Git-Mirrors/onionshare
1
0
Fork 0
mirror of https://github.com/onionshare/onionshare.git synced 2025-05-06 08:25:15 -04:00
Code Issues Projects Releases Packages Wiki Activity

Make get-tor.py download Tor Browser signing key from keys.openpgp.org

Browse source
This commit is contained in:
Micah Lee 2023-09-27 11:45:42 -07:00
parent 9f616efdc1
commit f2bf4f0a94
No known key found for this signature in database
GPG key ID: 403C2657CD994F73
3 changed files with 6 additions and 5 deletions
Download patch file Download diff file Expand all files Collapse all files

7
desktop/scripts/get-tor.py
View file

@ -203,6 +203,9 @@ def get_tor_linux64(gpg, torkey, linux64_url, linux64_filename, expected_linux64
# Verify signature
sig_stream = open(tarball_sig_path, "rb")
verified = gpg.verify_file(sig_stream, tarball_path)
print(verified)
print(verified.valid)
print(verified.pubkey_fingerprint)
if not verified.valid or verified.pubkey_fingerprint != tor_dev_fingerprint:
print("ERROR! The tarball verification with the signature failed!")
sys.exit(-1)
@ -322,9 +325,7 @@ def main(platform):
) = get_latest_tor_version_urls(platform)
tmpdir = tempfile.TemporaryDirectory()
gpg = gnupg.GPG(gnupghome=tmpdir.name)
torkey = gpg.import_keys_file(
os.path.join(root_path, "scripts", "kounek7zrdx745qydx6p59t9mqjpuhdf")
)
torkey = gpg.recv_keys("keys.openpgp.org", tor_dev_fingerprint)
print(f"Imported Tor GPG key: {torkey.fingerprints}")
if platform == "win32":