Login or Register to Ask a Question and Join Our Community

Linux and UNIX Man Pages

Linux & Unix Commands - Search Man Pages

tpmtoken_import(1) [centos man page]

tpmtoken_import(1)					      General Commands Manual						tpmtoken_import(1)

							 TPM Management - tpmtoken_import

NAME

       tpmtoken_import - import an X.509 certficate and/or an RSA key pair into the user's TPM PKCS#11 data store

SYNOPSIS

       tpmtoken_import [ OPTION ] FILE

DESCRIPTION

       tpmtoken_import imports a PEM formatted representation of an X.509 certificate and/or an RSA key contained in FILE.

       Importing an X.509 certificate creates an X.509 Public Key Certificate PKCS#11 object and also an RSA Public Key PKCS#11 object using the
       RSA public key contained in the certificate.  The certificate's key must be an RSA key in order for the certificate to be successfully
       processed by this command.

       Importing an RSA key creates an RSA Public Key and an RSA Private Key PKCS#11 object.  In order to associate the RSA PKCS#11 objects with
       an X.509 Public Key Certificate PKCS#11 object, the RSA PKCS#11 objects must have a subject name and key identifier associated with them.
       This can be accomplished by supplying the corresponding X.509 certificate as an optional command parameter.

       The input can contain PEM formatted representations of both an X.509 certificate and an RSA key. If both representations are present then
       an X.509 Public Key Certificate PKCS#11 object, an RSA Public Key PKCS#11 object and an RSA Private Key PKCS#11 object are created.

       -h, --help
	      Display command usage info.

       -v, --version
	      Display command version info.

       -l, --log [none|error|info|debug]
	      Set logging level.

       -i, --idfile FILE
	      Use FILE as the PEM formatted X.509 certificate input used to obtain the subject and id attributes

       -k, --token STRING
	      Use STRING to identify the label of the PKCS#11 token to be used

       -n, --name STRING
	      Use STRING as the label for the imported object(s)

       -p, --public
	      Import the object(s) as a public object

       -t, --type key|cert
	      Import only the specified object type

       -y, --yes
	      Assume an answer of yes for any confirmation prompts that would normally be asked

SEE ALSO

       tpmtoken_init(1), tpmtoken_setpasswd(1), tpmtoken_objects(1), tpmtoken_protect(1)

REPORTING BUGS

       Report bugs to <trousers-users@lists.sourceforge.net>

TPM Management							    2005-04-25							tpmtoken_import(1)

Check Out this Related Man Page

d2i_RSAPublicKey(3)						      OpenSSL						       d2i_RSAPublicKey(3)

NAME

       d2i_RSAPublicKey, i2d_RSAPublicKey, d2i_RSAPrivateKey, i2d_RSAPrivateKey, d2i_RSA_PUBKEY, i2d_RSA_PUBKEY, i2d_Netscape_RSA,
       d2i_Netscape_RSA - RSA public and private key encoding functions.

SYNOPSIS

	#include <openssl/rsa.h>
	#include <openssl/x509.h>

	RSA * d2i_RSAPublicKey(RSA **a, unsigned char **pp, long length);

	int i2d_RSAPublicKey(RSA *a, unsigned char **pp);

	RSA * d2i_RSA_PUBKEY(RSA **a, unsigned char **pp, long length);

	int i2d_RSA_PUBKEY(RSA *a, unsigned char **pp);

	RSA * d2i_RSAPrivateKey(RSA **a, unsigned char **pp, long length);

	int i2d_RSAPrivateKey(RSA *a, unsigned char **pp);

	int i2d_Netscape_RSA(RSA *a, unsigned char **pp, int (*cb)());

	RSA * d2i_Netscape_RSA(RSA **a, unsigned char **pp, long length, int (*cb)());

DESCRIPTION

       d2i_RSAPublicKey() and i2d_RSAPublicKey() decode and encode a PKCS#1 RSAPublicKey structure.

       d2i_RSA_PUBKEY() and i2d_RSA_PUBKEY() decode and encode an RSA public key using a SubjectPublicKeyInfo (certificate public key) structure.

       d2i_RSAPrivateKey(), i2d_RSAPrivateKey() decode and encode a PKCS#1 RSAPrivateKey structure.

       d2i_Netscape_RSA(), i2d_Netscape_RSA() decode and encode an RSA private key in NET format.

       The usage of all of these functions is similar to the d2i_X509() and i2d_X509() described in the d2i_X509(3) manual page.

NOTES

       The RSA structure passed to the private key encoding functions should have all the PKCS#1 private key components present.

       The data encoded by the private key functions is unencrypted and therefore offers no private key security.

       The NET format functions are present to provide compatibility with certain very old software. This format has some severe security
       weaknesses and should be avoided if possible.

SEE ALSO

       d2i_X509(3)

HISTORY

       TBA

50								    2013-03-05						       d2i_RSAPublicKey(3)
Man Page