ima: Document and replace keys and adapt scripts for EC keys For shorted file signatures use EC keys rather than RSA keys. Document the debug keys and their purpose. Adapt the scripts for creating these types of keys to now create EC keys. Signed-off-by: Stefan Berger <stefanb@linux.ibm.com>

commit: aa7c9ff77e20ef284b746a6eb6293e95ac8f8397 [log] [tgz]
author: Stefan Berger <stefanb@linux.ibm.com> Tue Mar 28 17:31:50 2023 -0400
committer: Stefan Berger <stefanb@linux.ibm.com> Wed Apr 26 20:18:39 2023 -0400
tree: 54a28f23ebf3a50b6f91c28ca1019474d206b8f2
parent: 8af674e68bedd36b37344726e62d11880dfd6131 [diff] [blame]
diff --git a/meta-security/meta-integrity/data/debug-keys/ima-local-ca.priv b/meta-security/meta-integrity/data/debug-keys/ima-local-ca.priv
new file mode 100644
index 0000000..e13de23
--- /dev/null
+++ b/meta-security/meta-integrity/data/debug-keys/ima-local-ca.priv

@@ -0,0 +1,7 @@
+-----BEGIN ENCRYPTED PRIVATE KEY-----
+MIHjME4GCSqGSIb3DQEFDTBBMCkGCSqGSIb3DQEFDDAcBAhinM5KnV2x5wICCAAw
+DAYIKoZIhvcNAgkFADAUBggqhkiG9w0DBwQI4Xbw/W1pgH0EgZCiurgCTUEIDbiK
+x5kw3/Rg1/ZLwk5TEiMoIa9CmXEyuSRUla/Ta4o/rZEzKAp6vwkcupviirtWYems
+lZNfggfzITWNEWtkU6BrhZgJ7kaeZrIbuAO7YUJy6Z2MQfgaKI9BE2EEgKJ+X5gY
+LjkobSAtEqDjuheLgaXIMQ7/qT0MGmi6LmzwMEhu8ZXlNGg8udw=
+-----END ENCRYPTED PRIVATE KEY-----
commit	aa7c9ff77e20ef284b746a6eb6293e95ac8f8397	[log] [tgz]
author	Stefan Berger <stefanb@linux.ibm.com>	Tue Mar 28 17:31:50 2023 -0400
committer	Stefan Berger <stefanb@linux.ibm.com>	Wed Apr 26 20:18:39 2023 -0400
tree	54a28f23ebf3a50b6f91c28ca1019474d206b8f2
parent	8af674e68bedd36b37344726e62d11880dfd6131 [diff] [blame]