Forrest logo
back to the in-toto-sign tool

in-toto-sign:tldr:03968

in-toto-sign: Sign 'unsigned.layout' with two keys and write it to 'root.layout'.
$ in-toto-sign -f ${unsigned-layout} -k ${priv_key1} ${priv_key2} -o ${root-layout}
try on your machine

This command is using the in-toto framework to sign a layout file with multiple private keys.

Here's the breakdown of each component in the command:

  • in-toto-sign: This is the command itself, executed to sign a layout file.

  • -f ${unsigned-layout}: -f specifies the file to be signed. ${unsigned-layout} is a placeholder representing the path to the layout file that needs to be signed. Make sure to replace ${unsigned-layout} with the actual file path.

  • -k ${priv_key1} ${priv_key2}: -k indicates the private key(s) to use for signing. ${priv_key1} and ${priv_key2} are placeholders for the paths to the private key files. You can provide multiple private keys by separating them with spaces. Replace each ${priv_keyX} placeholder with the actual path to a private key file.

  • -o ${root-layout}: -o specifies the output file, where the signed layout will be saved. ${root-layout} is a placeholder for the path where you want to save the signed layout file. Replace ${root-layout} with the actual desired output file path.

To use this command, make sure you have the in-toto software installed, and replace the placeholders with the appropriate file paths for your scenario.

This explanation was created by an AI. In most cases those are correct. But please always be careful and never run a command you are not sure if it is safe.
back to the in-toto-sign tool