[mbed-tls] mbedtls_ecp_gen_key vs mbedtls_ecdsa_genkey

12 Apr 2024


      Hey All,
I am trying to generate ECDSA public-private key pair for self-signed
certificate, and came across these examples
In gen_key.c
https://github.com/Mbed-TLS/mbedtls/blob/bee96566dac936e7fdfa7aa18b6a1f67676afe0b/programs/pkey/gen_key.c#L388C15-L388C34,
"mbedtls_ecp_gen_key()" is used
In ecdsa.c
https://github.com/Mbed-TLS/mbedtls/blob/bee96566dac936e7fdfa7aa18b6a1f67676afe0b/programs/pkey/ecdsa.c#L127,
"mbedtls_ecdsa_genkey()" is used.
My questions are:
- Which function should be used? (It seems  mbedtls_ecdsa_genkey() is
   just a wrapper of  mbedtls_ecp_gen_key()?)
   - If using  mbedtls_ecdsa_genkey(), what are the steps to write the
   public key into PEM format? (My understanding is that I define a
   mbedtls_pk_context, and convert its address into mbedtls_ecdsa_context *,
   and pass the pointer into  mbedtls_ecdsa_genkey, and then call
   mbedtls_ecdsa_genkey(), is this correct?)
Thanks,
Tom

2024

2023

2022

2021

2020

[mbed-tls] mbedtls_ecp_gen_key vs mbedtls_ecdsa_genkey