generates a set of cryptographic keys which are compatible
with an existing set of cryptographic keys, registers with
the tarsnap server, and writes a key file for use with
The term "compatible"
here means that it is possible to re-encrypt archives stored with
the first set of keys to be stored with the second set of keys. This is
required because Tarsnap has some keys which need to stay the same when
re-encrypting data; otherwise, existing archives will become unreadable and
cannot be used for deduplication.
parameters are all required.
option is specified, the user will be prompted to enter a passphrase (twice)
to be used to encrypt the key file.
option is specified, a maximum of
bytes of RAM will be used in the scrypt key derivation function to
encrypt the key file; it may be necessary to set this option if a key
file is being generated on a system with far more RAM than the system
on which the key file will be used.
option is specified, a maximum of approximately
seconds will be used in the scrypt key derivation function to
encrypt the key file.