DSAPARAM 1 2003-07-24 0.9.9-dev OpenSSL
NAME
dsaparam - DSA parameter manipulation and generation
LIBRARY
libcrypto, -lcrypto
SYNOPSIS
ooppeennssssll ddssaappaarraamm
[--iinnffoorrmm DDEERR||PPEEMM]
[--oouuttffoorrmm DDEERR||PPEEMM]
[--iinn ffiilleennaammee]
[--oouutt ffiilleennaammee]
[--nnoooouutt]
[--tteexxtt]
[--CC]
[--rraanndd ffiillee((ss))]
[--ggeennkkeeyy]
[--eennggiinnee iidd]
[nnuummbbiittss]
DESCRIPTION
This command is used to manipulate or generate DSA parameter files.
OPTIONS
-
--iinnffoorrmm DDEERR||PPEEMM
This specifies the input format. The DDEERR option uses an ASN1 DER encoded
-
form compatible with RFC2459 (PKIX) DSS-Parms that is a SEQUENCE consisting
of p, q and g respectively. The PEM form is the default format: it consists
of the DDEERR format base64 encoded with additional header and footer lines.
-
--oouuttffoorrmm DDEERR||PPEEMM
This specifies the output format, the options have the same meaning as the
-
--iinnffoorrmm option.
-
--iinn ffiilleennaammee
This specifies the input filename to read parameters from or standard input if
-
this option is not specified. If the nnuummbbiittss parameter is included then
this option will be ignored.
-
--oouutt ffiilleennaammee
This specifies the output filename parameters to. Standard output is used
-
if this option is not present. The output filename should nnoott be the same
as the input filename.
-
--nnoooouutt
this option inhibits the output of the encoded version of the parameters.
-
-
--tteexxtt
this option prints out the DSA parameters in human readable form.
-
-
--CC
this option converts the parameters into C code. The parameters can then
-
be loaded by calling the _gg_ee_tt____dd_ss_aa_XX_XX_XX_((_)) function.
-
--ggeennkkeeyy
this option will generate a DSA either using the specified or generated
-
parameters.
-
--rraanndd ffiillee((ss))
a file or files containing random data used to seed the random number
-
generator, or an EGD socket (see _R_A_N_D___e_g_d(3)).
Multiple files can be specified separated by a OS-dependent character.
The separator is ;; for MS-Windows, ,, for OpenVMS, and :: for
all others.
-
nnuummbbiittss
this option specifies that a parameter set should be generated of size
-
nnuummbbiittss. It must be the last option. If this option is included then
the input file (if any) is ignored.
-
--eennggiinnee iidd
specifying an engine (by it's unique iidd string) will cause rreeqq
-
to attempt to obtain a functional reference to the specified engine,
thus initialising it if needed. The engine will then be set as the default
for all available algorithms.
NOTES
PEM format DSA parameters use the header and footer lines:
-----BEGIN DSA PARAMETERS-----
-----END DSA PARAMETERS-----
DSA parameter generation is a slow process and as a result the same set of
DSA parameters is often used to generate several distinct keys.
SEE ALSO
_o_p_e_n_s_s_l___g_e_n_d_s_a(1), _o_p_e_n_s_s_l___d_s_a(1), _o_p_e_n_s_s_l___g_e_n_r_s_a(1),
_o_p_e_n_s_s_l___r_s_a(1)