mirror of
https://github.com/open5gs/open5gs.git
synced 2025-10-23 07:41:57 +00:00
79d46be086
o Generate the private key as below.
$ openssl genpkey -algorithm X25519 -out /etc/open5gs/hnet/curve25519-1.key
$ openssl ecparam -name prime256v1 -genkey -conv_form compressed -out /etc/open5gs/hnet/secp256r1-2.key
o The private and public keys can be viewed with the command.
The public key is used when creating the SIM.
$ openssl pkey -in /etc/open5gs/hnet/curve25519-1.key -text
$ openssl ec -in /etc/open5gs/hnet/secp256r1-2.key -conv_form compressed -text
In ausf/udm.yaml
hnet:
o Home network public key identifier(PKI) value : 1
Protection scheme identifier : ECIES scheme profile A
- id: 1
scheme: 1
key: /etc/open5gs/hnet/curve25519-1.key
o Home network public key identifier(PKI) value : 2
Protection scheme identifier : ECIES scheme profile B
- id: 2
scheme: 2
key: /etc/open5gs/hnet/secp256r1-2.key
o Home network public key identifier(PKI) value : 3
Protection scheme identifier : ECIES scheme profile A
- id: 3
scheme: 1
key: /etc/open5gs/hnet/curve25519-1.key
o Home network public key identifier(PKI) value : 4
Protection scheme identifier : ECIES scheme profile B
- id: 4
scheme: 2
key: /etc/open5gs/hnet/secp256r1-2.key
Related to #1779
24 lines
444 B
Bash
Executable File
24 lines
444 B
Bash
Executable File
#!/bin/sh
|
|
|
|
if [ $# -lt 1 -o $# -gt 2 ]
|
|
then
|
|
echo You must specify output directory : ./gen-hnkey.sh ../config/open5gs/hnet [numberOfKey]
|
|
exit;
|
|
fi
|
|
|
|
limit=3
|
|
|
|
if [ $# -eq 2 ]
|
|
then
|
|
limit=$2
|
|
fi
|
|
|
|
limit=$((limit * 2))
|
|
|
|
i=1; while [ $i -le $limit ]; do
|
|
openssl genpkey -algorithm X25519 -out $1/curve25519-$i.key
|
|
openssl ecparam -name prime256v1 -genkey -conv_form compressed -out $1/secp256r1-$(($i+1)).key
|
|
|
|
i=$(($i + 2))
|
|
done
|