From 7da95550a2d11d4bd717f29872a3dc460855ed99 Mon Sep 17 00:00:00 2001
From: Bill <bill@bballou.com>
Date: Sun, 15 Sep 2024 17:40:26 -0400
Subject: [PATCH] Added trusted keys and restored checkusm verification

---
 Dockerfile | 3 +++
 1 file changed, 3 insertions(+)

diff --git a/Dockerfile b/Dockerfile
index 3458066..eee8073 100644
--- a/Dockerfile
+++ b/Dockerfile
@@ -38,6 +38,8 @@ RUN set -ex \
   3EB0DEE6004A13BE5A0CC758BF2978B068054311 \
   287AE4CA1187C68C08B49CB2D11BD4F33F1DB499 \
   F4FC70F07310028424EFC20A8E4256593F177720 \
+  6B002C6EA3F91B1B0DF0C9BC8F617F1200A6D25C \
+  4D1B3D5ECBA1A7E05371EEBE46800E30FC748A66 \
   ; do \
   gpg --batch --keyserver keyserver.ubuntu.com --recv-keys "$key" || \
   gpg --batch --keyserver keys.openpgp.org --recv-keys "$key" || \
@@ -49,6 +51,7 @@ RUN set -ex \
   && curl -SLO https://bitcoincore.org/bin/bitcoin-core-${BITCOIN_VERSION}/bitcoin-${BITCOIN_VERSION}-${TARGETPLATFORM}.tar.gz \
   && curl -SLO https://bitcoincore.org/bin/bitcoin-core-${BITCOIN_VERSION}/SHA256SUMS \
   && curl -SLO https://bitcoincore.org/bin/bitcoin-core-${BITCOIN_VERSION}/SHA256SUMS.asc \
+  && gpg --verify SHA256SUMS.asc SHA256SUMS \
   && grep " bitcoin-${BITCOIN_VERSION}-${TARGETPLATFORM}.tar.gz" SHA256SUMS | sha256sum -c - \
   && tar -xzf *.tar.gz -C /opt \
   && rm *.tar.gz *.asc \