diff options
| author | Jakob Unterwurzacher | 2015-12-20 21:06:30 +0100 |
|---|---|---|
| committer | Jakob Unterwurzacher | 2015-12-20 21:06:30 +0100 |
| commit | c038c1e546b1cf94ab9efebc3d13faaa8a9eb07a (patch) | |
| tree | 169095fd56a50bfca41ec0b83a2a2e91ad1e87d9 /docs | |
| parent | 76e45d66289332e22833bcd316300c7c2d586eb2 (diff) | |
Add signed tag info
Diffstat (limited to 'docs')
| -rw-r--r-- | docs/releases.md | 28 |
1 files changed, 28 insertions, 0 deletions
diff --git a/docs/releases.md b/docs/releases.md new file mode 100644 index 0000000..a7466fc --- /dev/null +++ b/docs/releases.md @@ -0,0 +1,28 @@ +gocryptfs Releases +================== + +Releases done by adding an signed git tag to a commit. All releases +are available via github at https://github.com/rfjakob/gocryptfs/releases . + +All releases from v0.4 onward are signed using the *gocryptfs signing key*, + + Primary key fingerprint: FFF3 E014 44FE D7C3 16A3 545A 895F 5BC1 23A0 2740 + +The public key can be downloaded +[here](https://nuetzlich.net/gocryptfs-signing-key.pub). + +To verify the signed tags, you have to import the public key into your +gpg keyring: + + $ wget https://nuetzlich.net/gocryptfs-signing-key.pub + $ gpg --import gocryptfs-signing-key.pub + +Then, you can verify tags using `git tag -v`: + + $ git tag -v v0.7 + [...] + gocryptfs v0.7 + gpg: Signature made So 20 Dez 2015 20:29:19 CET using RSA key ID 23A02740 + gpg: Good signature [...] + +Note that the `key ID` is simply the last eight digits of the key fingerprint, `23A0 2740`. |