1 signproto(1ONBLD) illumos Build Tools signproto(1ONBLD)
2
3
4
5 NAME
6 signproto - sign ELF objects in proto area
7
8 SYNOPSIS
9 signproto cred_file
10
11 DESCRIPTION
12 signproto finds ELF objects in the ON proto area and re-signs them
13 using signit(1ONBLD). This operation is normally invoked only for
14 release builds, as it replaces the internal development signatures with
15 official Sun signatures. The actual signing using Sun's private key is
16 performed by a code signing server which is accessed via signit.
17
18 Cryptographic modules are identified by examining the signature
19 embedded by elfsign(1) during the build process. signproto requires a
20 single command-line argument, which is a file containing the mapping
21 between each signing server credential name and the Subject
22 Distinguished Name (DN) of the certificate used to sign the ELF file.
23 Each line in the file contains a credential name followed by a regular
24 expression. The first regular expression that matches the Subject DN
25 embedded in the ELF file determines the credential name passed to
26 signit to re-sign the file.
27
28 ENVIRONMENT
29 CODESIGN_USER
30 Login name for the code signing server passed to signit . If this
31 variable is not set, the value in LOGNAME is used instead.
32
33 ROOT
34 Location of ON proto area containing files to be signed.
35
36 SEE ALSO
37 signit(1ONBLD), elfsign(1)
38
39
40
41 13 June 2007 signproto(1ONBLD)
|
1 SIGNPROTO(1ONBLD) illumos Build Tools SIGNPROTO(1ONBLD)
2
3
4
5 NAME
6 signproto - sign ELF objects in proto area
7
8 SYNOPSIS
9 signproto cred_file
10
11 DESCRIPTION
12 signproto finds ELF objects in the ON proto area and re-signs them
13 using signit(1ONBLD). This operation is normally invoked only for
14 release builds, as it replaces the internal development signatures with
15 official Sun signatures. The actual signing using Sun's private key is
16 performed by a code signing server which is accessed via signit.
17
18 Cryptographic modules are identified by examining the signature
19 embedded by elfsign(1) during the build process. signproto requires a
20 single command-line argument, which is a file containing the mapping
21 between each signing server credential name and the Subject
22 Distinguished Name (DN) of the certificate used to sign the ELF file.
23 Each line in the file contains a credential name followed by a regular
24 expression. The first regular expression that matches the Subject DN
25 embedded in the ELF file determines the credential name passed to
26 signit to re-sign the file.
27
28 ENVIRONMENT
29 CODESIGN_USER
30 Login name for the code signing server passed to signit . If this
31 variable is not set, the value in LOGNAME is used instead.
32
33 ROOT
34 Location of ON proto area containing files to be signed.
35
36 SEE ALSO
37 signit(1ONBLD), elfsign(1)
38
39
40
41 June 13, 2007 SIGNPROTO(1ONBLD)
|