https://bugzilla.redhat.com/show_bug.cgi?id=1908909
Bug ID: 1908909 Summary: Review Request: keyring-ima-signer - An IMA file signing tool using the kernel keyring Product: Fedora Version: rawhide Status: NEW Component: Package Review Assignee: nobody@fedoraproject.org Reporter: pbrobinson@gmail.com QA Contact: extras-qa@fedoraproject.org CC: package-review@lists.fedoraproject.org Target Milestone: --- Classification: Fedora
SPEC: https://pbrobinson.fedorapeople.org/keyring-ima-signer.spec SRPM: https://pbrobinson.fedorapeople.org/keyring-ima-signer-0.1.0-1.fc33.src.rpm
Description: The IMA (Integrity Measurement Architecture) is a key component of the Linux integrity subsystem designed to ensure integrity, authenticity, and confidentiality of systems including hardware root of trusts (TPM).
This tool allows signing of files in userspace, inclusding options of including the signature in xattr or a .sig file, using signing keys stored in the kernel keyring to ensure they're not recoverable.
FAS: pbrobinson
koji: https://koji.fedoraproject.org/koji/taskinfo?taskID=57672626