From 2f368288e13784aaeab61c1288418b5b7aea1da6 Mon Sep 17 00:00:00 2001 From: trimstray Date: Thu, 7 Feb 2019 20:09:04 +0100 Subject: [PATCH] updated openssl (with curves + ec) one-liners - signed-off-by: trimstray --- README.md | 21 +++++++++++++++------ 1 file changed, 15 insertions(+), 6 deletions(-) diff --git a/README.md b/README.md index 3f6745d..03912a2 100644 --- a/README.md +++ b/README.md @@ -1611,12 +1611,22 @@ EOF )) ``` +###### List available EC curves + +```bash +openssl ecparam -list_curves +``` + ###### Generate ECDSA private key ```bash -# _curve: X25519, prime256v1, secp521r1, secp384r1 +# _curve: prime256v1, secp521r1, secp384r1 ( _fd="private.key" ; _curve="prime256v1" ; \ openssl ecparam -out ${_fd} -name ${_curve} -genkey ) + +# _curve: X25519 +( _fd="private.key" ; _curve="x25519" ; \ +openssl genpkey -algorithm ${_curve} -out ${_fd} ) ``` ###### Print ECDSA private and public keys @@ -1624,17 +1634,16 @@ openssl ecparam -out ${_fd} -name ${_curve} -genkey ) ```bash ( _fd="private.key" ; \ openssl ec -in ${_fd} -noout -text ) -``` -###### List available EC curves - -```bash -openssl ecparam -list_curves +# For x25519 only extracting public key +( _fd="private.key" ; _fd_pub="public.key" ; \ +openssl pkey -in ${_fd} -pubout -out ${_fd_pub} ) ``` ###### Generate private key with csr (ECC) ```bash +# _curve: prime256v1, secp521r1, secp384r1 ( _fd="domain.com.key" ; _fd_csr="domain.com.csr" ; _curve="prime256v1" ; openssl ecparam -out ${_fd} -name ${_curve} -genkey ; openssl req -new -key ${_fd} -out ${_fd_csr} -sha256 ) ```