... and get latest changes, including:

* revocation of stativ's packager key
* revocation of thomas' master key (dan and giovanni loose full
  trust, but no single package is signed by their key)
* new key of dvzrv

... and get latest signatures, including fourth master key signature
for arodseth (which should allow to revoke thomas' master key).

... with comments.

... containing username and keyid

... and get everything stripped by export-minimal before - including
proper revocation signatures.

... and get latest signatures, including:

* extended lifetime for anthraxx' packager key
* extra master signature for anatolik's key (which brings us one step
  closer to revoking thomas' master key)
* diabonas' packager key with three master key signatures

... and get latest signatures.

... and get latest signatures, including key with extended
lifetime for daurnimator.

No idea why options in configuration file are more effective than
options on the command line... But everything needed is still there.

Eli Schwartz authored 5 years ago and Christian Hesse committed 5 years ago

Using popd at the very end of a shell script is unnecessary, because, as
the very last command, there is nothing to restore state for.
Immediately after, the shell subprocess is ended, and processes don't
control the cwd of the parent process. Changing the cwd for the last
microsecond of the shell process, during which no commands are run, is
a mildly expensive no-op.

By the same measure, if popd is never used, pushd is not needed to
record the old cwd. So simply use 'cd'.

Signed-off-by: Christian Hesse <mail@eworm.de>

Eli Schwartz authored 5 years ago and Christian Hesse committed 5 years ago

This option only affects --export, and we always use armored keys.

Signed-off-by: Christian Hesse <mail@eworm.de>

Eli Schwartz authored 5 years ago and Christian Hesse committed 5 years ago

This has the same effect, but causes only the exported version of the
key to be cleaned. Cleaning the internal copy doesn't matter.

Signed-off-by: Christian Hesse <mail@eworm.de>

Eli Schwartz authored 5 years ago and Christian Hesse committed 5 years ago

It is easier than passing around a dozen options on the command line.

Signed-off-by: Christian Hesse <mail@eworm.de>

Eli Schwartz authored 5 years ago and Christian Hesse committed 5 years ago

Embedding quotes in a string doesn't work, it just causes KEYSERVER to
not be quoted at all.

Signed-off-by: Christian Hesse <mail@eworm.de>

... and get latest signatures, including key with extended lifetime
for Brett Cornwall (ainola).

... and get latest signatures.

... and get latest signatures.

get anthraxx's master key and his signatures

* use --refresh-keys if key is available, not --recv-keys
* refresh/receive in one go

This makes sure we do not loose signatures depending on key server used.

get escondida's key with extended lifetime

get alad's key with extended lifetime