From cfa9fefb2b4c4d8c1d38284817c61dcf5d3f4716 Mon Sep 17 00:00:00 2001 From: Stef Walter Date: Sun, 29 Jan 2017 15:10:37 +0100 Subject: trust: Implement a 'trust dump' command This dumps all the PKCS#11 objects in the internal .p11-kit persistence format. This is part of the trust command and tooling, even though at some point it could go in the p11-kit command. The reason for this is that the code related to the internal .p11-kit objects is in the trust code, and consumed solely by the trust related modules. --- doc/manual/trust.xml | 39 +++++++++++++++++++++++++++++++++++++++ 1 file changed, 39 insertions(+) (limited to 'doc/manual') diff --git a/doc/manual/trust.xml b/doc/manual/trust.xml index 05f2726..f6f2b3e 100644 --- a/doc/manual/trust.xml +++ b/doc/manual/trust.xml @@ -39,6 +39,9 @@ trust anchor /path/to/certificate.crt + + trust dump + @@ -347,6 +350,42 @@ $ trust extract-compat + + Dump + + Dump PKCS#11 items in the various tokens. + + +$ trust dump + + + Dump information about the various PKCS#11 items in the tokens. + Each item is dumped with it's PKCS#11 URI and information in the .p11-kit + persistence format. + + You can specify the following options to control what to dump. + + + + + Specifies what certificates to extract. You can specify the following values: + + + + All objects. This is the default + + + + A PKCS#11 URI to filter with + + + + + + + + + Bugs -- cgit v1.1