test

Developer's Guide to Oracle Solaris Security

ProcedureTo Verify That a Provider Is Signed

  1. Collect the certificate that Oracle issued and the path to the signed provider.

  2. Verify that the provider is correctly signed by using the elfsign verify command.

    The following example demonstrates verification with the assumption that the certificate is in the default directory, /etc/crypto/certs/MyCompany.


    % elfsign verify \
-e /path/to/MyProvider.so.1
elfsign: verification of /path/to/MyProvider.so.1 passed

    The following example demonstrates storage of the certificate in a non-default directory.


    % elfsign verify \
-c /path/to/MyCerts  \
-e /path/to/MyProvider.so.1
elfsign: verification of /path/to/MyProvider.so.1 passed

    The following example demonstrates verification of a provider that has been signed with a restricted certificate.


    % elfsign verify \
-e /path/to/MyRestrictedProvider.so.1
elfsign: verification of /path/to/MyRestrictedProvider.so.1 passed, \
but restricted.