[openssl-users] EDDSA certificates

Robert Moskowitz rgm at htt-consult.com
Tue Aug 8 15:25:57 UTC 2017

Ah,  thanks for the explanation Rich.

On 08/08/2017 11:19 AM, Salz, Rich via openssl-users wrote:
> We don't add features to released versions, just bug-fixes.  Ladar has posted a patch for 1.0.2 for those do-it-yourselfers who are so inclined.
> The 'master' branch, which will become 1.1.1 at some point, can do it:
> ; sh /tmp/x
> Generating a 2048 bit ED25519 private key

Wait, 2048 bit ED25519 key?????

> writing new private key to '/tmp/key.key'
> -----
> ; cat /tmp/x
> ./apps/openssl req -new -outform PEM -out /tmp/cert.crt -newkey \
>   ed25519 -nodes -keyout /tmp/key.key -keyform PEM -days \
>   3650 -x509 -extensions v3_req -subj \
>   "/C=us/O=organizationName/CN=common-name"
So I guess the question for me is will it make it into Fedora 27....


More information about the openssl-users mailing list