Radish alpha
r
radicle.xyz
rad:z371PVmDHdjJucejRoRYJcDEvD5pp
Radicle website including documentation and guides
Radicle
Git
Commits 38d6dd2
install, download: Add Erik and Lorenz as signers
Fintan Halpenny committed 8 months ago
commit 38d6dd2e2c55a13429c5d7c27fce95353f6f8d59
parent ac3dca2
2 files changed +15 -2
modified _pages/download.md
@@ -69,9 +69,18 @@ reproduce the binaries on this page from source.


<table>

  <thead><th>Signer</th></thead>
+ 
  <tr><td>Key</td><td><code>ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL460KIEccS4881p7PPpiiQBsxF+H5tgC6De6crw9rbU</code></td></tr>
+ 
  <tr><td>Fingerprint</td><td><code>SHA256:iTDjRHSIaoL8dpHbQ0mv+y0IQqPufGl2hQwk4TbXFlw</code></td></tr>
+ 
  <tr><td>Owner</td><td>cloudhead@radicle.xyz</td></tr>
+ 
  <tr><td>Key</td><td><code>ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBrJyJTwj/xG7F7qY0HDFXbb8A+xNNH8eILQ8hlvKW7/</code></td></tr>
+ 
  <tr><td>Fingerprint</td><td><code>SHA256:MOkcQvljDqQn8y+zlHFssx6gdH0rXdC+Wn88bsTPp6g</code></td></tr>
+ 
  <tr><td>Owner</td><td>erik@radicle.xyz</td></tr>

  <tr><td>Key</td><td><code>ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEFsaRqAJ1r6bBFwlcWzJKN7DdjItQDumCNc0wqw6Dvk</code></td></tr>

  <tr><td>Fingerprint</td><td><code>SHA256:vV38nW5eSWfTMITdAoMCBOFzEEr0bDMXjSWHpwrpsKY</code></td></tr>

  <tr><td>Owner</td><td>fintan@radicle.xyz</td></tr>
+ 
  <tr><td>Key</td><td><code>ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFhK7CqgIIbSthoNn8ea32krOnMzC807Z+PpBkR2YOVj</code></td></tr>
+ 
  <tr><td>Fingerprint</td><td><code>SHA256:xX6bpr+AeF5G0wIvU8nLisgYRM6XjQVNJs3hkMGt+T0</code></td></tr>
+ 
  <tr><td>Owner</td><td>lorenz@radicle.xyz</td></tr>

</table>



<p id="radicle-httpd-release-header" class="loading">
modified install
@@ -7,7 +7,9 @@ set -e
# SSH signing key for the release archives. This is currently cloudhead and fintan's keys.

# FIXME: Technically, there should be a release signing key, with a shamir threshold of > 1, with the secret encrypted by something like SOPS.

CLOUDHEAD="ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIL460KIEccS4881p7PPpiiQBsxF+H5tgC6De6crw9rbU"
+ 
ERIK="ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIBrJyJTwj/xG7F7qY0HDFXbb8A+xNNH8eILQ8hlvKW7/"

FINTAN="ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIEFsaRqAJ1r6bBFwlcWzJKN7DdjItQDumCNc0wqw6Dvk"
+ 
LORENZ="ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIFhK7CqgIIbSthoNn8ea32krOnMzC807Z+PpBkR2YOVj"



url() {

  echo "https://files.radicle.xyz/releases/$1/radicle-$2.tar.xz"
@@ -126,8 +128,10 @@ verify() {
  archive="$1"

  signers="$(dirname $archive)/signers"

  # Add the signer key to the allowed signers file we pass to ssh-keygen.
- 
  printf "radicle $FINTAN\n" > $signers
- 
  printf "radicle $CLOUDHEAD\n" >> $signers
+ 
  printf "radicle $CLOUDHEAD\n" > $signers
+ 
  printf "radicle $ERIK\n" >> $signers
+ 
  printf "radicle $FINTAN\n" >> $signers
+ 
  printf "radicle $LORENZ\n" >> $signers



  # Verify that `$archive` was signed by a key in `$signers`, identified by the

  # pattern "*@radicle.xyz", using the signature in `$archive.sig`.