Scroll to navigation

PESIGN-CLIENT(1) General Commands Manual PESIGN-CLIENT(1)

NAME

pesign-clienttool for signing UEFI applications with a pesign server

SYNOPSIS

pesign-client [-i file] [-o file] [-e file] [-t token] [-c nickname] ⟨[-k |] [-q |] [-s |] [-u]⟩ [-f fd] [-F file]

DESCRIPTION

pesign-client is a command line tool for manipulating signatures and cryptographic digests of UEFI applications.

OPTIONS

file | file
The input binary file to be signed with --sign
file | file
The output binary file to be signed with --sign
file | file
Export signature from --sign to file
token | token
Sign using NSS token token
nickname | nickname
Sign using NSS certificate nickname
|
Kill the pesign server
|
Query the lock status of the token specified by --token
|
Sign the file specified by --infile
|
Unlock the token specified with --token using the PIN read from --pinfd or --pinfile, or specified by PESIGN_TOKEN_PIN
fd | fd
File descriptor to read the PIN from for --unlock
file | file
File to read the PIN from for unlock

ENVIRONMENT

PIN for use with --unlock for the token specified by -fl -token

SEE ALSO

pesign(1), certutil(1)

AUTHORS

Peter Jones

June 4, 2020 Linux