Skip to content
Snippets Groups Projects
Verified Commit 9cbe1e14 authored by Christian Hesse's avatar Christian Hesse :stuck_out_tongue_winking_eye:
Browse files

update-keys: switch to keyserver keyserver.ubuntu.com 

As the SKS infrastructure is offline for good, we need to switch to
keyserver.ubuntu.com for the time being.

The Ubuntu keyservers to not support EC keys, thus we have to ignore
failure when refreshing keys.
parent 0ee9781b
No related branches found
No related tags found
No related merge requests found
Hide whitespace changes
Inline Side-by-side
Showing
with 4 additions and 2 deletions
update-keys
+ 4
2
View file @ 9cbe1e14
......@@ -9,7 +9,7 @@ export LANG=C
TMPDIR=$(mktemp -d)
trap "rm -rf '${TMPDIR}'" EXIT
KEYSERVER='hkp://pool.sks-keyservers.net'
KEYSERVER='hkps://keyserver.ubuntu.com'
GPG=(gpg --homedir "${TMPDIR}")
cat << __EOF__ > "${TMPDIR}"/gpg.conf
......@@ -49,7 +49,9 @@ while read -ra data; do
keyid="${data[0]}"
username="${data[@]:1}"
if "${GPG[@]}" --list-keys ${keyid} >/dev/null &>/dev/null; then
"${GPG[@]}" --refresh-keys ${keyid} &>/dev/null
# Ignore refresh failure; Ubuntu keyserver lacks support for EC keys
# TODO: Remove the "|| true" when the above is no longer an issue
"${GPG[@]}" --refresh-keys ${keyid} &>/dev/null || true
else
"${GPG[@]}" --recv-keys ${keyid} &>/dev/null
fi
......
0% or .
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment