Menu :

TL;DR

in-toto-sign

Sign in-toto link or layout metadata or verify their signatures. More information: https://in-toto.readthedocs.io/en/latest/command-line-tools/in-toto-sign.html.

Sign ‘unsigned.layout’ with two keys and write it to ‘root.layout’:

in-toto-sign -f unsigned.layout -k priv_key1 priv_key2 -o root.layout

Replace signature in link file and write to default filename:

in-toto-sign -f package.2f89b927.link -k priv_key

Verify a layout signed with 3 keys:

in-toto-sign -f root.layout -k pub_key0 pub_key1 pub_key2 --verify

Sign a layout with the default GPG key in default GPG keyring:

in-toto-sign -f root.layout --gpg

Verify a layout with a GPG key identified by keyid ‘…439F3C2’:

in-toto-sign -f root.layout --verify --gpg ...439F3C2

This document was created using the contents of the tldr project.

a
b
c
d
e
f
g
h
i
j
k
l
m
n
o
p
q
r
s
t
u
v
w
x
y
z
others