rpms/ima-evm-utils
6
0
Fork 0
Code Issues Pull Requests Releases Activity
IMA/EVM support utilities
79 Commits 8 Branches 26 Tags 195 KiB
a8221a05b6
Go to file
Coiby Xu a8221a05b6 Use RSAHEADER to tell if a package has been signed 
Relates: https://issues.redhat.com/browse/RHEL-92638
Conflict: None

commit 47853f2cf6575812d28093b750be2f2e897c153d
Author: Coiby Xu <coxu@redhat.com>
Date:   Thu Oct 16 17:29:52 2025 +0800

    Use RSAHEADER to tell if a package has been signed

    Packages now use RPM v4 signature %{RSAHEADER}. %{SIGPGP} is the name
    of the RPM v3 header+payload signature and can't be used to tell if
    a package has been signed,

        # uname -r
        6.16.10-200.fc42.x86_64
        # rpm -q --queryformat "%{SIGPGP:pgpsig}\n" --all|grep -c "^(none)$"
        586
        # rpm -q --queryformat "%{RSAHEADER}\n" --all|grep -c "^(none)$"
        5

    Signed-off-by: Coiby Xu <coxu@redhat.com>

Signed-off-by: Coiby Xu <coxu@redhat.com>
2025-10-30 09:00:16 +08:00
tests initial gating tests 2024-04-09 11:03:52 -04:00
.gitignore v1.3 2020-07-26 13:51:27 +01:00
centosimarelease-10.der Add IMA code signing certs 2024-11-08 10:58:05 +08:00
dracut-98-integrity.conf Add some IMA setup tools 2024-11-08 10:58:05 +08:00
gating.yaml initial gating tests 2024-04-09 11:03:52 -04:00
ima-add-sigs.sh Use RSAHEADER to tell if a package has been signed 2025-10-30 09:00:16 +08:00
ima-evm-utils.spec Release 1.6.2-3 2025-07-31 09:14:52 +08:00
ima-setup.sh ima-setup: skip installing rpm-plugin-ima if it has been installed 2025-10-30 08:48:14 +08:00
policy_list Skip some file systems for appraisal 2024-11-08 10:58:05 +08:00
policy-01-appraise-executable-and-lib-signatures Skip some file systems for appraisal 2024-11-08 10:58:05 +08:00
policy-02-keylime-remote-attestation Add some IMA setup tools 2024-11-08 10:58:05 +08:00
redhatimarelease-10.der Add IMA code signing certs 2024-11-08 10:58:05 +08:00
sources Update to upstream 1.6.2 2024-11-15 17:17:26 +08:00