From mboxrd@z Thu Jan  1 00:00:00 1970
Delivery-date: Tue, 20 Jul 2021 13:51:55 +0200
Received: from metis.ext.pengutronix.de ([2001:67c:670:201:290:27ff:fe1d:cc33])
	by lore.white.stw.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <ptxdist-bounces+lore=lore.pengutronix.de@pengutronix.de>)
	id 1m5oHz-0002Ri-7d
	for lore@lore.pengutronix.de; Tue, 20 Jul 2021 13:51:55 +0200
Received: from localhost ([127.0.0.1] helo=metis.ext.pengutronix.de)
	by metis.ext.pengutronix.de with esmtp (Exim 4.92)
	(envelope-from <ptxdist-bounces@pengutronix.de>)
	id 1m5oHy-0006sm-St; Tue, 20 Jul 2021 13:51:54 +0200
Received: from drehscheibe.grey.stw.pengutronix.de ([2a0a:edc0:0:c01:1d::a2])
 by metis.ext.pengutronix.de with esmtps
 (TLS1.3:ECDHE_RSA_AES_256_GCM_SHA384:256) (Exim 4.92)
 (envelope-from <mol@pengutronix.de>)
 id 1m5oFP-0003Eh-1L; Tue, 20 Jul 2021 13:49:15 +0200
Received: from [2a0a:edc0:0:1101:1d::39] (helo=dude03.red.stw.pengutronix.de)
 by drehscheibe.grey.stw.pengutronix.de with esmtp (Exim 4.92)
 (envelope-from <mol@pengutronix.de>)
 id 1m5oFO-0002Ww-Fx; Tue, 20 Jul 2021 13:49:14 +0200
Received: from mol by dude03.red.stw.pengutronix.de with local (Exim 4.92)
 (envelope-from <mol@pengutronix.de>)
 id 1m5oFO-00B1xr-FT; Tue, 20 Jul 2021 13:49:14 +0200
From: Michael Olbrich <m.olbrich@pengutronix.de>
To: ptxdist@pengutronix.de
Date: Tue, 20 Jul 2021 13:49:14 +0200
Message-Id: <20210720114914.2629060-1-m.olbrich@pengutronix.de>
X-Mailer: git-send-email 2.30.2
In-Reply-To: <20210714120234.16196-1-rhi@pengutronix.de>
References: <20210714120234.16196-1-rhi@pengutronix.de>
MIME-Version: 1.0
Subject: Re: [ptxdist] [APPLIED] doc: code signing: define code signing
 consumers
X-BeenThere: ptxdist@pengutronix.de
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: PTXdist Development Mailing List <ptxdist.pengutronix.de>
List-Unsubscribe: <http://metis.pengutronix.de/cgi-bin/mailman/options/ptxdist>, 
 <mailto:ptxdist-request@pengutronix.de?subject=unsubscribe>
List-Archive: <http://metis.pengutronix.de/cgi-bin/mailman/private/ptxdist/>
List-Post: <mailto:ptxdist@pengutronix.de>
List-Help: <mailto:ptxdist-request@pengutronix.de?subject=help>
List-Subscribe: <http://metis.pengutronix.de/cgi-bin/mailman/listinfo/ptxdist>, 
 <mailto:ptxdist-request@pengutronix.de?subject=subscribe>
Reply-To: ptxdist@pengutronix.de
Cc: Roland Hieber <rhi@pengutronix.de>
Content-Type: text/plain; charset="us-ascii"
Content-Transfer-Encoding: 7bit
Sender: "ptxdist" <ptxdist-bounces@pengutronix.de>
X-SA-Exim-Connect-IP: 127.0.0.1
X-SA-Exim-Mail-From: ptxdist-bounces@pengutronix.de
X-SA-Exim-Scanned: No (on metis.ext.pengutronix.de); SAEximRunCond expanded to false

Thanks, applied as 00d6be294509952a736f6d77a735dfe2583507bd.

Michael

[sent from post-receive hook]

On Tue, 20 Jul 2021 13:49:14 +0200, Roland Hieber <rhi@pengutronix.de> wrote:
> Signed-off-by: Roland Hieber <rhi@pengutronix.de>
> Message-Id: <20210714120234.16196-1-rhi@pengutronix.de>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
> 
> diff --git a/doc/dev_code_signing.rst b/doc/dev_code_signing.rst
> index 1f43f2b60ade..3fcf6866757b 100644
> --- a/doc/dev_code_signing.rst
> +++ b/doc/dev_code_signing.rst
> @@ -10,6 +10,8 @@ This is also essential when a verified boot chain is established, e.g. via
>  *High Assurance Boot* (HAB), signed FIT images, and a verified root file
>  system.
>  
> +On the one side, **code signing consumers** are PTXdist recipes that want to
> +make use of key material, e.g. for signing kernel modules or disk images.
>  PTXdist uses `PKCS#11 <pkcs11-doc_>`_ internally to provide access to keys and
>  certificates, therefore code signing consumers should implement a PKCS#11
>  interface to make use of PTXdist's code signing infrastructure.

_______________________________________________
ptxdist mailing list
ptxdist@pengutronix.de
To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de