1 SIGNPROTO(1ONBLD)             illumos Build Tools            SIGNPROTO(1ONBLD)
   2 
   3 
   4 
   5 NAME
   6        signproto - sign ELF objects in proto area
   7 
   8 SYNOPSIS
   9        signproto cred_file
  10 
  11 DESCRIPTION
  12        signproto finds ELF objects in the ON proto area and re-signs them
  13        using signit(1ONBLD).  This operation is normally invoked only for
  14        release builds, as it replaces the internal development signatures with
  15        official Sun signatures. The actual signing using Sun's private key is
  16        performed by a code signing server which is accessed via signit.
  17 
  18        Cryptographic modules are identified by examining the signature
  19        embedded by elfsign(1) during the build process.  signproto requires a
  20        single command-line argument, which is a file containing the mapping
  21        between each signing server credential name and the Subject
  22        Distinguished Name (DN) of the certificate used to sign the ELF file.
  23        Each line in the file contains a credential name followed by a regular
  24        expression. The first regular expression that matches the Subject DN
  25        embedded in the ELF file determines the credential name passed to
  26        signit to re-sign the file.
  27 
  28 ENVIRONMENT
  29        CODESIGN_USER
  30            Login name for the code signing server passed to signit .  If this
  31            variable is not set, the value in LOGNAME is used instead.
  32 
  33        ROOT
  34            Location of ON proto area containing files to be signed.
  35 
  36 SEE ALSO
  37        signit(1ONBLD), elfsign(1)
  38 
  39 
  40 
  41                                  June 13, 2007               SIGNPROTO(1ONBLD)