qcatool - command line tool for the Qt Cryptographic Architecture

       The arguments to the commands are as follows.

       K = private key.

       C = certificate.

       X = key bundle.

       P = PGP public key.

       S = PGP secret key.

       E = generic entry.

       These must be identified by either a filename or a keystore reference ("store:obj").

       qcatool was written by Justin Karneges as part of QCA. This manual page was written by Brad Hards.

qcatool 1.0.0                                      August 2007                                        QCATOOL(1)

help, --help, -h
              Output usage (help) information.

       version, --version, -v
              Output version information.

       plugins
              List  available plugins. Use the --debug option to get more information on plugins which are found
              and which ones actually loaded.

       configsave[provider]
              Save provider configuration. Use this to have the  provider's  default  configuration  written  to
              persistent storage, which you can then edit by hand.

       configedit[provider]
              Edit provider configuration. The changes are written to persistent storage.

       keymakersa|dsa[bits]
              Create a key pair

       keychangepass[K]
              Add/change/remove passphrase of a key

       certmakereq[K]
              Create certificate request (CSR)

       certmakeself[K]
              Create self-signed certificate

       certmakereqadv[K]
              Advanced version of 'makereq'

       certmakeselfadv[K]
              Advanced version of 'makeself'

       certvalidate[C]
              Validate certificate

       keybundlemake[K][C]
              Create a keybundle

       keybundleextract[X]
              Extract certificate(s) and key

       keybundlechangepass[X]
              Change passphrase of a keybundle

       keystorelist-stores
              List all available keystores

       keystorelist[storeName]
              List content of a keystore

       keystoremonitor
              Monitor for keystore availability

       keystoreexport[E]
              Export a keystore entry's content

       keystoreexportref[E]
              Export a keystore entry reference

       keystoreaddkb[storeName][cert.p12]
              Add a keybundle into a keystore

       keystoreaddpgp[storeName][key.asc]
              Add a PGP key into a keystore

       keystoreremove[E]
              Remove an object from a keystore

       showcert[C]
              Examine a certificate

       showreq[req.pem]
              Examine a certificate request (CSR)

       showcrl[crl.pem]
              Examine a certificate revocation list

       showkb[X]
              Examine a keybundle

       showpgp[P|S]
              Examine a PGP key

       messagesignpgp|pgpdetach|smime[X|S]
              Sign a message

       messageencryptpgp|smime[C|P]
              Encrypt a message

       messagesignencrypt[S][P]
              PGP sign & encrypt a message

       messageverifypgp|smime
              Verify a message

       messagedecryptpgp|smime((X)...)
              Decrypt a message (S/MIME needs X)

       messageexportcerts
              Export certs from S/MIME message

       qcatool  is a command line tool for performing various cryptographic operations with the Qt Cryptographic
       Architecture (QCA). qcatool can also be used for testing and debugging QCA.

       qcatool - command line tool for the Qt Cryptographic Architecture

       As noted above, these are all optional, and may be combined.

       --pass=PASSWORD
              Specify  the  password  to use. This is probably a bad idea except for testing, because anyone can
              read the arguments to a command line application.

       --newpass=PASSWORD
              Specify the new password to use  for  password  change  with  the  keychangepass  and  keybundlechangepass  commands.  This is probably a bad idea except for testing, because anyone can read the
              arguments to a command line application.

       --nonroots=CERTIFICATES
              Specify additional certificates, not trusted,  but  which  may  be  used  in  the  trust  path  if
              appropriate trust can be established.

       --roots=CERTIFICATES
              Specify additional certificates which can be used as trusted (root) certificates.

       --nosys
              Disable use of the standard root certificates that are provided by the operating system.

       --noprompt
              Disable  prompting  for passwords/passphrases. If you do not provide the passphrase on the command
              line  (with  --pass  or  --newpass)  this  will  cause  qcatool  to  abort  the   command   if   a
              password/passphrase is required.

       --ordered
              If  outputting  certificate  information fields (Distinguished Name and Subject Alternative Name),
              show them in same the order that they are present in the certificate rather  than  in  a  friendly
              sorted order.

       --debug
              Enable additional output to aid debugging.

       --log-file=FILENAME
              Log to the specified file.

       --log-level=LEVEL
              Log at the specified level. The log level can be between 0 (none) and 8 (most).

       --nobundle
              When  S/MIME  signing,  do  not  bundle the signer's certificate chain inside the signature.  This
              results in a smaller signature output, but requires the recipient to have  all  of  the  necessary
              certificates in order to verify it.

       qcatool has a range of options and commands. You only ever get to  use  one  command,  but  you  may  use
       several, one or no options.