Hide Forgot
Description of problem: Can not execute “ipsec showhostkey –rsaid” I can list RSA keys in my NSS database using this command: ipsec showhostkey --list ipsec showhostkey nss directory showhostkey: /etc/ipsec.d 1(1): RSA keyid: AQPAhum5U with id: (none) 1(2): RSA keyid: AQPAhum5U with id: (none) But when I try to execute `ipsec showhostkey –rsaid` it fail with `You must specify some operation`: ipsec showhostkey --rsaid AQPAhum5U You must specify some operation Usage: ipsec showhostkey [--ipseckey {gateway}] [--left ] [--right ] [--dump ] [--list ] [--x509self] [--x509req ] [--x509cert ] [ --txt gateway ] [--dhclient ] [ --file secretfile ] [ --keynum count ] [ --id identity ] [ --rsaid keyid ] [--verbose] [--version] What is interesting that without the argument it fails with correct error `option '--rsaid' requires an argument` ipsec showhostkey --rsaid /usr/libexec/ipsec/showhostkey: option '--rsaid' requires an argument Usage: ipsec showhostkey [--ipseckey {gateway}] [--left ] [--right ] [--dump ] [--list ] [--x509self] [--x509req ] [--x509cert ] [ --txt gateway ] [--dhclient ] [ --file secretfile ] [ --keynum count ] [ --id identity ] [ --rsaid keyid ] [--verbose] [--version] Version-Release number of selected component (if applicable): openswan-2.6.32-37.el6.x86_64 How reproducible: Steps to Reproduce: 1. Execute "openswan-2.6.32-37.el6.x86_64" 2. 3. Actual results: Error "You must specify some operation" Expected results: RSA key is printed Additional info:
It expects a --left or --right or --ipsec operation: root@bofh7:/home/paul# ipsec showhostkey --rsaid AQOrVMP+z You must specify some operation Usage: ipsec showhostkey [--ipseckey] | [--left ] | [--right ] [--precedence <precedence> ] [--gateway <gateway>] [--dump ] [--list ] [--dhclient ] [--file secretfile ] [--keynum count ] [--id identity ] [--rsaid keyid ] [--verbose] [--version] root@bofh7:/home/paul# ipsec showhostkey --rsaid AQOrVMP+z --left ipsec showhostkey loading secrets from "/etc/ipsec.secrets" ipsec showhostkey loaded private key for keyid: PPK_RSA:AwEAAbbZ3 ipsec showhostkey no secrets filename matched "/etc/ipsec.d/*.secrets" ipsec showhostkey loaded private key for keyid: PPK_RSA:AQOrVMP+z # rsakey AQOrVMP+z leftrsasigkey=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 root@bofh7:/home/paul# I guess the usage should not have [ ] around the first line. Fixing upstream
Thank you for the prompt answer!