Lines Matching refs:alg
37 alg="$1"
43 $KEYFRLAB $ENGINE_ARG -K $dir -a $alg -y -l "pkcs11:token=softhsm2-enginepkcs11;object=${id}-${zone};pin-source=$PWD/ns1/pin" "$@" $zone >>keyfromlabel.out.$zone.$id 2>keyfromlabel.err.$zone.$id || return 1
54 alg=$(echo "$algtypebits" | cut -f 1 -d :)
57 alg_upper=$(echo "$alg" | tr '[:lower:]' '[:upper:]')
62 zone="$alg.$tld"
63 zonefile="zone.$alg.$tld.db"
66 echo_i "Generate keys $alg $type:$bits for zone $zone"
71 echo_i "Get ZSK $alg $zone $type:$bits"
72 zsk1=$(keyfromlabel $alg $zone enginepkcs11-zsk $dir)
75 echo_i "Get KSK $alg $zone $type:$bits"
76 ksk1=$(keyfromlabel $alg $zone enginepkcs11-ksk $dir -f KSK)
92 echo_i "Generate successor keys $alg $type:$bits for zone $zone"
97 echo_i "Get ZSK $alg $id-$zone $type:$bits"
98 zsk2=$(keyfromlabel $alg $zone enginepkcs11-zsk2 $dir)
101 echo_i "Get KSK $alg $id-$zone $type:$bits"
102 ksk2=$(keyfromlabel $alg $zone enginepkcs11-ksk2 $dir -f KSK)
115 echo_i "Add zone $alg.kasp to named.conf"
116 cp $infile ${dir}/zone.${alg}.kasp.db
118 echo_i "Add zone $alg.split to named.conf"
119 cp $infile ${dir}/zone.${alg}.split.db
122 cp $infile ${dir}/zone.${alg}.weird.db
132 dnssec-policy "$alg" {
134 ksk key-store "hsm" lifetime unlimited algorithm ${alg};
135 zsk key-store "pin" lifetime unlimited algorithm ${alg};
139 zone "${alg}.kasp" {
141 file "zone.${alg}.kasp.db";
142 dnssec-policy "$alg";
146 dnssec-policy "weird-${alg}-\"\:\;\?\&\[\]\@\!\$\*\+\,\|\=\.\(\)" {
148 ksk key-store "hsm" lifetime unlimited algorithm ${alg};
149 zsk key-store "pin" lifetime unlimited algorithm ${alg};
153 zone "${alg}.\"\:\;\?\&\[\]\@\!\$\*\+\,\|\=\.\(\)foo.weird" {
155 file "zone.${alg}.weird.db";
157 dnssec-policy "weird-${alg}-\"\:\;\?\&\[\]\@\!\$\*\+\,\|\=\.\(\)";
161 dnssec-policy "${alg}-split" {
163 ksk key-store "hsm" lifetime unlimited algorithm ${alg};
164 zsk key-store "disk" lifetime unlimited algorithm ${alg};
168 zone "${alg}.split" {
170 file "zone.${alg}.split.db";
171 dnssec-policy "${alg}-split";
184 alg=$(echo "$algtypebits" | cut -f 1 -d :)
187 alg_upper=$(echo "$alg" | tr '[:lower:]' '[:upper:]')
192 zone="$alg.$tld"
193 zonefile1="zone.$alg.$tld.view1.db"
194 zonefile2="zone.$alg.$tld.view2.db"
197 echo_i "Generate keys $alg $type:$bits for zone $zone"
202 echo_i "Get ZSK $alg $zone $type:$bits"
203 zsk1=$(keyfromlabel $alg $zone enginepkcs11-zsk $dir)
206 echo_i "Get KSK $alg $zone $type:$bits"
207 ksk1=$(keyfromlabel $alg $zone enginepkcs11-ksk $dir -f KSK)
227 echo_i "Generate successor keys $alg $type:$bits for zone $zone"
232 echo_i "Get ZSK $alg $id-$zone $type:$bits"
233 zsk2=$(keyfromlabel $alg $zone enginepkcs11-zsk2 $dir)
236 echo_i "Get KSK $alg $id-$zone $type:$bits"
237 ksk2=$(keyfromlabel $alg $zone enginepkcs11-ksk2 $dir -f KSK)
250 echo_i "Add zone $alg.same-policy.$tld to named.conf"
251 cp $infile ${dir}/zone.${alg}.same-policy.view1.db
252 cp $infile ${dir}/zone.${alg}.same-policy.view2.db
260 dnssec-policy "$alg" {
262 csk key-store "hsm" lifetime unlimited algorithm ${alg};
281 zone "${alg}.same-policy.${tld}" {
283 file "zone.${alg}.same-policy.view1.db";
284 dnssec-policy "$alg";
291 dnssec-policy "$alg";
305 zone "${alg}.same-policy.${tld}" {
307 file "zone.${alg}.same-policy.view2.db";
308 dnssec-policy "$alg";
Indexes created Sun Mar 01 05:31:48 UTC 2026