From 8e8d330967374ea9e8d114647ff4c88239b2aa38 Mon Sep 17 00:00:00 2001
From: Christian Hesse <mail@eworm.de>
Date: Tue, 17 Oct 2017 12:00:13 +0200
Subject: [PATCH] Use minimal export for revoked keys

We need the key and most recent self signature.

Signed-off-by: Christian Hesse <mail@eworm.de>
---
 update-keys | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/update-keys b/update-keys
index 442ef722..707752bc 100755
--- a/update-keys
+++ b/update-keys
@@ -45,7 +45,7 @@ while read -ra data; do
 	printf 'clean\nquit\ny\n' | \
 		${GPG} --command-fd 0 --edit-key ${keyid}
 	if ! ${GPG} --list-keys --with-colons ${keyid} 2>/dev/null | grep -q '^pub:f:'; then
-		${GPG} --armor --no-emit-version --export ${keyid} >> master-revoked/${username}.asc
+		${GPG} --armor --no-emit-version --export-options export-minimal --export ${keyid} >> master-revoked/${username}.asc
 		echo "${keyid}" >> archlinux-revoked
 	else
 		echo "key is still fully trusted: ${keyid} ${username}"
@@ -75,7 +75,7 @@ while read -ra data; do
 	printf 'clean\nquit\ny\n' | \
 		${GPG} --command-fd 0 --edit-key ${keyid}
 	if ! ${GPG} --list-keys --with-colons ${keyid} 2>/dev/null | grep -q '^pub:f:'; then
-		${GPG} --armor --no-emit-version --export ${keyid} >> packager-revoked/${username}.asc
+		${GPG} --armor --no-emit-version --export-options export-minimal --export ${keyid} >> packager-revoked/${username}.asc
 		echo "${keyid}" >> archlinux-revoked
 	else
 		echo "key is still fully trusted: ${keyid} ${username}"
-- 
GitLab