keygen.sh 1.55 KB
Newer Older
1 2
#!/bin/sh -e
#
3
# Copyright (C) Internet Systems Consortium, Inc. ("ISC")
Mark Andrews's avatar
Mark Andrews committed
4
#
5 6 7
# This Source Code Form is subject to the terms of the Mozilla Public
# License, v. 2.0. If a copy of the MPL was not distributed with this
# file, You can obtain one at http://mozilla.org/MPL/2.0/.
8 9 10
#
# See the COPYRIGHT file distributed with this work for additional
# information regarding copyright ownership.
11

12
. ../../conf.sh
13 14 15 16 17

zone=.
zonefile=root.db
infile=root.db.in

18
(cd ../ns2 && $SHELL keygen.sh )
19

20
cat $infile ../ns2/dsset-example$TP > $zonefile
21

22 23 24 25 26 27 28 29
zskact=`$KEYGEN -3 -a RSASHA1 -q $zone`
zskvanish=`$KEYGEN -3 -a RSASHA1 -q $zone`
zskdel=`$KEYGEN -3 -a RSASHA1 -q -D now $zone`
zskinact=`$KEYGEN -3 -a RSASHA1 -q -I now $zone`
zskunpub=`$KEYGEN -3 -a RSASHA1 -q -G $zone`
zsksby=`$KEYGEN -3 -a RSASHA1 -q -A none $zone`
zskactnowpub1d=`$KEYGEN -3 -a RSASHA1 -q -A now -P +1d $zone`
zsknopriv=`$KEYGEN -3 -a RSASHA1 -q $zone`
30
rm $zsknopriv.private
31

32 33
ksksby=`$KEYGEN -3 -a RSASHA1 -q -P now -A now+15s -fk $zone`
kskrev=`$KEYGEN -3 -a RSASHA1 -q -R now+15s -fk $zone`
34

35
keyfile_to_static_ds $ksksby > trusted.conf
36 37 38 39
cp trusted.conf ../ns2/trusted.conf
cp trusted.conf ../ns3/trusted.conf
cp trusted.conf ../ns4/trusted.conf

40
keyfile_to_static_ds $kskrev > trusted.conf
41 42
cp trusted.conf ../ns5/trusted.conf

43 44
echo $zskact > ../active.key
echo $zskvanish > ../vanishing.key
45 46 47
echo $zskdel > ../del.key
echo $zskinact > ../inact.key
echo $zskunpub > ../unpub.key
48
echo $zsknopriv > ../nopriv.key
49
echo $zsksby > ../standby.key
50
echo $zskactnowpub1d > ../activate-now-publish-1day.key
51
$REVOKE -R $kskrev > ../rev.key