xref: /freebsd/crypto/openssl/doc/man1/openssl-gendsa.pod.in (revision b077aed33b7b6aefca7b17ddb250cf521f938613)
1=pod
2{- OpenSSL::safe::output_do_not_edit_headers(); -}
3
4=head1 NAME
5
6openssl-gendsa - generate a DSA private key from a set of parameters
7
8=head1 SYNOPSIS
9
10B<openssl> B<gendsa>
11[B<-help>]
12[B<-out> I<filename>]
13[B<-passout> I<arg>]
14[B<-aes128>]
15[B<-aes192>]
16[B<-aes256>]
17[B<-aria128>]
18[B<-aria192>]
19[B<-aria256>]
20[B<-camellia128>]
21[B<-camellia192>]
22[B<-camellia256>]
23[B<-des>]
24[B<-des3>]
25[B<-idea>]
26[B<-verbose>]
27{- $OpenSSL::safe::opt_r_synopsis -}
28{- $OpenSSL::safe::opt_engine_synopsis -}{- $OpenSSL::safe::opt_provider_synopsis -}
29[I<paramfile>]
30
31=head1 DESCRIPTION
32
33This command generates a DSA private key from a DSA parameter file
34(which will be typically generated by the L<openssl-dsaparam(1)> command).
35
36=head1 OPTIONS
37
38=over 4
39
40=item B<-help>
41
42Print out a usage message.
43
44=item B<-out> I<filename>
45
46Output the key to the specified file. If this argument is not specified then
47standard output is used.
48
49=item B<-passout> I<arg>
50
51The passphrase used for the output file.
52See L<openssl-passphrase-options(1)>.
53
54=item B<-aes128>, B<-aes192>, B<-aes256>, B<-aria128>, B<-aria192>, B<-aria256>, B<-camellia128>, B<-camellia192>, B<-camellia256>, B<-des>, B<-des3>, B<-idea>
55
56These options encrypt the private key with specified
57cipher before outputting it. A pass phrase is prompted for.
58If none of these options is specified no encryption is used.
59
60Note that all options must be given before the I<paramfile> argument.
61Otherwise they are ignored.
62
63=item B<-verbose>
64
65Print extra details about the operations being performed.
66
67{- $OpenSSL::safe::opt_r_item -}
68
69{- $OpenSSL::safe::opt_engine_item -}
70
71=item I<paramfile>
72
73The DSA parameter file to use. The parameters in this file determine
74the size of the private key. DSA parameters can be generated and
75examined using the L<openssl-dsaparam(1)> command.
76
77{- $OpenSSL::safe::opt_provider_item -}
78
79=back
80
81=head1 NOTES
82
83DSA key generation is little more than random number generation so it is
84much quicker that RSA key generation for example.
85
86=head1 SEE ALSO
87
88L<openssl(1)>,
89L<openssl-genpkey(1)>,
90L<openssl-dsaparam(1)>,
91L<openssl-dsa(1)>,
92L<openssl-genrsa(1)>,
93L<openssl-rsa(1)>
94
95=head1 HISTORY
96
97The B<-engine> option was deprecated in OpenSSL 3.0.
98
99=head1 COPYRIGHT
100
101Copyright 2000-2023 The OpenSSL Project Authors. All Rights Reserved.
102
103Licensed under the Apache License 2.0 (the "License").  You may not use
104this file except in compliance with the License.  You can obtain a copy
105in the file LICENSE in the source distribution or at
106L<https://www.openssl.org/source/license.html>.
107
108=cut
109