mirror of
https://github.com/open5gs/open5gs.git
synced 2026-05-05 15:24:14 +00:00
79d46be086
o Generate the private key as below.
$ openssl genpkey -algorithm X25519 -out /etc/open5gs/hnet/curve25519-1.key
$ openssl ecparam -name prime256v1 -genkey -conv_form compressed -out /etc/open5gs/hnet/secp256r1-2.key
o The private and public keys can be viewed with the command.
The public key is used when creating the SIM.
$ openssl pkey -in /etc/open5gs/hnet/curve25519-1.key -text
$ openssl ec -in /etc/open5gs/hnet/secp256r1-2.key -conv_form compressed -text
In ausf/udm.yaml
hnet:
o Home network public key identifier(PKI) value : 1
Protection scheme identifier : ECIES scheme profile A
- id: 1
scheme: 1
key: /etc/open5gs/hnet/curve25519-1.key
o Home network public key identifier(PKI) value : 2
Protection scheme identifier : ECIES scheme profile B
- id: 2
scheme: 2
key: /etc/open5gs/hnet/secp256r1-2.key
o Home network public key identifier(PKI) value : 3
Protection scheme identifier : ECIES scheme profile A
- id: 3
scheme: 1
key: /etc/open5gs/hnet/curve25519-1.key
o Home network public key identifier(PKI) value : 4
Protection scheme identifier : ECIES scheme profile B
- id: 4
scheme: 2
key: /etc/open5gs/hnet/secp256r1-2.key
Related to #1779
91 lines
2.4 KiB
C
91 lines
2.4 KiB
C
/*
|
|
* Copyright (C) 2019 by Sukchan Lee <acetcom@gmail.com>
|
|
*
|
|
* This file is part of Open5GS.
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as published by
|
|
* the Free Software Foundation, either version 3 of the License, or
|
|
* (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU General Public License
|
|
* along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
#include "ogs-core.h"
|
|
#include "ogs-crypt.h"
|
|
#include "core/abts.h"
|
|
|
|
abts_suite *test_aes(abts_suite *suite);
|
|
abts_suite *test_sha(abts_suite *suite);
|
|
abts_suite *test_base64(abts_suite *suite);
|
|
abts_suite *test_ecies(abts_suite *suite);
|
|
|
|
const struct testlist {
|
|
abts_suite *(*func)(abts_suite *suite);
|
|
} alltests[] = {
|
|
{test_aes},
|
|
{test_sha},
|
|
{test_base64},
|
|
{test_ecies},
|
|
{NULL},
|
|
};
|
|
|
|
static void terminate(void)
|
|
{
|
|
ogs_pkbuf_default_destroy();
|
|
ogs_core_terminate();
|
|
}
|
|
|
|
int main(int argc, const char *const argv[])
|
|
{
|
|
int rv, i, opt;
|
|
ogs_getopt_t options;
|
|
struct {
|
|
char *log_level;
|
|
char *domain_mask;
|
|
} optarg;
|
|
const char *argv_out[argc+2]; /* '-e error' is always added */
|
|
|
|
abts_suite *suite = NULL;
|
|
ogs_pkbuf_config_t config;
|
|
|
|
rv = abts_main(argc, argv, argv_out);
|
|
if (rv != OGS_OK) return rv;
|
|
|
|
memset(&optarg, 0, sizeof(optarg));
|
|
ogs_getopt_init(&options, (char**)argv_out);
|
|
|
|
while ((opt = ogs_getopt(&options, "e:m:")) != -1) {
|
|
switch (opt) {
|
|
case 'e':
|
|
optarg.log_level = options.optarg;
|
|
break;
|
|
case 'm':
|
|
optarg.domain_mask = options.optarg;
|
|
break;
|
|
case '?':
|
|
default:
|
|
fprintf(stderr, "%s: should not be reached\n", OGS_FUNC);
|
|
return OGS_ERROR;
|
|
}
|
|
}
|
|
|
|
ogs_core_initialize();
|
|
ogs_pkbuf_default_init(&config);
|
|
ogs_pkbuf_default_create(&config);
|
|
atexit(terminate);
|
|
|
|
rv = ogs_log_config_domain(optarg.domain_mask, optarg.log_level);
|
|
if (rv != OGS_OK) return rv;
|
|
|
|
for (i = 0; alltests[i].func; i++)
|
|
suite = alltests[i].func(suite);
|
|
|
|
return abts_report(suite);
|
|
}
|