mchus/keys
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

feat(keygen): export SSH public key alongside signing key

Browse Source 
Same Ed25519 key now serves dual purpose:
- Release binary signing (developers/<name>.pub raw base64)
- SSH access to debug LiveCD (~/.keys/<name>.key.pub OpenSSH format)

build-debug.sh auto-collects ~/.keys/*.key.pub into authorized_keys.

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
This commit is contained in:
Michael Chus
2026-03-05 10:42:42 +03:00
parent 9ffc57ec1a
commit efba949afd
2 changed files with 50 additions and 9 deletions
Download Patch File Download Diff File Expand all files Collapse all files

9
README.md
View File

@@ -18,8 +18,13 @@ sh scripts/keygen.sh <your-name>
```
This creates:
- `~/.keys/<your-name>.key` — private key, keep secret
- `developers/<your-name>.pub` — public key, commit to this repo
- `~/.keys/<your-name>.key` — private key PEM, keep secret
- `~/.keys/<your-name>.key.pub` SSH public key (OpenSSH format)
- `developers/<your-name>.pub` — raw base64 public key, commit to this repo
**One key, two uses:**
- Release signing: `developers/<your-name>.pub` embedded in binaries via ldflags
- SSH access to debug LiveCD: `~/.keys/<your-name>.key.pub` auto-loaded by `build-debug.sh`
Then commit and push the `.pub` file. Next project release will include your key.