Re: IMA signature generated by evmctl has unexpected key identifier

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 

On Wed, 2019-05-22 at 18:10 -0700, Lakshmi wrote:

> In my setup, IMA signing key will be signed by a key in the "BuiltIn 
> Trusted Keys".

That is exactly how it is meant to be used.  In conjunction with the
examples/ scripts, please follow the "Generate trusted keys" section
of the README.  The last two steps show how to create a certificate
signing request (CSR) and sign the certificate with a CA key.  The CA
public key should be loaded onto the builtin keyring.

Mimi
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
[Index of Archives]     [Linux Kernel]     [Linux Kernel Hardening]     [Linux NFS]     [Linux NILFS]     [Linux USB Devel]     [Video for Linux]     [Linux Audio Users]     [Yosemite News]     [Linux SCSI]

  Powered by Linux