Page MenuHomePhabricator
Differential D4828

Add keys to source package
ClosedPublic
Actions

Authored by jasonbcox on Jan 4 2020, 01:20.

Details

Reviewers
deadalnix
Group Reviewers
Restricted Project
Commits
rSTAGING67412d1ef956: Add keys to source package
rABC67412d1ef956: Add keys to source package
Summary

contrib/gitian-signing contains the fingerprints of the release signing keys as well as a script to check/refresh those keys.
These are useful to users wishing to verify the integrity of their source and binaries.

Inspired by https://reviews.bitcoinabc.org/D4807#116075

Test Plan
ninja package_source
tar -xzvf bitcoin-abc-0.20.10.tar.gz
ls bitcoin-abc-0.20.10/contrib/gitian-signing  # verify files are part of the source package

Diff Detail

Repository
rABC Bitcoin ABC
Lint
Lint Not Applicable
Unit
Tests Not Applicable

Event Timeline

jasonbcox created this revision.Jan 4 2020, 01:20
Herald added a reviewer: Restricted Project. · View Herald TranscriptJan 4 2020, 01:20
Herald added a reviewer: deadalnix. · View Herald Transcript
teamcity added a comment.Jan 4 2020, 01:21

Build Bitcoin-ABC / Diffs / Diff Testing started.

jasonbcox mentioned this in D4807: Add instructions for verifying download integrity against release signer keys.Jan 4 2020, 01:21
teamcity added a comment.Jan 4 2020, 01:28

Build Bitcoin-ABC / Diffs / Diff Testing passed.

Harbormaster completed remote builds in B8728: Diff 15144.Jan 4 2020, 01:28
deadalnix requested changes to this revision.Jan 4 2020, 22:24

Distributing the keys to verify the authenticity and integrity of a package as part of the package makes the whole procedure pointless.

This revision now requires changes to proceed.Jan 4 2020, 22:24
jasonbcox requested review of this revision.Jan 6 2020, 16:56
In D4828#116586, @deadalnix wrote:

Distributing the keys to verify the authenticity and integrity of a package as part of the package makes the whole procedure pointless.

While true on the surface, this is not about providing a process for verifying the integrity of a given source package using the keys inside that same package. The intent is to provide versioned keys to users so they can begin to verify downloads from us. Not doing so is an unnecessary hinderance on UX for first-time key importers. Once a user has the keys, they are no longer reliant on the content of the keys file for anything other than updates to the keys. But since they already have a copy of the keys from a previous release, they'll be able to verify that changes to the keys are legit.

markblundeberg added a subscriber: markblundeberg.EditedJan 12 2020, 08:33

I agree with that rationale, in short "if you have any trusted copy of ABC, it contains the keys to verify any new version".

However it seems it might make more sense to have the keys as part of the repo itself, no? Then the keys will also be accessible on e.g., github.

Edit: Oh I see, the key IDs are in the repo indeed -- contrib/gitian-signing/keys.txt

deadalnix accepted this revision.Jan 12 2020, 15:59
This revision is now accepted and ready to land.Jan 12 2020, 15:59
Closed by commit rABC67412d1ef956: Add keys to source package (authored by jasonbcox). · Explain WhyJan 12 2020, 17:54
This revision was automatically updated to reflect the committed changes.
jasonbcox added a commit: rABC67412d1ef956: Add keys to source package.
jasonbcox added a commit: rSTAGING67412d1ef956: Add keys to source package.Apr 7 2020, 22:23

Revision Contents
Changeset List

PathSize
contrib/
1 line

Diff 15365

View Options

contrib/CMakeLists.txt

Loading...