Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use minisign to verify tarball #43

Open
hendriknielaender opened this issue Jun 13, 2024 · 4 comments
Open

Use minisign to verify tarball #43

hendriknielaender opened this issue Jun 13, 2024 · 4 comments

Comments

@hendriknielaender
Copy link
Owner

Use the official minisign to verify the downloaded zig version.

https://ziglang.org/download/
@jinzhongjia
Copy link
Contributor

jinzhongjia commented Jun 19, 2024
edited
Loading

for verifing tarball, we can use this lib, https://github.com/jedisct1/zig-minisign/tree/main

@hendriknielaender
Copy link
Owner Author

Since the RFCs specs are relatively small, I would prefer if we built it into zvm. We also only need the verification part.

@jinzhongjia
Copy link
Contributor

Is there any specific implementation specification? I checked the upstream repository of minisign and found no specification.

@hendriknielaender
Copy link
Owner Author

It's the EdDS-Algorithm that they implemented in minisign.
https://ed25519.cr.yp.to/

RFC8032

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@jinzhongjia @hendriknielaender