4 Preferable way is to download tarball with the signature from
5 website and, for example, run tests with benchmarks:
8 $ [fetch|wget] http://gocheese.cypherpunks.ru/gocheese-2.2.0.tar.xz
9 $ [fetch|wget] http://gocheese.cypherpunks.ru/gocheese-2.2.0.tar.xz.sig
10 $ gpg --verify gocheese-2.2.0.tar.xz.sig gocheese-2.2.0.tar.xz
11 $ xz -d < gocheese-2.2.0.tar.xz | tar xf -
12 $ make -C gocheese-2.2.0 all test
15 @multitable {XXXXX} {XXXX-XX-XX} {XXXX KiB} {link sign} {xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx}
16 @headitem Version @tab Date @tab Size @tab Tarball @tab SHA256 checksum
18 @item 2.2.0 @tab 2019-12-09 @tab 100 KiB
19 @tab @url{gocheese-2.2.0.tar.xz, link} @url{gocheese-2.2.0.tar.xz.sig, sign}
20 @tab @code{5AA24DA6 C03C51BD 5C45CD50 AA1F19B5 6360C892 3ED86F06 D0F2B8FA 4C8CCB5B}
24 You @strong{have to} verify downloaded tarballs integrity and
25 authenticity to be sure that you retrieved trusted and untampered
26 software. @url{https://www.gnupg.org/, GNU Privacy Guard} is used
29 For the very first time it is necessary to get signing public key and
30 import it. It is provided below, but you should check alternative
34 pub rsa2048/0xCD5CD01F55343D88 2019-12-08 [SC]
35 9B27640BA78437EC6D4ACA6CCD5CD01F55343D88
36 uid GoCheese releases <gocheese@cypherpunks.ru>
43 $ gpg --auto-key-locate dane --locate-keys gocheese at cypherpunks dot ru
44 $ gpg --auto-key-locate wkd --locate-keys gocheese at cypherpunks dot ru
48 @verbatiminclude PUBKEY.asc
52 You can obtain development source code with
53 @command{git clone git://git.cypherpunks.ru/gocheese.git}.