Fantastic, having it in the CLI would great. It is for the reason of users losing the pub key that I ask, writing some docs for an internal network. Ah interesting, I finally found openssl does not have the 25519 curve in there(and no plans to do so looks like) but I was not aware there was non standard priv key format either.<div><br>Would it make sense for the</div><div><span style="line-height:19.7999992370605px"><br></span></div><div><span style="line-height:19.7999992370605px">tinc -n <netname> get Ed25519PublicKey</span></div><div><span style="line-height:19.7999992370605px"><br></span></div><div><span style="line-height:19.7999992370605px">To have some logic to derive the pub key it if it's not already in the hosts file? Just to avoid adding another command to the tinc CLI.</span></div><div><span style="line-height:19.7999992370605px"><br></span><div class="gmail_quote">On Wed Jan 14 2015 at 2:00:47 PM Guus Sliepen <<a href="mailto:guus@tinc-vpn.org">guus@tinc-vpn.org</a>> wrote:<br><blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">On Wed, Jan 14, 2015 at 12:28:00PM +0000, Martin wrote:<br>
<br>
> Is there any way to obtain the public key from the private key?<br>
> I know it's in host file however for the purpose of this message I need to<br>
> be able to generate it on the command line.<br>
> I tried<br>
><br>
> openssl ec < ed25519_key.priv<br>
><br>
> I get an error<br>
><br>
> read EC key<br>
> unable to load Key<br>
> 140092556813984:error:<u></u>0906D06C:PEM routines:PEM_read_bio:no start<br>
> line:pem_lib.c:703:Expecting: ANY PRIVATE KEY<br>
<br>
Ed25519 keys are not supported by OpenSSL, and are generated completely<br>
by tinc itself. The format of ed25519_key.priv is also not a standard<br>
format. The public key can be extracted from it though, I'll add an<br>
option to the tinc CLI to do this, just in case someone accidentily<br>
deletes the public key. However, you can already use the CLI to extract<br>
your own public key:<br>
<br>
tinc -n <netname> get Ed25519PublicKey<br>
<br>
--<br>
Met vriendelijke groet / with kind regards,<br>
Guus Sliepen <<a href="mailto:guus@tinc-vpn.org" target="_blank">guus@tinc-vpn.org</a>><br>
______________________________<u></u>_________________<br>
tinc mailing list<br>
<a href="mailto:tinc@tinc-vpn.org" target="_blank">tinc@tinc-vpn.org</a><br>
<a href="http://www.tinc-vpn.org/cgi-bin/mailman/listinfo/tinc" target="_blank">http://www.tinc-vpn.org/cgi-<u></u>bin/mailman/listinfo/tinc</a><br>
</blockquote></div></div>