FS#67600 - [releng] Enable WKD lookup for archiso signatures
Attached to Project:
Release Engineering
Opened by A. Bosch (progandy) - Sunday, 16 August 2020, 08:34 GMT
Last edited by David Runge (dvzrv) - Monday, 29 March 2021, 17:14 GMT
Opened by A. Bosch (progandy) - Sunday, 16 August 2020, 08:34 GMT
Last edited by David Runge (dvzrv) - Monday, 29 March 2021, 17:14 GMT
|
Details
I propose to add the Signer's UID to the signature file,
possibly by using --sender in the gpg command. Then a WKD
lookup can be performed to find the public key belonging to
a signature. The public keyservers, especially the default
hkps pool, are becoming increasingly unreliable.
|
This task depends upon
Closed by David Runge (dvzrv)
Monday, 29 March 2021, 17:14 GMT
Reason for closing: Upstream
Additional comments about closing: This is now tracked in: https://gitlab.archlinux.org/archlinux/r eleng/-/issues/1
Monday, 29 March 2021, 17:14 GMT
Reason for closing: Upstream
Additional comments about closing: This is now tracked in: https://gitlab.archlinux.org/archlinux/r eleng/-/issues/1
We will be rewriting/migrating the scripts in use by Pierre Schmitz to our gitlab: https://gitlab.archlinux.org/archlinux/releng
I will add a ticket for this issue there and close this one.