| Summary: | Can not execute “ipsec showhostkey –rsaid” | ||
|---|---|---|---|
| Product: | Red Hat Enterprise Linux 6 | Reporter: | Michael <michael_furman> |
| Component: | openswan | Assignee: | Paul Wouters <pwouters> |
| Status: | CLOSED NOTABUG | QA Contact: | BaseOS QE Security Team <qe-baseos-security> |
| Severity: | high | Docs Contact: | |
| Priority: | unspecified | ||
| Version: | 6.7 | ||
| Target Milestone: | rc | ||
| Target Release: | --- | ||
| Hardware: | Unspecified | ||
| OS: | Unspecified | ||
| Whiteboard: | |||
| Fixed In Version: | Doc Type: | Bug Fix | |
| Doc Text: | Story Points: | --- | |
| Clone Of: | Environment: | ||
| Last Closed: | 2016-05-19 14:01:54 UTC | Type: | Bug |
| Regression: | --- | Mount Type: | --- |
| Documentation: | --- | CRM: | |
| Verified Versions: | Category: | --- | |
| oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |
| Cloudforms Team: | --- | Target Upstream Version: | |
It expects a --left or --right or --ipsec operation:
root@bofh7:/home/paul# ipsec showhostkey --rsaid AQOrVMP+z
You must specify some operation
Usage: ipsec showhostkey [--ipseckey] | [--left ] | [--right ]
[--precedence <precedence> ] [--gateway <gateway>]
[--dump ] [--list ]
[--dhclient ] [--file secretfile ]
[--keynum count ] [--id identity ]
[--rsaid keyid ] [--verbose] [--version]
root@bofh7:/home/paul# ipsec showhostkey --rsaid AQOrVMP+z --left
ipsec showhostkey loading secrets from "/etc/ipsec.secrets"
ipsec showhostkey loaded private key for keyid: PPK_RSA:AwEAAbbZ3
ipsec showhostkey no secrets filename matched "/etc/ipsec.d/*.secrets"
ipsec showhostkey loaded private key for keyid: PPK_RSA:AQOrVMP+z
# rsakey AQOrVMP+z
leftrsasigkey=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
root@bofh7:/home/paul#
I guess the usage should not have [ ] around the first line. Fixing upstream
Thank you for the prompt answer! |
Description of problem: Can not execute “ipsec showhostkey –rsaid” I can list RSA keys in my NSS database using this command: ipsec showhostkey --list ipsec showhostkey nss directory showhostkey: /etc/ipsec.d 1(1): RSA keyid: AQPAhum5U with id: (none) 1(2): RSA keyid: AQPAhum5U with id: (none) But when I try to execute `ipsec showhostkey –rsaid` it fail with `You must specify some operation`: ipsec showhostkey --rsaid AQPAhum5U You must specify some operation Usage: ipsec showhostkey [--ipseckey {gateway}] [--left ] [--right ] [--dump ] [--list ] [--x509self] [--x509req ] [--x509cert ] [ --txt gateway ] [--dhclient ] [ --file secretfile ] [ --keynum count ] [ --id identity ] [ --rsaid keyid ] [--verbose] [--version] What is interesting that without the argument it fails with correct error `option '--rsaid' requires an argument` ipsec showhostkey --rsaid /usr/libexec/ipsec/showhostkey: option '--rsaid' requires an argument Usage: ipsec showhostkey [--ipseckey {gateway}] [--left ] [--right ] [--dump ] [--list ] [--x509self] [--x509req ] [--x509cert ] [ --txt gateway ] [--dhclient ] [ --file secretfile ] [ --keynum count ] [ --id identity ] [ --rsaid keyid ] [--verbose] [--version] Version-Release number of selected component (if applicable): openswan-2.6.32-37.el6.x86_64 How reproducible: Steps to Reproduce: 1. Execute "openswan-2.6.32-37.el6.x86_64" 2. 3. Actual results: Error "You must specify some operation" Expected results: RSA key is printed Additional info: