diff options
author | Stef Walter <stefw@redhat.com> | 2013-06-13 12:56:45 +0200 |
---|---|---|
committer | Stef Walter <stefw@redhat.com> | 2013-06-13 12:56:45 +0200 |
commit | 72d3e4d4fb9b9cde2838faa638824ae9c3f51fa6 (patch) | |
tree | 455d2e811ffb3ae64b6ba4b1bae5162b53248529 | |
parent | ff14d0c888356aafed84a4cf555c8ef73603dde9 (diff) |
Add stubs for other representations
Some rewording of representation pages
-rw-r--r-- | specs/Makefile | 3 | ||||
-rw-r--r-- | specs/storing-trust-c.xml | 19 | ||||
-rw-r--r-- | specs/storing-trust-dbus.xml | 19 | ||||
-rw-r--r-- | specs/storing-trust-json.xml | 18 | ||||
-rw-r--r-- | specs/storing-trust-model.xml | 2 | ||||
-rw-r--r-- | specs/storing-trust-pkcs11.xml | 9 | ||||
-rw-r--r-- | specs/storing-trust-policy.xml | 6 |
7 files changed, 72 insertions, 4 deletions
diff --git a/specs/Makefile b/specs/Makefile index 02a7c9d..0599622 100644 --- a/specs/Makefile +++ b/specs/Makefile @@ -1,6 +1,9 @@ NULL = STORING_TRUST_FILES = \ + storing-trust-c.xml \ + storing-trust-dbus.xml \ + storing-trust-json.xml \ storing-trust-model.xml \ storing-trust-existing.xml \ storing-trust-pkcs11.xml \ diff --git a/specs/storing-trust-c.xml b/specs/storing-trust-c.xml new file mode 100644 index 0000000..be71d79 --- /dev/null +++ b/specs/storing-trust-c.xml @@ -0,0 +1,19 @@ +<?xml version="1.0"?> +<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN" "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd" [ +]> +<article id="storing-trust-c"> + <title>Representation: C API</title> + + <para>Although the <link linkend="storing-trust-pkcs11">PKCS#11 representation</link> + is callable from C, there is likely a need for a simpler C API and ABI to + access the trust information.</para> + + <para><emphasis>Work item: </emphasis> At the present time no C caller for + such an API exists. Most crypto libraries already use PKCS#11 to access + keys and certificates, and thus they are not the consumer for this C API. + It is also undesirable to design an API in a vacuum. Therefore if you are + such an interested caller, please contact + <ulink url="http://lists.freedesktop.org/mailman/listinfo/p11-glue">p11-glue@lists.freedesktop.org</ulink> + for discussion.</para> + +</article> diff --git a/specs/storing-trust-dbus.xml b/specs/storing-trust-dbus.xml new file mode 100644 index 0000000..f9a17f7 --- /dev/null +++ b/specs/storing-trust-dbus.xml @@ -0,0 +1,19 @@ +<?xml version="1.0"?> +<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN" "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd" [ +]> +<article id="storing-trust-dbus"> + <title>Representation: DBus API</title> + + <para>On the Linux desktop various apps would like to do lookups or modifications + of anchor data via DBus. This also facilitates concepts such as + privilege escalation (polkit prompting) to modify the system + wide trust stores.</para> + + <para><emphasis>Work item: </emphasis> We need to look at the interested DBus + callers and discuss the desired form. It is undesirable to design an + API in a vacuum. Therefore if you are such an interested caller, + please contact + <ulink url="http://lists.freedesktop.org/mailman/listinfo/p11-glue">p11-glue@lists.freedesktop.org</ulink> + for discussion.</para> + +</article> diff --git a/specs/storing-trust-json.xml b/specs/storing-trust-json.xml new file mode 100644 index 0000000..31bdef5 --- /dev/null +++ b/specs/storing-trust-json.xml @@ -0,0 +1,18 @@ +<?xml version="1.0"?> +<!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN" "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd" [ +]> +<article id="storing-trust-json"> + <title>Representation: JSON</title> + + <para>Since various browsers already represent trust information as JSON data + there is likely a need to have a standard JSON form for the the models + described in these documents.</para> + + <para><emphasis>Work item: </emphasis> We need to look at the interested JSON + callers and discuss the desired form. It is undesirable to design an + API in a vacuum. Therefore if you are such an interested caller, + please contact + <ulink url="http://lists.freedesktop.org/mailman/listinfo/p11-glue">p11-glue@lists.freedesktop.org</ulink> + for discussion.</para> + +</article> diff --git a/specs/storing-trust-model.xml b/specs/storing-trust-model.xml index 5a09b30..2aa218c 100644 --- a/specs/storing-trust-model.xml +++ b/specs/storing-trust-model.xml @@ -2,7 +2,7 @@ <!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN" "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd" [ ]> <article id="storing-trust-model"> -<title>Storing Anchors and Blacklists</title> +<title>Model: Anchors and Blacklists</title> <articleinfo> <releaseinfo>Take two draft</releaseinfo> diff --git a/specs/storing-trust-pkcs11.xml b/specs/storing-trust-pkcs11.xml index dad6532..c104ac4 100644 --- a/specs/storing-trust-pkcs11.xml +++ b/specs/storing-trust-pkcs11.xml @@ -2,7 +2,7 @@ <!DOCTYPE article PUBLIC "-//OASIS//DTD DocBook XML V4.1.2//EN" "http://www.oasis-open.org/docbook/xml/4.1.2/docbookx.dtd" [ ]> <article id="storing-trust-pkcs11"> -<title>API: PKCS#11 representation</title> +<title>Representation: PKCS#11</title> <para><ulink url="http://www.cryptsoft.com/pkcs11doc/">PKCS#11</ulink> is a useful and widely supported standard for storage and use of keys and certificates. @@ -12,7 +12,7 @@ for anchors, blacklist, and stapled extensions.</para> <sect1 id="pkcs11-store"> - <title>Store model</title> + <title>Stores</title> <para>We define a trust store using the stardard PKCS#11 object model, with a few new attributes.</para> @@ -259,7 +259,10 @@ <sect1 id="pkcs11-constants"> <title>Constants</title> - <para><emphasis>To do</emphasis></para> + <para><emphasis>Work item:</emphasis> Define vendor extension constants for the above + new attributes. One of the attributes CKA_PUBLIC_KEY_INFO may be standardized + by the PKCS#11 TC within the next short while, thus not rushing to do this. Will + timeout if not done shortly.</para> </sect1> </article> diff --git a/specs/storing-trust-policy.xml b/specs/storing-trust-policy.xml index eeb66fe..3b22553 100644 --- a/specs/storing-trust-policy.xml +++ b/specs/storing-trust-policy.xml @@ -39,6 +39,12 @@ <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="storing-trust-pkcs11.xml"/> <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" + href="storing-trust-c.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" + href="storing-trust-json.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" + href="storing-trust-dbus.xml"/> + <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="storing-trust-retrofit.xml"/> <xi:include xmlns:xi="http://www.w3.org/2001/XInclude" href="storing-trust-existing.xml"/> |