pkcs11-destroy — destroy PKCS#11 objects
pkcs11-destroy destroys keys stored in a
PKCS#11 device, identified by their
Matching keys are displayed before being destroyed. By default, there is a five second delay to allow the user to interrupt the process before the destruction takes place.
Specify the PKCS#11 provider module. This must be the full path to a shared library object implementing the PKCS#11 API for the device.
Open the session with the given PKCS#11 slot. The default is slot 0.
Destroy keys with the given object ID.
Destroy keys with the given label.
Specify the PIN for the device. If no PIN is provided on the command line, pkcs11-destroy will prompt for it.
Specify how long to pause before carrying out key destruction.
The default is five seconds. If set to
destruction will be immediate.
BIND 9.15.1 (Development Release)