aboutsummaryrefslogtreecommitdiff
path: root/bpkg/repository-signing.cli
diff options
context:
space:
mode:
authorKaren Arutyunov <karen@codesynthesis.com>2018-10-08 23:01:16 +0300
committerKaren Arutyunov <karen@codesynthesis.com>2018-10-10 23:54:18 +0300
commit61349dcf5fbfeab888ea345ebec3d887777a2782 (patch)
tree958d7f34185d987b21ae24ad137b7a2e0a1593ec /bpkg/repository-signing.cli
parenteb58dc7c9ec9877c645585b7fb163d2bcc251b5d (diff)
Add support for openssl qualified options
Diffstat (limited to 'bpkg/repository-signing.cli')
-rw-r--r--bpkg/repository-signing.cli11
1 files changed, 6 insertions, 5 deletions
diff --git a/bpkg/repository-signing.cli b/bpkg/repository-signing.cli
index 0fb59c9..776d82b 100644
--- a/bpkg/repository-signing.cli
+++ b/bpkg/repository-signing.cli
@@ -190,13 +190,14 @@ media, store it in a secure, offline location, and remove the key from the
build machine.
To sign the repository with Yubikey specify the following options instead of
-just \cb{--key} as at step 4 (\c{\"SIGN key\"} is the name for slot \c{9c}):
+just \cb{--key} as at step 4 (\c{\"SIGN key\"} is the label for the slot
+\c{9c} private key):
\
-bpkg rep-create \
- --openssl-option -engine --openssl-option pkcs11 \
- --openssl-option -keyform --openssl-option engine \
- --key \"label_SIGN key\" /path/to/repository
+bpkg rep-create \
+ --openssl-option rsautl:-engine --openssl-option rsautl:pkcs11 \
+ --openssl-option rsautl:-keyform --openssl-option rsautl:engine \
+ --key \"pkcs11:object=SIGN%20key\" /path/to/repository
\
||