diff options
| author | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2016-03-22T14·39+0100 |
|---|---|---|
| committer | Eelco Dolstra <eelco.dolstra@logicblox.com> | 2016-03-22T14·39+0100 |
| commit | 525c78a2c3a1da5b673d11478d3b1693a7579508 (patch) | |
| tree | a806e0205328c5f72b6ad0d7f8d800ba3471c40f /doc/signing.txt | |
| parent | bb1034316d7dcafa2ab45762a6b6509e922c4c21 (diff) | |
Remove references to old-school signing
Diffstat (limited to 'doc/signing.txt')
| -rw-r--r-- | doc/signing.txt | 24 |
1 files changed, 0 insertions, 24 deletions
diff --git a/doc/signing.txt b/doc/signing.txt deleted file mode 100644 index 7403cac470b2..000000000000 --- a/doc/signing.txt +++ /dev/null @@ -1,24 +0,0 @@ -Generate a private key: - -$ (umask 277 && openssl genrsa -out /etc/nix/signing-key.sec 2048) - -The private key should be kept secret (only readable to the Nix daemon -user). - - -Generate the corresponding public key: - -$ openssl rsa -in /etc/nix/signing-key.sec -pubout > /etc/nix/signing-key.pub - -The public key should be copied to all machines to which you want to -export store paths. - - -Signing: - -$ nix-hash --type sha256 --flat svn.nar | openssl rsautl -sign -inkey mykey.sec > svn.nar.sign - - -Verifying a signature: - -$ test "$(nix-hash --type sha256 --flat svn.nar)" = "$(openssl rsautl -verify -inkey mykey.pub -pubin -in svn.nar.sign)" |