Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

emphasize deletion of all signatures if using invalid identity #10122

Merged
merged 1 commit into from
Jun 25, 2018
+8 −2
Merged

emphasize deletion of all signatures if using invalid identity #10122

Changes from all commits
Commits
Show all changes
1 commit
Select commit
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
10 changes: 8 additions & 2 deletions admin_guide/image_signatures.adoc
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -124,9 +124,15 @@ $ oc adm policy add-cluster-role-to-user system:image-auditor <user_name>
endif::[]
====

[IMPORTANT]
====
Using the `--save` flag on already verified image together with invalid GPG key
or invalid expected identity causes the saved verification status to be removed,
and the image will become unverified.
or invalid expected identity causes the saved verification status and all
signatures to be removed, and the image will become unverified.
In order to avoid deleting all signatures by mistake, you can run the command
without the `--save` flag first and check the logs for potential issues.
====

To verify an image signature use the following format:

Expand Down