revert: remove dual-key license verification

Restored original license signing key from backup - key was never compromised (private repo). Removes unnecessary dual-key complexity: - Remove legacyPublicKey and SetLegacyPublicKey from license.go - Simplify signature verification to single key - Remove EmbeddedLegacyPublicKey from pubkey.go - Remove PULSE_LICENSE_LEGACY_PUBLIC_KEY from Dockerfile and workflows - Remove dual-key test - Simplify mock.env
2026-04-28 03:20:11 +00:00 · 2026-02-03 21:29:21 +00:00 · 2026-02-03 21:29:21 +00:00 · 1490a6e6e3
commit 1490a6e6e3
parent 6e034a343a
11 changed files with 16 additions and 219 deletions
--- a/mock.env
+++ b/mock.env
@ -7,13 +7,5 @@ PULSE_MOCK_DOCKER_HOSTS=3
 PULSE_MOCK_DOCKER_CONTAINERS=12
 PULSE_MOCK_RANDOM_METRICS=true
 PULSE_MOCK_STOPPED_PERCENT=20
-# License verification keys (Ed25519 public keys, base64 encoded)
-# For local dev, use the legacy key as primary since existing test licenses use it.
-# For production releases, set the new key as primary and old key as legacy.
-#
-# Key rotation (2026-02-03):
-#   - Legacy key: OzbVzmg+TaSGt0eWzDVpn0QkqhOzJqUbOFvSF3AmuRU= (signs existing licenses)
-#   - New key: Set via PULSE_LICENSE_PUBLIC_KEY at build time
-#
+# License verification key (Ed25519 public key, base64 encoded)
 PULSE_LICENSE_PUBLIC_KEY="OzbVzmg+TaSGt0eWzDVpn0QkqhOzJqUbOFvSF3AmuRU="
-# PULSE_LICENSE_LEGACY_PUBLIC_KEY=""  # Set in production builds for dual-key verification