From 163ede12c108878e81ad8ceb81e01ca83354ba65 Mon Sep 17 00:00:00 2001
From: Susanne Westphal <swestphal@google.com>
Date: Thu, 18 Apr 2024 14:07:18 +0000
Subject: [PATCH] use RSA for executable signing keys

---
 .../advanced-usecases/sandbox/createConfig.sh                 | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh b/installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh
index 919fcd1..b55d516 100755
--- a/installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh
+++ b/installing-and-running-grr/advanced-usecases/sandbox/createConfig.sh
@@ -6,8 +6,8 @@ openssl ecparam -list_curves
 
 # Generate key pair .pem files, which is linked in the GRR client and 
 # server configs (client.yaml, server.local.yaml).
-openssl ecparam -name prime256v1 -genkey -noout -out config/private-key.pem
-openssl ec -in config/private-key.pem -pubout -out config/public-key.pem
+openssl genrsa -out config/private-key.pem
+openssl rsa -in config/private-key.pem -pubout -out config/public-key.pem
 
 # Create a CA/trusted private key and cert for Fleetspeak.
 openssl ecparam -name prime256v1 -genkey -noout \