diff options
| author | Ross Nicoll <[email protected]> | 2021-07-14 21:26:56 +0100 |
|---|---|---|
| committer | Ross Nicoll <[email protected]> | 2021-07-14 21:26:56 +0100 |
| commit | 0487794b7c3310ead15f39ff5d37c4a30ccbd1bb (patch) | |
| tree | fcb0dc44be44d09598cc0e5b91ecdce9ab8bbe90 /contrib | |
| parent | Merge pull request #1904 from slightlyskepticalpotat/snap-support-2021 (diff) | |
| download | discoin-0487794b7c3310ead15f39ff5d37c4a30ccbd1bb.tar.xz discoin-0487794b7c3310ead15f39ff5d37c4a30ccbd1bb.zip | |
Refine Snap verification message
Refine Snap verification message to accurately reflect it's checking secure hashes,
not signatures. Checking signature would entail verifying there is a signature from a
trusted person, not just that the hash matches a value in the known values list.
Diffstat (limited to 'contrib')
| -rw-r--r-- | contrib/snap/snapcraft.yaml | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/contrib/snap/snapcraft.yaml b/contrib/snap/snapcraft.yaml index 8a5b21b4d..ad357b142 100644 --- a/contrib/snap/snapcraft.yaml +++ b/contrib/snap/snapcraft.yaml @@ -37,10 +37,10 @@ parts: wget https://github.com/dogecoin/dogecoin/releases/download/v${SNAPCRAFT_PROJECT_VERSION}/dogecoin-${SNAPCRAFT_PROJECT_VERSION}-${SNAPCRAFT_ARCH_TRIPLET}.tar.gz wget https://github.com/dogecoin/gitian.sigs/archive/refs/heads/master.zip unzip master.zip - echo "Verifying signatures..." + echo "Verifying secure hash matches signed values..." checksum=$(sha256sum dogecoin-${SNAPCRAFT_PROJECT_VERSION}-${SNAPCRAFT_ARCH_TRIPLET}.tar.gz) if ! grep -r $checksum *; then - echo "Signature not verified." + echo "Secure hash not verified." return fi tar -xvf dogecoin-${SNAPCRAFT_PROJECT_VERSION}-${SNAPCRAFT_ARCH_TRIPLET}.tar.gz |