[thirdparty/openssl.git] / doc / man / dh.pod

=pod

=head1 NAME

dh - DH parameter manipulation and generation

=head1 SYNOPSIS

B<openssl dh>
[B<-inform DER|PEM>]
[B<-outform DER|PEM>]
[B<-in filename>]
[B<-out filename>]
[B<-noout>]
[B<-text>]
[B<-C>]

=head1 DESCRIPTION

This command is used to manipulate DH parameter files.

=head1 OPTIONS

=over 4

=item B<-inform DER|PEM>

This specifies the input format. The B<DER> option uses an ASN1 DER encoded
form compatible with the PKCS#3 DHparameter structure. The PEM form is the
default format: it consists of the B<DER> format base64 encoded with
additional header and footer lines.

=item B<-outform DER|PEM>

This specifies the output format, the options have the same meaning as the 
B<-inform> option.

=item B<-in filename>

This specifies the input filename to read parameters from or standard input if
this option is not specified.

=item B<-out filename>

This specifies the output filename parameters to. Standard output is used
if this option is not present. The output filename should B<not> be the same
as the input filename.

=item B<-noout>

this option inhibits the output of the encoded version of the parameters.

=item B<-text>

this option prints out the DH parameters in human readable form.

=item B<-C>

this option converts the parameters into C code. The parameters can then
be loaded by calling the B<get_dhXXX()> function.

=back

=head1 NOTES

PEM format DH parameters use the header and footer lines:

 -----BEGIN DH PARAMETERS-----
 -----END DH PARAMETERS-----

OpenSSL currently only supports the older PKCS#3 DH, not the newer X9.42
DH.

This program manipulates DH parameters not keys.

=head1 BUGS

This program is badly named: the B<rsa> and B<dsa> programs manipulate keys
and not parameters.

There should be a way to generate and manipulate DH keys.

=head1 SEE ALSO

dsaparam(1)

=cut
Commit	Line	Data
ef7eaa4c DSH	1	=pod
	2
	3	=head1 NAME
	4
	5	dh - DH parameter manipulation and generation
	6
	7	=head1 SYNOPSIS
	8
	9	B<openssl dh>
	10	[B<-inform DER\|PEM>]
	11	[B<-outform DER\|PEM>]
	12	[B<-in filename>]
	13	[B<-out filename>]
	14	[B<-noout>]
	15	[B<-text>]
	16	[B<-C>]
	17
	18	=head1 DESCRIPTION
	19
	20	This command is used to manipulate DH parameter files.
	21
	22	=head1 OPTIONS
	23
	24	=over 4
	25
	26	=item B<-inform DER\|PEM>
	27
	28	This specifies the input format. The B<DER> option uses an ASN1 DER encoded
	29	form compatible with the PKCS#3 DHparameter structure. The PEM form is the
	30	default format: it consists of the B<DER> format base64 encoded with
	31	additional header and footer lines.
	32
	33	=item B<-outform DER\|PEM>
	34
	35	This specifies the output format, the options have the same meaning as the
	36	B<-inform> option.
	37
	38	=item B<-in filename>
	39
	40	This specifies the input filename to read parameters from or standard input if
	41	this option is not specified.
	42
	43	=item B<-out filename>
	44
	45	This specifies the output filename parameters to. Standard output is used
	46	if this option is not present. The output filename should B<not> be the same
	47	as the input filename.
	48
	49	=item B<-noout>
	50
	51	this option inhibits the output of the encoded version of the parameters.
	52
	53	=item B<-text>
	54
	55	this option prints out the DH parameters in human readable form.
	56
	57	=item B<-C>
	58
	59	this option converts the parameters into C code. The parameters can then
	60	be loaded by calling the B<get_dhXXX()> function.
	61
	62	=back
	63
	64	=head1 NOTES
65
66	PEM format DH parameters use the header and footer lines:
67
68	-----BEGIN DH PARAMETERS-----
69	-----END DH PARAMETERS-----
70
71	OpenSSL currently only supports the older PKCS#3 DH, not the newer X9.42
72	DH.
73
74	This program manipulates DH parameters not keys.
75
76	=head1 BUGS
77
78	This program is badly named: the B<rsa> and B<dsa> programs manipulate keys
79	and not parameters.
80
81	There should be a way to generate and manipulate DH keys.
82
83	=head1 SEE ALSO
84
85	dsaparam(1)
86
87	=cut