From 0d4c7fbac87425b0334c69c46b1699b13338b877 Mon Sep 17 00:00:00 2001
From: Mark Wooding <mdw@distorted.org.uk>
Date: Wed, 27 Jan 2016 14:31:39 +0000
Subject: [PATCH] distorted.lisp: Now using LetsEncrypt certificates on other
 servers.

Add the public keys and publish the TLSA records.
---
 distorted.lisp            |  8 ++++++--
 keys/https-jazz.pub       | 11 +++++++++++
 keys/https-telecaster.pub | 11 +++++++++++
 3 files changed, 28 insertions(+), 2 deletions(-)
 create mode 100644 keys/https-jazz.pub
 create mode 100644 keys/https-telecaster.pub

diff --git a/distorted.lisp b/distorted.lisp
index 3b0b297..0c22c69 100644
--- a/distorted.lisp
+++ b/distorted.lisp
@@ -142,9 +142,13 @@
 
   ;; Colocated services.
   ((irc vox keys) (colo :svc jazz.colo :sshfp "jazz")
-		  (jump :svc jazz.jump :sshfp "jazz"))
+		  (jump :svc jazz.jump :sshfp "jazz")
+		  :tlsa (:https (:service-certificate-constraint
+				 :public-key :sha-256 #p"https-jazz")))
   ((bugs lists) (colo :svc telecaster.colo :sshfp "telecaster")
-		(jump :svc telecaster.jump :sshfp "telecaster"))
+		(jump :svc telecaster.jump :sshfp "telecaster")
+		:tlsa (:https (:service-certificate-constraint
+			       :public-key :sha-256 #p"https-telecaster")))
   ((git www mail) (colo :svc stratocaster.colo :sshfp "stratocaster")
 		  (jump :svc stratocaster.jump :sshfp "stratocaster"))
   ((www git mail @) :tlsa (:https (:service-certificate-constraint
diff --git a/keys/https-jazz.pub b/keys/https-jazz.pub
new file mode 100644
index 0000000..85f81b9
--- /dev/null
+++ b/keys/https-jazz.pub
@@ -0,0 +1,11 @@
+-----BEGIN PUBLIC KEY-----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+-----END PUBLIC KEY-----
diff --git a/keys/https-telecaster.pub b/keys/https-telecaster.pub
new file mode 100644
index 0000000..6b05271
--- /dev/null
+++ b/keys/https-telecaster.pub
@@ -0,0 +1,11 @@
+-----BEGIN PUBLIC KEY-----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+-----END PUBLIC KEY-----
-- 
2.11.0