From dceb6bcc9bbdaf09b3f5fc52b2ac67065bbddb70 Mon Sep 17 00:00:00 2001 From: Vladimir Diaz Date: Wed, 27 Jun 2018 13:22:31 -0400 Subject: [PATCH] Rename the keys and metadata for role X and Y Signed-off-by: Vladimir Diaz --- docs/CLI_EXAMPLES.md | 27 ++++++++++++++------------- 1 file changed, 14 insertions(+), 13 deletions(-) diff --git a/docs/CLI_EXAMPLES.md b/docs/CLI_EXAMPLES.md index 300e8827..d47e4b9b 100644 --- a/docs/CLI_EXAMPLES.md +++ b/docs/CLI_EXAMPLES.md @@ -75,7 +75,8 @@ Enter a password for the encrypted key (tufkeystore/root_key): (2) add keys to the top-level roles. (3) delegate trust of particular target files to another role X, where role X -has a signature threshold 2 and is marked as a terminating delegation. +has a signature threshold 2 and is marked as a terminating delegation. The +keys for role X and Y should be created prior to performing the delegation. (4) Delegate from role X to role Y. @@ -87,8 +88,8 @@ the expected file that should be downloaded by the client. (7) halt the server, add README.txt to the Targets role, restart server, and fetch the Target's role README.txt. -(8) Add LICENSE to 'yrole' and demonstate that the client must not fetch it -because xrole is a terminating delegation (and hasn't signed for it). +(8) Add LICENSE to 'role_y' and demonstate that the client must not fetch it +because 'role_x' is a terminating delegation (and hasn't signed for it). (1) and (2) ```Bash @@ -109,19 +110,19 @@ Enter a password for the encrypted key (tufkeystore/targets_key): (3) and (4) ```Bash -$ repo.py --delegate "README.*" "LICENSE" --delegatee xrole --pubkeys +$ repo.py --delegate "README.*" "LICENSE" --delegatee role_x --pubkeys tufkeystore/xkey.pub tufkeystore/xkey2.pub --threshold 2 --terminating -$ repo.py --sign tufkeystore/xkey tufkeystore/xkey2 --role xrole +$ repo.py --sign tufkeystore/xkey tufkeystore/xkey2 --role role_x $ repo.py --key ed25519 --filename ykey -$ repo.py --delegate "README.*" "LICENSE" --delegatee yrole --role xrole +$ repo.py --delegate "README.*" "LICENSE" --delegatee role_y --role role_x --pubkeys tufkeystore/ykey.pub --sign tufkeystore/xkey tufkeystore/xkey2 -$ repo.py --sign tufkeystore/ykey --role yrole +$ repo.py --sign tufkeystore/ykey --role role_y ``` (5) and (6) ```Bash -$ echo "xrole's readme" > README.txt -$ repo.py --add README.txt --role xrole --sign tufkeystore/xkey tufkeystore/xkey2 +$ echo "role_x's readme" > README.txt +$ repo.py --add README.txt --role role_x --sign tufkeystore/key_x tufkeystore/key_x2 ``` Serve the repo @@ -130,11 +131,11 @@ $ cd tufrepo/ $ python -m SimpleHTTPServer 8001 ``` -Fetch the xrole's README.txt +Fetch the role x's README.txt ```Bash $ client.py --repo http://localhost:8001 README.txt $ cat tuftargets/README.txt -xrole's readme +role_x's readme ``` (7) @@ -157,8 +158,8 @@ Target role's readme (8) ```Bash -$ echo "yrole's license" > LICENSE -$ repo.py --add LICENSE --role yrole --sign tufkeystore/ykey +$ echo "role_y's license" > LICENSE +$ repo.py --add LICENSE --role role_y --sign tufkeystore/key_y ``` ```Bash