Image Properties for Signed Packages
Configure the following image properties to use signed packages.
-
signature-policy
-
The value of this property determines the checks that will be performed on manifests when installing, updating, modifying, or verifying packages in the image. The final policy applied to a package depends on the combination of image policy and publisher policy. The combination will be at least as strict as the stricter of the two policies taken individually. By default, the package client does not check whether certificates have been revoked. To enable those checks, which might require the package client to contact external web sites, set the
check-certificate-revocation
image property totrue
. The following values are allowed:-
ignore
-
Ignore signatures for all manifests.
-
verify
-
Verify that all manifests with signatures are validly signed but do not require all installed packages to be signed.
This is the default value.
-
require-signatures
-
Require that all newly installed packages have at least one valid signature. The
pkg fix
andpkg verify
commands also warn if an installed package does not have a valid signature. -
require-names
-
Follow the same requirements as
require-signatures
but also require that the strings listed in thesignature-required-names
image property appear as a common name of the certificates used to verify the chains of trust of the signatures.
-
-
signature-required-names
-
The value of this property is a list of names that must be seen as common names of certificates while validating the signatures of a package.