From 9ffe2d5b1b1467d71891a8229a863d5dd1d68e6d Mon Sep 17 00:00:00 2001
From: tianyu <xdtianyu@gmail.com>
Date: Fri, 12 Feb 2016 19:41:44 +0800
Subject: [PATCH] add ecc support

---
 lets-encrypt/letsencrypt.conf | 1 +
 lets-encrypt/letsencrypt.sh   | 6 +++++-
 2 files changed, 6 insertions(+), 1 deletion(-)

diff --git a/lets-encrypt/letsencrypt.conf b/lets-encrypt/letsencrypt.conf
index 9be9961..37d48e9 100644
--- a/lets-encrypt/letsencrypt.conf
+++ b/lets-encrypt/letsencrypt.conf
@@ -3,3 +3,4 @@ ACCOUNT_KEY="letsencrypt-account.key"
 DOMAIN_KEY="example.com.key"
 DOMAIN_DIR="/var/www/example.com"
 DOMAINS="DNS:example.com,DNS:www.example.com"
+#ECC=TRUE
diff --git a/lets-encrypt/letsencrypt.sh b/lets-encrypt/letsencrypt.sh
index e87fc7f..b6f9345 100644
--- a/lets-encrypt/letsencrypt.sh
+++ b/lets-encrypt/letsencrypt.sh
@@ -25,7 +25,11 @@ fi
 
 if [ ! -f "$DOMAIN_KEY" ];then
     echo "Generate domain key..."
-    openssl genrsa 2048 > $DOMAIN_KEY
+    if [ $ECC = "TRUE" ];then
+        openssl ecparam -genkey -name secp256r1 | openssl ec -out $DOMAIN_KEY
+    else
+        openssl genrsa 2048 > $DOMAIN_KEY
+    fi
 fi
 
 echo "Generate CSR...$DOAMIN_CSR"