From 8b07793aa62837aeced69901a378d91e82869d46 Mon Sep 17 00:00:00 2001
From: Mat <mtausig@users.noreply.github.com>
Date: Wed, 28 Oct 2020 15:54:16 +0100
Subject: [PATCH] openssl-dgst, openssl-genpkey: add page (#4879)

---
 pages/common/openssl-dgst.md    | 24 ++++++++++++++++++++++++
 pages/common/openssl-genpkey.md | 16 ++++++++++++++++
 2 files changed, 40 insertions(+)
 create mode 100644 pages/common/openssl-dgst.md
 create mode 100644 pages/common/openssl-genpkey.md

diff --git a/pages/common/openssl-dgst.md b/pages/common/openssl-dgst.md
new file mode 100644
index 0000000000..ffb9faf352
--- /dev/null
+++ b/pages/common/openssl-dgst.md
@@ -0,0 +1,24 @@
+# openssl dgst
+
+> OpenSSL command to generate digest values and perform signature operations.
+> More information: <https://www.openssl.org/docs/manmaster/man1/openssl-dgst.html>.
+
+- Calculate the SHA256 digest for a file, saving the result to a specific file:
+
+`openssl dgst -sha256 -binary -out {{output_file}} {{input_file}}`
+
+- Sign a file using an RSA key, saving the result to a specific file:
+
+`openssl dgst -sign {{private_key_file}} -sha256 -sigopt rsa_padding_mode:pss -out {{output_file}} {{input_file}}`
+
+- Verify an RSA signature:
+
+`openssl dgst -verify {{public_key_file}} -signature {{signature_file}} -sigopt rsa_padding_mode:pss {{signature_message_file}}`
+
+- Sign a file using and ECDSA key:
+
+`openssl dgst -sign {{private_key_file}} -sha256 -out {{output_file}} {{input_file}}`
+
+- Verify an ECDSA signature:
+
+`openssl dgst -verify {{public_key_file}} -signature {{signature_file}} {{signature_message_file}}`
diff --git a/pages/common/openssl-genpkey.md b/pages/common/openssl-genpkey.md
new file mode 100644
index 0000000000..b0623afaba
--- /dev/null
+++ b/pages/common/openssl-genpkey.md
@@ -0,0 +1,16 @@
+# openssl genpkey
+
+> OpenSSL command to generate asymmetric key pairs.
+> More information: <https://www.openssl.org/docs/manmaster/man1/openssl-genpkey.html>.
+
+- Generate an RSA private key of 2048 bits, saving it to a specific file:
+
+`openssl genpkey -algorithm rsa -pkeyopt rsa_keygen_bits:{{2048}} -out {{filename.key}}`
+
+- Generate an elliptic curve private key using the curve `prime256v1`, saving it to a specific file:
+
+`openssl genpkey -algorithm EC -pkeyopt ec_paramgen_curve:{{prime256v1}} -out {{filename.key}}`
+
+- Generate an `ED25519` elliptic curve private key, saving it to a specific file:
+
+`openssl genpkey -algorithm {{ED25519}} -out {{filename.key}}`