diff --git a/README.md b/README.md index 369c17c..baf78dc 100644 --- a/README.md +++ b/README.md @@ -53,7 +53,7 @@ the command has three modes: The following command signs a zone with NSEC3, using the file name `example.com` and creates a new file with the name `example.com.signed`, using the [DTC](https://github.com/niclabs/dtc) library. If there are not keys on the HSM, it creates them. ``` -./hsm-tools sign -p ./dtc.so -f ./example.com -3 -z example.com -o example.com.signed -c +./hsm-tools sign pkcs11 -p ./dtc.so -f ./example.com -3 -z example.com -o example.com.signed -c ``` Some arguments were omited, so they are set by their default value. @@ -91,7 +91,7 @@ You can also set the config file path using `--config` flag. - [x] Create keys in HSM - [x] Sign using PKCS11 (for HSMs): - [x] RSA - - [ ] ECDSA + - [x] ECDSA - [ ] SHA-1 - [ ] SHA128 - [x] SHA256 diff --git a/cmd/sign.go b/cmd/sign.go index 25bad21..aafd535 100644 --- a/cmd/sign.go +++ b/cmd/sign.go @@ -20,7 +20,8 @@ func init() { signCmd.PersistentFlags().StringP("key-label", "l", "HSM-tools", "Label of HSM Signer Key") pkcs11Cmd.PersistentFlags().StringP("p11lib", "p", "", "Full path to PKCS11 lib file") - fileCmd.PersistentFlags().StringP("keyfile", "K", "", "Full path to key file") + // TODO: implement file signing + // fileCmd.PersistentFlags().StringP("keyfile", "K", "", "Full path to key file") viper.BindPFlag("user-key", signCmd.PersistentFlags().Lookup("user-key")) @@ -41,7 +42,7 @@ func init() { signCmd.AddCommand(pkcs11Cmd) - signCmd.AddCommand(fileCmd) + //signCmd.AddCommand(fileCmd) } var signCmd = &cobra.Command{