Re: IMA signature generated by evmctl has unexpected key identifier

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Tue, 2019-05-14 at 10:57 -0700, Lakshmi wrote:

> Below is the list of keys in the IMA keyring
> 
> keyctl show %keyring:.ima
> 
> Keyring
> 1054868458 ---lswrv      0     0  keyring: .ima
>    740136756 --als--v      0     0   \_ asymmetric: hostname: whoami signing
> key: 85512d09fc12c7f38b9679352651dcb365903336
> 
> Please let me know if you need more information.

I should have asked you to make sure that the last 8 bytes of "X509v3
Subject Key Identifier" in the certificate used to sign the kernel
image is the same as above.

Mimi
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Linux Kernel]     [Linux Kernel Hardening]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux SCSI]

  Powered by Linux