OpenSSL - OpenSSL "genpkey -pkeyopt rsa_keygen

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:2" Runs Forever

Q

What will happen if I use 2 as the public exponent to generate an RSA private key?

✍: FYIcenter.com

A

OpenSSL will run forever, if you use 2 as the public exponent to generate an RSA private key, because OpenSSL can no find any private exponent to meet the RSA requirements. See the test below:

C:\Users\fyicenter>\local\openssl\openssl
OpenSSL> genpkey -algorithm rsa -out rsa_test.key -pkeyopt rsa_keygen_bits:256 
   -pkeyopt rsa_keygen_pubexp:2

....+++++++++++++++++++++++++++*....+++++++++++++++++++++++++++*.....+++++++++++
++++++++++++++++*...+++++++++++++++++++++++++++*..+++++++++++++++++++++++++++*..
..........+++++++++++++++++++++++++++*....+++++++++++++++++++++++++++*...+++++++

.... (running forever)

What this test tells us:

OpenSSL needs to be enhanced to include logic to validate the "rsa_keygen_pubexp" parameter to prevent this happening.

⇒ OpenSSL "genpkey -des" - DES Encrypt RSA Keys

⇐ OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:1" - Bad RSA Key

⇑ OpenSSL "genpkey" Command for RSA Keys

⇑⇑ OpenSSL Tutorials

2017-09-08, 1502👍, 0💬

OpenSSL "pkey" - Open Encrypted RSA Keys
How to open an encrypted RSA key file using OpenSSL "pkey" command? I was told the key file is DES encrypted and I know the password. If you are trying to open a password (encrypted) RSA key file using the "pkey" command, you will be prompted for the password as shown below: C:\Users\fyicenter&g... 2017-12-26, 1667👍, 0💬

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:2" Runs Forever
What will happen if I use 2 as the public exponent to generate an RSA private key? OpenSSL will run forever, if you use 2 as the public exponent to generate an RSA private key, because OpenSSL can no find any private exponent to meet the RSA requirements. See the test below: C:\Users\fyicenter&g... 2017-09-08, 1503👍, 0💬

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:1" - Bad RSA Key
Can I use 1 as the public exponent to generate an RSA private key? No. Using public exponent of 1 will generate identical RSA private key and public key as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL> genpkey -algorithm rsa -out rsa_test.key -pkeyopt rsa_keygen_bits:... 2018-01-06, 1457👍, 0💬

OpenSSL "genpkey -des" - DES Encrypt RSA Keys
How to generate a new RSA key pair and encrypt the output with a DES password using OpenSSL "genpkey" command? If you want to secure your new RSA private key with a DES encryption, you can use the OpenSSL "genpkey -des" command as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL... 2017-12-31, 979👍, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.