The Mullvad VPN client app for desktop and mobile http://git.waynecole.info/mullvadvpn/atom?h=decrease-leaks-during-reconnect 2024-01-26T06:54:38Z 2024-01-26T06:54:38Z Oskar Nyberg oskar@mullvad.net 2023-07-13T12:23:50Z urn:sha1:5cada71ddd6605a5d7327d1b260166e5de33bccc 2023-10-09T11:21:07Z Oskar Nyberg oskar@mullvad.net 2023-10-09T11:21:00Z urn:sha1:1dd2849f03b3c9cf89e9032f67d2879894c0da18 This reverts commit 7d89e4ec89955ea64288373cffcab3981b2326b1. 2023-07-14T07:35:37Z Oskar Nyberg oskar@mullvad.net 2023-07-13T12:23:50Z urn:sha1:7d89e4ec89955ea64288373cffcab3981b2326b1 2022-07-05T09:27:04Z Jonathan jonathan@mullvad.net 2022-05-11T08:33:11Z urn:sha1:a6b73f3c3bf616b8ddfe075dd8ee197f2de17d58 Create a script which verifies that a set of "locked down" files are not changed in commits that have not been signed. Create a github workflow that runs the script in the CI. The script accepts --whitelist <commit> and --import-gpg-keys arguments. The default settings are supposed to work on the build server without importing the gpg keys from the trusted_keys.pub file and running with a hardcoded whitelist commit. Make the CI workflow use these arguments as it is supposed to in .github. The public keys that can be imported are specified as files in the ci/keys/ directory. The files that are locked down are specified in the .github workflow as a single source of truth. This requires some complicated parsing in the verification script as well as a dependency from the verification script to the workflow YAML. These are not ideal design choices however the alternative is to not have a single source of truth for the locked down files as the github workflow can not depend on an external file. The mullvad signing key is named to be first in the list in order to be imported first. The whitelisted commit is the latest master before this commit