projects / openiked-portable / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Document 'request' option to request additional configuration payloads.
[openiked-portable] / files / iked.in
diff --git a/files/iked.in b/files/iked.in
index d9a4bac2ae2dcc95d10536501e42061e4bb87b37..850c4428770789b83f46babe9b006a100f4ea751 100644 (file)
--- a/files/iked.in
+++ b/files/iked.in
@@ -52,10 +52,9 @@ iked_precmd()
        else
                # Create a key pair if not already present.
                if test ! -f $iked_privkey; then
-                       /usr/bin/openssl genrsa -out $iked_privkey 2048
-                       /bin/chmod 600 $iked_privkey
-                       /usr/bin/openssl rsa -out $iked_pubkey \
-                           -in $iked_privkey -pubout
+                       /usr/bin/openssl ecparam -genkey -name prime256v1 -noout -out "$iked_privkey"
+                       /bin/chmod 600 "$iked_privkey"
+                       /usr/bin/openssl ec -in "$iked_privkey" -pubout -out "$iked_pubkey"
                fi
        fi
 
Port openiked-portable to FreeBSD