loadmache

loadmache [-U|-e IDENT] [-a HASH] [OPTIONS] [MACHINE-FILENAME]

Prepares a module for SEE applications by loading an SEE machine image.

Which machine to load:

If no machine filename is specified this program will pick a default as follows. If NFAST_SEE_MACHINEIMAGE_<module> is set in the environment, where <module> is the module number, then that will be used. Otherwise if NFAST_SEE_MACHINEIMAGE_DEFAULT is set in the environment then that will be used. Finally if even that fails then /opt/nfast/see/machine/seejvm.sar is the default. If this file doesn’t exist then loadmache will fail.

Machine encryption key:

If --unencrypted is specified then the machine is assumed to be unencrypted. If --encryptionkey IDENT is specified the machine is assumed to be encrypted with seeconf key IDENT.

If neither of these options are specified NFAST_SEE_MACHINEENCKEY_* are checked following the same pattern as above; if no environment variables are set then the machine is assumed to be unencrypted.

Machine signing key:

For encrypted machines if you are use a dynamic SEE feature enable then --sighash HASH must be specified with the hash of the key used to sign the SEE machine. NFAST_SEE_MACHINESIGHASH_* are checked following the same pattern as above. For unencrypted machines, or if you have the General SEE feature, then this is not required at all.

Option Description

-s, --slot=SLOT

Select the slot from which to load cards when -n is specified.

SEE machine loading options

-a, --sighash=HASH

Loads a SEE machine signed with the key whose hash is HASH.

-e, --encryptionkey=IDENT

Loads a SEE machine encrypted with key IDENT.

-n, --noprompt

Never prompts for missing smartcards or passphrases.

-U, --unencrypted

Loads an unencrypted SEE machine (default)

Module selection

-m, --module=MODULE

Specifies the number ID to use.
If you only have one module, MODULE is 1.
If you do not specify a module ID, loacmache uses all modules by default.

Help options

-h, --help

Displays help for loadmache.

-u, --usage

Displays a brief usage summary for loadmache.

-v, --version

Displays the version number of the Security World Software that deploys loadmache.