1=pod 2{- OpenSSL::safe::output_do_not_edit_headers(); -} 3 4=head1 NAME 5 6openssl-gendsa - generate a DSA private key from a set of parameters 7 8=head1 SYNOPSIS 9 10B<openssl> B<gendsa> 11[B<-help>] 12[B<-out> I<filename>] 13[B<-passout> I<arg>] 14[B<-aes128>] 15[B<-aes192>] 16[B<-aes256>] 17[B<-aria128>] 18[B<-aria192>] 19[B<-aria256>] 20[B<-camellia128>] 21[B<-camellia192>] 22[B<-camellia256>] 23[B<-des>] 24[B<-des3>] 25[B<-idea>] 26[B<-verbose>] 27{- $OpenSSL::safe::opt_r_synopsis -} 28{- $OpenSSL::safe::opt_engine_synopsis -}{- $OpenSSL::safe::opt_provider_synopsis -} 29[I<paramfile>] 30 31=head1 DESCRIPTION 32 33This command generates a DSA private key from a DSA parameter file 34(which will be typically generated by the L<openssl-dsaparam(1)> command). 35 36=head1 OPTIONS 37 38=over 4 39 40=item B<-help> 41 42Print out a usage message. 43 44=item B<-out> I<filename> 45 46Output the key to the specified file. If this argument is not specified then 47standard output is used. 48 49=item B<-passout> I<arg> 50 51The passphrase used for the output file. 52See L<openssl-passphrase-options(1)>. 53 54=item B<-aes128>, B<-aes192>, B<-aes256>, B<-aria128>, B<-aria192>, B<-aria256>, B<-camellia128>, B<-camellia192>, B<-camellia256>, B<-des>, B<-des3>, B<-idea> 55 56These options encrypt the private key with specified 57cipher before outputting it. A pass phrase is prompted for. 58If none of these options is specified no encryption is used. 59 60Note that all options must be given before the I<paramfile> argument. 61Otherwise they are ignored. 62 63=item B<-verbose> 64 65Print extra details about the operations being performed. 66 67{- $OpenSSL::safe::opt_r_item -} 68 69{- $OpenSSL::safe::opt_engine_item -} 70 71=item I<paramfile> 72 73The DSA parameter file to use. The parameters in this file determine 74the size of the private key. DSA parameters can be generated and 75examined using the L<openssl-dsaparam(1)> command. 76 77{- $OpenSSL::safe::opt_provider_item -} 78 79=back 80 81=head1 NOTES 82 83DSA key generation is little more than random number generation so it is 84much quicker that RSA key generation for example. 85 86=head1 SEE ALSO 87 88L<openssl(1)>, 89L<openssl-genpkey(1)>, 90L<openssl-dsaparam(1)>, 91L<openssl-dsa(1)>, 92L<openssl-genrsa(1)>, 93L<openssl-rsa(1)> 94 95=head1 HISTORY 96 97The B<-engine> option was deprecated in OpenSSL 3.0. 98 99=head1 COPYRIGHT 100 101Copyright 2000-2023 The OpenSSL Project Authors. All Rights Reserved. 102 103Licensed under the Apache License 2.0 (the "License"). You may not use 104this file except in compliance with the License. You can obtain a copy 105in the file LICENSE in the source distribution or at 106L<https://www.openssl.org/source/license.html>. 107 108=cut 109