X-Git-Url: http://www.git.cypherpunks.ru/?a=blobdiff_plain;f=doc%2Finstall.texi;fp=doc%2Finstall.texi;h=50d0ff643068c39aa202adce41be262764598df2;hb=97af106b9c62a7daa9d4ce97b242512a656b032d;hp=d5743d7c6d453aa9519193b66fad57308b8b253b;hpb=a10ebfa54d3bd13045b73596d78460c4ebe2a674;p=goredo.git diff --git a/doc/install.texi b/doc/install.texi index d5743d7..50d0ff6 100644 --- a/doc/install.texi +++ b/doc/install.texi @@ -41,8 +41,8 @@ Preferable way is to download tarball with the signature from website: @example $ [fetch|wget] http://www.goredo.cypherpunks.ru/download/goredo-@value{VERSION}.tar.zst -$ [fetch|wget] http://www.goredo.cypherpunks.ru/download/goredo-@value{VERSION}.tar.zst.asc -$ gpg --verify goredo-@value{VERSION}.tar.zst.asc goredo-@value{VERSION}.tar.zst +$ [fetch|wget] http://www.goredo.cypherpunks.ru/download/goredo-@value{VERSION}.tar.zst.@{asc,sig@} +[verify signature] $ zstd -d < goredo-@value{VERSION}.tar.zst | tar xf - $ cd goredo-@value{VERSION}/src $ go build -mod=vendor @@ -51,36 +51,9 @@ $ export PATH=`pwd`:$PATH # let your system know about goredo @end example @include download.texi +@include integrity.texi -You @strong{have to} verify downloaded tarballs integrity and -authenticity to be sure that you retrieved trusted and untampered -software. @url{https://www.gnupg.org/, GNU Privacy Guard} is used -for that purpose. - -For the very first time it is necessary to get signing public key and -import it. It is provided below, but you should check alternative -resources. - -@verbatim -pub ed25519/0x3A528DDE952C7E93 2021-01-09 [SC] - 7531BB84FAF0BF35960C63B93A528DDE952C7E93 -uid goredo releases -@end verbatim - -@itemize - -@item -@example -$ gpg --auto-key-locate dane --locate-keys goredo at cypherpunks dot ru -$ gpg --auto-key-locate wkd --locate-keys goredo at cypherpunks dot ru -@end example - -@item -@verbatiminclude ../PUBKEY.asc - -@end itemize - -It is also @command{go install}-able: +@command{goredo} is also @command{go install}-able: @example $ go install go.cypherpunks.ru/goredo