Switch from OpenSSL 0.9.7d to 0.9.7e.
[dragonfly.git] / secure / usr.bin / openssl / man / genrsa.1
CommitLineData
e3cdf75b
JR
1.rn '' }`
2''' $RCSfile$$Revision$$Date$
3'''
4''' $Log$
5'''
6.de Sh
984263bc
MD
7.br
8.if t .Sp
9.ne 5
10.PP
11\fB\\$1\fR
12.PP
13..
e3cdf75b 14.de Sp
984263bc
MD
15.if t .sp .5v
16.if n .sp
17..
e3cdf75b 18.de Ip
984263bc
MD
19.br
20.ie \\n(.$>=3 .ne \\$3
21.el .ne 3
22.IP "\\$1" \\$2
23..
e3cdf75b 24.de Vb
984263bc
MD
25.ft CW
26.nf
27.ne \\$1
28..
e3cdf75b 29.de Ve
984263bc
MD
30.ft R
31
32.fi
33..
e3cdf75b
JR
34'''
35'''
36''' Set up \*(-- to give an unbreakable dash;
37''' string Tr holds user defined translation string.
38''' Bell System Logo is used as a dummy character.
39'''
984263bc 40.tr \(*W-|\(bv\*(Tr
984263bc 41.ie n \{\
e3cdf75b
JR
42.ds -- \(*W-
43.ds PI pi
44.if (\n(.H=4u)&(1m=24u) .ds -- \(*W\h'-12u'\(*W\h'-12u'-\" diablo 10 pitch
45.if (\n(.H=4u)&(1m=20u) .ds -- \(*W\h'-12u'\(*W\h'-8u'-\" diablo 12 pitch
46.ds L" ""
47.ds R" ""
48''' \*(M", \*(S", \*(N" and \*(T" are the equivalent of
49''' \*(L" and \*(R", except that they are used on ".xx" lines,
50''' such as .IP and .SH, which do another additional levels of
51''' double-quote interpretation
52.ds M" """
53.ds S" """
54.ds N" """""
55.ds T" """""
56.ds L' '
57.ds R' '
58.ds M' '
59.ds S' '
60.ds N' '
61.ds T' '
984263bc
MD
62'br\}
63.el\{\
e3cdf75b
JR
64.ds -- \(em\|
65.tr \*(Tr
66.ds L" ``
67.ds R" ''
68.ds M" ``
69.ds S" ''
70.ds N" ``
71.ds T" ''
72.ds L' `
73.ds R' '
74.ds M' `
75.ds S' '
76.ds N' `
77.ds T' '
78.ds PI \(*p
984263bc 79'br\}
e3cdf75b
JR
80.\" If the F register is turned on, we'll generate
81.\" index entries out stderr for the following things:
82.\" TH Title
83.\" SH Header
84.\" Sh Subsection
85.\" Ip Item
86.\" X<> Xref (embedded
87.\" Of course, you have to process the output yourself
88.\" in some meaninful fashion.
89.if \nF \{
90.de IX
91.tm Index:\\$1\t\\n%\t"\\$2"
984263bc 92..
e3cdf75b
JR
93.nr % 0
94.rr F
984263bc 95.\}
e3cdf75b
JR
96.TH GENRSA 1 "0.9.7d" "2/Sep/2004" "OpenSSL"
97.UC
98.if n .hy 0
984263bc 99.if n .na
e3cdf75b
JR
100.ds C+ C\v'-.1v'\h'-1p'\s-2+\h'-1p'+\s0\v'.1v'\h'-1p'
101.de CQ \" put $1 in typewriter font
102.ft CW
103'if n "\c
104'if t \\&\\$1\c
105'if n \\&\\$1\c
106'if n \&"
107\\&\\$2 \\$3 \\$4 \\$5 \\$6 \\$7
108'.ft R
109..
110.\" @(#)ms.acc 1.5 88/02/08 SMI; from UCB 4.2
111. \" AM - accent mark definitions
984263bc 112.bd B 3
e3cdf75b 113. \" fudge factors for nroff and troff
984263bc 114.if n \{\
e3cdf75b
JR
115. ds #H 0
116. ds #V .8m
117. ds #F .3m
118. ds #[ \f1
119. ds #] \fP
984263bc
MD
120.\}
121.if t \{\
e3cdf75b
JR
122. ds #H ((1u-(\\\\n(.fu%2u))*.13m)
123. ds #V .6m
124. ds #F 0
125. ds #[ \&
126. ds #] \&
984263bc 127.\}
e3cdf75b 128. \" simple accents for nroff and troff
984263bc 129.if n \{\
e3cdf75b
JR
130. ds ' \&
131. ds ` \&
132. ds ^ \&
133. ds , \&
134. ds ~ ~
135. ds ? ?
136. ds ! !
137. ds /
138. ds q
984263bc
MD
139.\}
140.if t \{\
e3cdf75b
JR
141. ds ' \\k:\h'-(\\n(.wu*8/10-\*(#H)'\'\h"|\\n:u"
142. ds ` \\k:\h'-(\\n(.wu*8/10-\*(#H)'\`\h'|\\n:u'
143. ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'^\h'|\\n:u'
144. ds , \\k:\h'-(\\n(.wu*8/10)',\h'|\\n:u'
145. ds ~ \\k:\h'-(\\n(.wu-\*(#H-.1m)'~\h'|\\n:u'
146. ds ? \s-2c\h'-\w'c'u*7/10'\u\h'\*(#H'\zi\d\s+2\h'\w'c'u*8/10'
147. ds ! \s-2\(or\s+2\h'-\w'\(or'u'\v'-.8m'.\v'.8m'
148. ds / \\k:\h'-(\\n(.wu*8/10-\*(#H)'\z\(sl\h'|\\n:u'
149. ds q o\h'-\w'o'u*8/10'\s-4\v'.4m'\z\(*i\v'-.4m'\s+4\h'\w'o'u*8/10'
984263bc 150.\}
e3cdf75b 151. \" troff and (daisy-wheel) nroff accents
984263bc
MD
152.ds : \\k:\h'-(\\n(.wu*8/10-\*(#H+.1m+\*(#F)'\v'-\*(#V'\z.\h'.2m+\*(#F'.\h'|\\n:u'\v'\*(#V'
153.ds 8 \h'\*(#H'\(*b\h'-\*(#H'
e3cdf75b
JR
154.ds v \\k:\h'-(\\n(.wu*9/10-\*(#H)'\v'-\*(#V'\*(#[\s-4v\s0\v'\*(#V'\h'|\\n:u'\*(#]
155.ds _ \\k:\h'-(\\n(.wu*9/10-\*(#H+(\*(#F*2/3))'\v'-.4m'\z\(hy\v'.4m'\h'|\\n:u'
156.ds . \\k:\h'-(\\n(.wu*8/10)'\v'\*(#V*4/10'\z.\v'-\*(#V*4/10'\h'|\\n:u'
157.ds 3 \*(#[\v'.2m'\s-2\&3\s0\v'-.2m'\*(#]
984263bc
MD
158.ds o \\k:\h'-(\\n(.wu+\w'\(de'u-\*(#H)/2u'\v'-.3n'\*(#[\z\(de\v'.3n'\h'|\\n:u'\*(#]
159.ds d- \h'\*(#H'\(pd\h'-\w'~'u'\v'-.25m'\f2\(hy\fP\v'.25m'\h'-\*(#H'
160.ds D- D\\k:\h'-\w'D'u'\v'-.11m'\z\(hy\v'.11m'\h'|\\n:u'
161.ds th \*(#[\v'.3m'\s+1I\s-1\v'-.3m'\h'-(\w'I'u*2/3)'\s-1o\s+1\*(#]
162.ds Th \*(#[\s+2I\s-2\h'-\w'I'u*3/5'\v'-.3m'o\v'.3m'\*(#]
163.ds ae a\h'-(\w'a'u*4/10)'e
164.ds Ae A\h'-(\w'A'u*4/10)'E
e3cdf75b
JR
165.ds oe o\h'-(\w'o'u*4/10)'e
166.ds Oe O\h'-(\w'O'u*4/10)'E
167. \" corrections for vroff
984263bc
MD
168.if v .ds ~ \\k:\h'-(\\n(.wu*9/10-\*(#H)'\s-2\u~\d\s+2\h'|\\n:u'
169.if v .ds ^ \\k:\h'-(\\n(.wu*10/11-\*(#H)'\v'-.4m'^\v'.4m'\h'|\\n:u'
e3cdf75b 170. \" for low resolution devices (crt and lpr)
984263bc
MD
171.if \n(.H>23 .if \n(.V>19 \
172\{\
e3cdf75b
JR
173. ds : e
174. ds 8 ss
175. ds v \h'-1'\o'\(aa\(ga'
176. ds _ \h'-1'^
177. ds . \h'-1'.
178. ds 3 3
179. ds o a
180. ds d- d\h'-1'\(ga
181. ds D- D\h'-1'\(hy
182. ds th \o'bp'
183. ds Th \o'LP'
184. ds ae ae
185. ds Ae AE
186. ds oe oe
187. ds Oe OE
984263bc
MD
188.\}
189.rm #[ #] #H #V #F C
984263bc 190.SH "NAME"
e3cdf75b 191genrsa \- generate an RSA private key
984263bc 192.SH "SYNOPSIS"
e3cdf75b 193\fBopenssl\fR \fBgenrsa\fR
984263bc
MD
194[\fB\-out filename\fR]
195[\fB\-passout arg\fR]
196[\fB\-des\fR]
197[\fB\-des3\fR]
198[\fB\-idea\fR]
199[\fB\-f4\fR]
200[\fB\-3\fR]
e3cdf75b 201[\fB\-rand file(s)\fR]
984263bc
MD
202[\fB\-engine id\fR]
203[\fBnumbits\fR]
204.SH "DESCRIPTION"
e3cdf75b 205The \fBgenrsa\fR command generates an RSA private key.
984263bc 206.SH "OPTIONS"
984263bc 207.Ip "\fB\-out filename\fR" 4
984263bc
MD
208the output filename. If this argument is not specified then standard output is
209used.
210.Ip "\fB\-passout arg\fR" 4
984263bc
MD
211the output file password source. For more information about the format of \fBarg\fR
212see the \fB\s-1PASS\s0 \s-1PHRASE\s0 \s-1ARGUMENTS\s0\fR section in openssl(1).
213.Ip "\fB\-des|\-des3|\-idea\fR" 4
984263bc 214These options encrypt the private key with the \s-1DES\s0, triple \s-1DES\s0, or the
e3cdf75b 215\s-1IDEA\s0 ciphers respectively before outputting it. If none of these options is
984263bc
MD
216specified no encryption is used. If encryption is used a pass phrase is prompted
217for if it is not supplied via the \fB\-passout\fR argument.
218.Ip "\fB\-F4|\-3\fR" 4
984263bc 219the public exponent to use, either 65537 or 3. The default is 65537.
e3cdf75b 220.Ip "\fB\-rand file(s)\fR" 4
984263bc
MD
221a file or files containing random data used to seed the random number
222generator, or an \s-1EGD\s0 socket (see RAND_egd(3)).
e3cdf75b
JR
223Multiple files can be specified separated by a \s-1OS\s0\-dependent character.
224The separator is \fB;\fR for \s-1MS\s0\-Windows, \fB,\fR for OpenVMS, and \fB:\fR for
984263bc
MD
225all others.
226.Ip "\fB\-engine id\fR" 4
984263bc
MD
227specifying an engine (by it's unique \fBid\fR string) will cause \fBreq\fR
228to attempt to obtain a functional reference to the specified engine,
229thus initialising it if needed. The engine will then be set as the default
230for all available algorithms.
231.Ip "\fBnumbits\fR" 4
984263bc
MD
232the size of the private key to generate in bits. This must be the last option
233specified. The default is 512.
234.SH "NOTES"
e3cdf75b 235RSA private key generation essentially involves the generation of two prime
984263bc
MD
236numbers. When generating a private key various symbols will be output to
237indicate the progress of the generation. A \fB.\fR represents each number which
238has passed an initial sieve test, \fB+\fR means a number has passed a single
239round of the Miller-Rabin primality test. A newline means that the number has
240passed all the prime tests (the actual number depends on the key size).
241.PP
242Because key generation is a random process the time taken to generate a key
243may vary somewhat.
244.SH "BUGS"
984263bc
MD
245A quirk of the prime generation algorithm is that it cannot generate small
246primes. Therefore the number of bits should not be less that 64. For typical
247private keys this will not matter because for security reasons they will
248be much larger (typically 1024 bits).
249.SH "SEE ALSO"
984263bc 250gendsa(1)
e3cdf75b
JR
251
252.rn }` ''
253.IX Title "GENRSA 1"
254.IX Name "genrsa - generate an RSA private key"
255
256.IX Header "NAME"
257
258.IX Header "SYNOPSIS"
259
260.IX Header "DESCRIPTION"
261
262.IX Header "OPTIONS"
263
264.IX Item "\fB\-out filename\fR"
265
266.IX Item "\fB\-passout arg\fR"
267
268.IX Item "\fB\-des|\-des3|\-idea\fR"
269
270.IX Item "\fB\-F4|\-3\fR"
271
272.IX Item "\fB\-rand file(s)\fR"
273
274.IX Item "\fB\-engine id\fR"
275
276.IX Item "\fBnumbits\fR"
277
278.IX Header "NOTES"
279
280.IX Header "BUGS"
281
282.IX Header "SEE ALSO"
283