about summary refs log tree commit diff
path: root/users/amjoseph/keys.nix
diff options
context:
space:
mode:
authorAdam Joseph <adam@westernsemico.com>2024-05-10T23·30-0700
committerclbot <clbot@tvl.fyi>2024-05-11T08·45+0000
commit37ddddc2e3de7dd118923324c8ccfd146ef0c83c (patch)
tree82386750a1704259b6a84fb81a31993a54ac5162 /users/amjoseph/keys.nix
parentcff903caffc5d21d31f76f46bc5790ab8de444db (diff)
feat(users/amjoseph): init r/8097
Change-Id: Icfc73faa951b2ad041f2cecdae0614a3b6b82426
Reviewed-on: https://cl.tvl.fyi/c/depot/+/11625
Tested-by: BuildkiteCI
Reviewed-by: tazjin <tazjin@tvl.su>
Autosubmit: Adam Joseph <adam@westernsemico.com>
Diffstat (limited to 'users/amjoseph/keys.nix')
-rw-r--r--users/amjoseph/keys.nix22
1 files changed, 22 insertions, 0 deletions
diff --git a/users/amjoseph/keys.nix b/users/amjoseph/keys.nix
new file mode 100644
index 000000000000..8cc2f24369b1
--- /dev/null
+++ b/users/amjoseph/keys.nix
@@ -0,0 +1,22 @@
+{ ... }:
+
+let
+  # Long-term, air-gapped PGP key.  This key is used only for signing other
+  # keys.  It is a minor hassle for me to access this key.
+  airgap = "F0B74D717CDE8412A3E0D4D5F29AC8080DA8E1E0";
+
+  # Stored in an HSM.  Signed by the above key.
+  current = "D930411B675A011EB9590713DC4AB809B13BE76D";
+
+  # Chat protocols that depend on DNS, WebPKI, or E.164 are lame.  This is not.
+  ricochet = "emhxygy5mezcovm5a6q5hze5eqfqgieww56eh4ttwmrolwqmzgb6qiyd";
+
+  # This ssh key is for depot.  Please don't use it elsewhere, except to give
+  # me the ability to set a system-specific key elsewhere.  Not currently
+  # stored in an HSM, but I'm working on that.
+  ssh-for-depot = "ssh-ed25519 AAAAC3NzaC1lZDI1NTE5AAAAIOE5e0HrwQTI5KOaU12J0AJG5zDpWn4g/U+oFXz7SkbD";
+
+in
+{
+  all = [ ssh-for-depot ];
+}