mirror of
https://github.com/octoleo/syncthing.git
synced 2024-11-17 10:35:11 +00:00
91084b83b4
### Purpose Instead of hardcoding `SigningKey` as text use `go:embed`. Fixes #9247. ### Testing * Building syncthing * Trying to upgrade (signature verification)
19 lines
669 B
Go
19 lines
669 B
Go
// Copyright (C) 2015 The Syncthing Authors.
|
|
//
|
|
// This Source Code Form is subject to the terms of the Mozilla Public
|
|
// License, v. 2.0. If a copy of the MPL was not distributed with this file,
|
|
// You can obtain one at https://mozilla.org/MPL/2.0/.
|
|
|
|
package upgrade
|
|
|
|
import _ "embed"
|
|
|
|
// SigningKey is the public key used to verify signed upgrades. It must match
|
|
// the private key used to sign binaries for the built in upgrade mechanism to
|
|
// accept an upgrade. Keys and signatures can be created and verified with the
|
|
// stsigtool utility. The build script creates signed binaries when given the
|
|
// -sign option.
|
|
//
|
|
//go:embed signingkey.pem
|
|
var SigningKey []byte
|