This project was previously known as elfpgp.
A simple (Linux) utility to inject/verify PGP signatures in elf files using GPG.
- ELF - binary format used on Linux and other OSes.
- PGP - public key management, encrypion engine, signing facility.
- GPG - an implementation of PGP.
The elf (Executable & Link Format) file format is very suitable for inserting PGP signatures into. This project strides to provide a simple way to sign a binary executable and to verify the signature.
AboutThe project is in very early stages but (at least) the following features are provided:
- Ability to sign a executable or library or a group of executables/libraries:
$ elfgpg --sign -v /bin/ls /bin/vim Using <your key name> Enter passphrase: /bin/ls OK /bin/vim OK- Ability to verify an executable or library or a group of executables/libraries:
$ elfgpg --verify -v /bin/* /bin/ls OK <your key name> /bin/vim OK <your key name> /bin/vi UNSIGNED /bin/grep NO TRUST <other key name>Note that ls and vim were signed by you so the signature test passes, however, grep was signed by <other key name> and cannot be truested based on the trust relationships in the PGP keyring you have. Also, vi was not signed at all.
DownloadSo now you know what is available. Know also that it is not finished and probably very very unstable. As with many projects this one comes with no warantly. If you use it, your executables can be altered such that they start to eat all your files and make your monitor explode. Still want it?
- most recent release is 0.1.6...
- releases: source downloads.
- debian: .deb downloads, mentors.debian.net apt repository.
- browse the source tree.
- current documentation files are: README, and BUGS.
DependanciesDependancies are not yet checked for. You will need the following to compile the elfgpg project: