System Grab Bag

View all TLDR pages from common (or from all pages)

in-toto-sign

Sign in-toto link or layout metadata or verify their signatures. More information: https://in-toto.readthedocs.io/en/latest/command-line-tools/in-toto-sign.html.
  • Sign 'unsigned.layout' with two keys and write it to 'root.layout':
    in-toto-sign -f {{unsigned.layout}} -k {{priv_key1}} {{priv_key2}} -o {{root.layout}}
  • Replace signature in link file and write to default filename:
    in-toto-sign -f {{package.2f89b927.link}} -k {{priv_key}}
  • Verify a layout signed with 3 keys:
    in-toto-sign -f {{root.layout}} -k {{pub_key0}} {{pub_key1}} {{pub_key2}} --verify
  • Sign a layout with the default GPG key in default GPG keyring:
    in-toto-sign -f {{root.layout}} --gpg
  • Verify a layout with a GPG key identified by keyid '...439F3C2':
    in-toto-sign -f {{root.layout}} --verify --gpg {{...439F3C2}}

License and Disclaimer

The content on this page is copyright © 2014—present the tldr-pages team and contributors.
This page is used with permission under Creative Commons Attribution 4.0 International License.

While we do attempt to make sure content is accurate, there isn't a warranty of any kind.