System Administration Guide: Basic Administration

Signed and Unsigned Patches

A signed patch is one that has a digital signature applied to it. A patch that has its digital signature verified has not been modified since the signature was applied. The digital signature of a signed patch is verified after the patch is downloaded to your system.

Patches for Oracle Solaris, starting with the 2.6 release, are available as signed patches and as unsigned patches. Unsigned patches do not have a digital signature.

Note –

The process of adding and removing signed patches by using the patchadd command includes obtaining and applying a trusted certificate by using the keytool utility. Procedures that associated with using the keytool utility in this Oracle Solaris release are not described in detail in this chapter. For complete instructions on using the keytool utility to import and export trusted certificates, go to

For information about applying patches to your system by using the patchadd command, see Managing Patches by Using the patchadd Command (Task Map).

For additional overview information about signed patches, see Signed Packages, Patches, and Software Updates.