yhsm-decrypt-aead man page

yhsm-decrypt-aead ‐ Decrypt AEADs (with secrets for YubiKeys)

Synopsis

yhsm-decrypt-aead [options] --aes-key KEY file-or-dir [...]

Description

Decrypt AEADs generated using a YubiHSM. NOTE that this requires knowledge of the AES key used in the YubiHSM.

After a number of YubiKey secrets have been generated using yhsm-generate-keys(1) , this tool can decrypt them and produce a CSV file usable to personalize corresponding YubiKeys.

Options

-v, --verbose
Enable verbose operation.
--debug
Enable debug printout.
--format str
Select output format (raw or yubikey-csv).
--print-filename
Prefix any output with the input filename.
--key-handle kh
Key handle used when generated AEADs, if not stored in the AEAD file (AEAD generated with python-pyhsm 1.0.3 or lower).
--aes-key hexstr
AES key used to generate the AEADs.

Exit Status

0
OK
1
Fail

Bugs

Report python-pyhsm/yhsm-decrypt-aead bugs in the issue tracker

See Also

The home page

YubiHSMs and YubiKeys can be obtained from Yubico.

Referenced By

yhsm-generate-keys(1).

June 2012 python-pyhsm