CondorCORE/condorcore-keyring
CondorCORE/condorcore-keyring
2
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity
Arch Linux CondorCore repo PGP keyring
326 Commits 7 Branches 112 Tags 19 MiB
Python 96.8%
Makefile 1.9%
Shell 1.3%
5320f2491e
Go to file
David Runge 5320f2491e
keyringctl: Implement export of ownertrust/ revoker status 
keyringctl:
Add `temp_join_keys()` to generically join PGP packets in a directory
below a temporary directory.
Add `get_all_and_revoked_certs()` to retrieve a tuple containing a list
of all public key fingerprints and a list of all self-revoked public key
fingerprints in a list of paths.
Add `export_ownertrust()` to export a list of fingerprints of
non-revoked public keys to a file that can be imported using `gpg
--import-ownertrust`.
Add `export_revoked()` to export the fingerprints of all self-revoked
public keys and the fingerprints of public keys that have been revoked
by third party signing keys (the latter is still fairly naive).
Change `export_keyring()` to make use of `temp_join_keys()` for
preparing main signing keys and general keys for the export to file. Add
integration for exporting ownertrust and revoker status (using
`export_ownertrust()` and `export_revoked()`, respectively).
Change `__main__` by extending the export_parser by a `-m`/ `--main`
argument to provide one or multiple files or directories, that serve as
the signing authority for key material located below `-s`/ `--source`.
Add a `-p`/ `--pacman-integration` to provide the means to export
ownertrust and revoker status on demand.
2021-11-30 22:54:06 +01:00
.gitlab Update merge request templates 2021-08-18 17:00:51 +00:00
master Update keyring 2021-09-02 22:07:09 +02:00
master-revoked Update keyring 2020-01-08 14:44:28 +01:00
packager Update keyring 2021-11-30 00:18:53 +01:00
packager-revoked Update keyring 2021-11-30 00:18:53 +01:00
.editorconfig feature(keyringctl): add tool to work with key data 2021-11-30 22:54:05 +01:00
.gitattributes Remove unused files from source package 2017-05-26 08:51:44 +02:00
.gitignore Ignore IDE configuration 2017-05-26 08:23:34 +02:00
.gitlab-ci.yml ci: add basic job to check new key additions and removals 2021-05-08 20:00:05 +02:00
archlinux-revoked Update keyring 2021-08-18 23:52:26 +02:00
archlinux-trusted Update keyring 2021-06-11 08:52:53 +02:00
archlinux.gpg Update keyring 2021-11-30 00:18:53 +01:00
keyringctl keyringctl: Implement export of ownertrust/ revoker status 2021-11-30 22:54:06 +01:00
LICENSE Add GPL-3.0-or-later license file 2021-07-29 07:48:34 +02:00
Makefile Prepare release 2021-10-28 11:59:05 +02:00
master-keyids Add main key dvzrv 2021-05-08 20:35:53 +02:00
master-revoked-keyids Revoke thomas' master key 2019-10-11 21:49:49 +02:00
packager-keyids Add new packager key of Massimiliano Torromeo (mtorromeo) 2021-11-30 00:07:40 +01:00
packager-revoked-keyids removal of Alad Wenter (alad) 2021-08-18 23:39:08 +02:00
README.md README: Document the revocation of a packager key 2018-10-04 16:02:28 +02:00
update-keys update-keys: switch to keyserver keyserver.ubuntu.com 2021-08-02 13:23:39 +02:00

README.md

Arch Linux Keyring

Repository for the Arch Linux keyring package.

Addition/Removal/Update of a packaging key

  1. Get the keyid from the bugreport in the keyring project
  2. Add the keyid to packager-keyids in alphabetic order, following this format: full size keyid, a tab, nickname.

Revoking a packager key

  1. Create a key removal task in the keyring project.
  2. Remove the keyid of the revoked user from packager-keyids.
  3. Add the removed keyid to packager-revoked-keyids, in alphabetic order, following this format: full size keyid, a tab, nickname, a tab and reason of revocation.

Keyring release

  1. bump the version in the Makefile
  2. Run update-keys
  3. git add the new .asc file in the packager directory.
  4. Commit everything as 'Update keyring'
  5. Create a new tag git tag -s $(date +"%Y%m%d")
  6. Push changes
  7. Upload the source tarball with make dist upload
  8. Update the package