From db5d5ee2943e0998550771a09fca9e461f5bfac2 Mon Sep 17 00:00:00 2001 From: iTrooz Date: Fri, 4 Jul 2025 14:54:36 +0200 Subject: [PATCH] pkcs11-tool: add page (#17060) * pkcs11-tool: add page * add colons * fix * use long arguments * fix * Apply suggestions from code review Co-authored-by: Managor <42655600+Managor@users.noreply.github.com> * Apply suggestions from code review Co-authored-by: Wiktor Perskawiec * Update pages/common/pkcs11-tool.md Co-authored-by: Wiktor Perskawiec * update * Update pages/common/pkcs11-tool.md --------- Co-authored-by: Managor <42655600+Managor@users.noreply.github.com> Co-authored-by: Wiktor Perskawiec --- pages/common/pkcs11-tool.md | 20 ++++++++++++++++++++ 1 file changed, 20 insertions(+) create mode 100644 pages/common/pkcs11-tool.md diff --git a/pages/common/pkcs11-tool.md b/pages/common/pkcs11-tool.md new file mode 100644 index 0000000000..4eae1aad0c --- /dev/null +++ b/pages/common/pkcs11-tool.md @@ -0,0 +1,20 @@ +# pkcs11-tool + +> Utility for managing and using PKCS #11 security tokens. +> More information: . + +- List slots and their potential token, using a specific module (e.g. `/usr/lib/softhsm/libsofthsm2.so`): + +`pkcs11-tool --module {{path/to/module.so}} {{[-L|--list-slots]}} {{[-T|--list-token-slots]}}` + +- List objects in a specific slot. (Note: `slot_id` is not the slot index shown as "Slot X"): + +`pkcs11-tool {{[-O|--list-objects]}} {{[-p|--pin]}} {{auth_pin}} --slot {{slot_id}}` + +- Create a new object with a specific label and type: + +`pkcs11-tool --slot {{slot_id}} {{[-p|--pin]}} {{auth_pin}} {{[-y|--type]}} {{cert|privkey|pubkey|secrkey|data|...}} {{[-a|--label]}} "{{label}}" {{[-d|--id]}} {{01}} {{[-w|--write-object]}} {{path/to/cert.crt}}` + +- Delete an object by its label and type: + +`pkcs11-tool --slot {{slot_id}} {{[-p|--pin]}} {{auth_pin}} {{[-y|--type]}} {{cert|privkey|pubkey|secrkey|data|...}} {{[-a|--label]}} "{{label}}" {{[-b|--delete-object]}}`