OpenSSL "genpkey -pkeyopt rsa_keygen

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:2" Runs Forever

Q

What will happen if I use 2 as the public exponent to generate an RSA private key?

✍: FYIcenter.com

A

OpenSSL will run forever, if you use 2 as the public exponent to generate an RSA private key, because OpenSSL can no find any private exponent to meet the RSA requirements. See the test below:

C:\Users\fyicenter>\local\openssl\openssl
OpenSSL> genpkey -algorithm rsa -out rsa_test.key -pkeyopt rsa_keygen_bits:256 
   -pkeyopt rsa_keygen_pubexp:2

....+++++++++++++++++++++++++++*....+++++++++++++++++++++++++++*.....+++++++++++
++++++++++++++++*...+++++++++++++++++++++++++++*..+++++++++++++++++++++++++++*..
..........+++++++++++++++++++++++++++*....+++++++++++++++++++++++++++*...+++++++

.... (running forever)

What this test tells us:

OpenSSL needs to be enhanced to include logic to validate the "rsa_keygen_pubexp" parameter to prevent this happening.

⇒ OpenSSL "genpkey -des" - DES Encrypt RSA Keys

⇐ OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:1" - Bad RSA Key

⇑ OpenSSL "genpkey" Command for RSA Keys

⇑⇑ OpenSSL Tutorials

2017-09-08, ∼3273🔥, 0💬

OpenSSL "genpkey rsa_keygen_bits:256" - RSA Short Keys
How to generate a new RSA key pair with a shorter key size using OpenSSL "genpkey" command? If you need a new RSA key pair with a shorter key size for testing purpose, you can use the OpenSSL "genpkey -pkeyopt rsa_keygen_bits:nnn" command. The "-pkeyopt rsa_keygen_bits:nnn" option specifies the size... 2018-01-13, ∼4099🔥, 0💬

OpenSSL "genpkey rsa_keygen_bits:10240" - RSA Long Keys
How to generate a new RSA key pair with a longer key size using OpenSSL "genpkey" command? If you need a new RSA key pair with a longer key size for testing purpose, you can use the OpenSSL "genpkey" command as shown below: C:\Users\fyicenter>time The current time is: 18:43:27.27 C:\Users\fyi... 2018-01-13, ∼3801🔥, 0💬

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:1" - Bad RSA Key
Can I use 1 as the public exponent to generate an RSA private key? No. Using public exponent of 1 will generate identical RSA private key and public key as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL> genpkey -algorithm rsa -out rsa_test.key -pkeyopt rsa_keygen_bits:... 2018-01-06, ∼3308🔥, 0💬

OpenSSL "genpkey -pkeyopt rsa_keygen_pubexp:2" Runs Forever
What will happen if I use 2 as the public exponent to generate an RSA private key? OpenSSL will run forever, if you use 2 as the public exponent to generate an RSA private key, because OpenSSL can no find any private exponent to meet the RSA requirements. See the test below: C:\Users\fyicenter&g... 2017-09-08, ∼3274🔥, 0💬

OpenSSL "pkey" - Open Encrypted RSA Keys
How to open an encrypted RSA key file using OpenSSL "pkey" command? I was told the key file is DES encrypted and I know the password. If you are trying to open a password (encrypted) RSA key file using the "pkey" command, you will be prompted for the password as shown below: C:\Users\fyicenter&g... 2017-12-26, ∼3057🔥, 0💬

OpenSSL "pkey -aes*" - Re-Encrypt RSA Keys
How to re-encrypt an RSA key file using OpenSSL "pkey" command? I want to change the encryption password, and maybe change the encryption algorithm. If you want to encrypt an existing RSA key file again, you can use the "pkey -aes*" command as shown below: C:\Users\fyicenter>\loc al\openssl\op... 2017-09-12, ∼2651🔥, 0💬

OpenSSL "pkey -pubin" - View RSA Public Key
How to view contents of an RSA public key file using OpenSSL "pkey" command? If you want to view contents of an RSA public key stored in a file, you can use the OpenSSL "pkey -pubin" command as shown below: C:\Users\fyicenter>\loc al\openssl\openssl.exeOpenSSL> pkey -pubin -in my_rsa_p... 2018-01-13, ∼2587🔥, 0💬

OpenSSL "genpkey -des" - DES Encrypt RSA Keys
How to generate a new RSA key pair and encrypt the output with a DES password using OpenSSL "genpkey" command? If you want to secure your new RSA private key with a DES encryption, you can use the OpenSSL "genpkey -des" command as shown below: C:\Users\fyicenter>\loc al\openssl\opensslOpenSSL... 2017-12-31, ∼2525🔥, 0💬

OpenSSL "genpkey -genparam" - Generate DSA Parameters
How to generate a new DSA parameter file using OpenSSL "genpkey -genparam" command? If you need a new DSA parameter file in order to create new DSA keys, you can use the OpenSSL "genpkey -genparam" command as shown below: C:\Users\fyicenter>\loc al\openssl\openssl.exeOpenSSL> genpkey -... 2017-09-12, ∼2519🔥, 0💬

All rights in the contents of this web site are reserved by the individual author. fyicenter.com does not guarantee the truthfulness, accuracy, or reliability of any contents.