|
|
|
|
@ -1,6 +1,7 @@
|
|
|
|
|
# sigendpkg file format
|
|
|
|
|
|
|
|
|
|
The signedpkg file format defines a deployment archive, which contains:
|
|
|
|
|
The signedpkg file format defines a deployment archive, which contains these
|
|
|
|
|
files in its main directory:
|
|
|
|
|
|
|
|
|
|
- distribution archive in a file named DIST.A
|
|
|
|
|
- distribution key in a file named DIST.KEY
|
|
|
|
|
@ -18,8 +19,33 @@ deployed. In the main directory there are be only folders. The folder names
|
|
|
|
|
in the main directory mark symbolic installation locations, which are user
|
|
|
|
|
dependent.
|
|
|
|
|
|
|
|
|
|
In the p≡p project there are two such installation locations:
|
|
|
|
|
In the p≡p provisioning there may be two such installation locations:
|
|
|
|
|
|
|
|
|
|
- PER_USER_DIRECTORY
|
|
|
|
|
- PER_SYSTEM_DIRECTORY
|
|
|
|
|
|
|
|
|
|
All content is placed in subdirectories to these directories and is installed
|
|
|
|
|
into locations relative to these.
|
|
|
|
|
|
|
|
|
|
The distribution archive is encrypted with the distribution key.
|
|
|
|
|
|
|
|
|
|
## distribution key
|
|
|
|
|
|
|
|
|
|
The distribution key is the AES<256> key, with which the distribution archive
|
|
|
|
|
is encrypted. DIST.A does contain the distribution key encrypted with the
|
|
|
|
|
provisioning key.
|
|
|
|
|
|
|
|
|
|
## distribution signature
|
|
|
|
|
|
|
|
|
|
The distribution signature is the PKCS#7 (CMS) detached signature of the
|
|
|
|
|
distribution archive using the deployment key.
|
|
|
|
|
|
|
|
|
|
## deployment key
|
|
|
|
|
|
|
|
|
|
The deployment key is an RSA keypair stored in a private key part and a BER
|
|
|
|
|
encoded public key part.
|
|
|
|
|
|
|
|
|
|
## provisioning key
|
|
|
|
|
|
|
|
|
|
The provisioning key is an RSA keypair stored in a private key part and a BER
|
|
|
|
|
encoded public key part.
|
|
|
|
|
|
