DHE-RSA-AES128-CCM\nDHERSAWITHAES256CCM DHE-RSA-AES256-CCM\nRSAWITHAES128CCM8 AES128-CCM8\nRSAWITHAES256CCM8 AES256-CCM8\nDHERSAWITHAES128CCM8 DHE-RSA-AES128-CCM8\nDHERSAWITHAES256CCM8 DHE-RSA-AES256-CCM8\nECDHEECDSAWITHAES128CCM ECDHE-ECDSA-AES128-CCM\nECDHEECDSAWITHAES256CCM ECDHE-ECDSA-AES256-CCM\nECDHEECDSAWITHAES128CCM8 ECDHE-ECDSA-AES128-CCM8\nECDHEECDSAWITHAES256CCM8 ECDHE-ECDSA-AES256-CCM8\n" }, { "name": "ARIA cipher suites from RFC6209, extending TLS v1.2", "content": "Note: the CBC modes mentioned in this RFC are not supported.\n\nTLSRSAWITHARIA128GCMSHA256 ARIA128-GCM-SHA256\nTLSRSAWITHARIA256GCMSHA384 ARIA256-GCM-SHA384\nTLSDHERSAWITHARIA128GCMSHA256 DHE-RSA-ARIA128-GCM-SHA256\nTLSDHERSAWITHARIA256GCMSHA384 DHE-RSA-ARIA256-GCM-SHA384\nTLSDHEDSSWITHARIA128GCMSHA256 DHE-DSS-ARIA128-GCM-SHA256\nTLSDHEDSSWITHARIA256GCMSHA384 DHE-DSS-ARIA256-GCM-SHA384\nTLSECDHEECDSAWITHARIA128GCMSHA256 ECDHE-ECDSA-ARIA128-GCM-SHA256\nTLSECDHEECDSAWITHARIA256GCMSHA384 ECDHE-ECDSA-ARIA256-GCM-SHA384\nTLSECDHERSAWITHARIA128GCMSHA256 ECDHE-ARIA128-GCM-SHA256\nTLSECDHERSAWITHARIA256GCMSHA384 ECDHE-ARIA256-GCM-SHA384\nTLSPSKWITHARIA128GCMSHA256 PSK-ARIA128-GCM-SHA256\nTLSPSKWITHARIA256GCMSHA384 PSK-ARIA256-GCM-SHA384\nTLSDHEPSKWITHARIA128GCMSHA256 DHE-PSK-ARIA128-GCM-SHA256\nTLSDHEPSKWITHARIA256GCMSHA384 DHE-PSK-ARIA256-GCM-SHA384\nTLSRSAPSKWITHARIA128GCMSHA256 RSA-PSK-ARIA128-GCM-SHA256\nTLSRSAPSKWITHARIA256GCMSHA384 RSA-PSK-ARIA256-GCM-SHA384\n" }, { "name": "Camellia HMAC-Based cipher suites from RFC6367, extending TLS v1.2", "content": "TLSECDHEECDSAWITHCAMELLIA128CBCSHA256 ECDHE-ECDSA-CAMELLIA128-SHA256\nTLSECDHEECDSAWITHCAMELLIA256CBCSHA384 ECDHE-ECDSA-CAMELLIA256-SHA384\nTLSECDHERSAWITHCAMELLIA128CBCSHA256 ECDHE-RSA-CAMELLIA128-SHA256\nTLSECDHERSAWITHCAMELLIA256CBCSHA384 ECDHE-RSA-CAMELLIA256-SHA384\n" }, { "name": "Pre-shared keying (PSK) cipher suites", "content": "PSKWITHNULLSHA PSK-NULL-SHA\nDHEPSKWITHNULLSHA DHE-PSK-NULL-SHA\nRSAPSKWITHNULLSHA RSA-PSK-NULL-SHA\n\nPSKWITHRC4128SHA PSK-RC4-SHA\nPSKWITH3DESEDECBCSHA PSK-3DES-EDE-CBC-SHA\nPSKWITHAES128CBCSHA PSK-AES128-CBC-SHA\nPSKWITHAES256CBCSHA PSK-AES256-CBC-SHA\n\nDHEPSKWITHRC4128SHA DHE-PSK-RC4-SHA\nDHEPSKWITH3DESEDECBCSHA DHE-PSK-3DES-EDE-CBC-SHA\nDHEPSKWITHAES128CBCSHA DHE-PSK-AES128-CBC-SHA\nDHEPSKWITHAES256CBCSHA DHE-PSK-AES256-CBC-SHA\n\nRSAPSKWITHRC4128SHA RSA-PSK-RC4-SHA\nRSAPSKWITH3DESEDECBCSHA RSA-PSK-3DES-EDE-CBC-SHA\nRSAPSKWITHAES128CBCSHA RSA-PSK-AES128-CBC-SHA\nRSAPSKWITHAES256CBCSHA RSA-PSK-AES256-CBC-SHA\n\nPSKWITHAES128GCMSHA256 PSK-AES128-GCM-SHA256\nPSKWITHAES256GCMSHA384 PSK-AES256-GCM-SHA384\nDHEPSKWITHAES128GCMSHA256 DHE-PSK-AES128-GCM-SHA256\nDHEPSKWITHAES256GCMSHA384 DHE-PSK-AES256-GCM-SHA384\nRSAPSKWITHAES128GCMSHA256 RSA-PSK-AES128-GCM-SHA256\nRSAPSKWITHAES256GCMSHA384 RSA-PSK-AES256-GCM-SHA384\n\nPSKWITHAES128CBCSHA256 PSK-AES128-CBC-SHA256\nPSKWITHAES256CBCSHA384 PSK-AES256-CBC-SHA384\nPSKWITHNULLSHA256 PSK-NULL-SHA256\nPSKWITHNULLSHA384 PSK-NULL-SHA384\nDHEPSKWITHAES128CBCSHA256 DHE-PSK-AES128-CBC-SHA256\nDHEPSKWITHAES256CBCSHA384 DHE-PSK-AES256-CBC-SHA384\nDHEPSKWITHNULLSHA256 DHE-PSK-NULL-SHA256\nDHEPSKWITHNULLSHA384 DHE-PSK-NULL-SHA384\nRSAPSKWITHAES128CBCSHA256 RSA-PSK-AES128-CBC-SHA256\nRSAPSKWITHAES256CBCSHA384 RSA-PSK-AES256-CBC-SHA384\nRSAPSKWITHNULLSHA256 RSA-PSK-NULL-SHA256\nRSAPSKWITHNULLSHA384 RSA-PSK-NULL-SHA384\nPSKWITHAES128GCMSHA256 PSK-AES128-GCM-SHA256\nPSKWITHAES256GCMSHA384 PSK-AES256-GCM-SHA384\n\nECDHEPSKWITHRC4128SHA ECDHE-PSK-RC4-SHA\nECDHEPSKWITH3DESEDECBCSHA ECDHE-PSK-3DES-EDE-CBC-SHA\nECDHEPSKWITHAES128CBCSHA ECDHE-PSK-AES128-CBC-SHA\nECDHEPSKWITHAES256CBCSHA ECDHE-PSK-AES256-CBC-SHA\nECDHEPSKWITHAES128CBCSHA256 ECDHE-PSK-AES128-CBC-SHA256\nECDHEPSKWITHAES256CBCSHA384 ECDHE-PSK-AES256-CBC-SHA384\nECDHEPSKWITHNULLSHA ECDHE-PSK-NULL-SHA\nECDHEPSKWITHNULLSHA256 ECDHE-PSK-NULL-SHA256\nECDHEPSKWITHNULLSHA384 ECDHE-PSK-NULL-SHA384\n\nPSKWITHCAMELLIA128CBCSHA256 PSK-CAMELLIA128-SHA256\nPSKWITHCAMELLIA256CBCSHA384 PSK-CAMELLIA256-SHA384\n\nDHEPSKWITHCAMELLIA128CBCSHA256 DHE-PSK-CAMELLIA128-SHA256\nDHEPSKWITHCAMELLIA256CBCSHA384 DHE-PSK-CAMELLIA256-SHA384\n\nRSAPSKWITHCAMELLIA128CBCSHA256 RSA-PSK-CAMELLIA128-SHA256\nRSAPSKWITHCAMELLIA256CBCSHA384 RSA-PSK-CAMELLIA256-SHA384\n\nECDHEPSKWITHCAMELLIA128CBCSHA256 ECDHE-PSK-CAMELLIA128-SHA256\nECDHEPSKWITHCAMELLIA256CBCSHA384 ECDHE-PSK-CAMELLIA256-SHA384\n\nPSKWITHAES128CCM PSK-AES128-CCM\nPSKWITHAES256CCM PSK-AES256-CCM\nDHEPSKWITHAES128CCM DHE-PSK-AES128-CCM\nDHEPSKWITHAES256CCM DHE-PSK-AES256-CCM\nPSKWITHAES128CCM8 PSK-AES128-CCM8\nPSKWITHAES256CCM8 PSK-AES256-CCM8\nDHEPSKWITHAES128CCM8 DHE-PSK-AES128-CCM8\nDHEPSKWITHAES256CCM8 DHE-PSK-AES256-CCM8\n" }, { "name": "ChaCha20-Poly1305 cipher suites, extending TLS v1.2", "content": "TLSECDHERSAWITHCHACHA20POLY1305SHA256 ECDHE-RSA-CHACHA20-POLY1305\nTLSECDHEECDSAWITHCHACHA20POLY1305SHA256 ECDHE-ECDSA-CHACHA20-POLY1305\nTLSDHERSAWITHCHACHA20POLY1305SHA256 DHE-RSA-CHACHA20-POLY1305\nTLSPSKWITHCHACHA20POLY1305SHA256 PSK-CHACHA20-POLY1305\nTLSECDHEPSKWITHCHACHA20POLY1305SHA256 ECDHE-PSK-CHACHA20-POLY1305\nTLSDHEPSKWITHCHACHA20POLY1305SHA256 DHE-PSK-CHACHA20-POLY1305\nTLSRSAPSKWITHCHACHA20POLY1305SHA256 RSA-PSK-CHACHA20-POLY1305\n" }, { "name": "TLS v1.3 cipher suites", "content": "TLSAES128GCMSHA256 TLSAES128GCMSHA256\nTLSAES256GCMSHA384 TLSAES256GCMSHA384\nTLSCHACHA20POLY1305SHA256 TLSCHACHA20POLY1305SHA256\nTLSAES128CCMSHA256 TLSAES128CCMSHA256\nTLSAES128CCM8SHA256 TLSAES128CCM8SHA256\n" }, { "name": "Older names used by OpenSSL", "content": "The following names are accepted by older releases:\n\nSSLDHERSAWITH3DESEDECBCSHA EDH-RSA-DES-CBC3-SHA (DHE-RSA-DES-CBC3-SHA)\nSSLDHEDSSWITH3DESEDECBCSHA EDH-DSS-DES-CBC3-SHA (DHE-DSS-DES-CBC3-SHA)\n" } ] }, "NOTES": { "content": "Some compiled versions of OpenSSL may not include all the ciphers listed here because some\nciphers were excluded at compile time.\n", "subsections": [] }, "EXAMPLES": { "content": "Verbose listing of all OpenSSL ciphers including NULL ciphers:\n\nopenssl ciphers -v 'ALL:eNULL'\n\nInclude all ciphers except NULL and anonymous DH then sort by strength:\n\nopenssl ciphers -v 'ALL:!ADH:@STRENGTH'\n\nInclude all ciphers except ones with no encryption (eNULL) or no authentication (aNULL):\n\nopenssl ciphers -v 'ALL:!aNULL'\n\nInclude only 3DES ciphers and then place RSA ciphers last:\n\nopenssl ciphers -v '3DES:+RSA'\n\nInclude all RC4 ciphers but leave out those without authentication:\n\nopenssl ciphers -v 'RC4:!COMPLEMENTOFDEFAULT'\n\nInclude all ciphers with RSA authentication but leave out ciphers without encryption.\n\nopenssl ciphers -v 'RSA:!COMPLEMENTOFALL'\n\nSet security level to 2 and display all ciphers consistent with level 2:\n\nopenssl ciphers -s -v 'ALL:@SECLEVEL=2'\n", "subsections": [] }, "SEE ALSO": { "content": "openssl(1), openssl-sclient(1), openssl-sserver(1), ssl(7)\n", "subsections": [] }, "HISTORY": { "content": "The -V option was added in OpenSSL 1.0.0.\n\nThe -stdname is only available if OpenSSL is built with tracing enabled (enable-ssl-trace\nargument to Configure) before OpenSSL 1.1.1.\n\nThe -convert option was added in OpenSSL 1.1.1.\n", "subsections": [] }, "COPYRIGHT": { "content": "Copyright 2000-2021 The OpenSSL Project Authors. All Rights Reserved.\n\nLicensed under the Apache License 2.0 (the \"License\"). You may not use this file except in\ncompliance with the License. You can obtain a copy in the file LICENSE in the source\ndistribution or at .\n\n\n\n3.0.2 2026-04-07 OPENSSL-CIPHERS(1SSL)", "subsections": [] } }, "summary": "openssl-ciphers - SSL cipher display and cipher list command", "flags": [ { "flag": "", "long": null, "arg": null, "description": "Print a usage message." }, { "flag": "", "long": null, "arg": null, "description": "" }, { "flag": "", "long": null, "arg": null, "description": "" }, { "flag": "", "long": null, "arg": null, "description": "See \"Provider Options\" in openssl(1), provider(7), and property(7)." }, { "flag": "-s", "long": null, "arg": null, "description": "maximum protocol version. This is closer to the actual cipher list an application will support. PSK and SRP ciphers are not enabled by default: they require -psk or -srp to enable them. It also does not change the default list of supported signature algorithms. On a server the list of supported ciphers might also exclude other ciphers depending on the configured certificates and presence of DH parameters. If this option is not used then all ciphers that match the cipherlist will be listed." }, { "flag": "", "long": null, "arg": null, "description": "When combined with -s includes cipher suites which require PSK." }, { "flag": "", "long": null, "arg": null, "description": "When combined with -s includes cipher suites which require SRP. This option is deprecated." }, { "flag": "-v", "long": null, "arg": null, "description": "SSLCIPHERdescription(3)." }, { "flag": "-v", "long": null, "arg": null, "description": "" }, { "flag": "", "long": null, "arg": null, "description": "In combination with the -s option, list the ciphers which could be used if the specified protocol were negotiated. Note that not all protocols and flags may be available, depending on how OpenSSL was built." }, { "flag": "", "long": null, "arg": null, "description": "Precede each cipher suite by its standard name." }, { "flag": "", "long": null, "arg": null, "description": "Convert a standard cipher name to its OpenSSL name." }, { "flag": "", "long": null, "arg": null, "description": "Sets the list of TLSv1.3 ciphersuites. This list will be combined with any TLSv1.2 and below ciphersuites that have been configured. The format for this list is a simple colon (\":\") separated list of TLSv1.3 ciphersuite names. By default this value is: TLSAES256GCMSHA384:TLSCHACHA20POLY1305SHA256:TLSAES128GCMSHA256" } ], "examples": [ "Verbose listing of all OpenSSL ciphers including NULL ciphers:", "openssl ciphers -v 'ALL:eNULL'", "Include all ciphers except NULL and anonymous DH then sort by strength:", "openssl ciphers -v 'ALL:!ADH:@STRENGTH'", "Include all ciphers except ones with no encryption (eNULL) or no authentication (aNULL):", "openssl ciphers -v 'ALL:!aNULL'", "Include only 3DES ciphers and then place RSA ciphers last:", "openssl ciphers -v '3DES:+RSA'", "Include all RC4 ciphers but leave out those without authentication:", "openssl ciphers -v 'RC4:!COMPLEMENTOFDEFAULT'", "Include all ciphers with RSA authentication but leave out ciphers without encryption.", "openssl ciphers -v 'RSA:!COMPLEMENTOFALL'", "Set security level to 2 and display all ciphers consistent with level 2:", "openssl ciphers -s -v 'ALL:@SECLEVEL=2'" ], "see_also": [ { "name": "openssl", "section": "1", "url": "https://www.chedong.com/phpMan.php/man/openssl/1/json" }, { "name": "openssl-sclient", "section": "1", "url": "https://www.chedong.com/phpMan.php/man/openssl-sclient/1/json" }, { "name": "openssl-sserver", "section": "1", "url": "https://www.chedong.com/phpMan.php/man/openssl-sserver/1/json" }, { "name": "ssl", "section": "7", "url": "https://www.chedong.com/phpMan.php/man/ssl/7/json" } ] }