partition create
Create an application partition on a locally installed or USB-connected HSM.
The command is run from the HSM administrative partition. The HSM SO must be logged in.
Syntax
partition create -slot <number> [-size <bytes>] [-force]
Argument(s) | Shortcut | Description |
---|---|---|
-force | -f | Force the action without prompting for confirmation (useful when scripting commands). |
-size <bytes> | -si | Storage size of partition in bytes (used only for HSMs supporting multiple application partitions, to specify a size other than the calculated default size - depends on HSM memory, existing application partitions, and their specifications) |
-slot <number> | -sl | Slot where the new partition is to be created (not used if -label is specified) |
-version <number> | -v | Create a partition with version (0 or 1) |
NOTE If the HSM supports just a single application partition, and one already exists, the partition create command stops and throws the error "Error in execution : CKR_LICENSE_CAPACITY_EXCEEDED." To create a new application partition, delete the existing one first, with partition delete, then re-issue partition create.
Example without version specified
The partition in slot 3 is the administrative partition for the Luna PCIe HSM 7, and is not used by applications for crypto operations.
lunacm:> slot list Slot Id -> 3 Tunnel Slot Id -> 2 Label -> mypcie7 Serial Number -> 150022 Model -> Luna K7 Firmware Version -> 7.0.1 Configuration -> Luna HSM Admin Partition (PED) Signing With Cloning Mode Slot Description -> Admin Token Slot HSM Configuration -> Luna HSM Admin Partition (PED) HSM Status -> OK Slot Id -> 4 HSM Label -> myG5pw HSM Serial Number -> 7001312 HSM Model -> G5Base HSM Firmware Version -> 6.10.4 HSM Configuration -> Luna USB HSM (PW) Signing With Cloning Mode HSM Status -> OK Current Slot Id: 3 Command Result : No Error
lunacm:> partition create Command Result : No Error lunacm:> slot list Slot Id -> 3 Tunnel Slot Id -> 2 Label -> Serial Number -> 349297122736 Model -> Luna K7 Firmware Version -> 7.7.0 Configuration -> Luna User Partition With SO (PED) Signing With Cloning Mode Slot Description -> User Token Slot Slot Id -> 4 Tunnel Slot Id -> 2 Label -> mypcie7 Serial Number -> 150022 Model -> Luna K7 Firmware Version -> 7.7.0 Configuration -> Luna HSM Admin Partition (PED) Signing With Cloning Mode Slot Description -> Admin Token Slot HSM Configuration -> Luna HSM Admin Partition (PED) HSM Status -> OK Current Slot Id: 1 Command Result : No Error
Example with version specified
The partition in slot 3 is the administrative partition for the Luna PCIe HSM 7, and is not used for applications and crypto.
lunacm:> slot list Slot Id -> 3 Tunnel Slot Id -> 2 Label -> mypcie7 Serial Number -> 150022 Model -> Luna K7 Firmware Version -> 7.8.0 Configuration -> Luna HSM Admin Partition (PED) Signing With Cloning Mode Slot Description -> Admin Token Slot HSM Configuration -> Luna HSM Admin Partition (PED) HSM Status -> OK Current Slot Id: 3 Command Result : No Error lunacm:> partition create -version 1 Command Result : No Error lunacm:> slot list Slot Id -> 3 Label -> Serial Number -> 1230507392701 Model -> Luna K7 Firmware Version -> 7.8.0 Bootloader Version -> 1.1.4 Configuration -> Luna User Partition With SO (PW) Key Export With Cloning Mode Slot Description -> User Token Slot FM HW Status -> FM Ready Slot Id -> 4 Tunnel Slot Id -> 2 Label -> mypcie7 Serial Number -> 150022 Model -> Luna K7 Firmware Version -> 7.8.0 Configuration -> Luna HSM Admin Partition (PED) Signing With Cloning Mode Slot Description -> Admin Token Slot HSM Configuration -> Luna HSM Admin Partition (PED) HSM Status -> OK Current Slot Id: 4