mailarchive of the ptxdist mailing list
 help / color / mirror / Atom feed
* [ptxdist] [PATCH] templates/code-signing-provider: set up SoftHSM 'imx-habv4-srk' role group
@ 2021-07-23 14:25 Roland Hieber
  2021-07-27  6:21 ` [ptxdist] [APPLIED] " Michael Olbrich
  0 siblings, 1 reply; 2+ messages in thread
From: Roland Hieber @ 2021-07-23 14:25 UTC (permalink / raw)
  To: ptxdist; +Cc: Roland Hieber

Also provide some example code to set up the role group for the SoftHSM
use case.

Fixes: f1fc06cd534092bd1a4a (2021-07-08, "templates/code-signing-provider: set up the 'imx-habv4-srk' role group")
Signed-off-by: Roland Hieber <rhi@pengutronix.de>
---
 .../code-signing-provider/ptxdist-set-keys-softhsm.sh         | 4 ++++
 1 file changed, 4 insertions(+)

diff --git a/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh b/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
index 0836d61d13b7..b3de3e325404 100755
--- a/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
+++ b/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
@@ -48,6 +48,10 @@ import_imx_habv4_keys() {
 		cs_import_cert_from_der "${r}" "${crts}/IMG${i}_1_sha256_4096_65537_v3_usr_crt.der"
 		cs_import_key_from_pem "${r}" "${keys}/IMG${i}_1_sha256_4096_65537_v3_usr_key.pem"
 	done
+
+	g="imx-habv4-srk"
+	cs_define_group "${g}"
+	cs_group_add_roles "${g}" "imx-habv4-srk1" "imx-habv4-srk2" "imx-habv4-srk3" "imx-habv4-srk4"
 }
 
 
-- 
2.30.2


_______________________________________________
ptxdist mailing list
ptxdist@pengutronix.de
To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de


^ permalink raw reply	[flat|nested] 2+ messages in thread

* Re: [ptxdist] [APPLIED] templates/code-signing-provider: set up SoftHSM 'imx-habv4-srk' role group
  2021-07-23 14:25 [ptxdist] [PATCH] templates/code-signing-provider: set up SoftHSM 'imx-habv4-srk' role group Roland Hieber
@ 2021-07-27  6:21 ` Michael Olbrich
  0 siblings, 0 replies; 2+ messages in thread
From: Michael Olbrich @ 2021-07-27  6:21 UTC (permalink / raw)
  To: ptxdist; +Cc: Roland Hieber

Thanks, applied as 642d138482bf67b36df720ea7f9c324620b20356.

Michael

[sent from post-receive hook]

On Tue, 27 Jul 2021 08:21:43 +0200, Roland Hieber <rhi@pengutronix.de> wrote:
> Also provide some example code to set up the role group for the SoftHSM
> use case.
> 
> Fixes: f1fc06cd534092bd1a4a (2021-07-08, "templates/code-signing-provider: set up the 'imx-habv4-srk' role group")
> Signed-off-by: Roland Hieber <rhi@pengutronix.de>
> Message-Id: <20210723142535.29392-1-rhi@pengutronix.de>
> Signed-off-by: Michael Olbrich <m.olbrich@pengutronix.de>
> 
> diff --git a/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh b/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
> index 0836d61d13b7..b3de3e325404 100755
> --- a/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
> +++ b/rules/templates/code-signing-provider/ptxdist-set-keys-softhsm.sh
> @@ -48,6 +48,10 @@ import_imx_habv4_keys() {
>  		cs_import_cert_from_der "${r}" "${crts}/IMG${i}_1_sha256_4096_65537_v3_usr_crt.der"
>  		cs_import_key_from_pem "${r}" "${keys}/IMG${i}_1_sha256_4096_65537_v3_usr_key.pem"
>  	done
> +
> +	g="imx-habv4-srk"
> +	cs_define_group "${g}"
> +	cs_group_add_roles "${g}" "imx-habv4-srk1" "imx-habv4-srk2" "imx-habv4-srk3" "imx-habv4-srk4"
>  }
>  
>  

_______________________________________________
ptxdist mailing list
ptxdist@pengutronix.de
To unsubscribe, send a mail with subject "unsubscribe" to ptxdist-request@pengutronix.de


^ permalink raw reply	[flat|nested] 2+ messages in thread

end of thread, other threads:[~2021-07-27  6:22 UTC | newest]

Thread overview: 2+ messages (download: mbox.gz / follow: Atom feed)
-- links below jump to the message on this page --
2021-07-23 14:25 [ptxdist] [PATCH] templates/code-signing-provider: set up SoftHSM 'imx-habv4-srk' role group Roland Hieber
2021-07-27  6:21 ` [ptxdist] [APPLIED] " Michael Olbrich

mailarchive of the ptxdist mailing list

This inbox may be cloned and mirrored by anyone:

	git clone --mirror https://lore.ptxdist.org/ptxdist/0 ptxdist/git/0.git

	# If you have public-inbox 1.1+ installed, you may
	# initialize and index your mirror using the following commands:
	public-inbox-init -V2 ptxdist ptxdist/ https://lore.ptxdist.org/ptxdist \
		ptxdist@pengutronix.de
	public-inbox-index ptxdist

Example config snippet for mirrors.


AGPL code for this site: git clone https://public-inbox.org/public-inbox.git