1=pod 2{- OpenSSL::safe::output_do_not_edit_headers(); -} 3 4=head1 NAME 5 6openssl-gendsa - generate a DSA private key from a set of parameters 7 8=head1 SYNOPSIS 9 10B<openssl> B<gendsa> 11[B<-help>] 12[B<-out> I<filename>] 13[B<-passout> I<arg>] 14[B<-aes128>] 15[B<-aes192>] 16[B<-aes256>] 17[B<-aria128>] 18[B<-aria192>] 19[B<-aria256>] 20[B<-camellia128>] 21[B<-camellia192>] 22[B<-camellia256>] 23[B<-des>] 24[B<-des3>] 25[B<-idea>] 26[B<-verbose>] 27[B<-quiet>] 28{- $OpenSSL::safe::opt_r_synopsis -} 29{- $OpenSSL::safe::opt_engine_synopsis -}{- $OpenSSL::safe::opt_provider_synopsis -} 30[I<paramfile>] 31 32=head1 DESCRIPTION 33 34This command generates a DSA private key from a DSA parameter file 35(which will be typically generated by the L<openssl-dsaparam(1)> command). 36 37=head1 OPTIONS 38 39=over 4 40 41=item B<-help> 42 43Print out a usage message. 44 45=item B<-out> I<filename> 46 47Output the key to the specified file. If this argument is not specified then 48standard output is used. 49 50=item B<-passout> I<arg> 51 52The passphrase used for the output file. 53See L<openssl-passphrase-options(1)>. 54 55=item B<-aes128>, B<-aes192>, B<-aes256>, B<-aria128>, B<-aria192>, B<-aria256>, B<-camellia128>, B<-camellia192>, B<-camellia256>, B<-des>, B<-des3>, B<-idea> 56 57These options encrypt the private key with specified 58cipher before outputting it. A pass phrase is prompted for. 59If none of these options is specified no encryption is used. 60 61Note that all options must be given before the I<paramfile> argument. 62 63=item B<-verbose> 64 65Print extra details about the operations being performed. 66 67=item B<-quiet> 68 69Print fewer details about the operations being performed, which may 70be handy during batch scripts and pipelines. 71 72{- $OpenSSL::safe::opt_r_item -} 73 74{- $OpenSSL::safe::opt_engine_item -} 75 76=item I<paramfile> 77 78The DSA parameter file to use. The parameters in this file determine 79the size of the private key. DSA parameters can be generated and 80examined using the L<openssl-dsaparam(1)> command. 81 82{- $OpenSSL::safe::opt_provider_item -} 83 84=back 85 86=head1 NOTES 87 88DSA key generation is little more than random number generation so it is 89much quicker that RSA key generation for example. 90 91=head1 SEE ALSO 92 93L<openssl(1)>, 94L<openssl-genpkey(1)>, 95L<openssl-dsaparam(1)>, 96L<openssl-dsa(1)>, 97L<openssl-genrsa(1)>, 98L<openssl-rsa(1)> 99 100=head1 HISTORY 101 102The B<-engine> option was deprecated in OpenSSL 3.0. 103 104=head1 COPYRIGHT 105 106Copyright 2000-2023 The OpenSSL Project Authors. All Rights Reserved. 107 108Licensed under the Apache License 2.0 (the "License"). You may not use 109this file except in compliance with the License. You can obtain a copy 110in the file LICENSE in the source distribution or at 111L<https://www.openssl.org/source/license.html>. 112 113=cut 114
