File: west.sh

package info (click to toggle)
libreswan 5.2-2.3
  • links: PTS, VCS
  • area: main
  • in suites: sid
  • size: 81,644 kB
  • sloc: ansic: 129,988; sh: 32,018; xml: 20,646; python: 10,303; makefile: 3,022; javascript: 1,506; sed: 574; yacc: 511; perl: 264; awk: 52
file content (21 lines) | stat: -rwxr-xr-x 927 bytes parent folder | download | duplicates (4) 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
 
rm -rf OUTPUT/nss
mkdir OUTPUT/nss
ipsec initnss -d OUTPUT/nss
# generate first key
ipsec newhostkey --bits 2192 --seeddev /dev/urandom --nssdir OUTPUT/nss
# generate second key
ipsec newhostkey --bits 2192 --seeddev /dev/urandom  --nssdir OUTPUT/nss
# empty the database
rm -rf OUTPUT/nss
mkdir OUTPUT/nss
ipsec initnss -d OUTPUT/nss > /dev/null 2> /dev/null
# confirm reject too small keysizes and non-multiples of 16 for RSA
# min size is 2192 (lost to history why not 2048)
ipsec newhostkey --bits  512 --seeddev /dev/urandom --nssdir OUTPUT/nss
ipsec newhostkey --bits 1024 --seeddev /dev/urandom --nssdir OUTPUT/nss
ipsec newhostkey --bits 2048 --seeddev /dev/urandom --nssdir OUTPUT/nss
ipsec newhostkey --bits 2051 --seeddev /dev/urandom --nssdir OUTPUT/nss
ipsec newhostkey --bits 3192 --seeddev /dev/urandom --nssdir OUTPUT/nss
# there should be no keys
ipsec showhostkey --list --nssdir OUTPUT/nss
rm -rf OUTPUT/nss