partition create

Create an application partition on a locally installed or USB-connected HSM.

The command is run from the HSM administrative partition. The HSM SO must be logged in.

Syntax

partition create -slot <number> [-size <bytes>] [-force]

Argument(s) Shortcut Description
-force -f Force the action without prompting for confirmation (useful when scripting commands).
-size <bytes> -si Storage size of partition in bytes (used only for HSMs supporting multiple application partitions, to specify a size other than the calculated default size - depends on HSM memory, existing application partitions, and their specifications)
-slot <number> -sl Slot where the new partition is to be created (not used if -label is specified)
-version <number> -v Create a partition with version (0 or 1)

NOTE   If the HSM supports just a single application partition, and one already exists, the partition create command stops and throws the error "Error in execution : CKR_LICENSE_CAPACITY_EXCEEDED." To create a new application partition, delete the existing one first, with partition delete, then re-issue partition create.

Example without version specified

The partition in slot 3 is the administrative partition for the Luna PCIe HSM 7, and is not used by applications for crypto operations.

lunacm:> slot list

        Slot Id ->              3
        Tunnel Slot Id ->       2
        Label ->                mypcie7
        Serial Number ->        150022
        Model ->                Luna K7
        Firmware Version ->     7.0.1
        Configuration ->        Luna HSM Admin Partition (PED) Signing With Cloning Mode
        Slot Description ->     Admin Token Slot
        HSM Configuration ->    Luna HSM Admin Partition (PED)
        HSM Status ->           OK

        Slot Id ->              4
        HSM Label ->            myG5pw
        HSM Serial Number ->    7001312
        HSM Model ->            G5Base
        HSM Firmware Version -> 6.10.4
        HSM Configuration ->    Luna USB HSM (PW) Signing With Cloning Mode
        HSM Status ->           OK

        Current Slot Id: 3

Command Result : No Error

 

lunacm:> partition create

Command Result : No Error

lunacm:> slot list

        Slot Id ->              3
        Tunnel Slot Id ->       2
        Label ->
        Serial Number ->        349297122736
        Model ->                Luna K7
        Firmware Version ->     7.7.0
        Configuration ->        Luna User Partition With SO (PED) Signing With Cloning Mode
        Slot Description ->     User Token Slot

        Slot Id ->              4
        Tunnel Slot Id ->       2
        Label ->                mypcie7
        Serial Number ->        150022
        Model ->                Luna K7
        Firmware Version ->     7.7.0
        Configuration ->        Luna HSM Admin Partition (PED) Signing With Cloning Mode
        Slot Description ->     Admin Token Slot
        HSM Configuration ->    Luna HSM Admin Partition (PED)
        HSM Status ->           OK


        Current Slot Id: 1

Command Result : No Error

Example with version specified

The partition in slot 3 is the administrative partition for the Luna PCIe HSM 7, and is not used for applications and crypto.

lunacm:> slot list

        Slot Id ->              3
        Tunnel Slot Id ->       2
        Label ->                mypcie7
        Serial Number ->        150022
        Model ->                Luna K7
        Firmware Version ->     7.8.0
        Configuration ->        Luna HSM Admin Partition (PED) Signing With Cloning Mode
        Slot Description ->     Admin Token Slot
        HSM Configuration ->    Luna HSM Admin Partition (PED)
        HSM Status ->           OK


        Current Slot Id: 3

Command Result : No Error

lunacm:> partition create -version 1

Command Result : No Error


lunacm:> slot list

        Slot Id ->              3
        Label ->
        Serial Number ->        1230507392701
        Model ->                Luna K7
        Firmware Version ->     7.8.0
        Bootloader Version ->   1.1.4
        Configuration ->        Luna User Partition With SO (PW) Key Export With Cloning Mode
        Slot Description ->     User Token Slot
        FM HW Status ->         FM Ready

        Slot Id ->              4
        Tunnel Slot Id ->       2
        Label ->                mypcie7
        Serial Number ->        150022
        Model ->                Luna K7
        Firmware Version ->     7.8.0
        Configuration ->        Luna HSM Admin Partition (PED) Signing With Cloning Mode
        Slot Description ->     Admin Token Slot
        HSM Configuration ->    Luna HSM Admin Partition (PED)
        HSM Status ->           OK


        Current Slot Id: 4