1 SIGNPROTO(1ONBLD) illumos Build Tools SIGNPROTO(1ONBLD) 2 3 4 5 NAME 6 signproto - sign ELF objects in proto area 7 8 SYNOPSIS 9 signproto cred_file 10 11 DESCRIPTION 12 signproto finds ELF objects in the ON proto area and re-signs them 13 using signit(1ONBLD). This operation is normally invoked only for 14 release builds, as it replaces the internal development signatures with 15 official Sun signatures. The actual signing using Sun's private key is 16 performed by a code signing server which is accessed via signit. 17 18 Cryptographic modules are identified by examining the signature 19 embedded by elfsign(1) during the build process. signproto requires a 20 single command-line argument, which is a file containing the mapping 21 between each signing server credential name and the Subject 22 Distinguished Name (DN) of the certificate used to sign the ELF file. 23 Each line in the file contains a credential name followed by a regular 24 expression. The first regular expression that matches the Subject DN 25 embedded in the ELF file determines the credential name passed to 26 signit to re-sign the file. 27 28 ENVIRONMENT 29 CODESIGN_USER 30 Login name for the code signing server passed to signit . If this 31 variable is not set, the value in LOGNAME is used instead. 32 33 ROOT 34 Location of ON proto area containing files to be signed. 35 36 SEE ALSO 37 signit(1ONBLD), elfsign(1) 38 39 40 41 June 13, 2007 SIGNPROTO(1ONBLD)