[Git][ftp-team/dak][master] Sign extra files with the first key we use for signing testing

["Joerg Jaspert (@joerg)" <joerg@debian.org>]

Title: GitLab

Joerg Jaspert pushed to branch master at Debian FTP Team / dak

Commits:

• a3005c70
  by Joerg Jaspert at 2025-08-10T12:08:43+02:00

  Sign extra files with the first key we use for signing testing
  
  Instead of hardcoding it and it failing every few years...
  

1 changed file:

• config/debian/dinstall.functions

Changes:

config/debian/dinstall.functions

---

...	...	@@ -637,6 +637,8 @@ function signotherfiles() {
637	637
638	638	local archiveroot
639	639
	640	+ local SKEY=$(dak admin s-cfg get-json testing signingkeys | jq '.signingkeys[0]')
	641	+ SKEY=${SKEY//\"}
640	642	for archive in "${public_archives[@]}"; do
641	643	log "... archive: ${archive}"
642	644	archiveroot="$(get_archiveroot "${archive}")"
...	...	@@ -645,7 +647,7 @@ function signotherfiles() {
645	647	cd ${archiveroot}
646	648	rm -f extrafiles
647	649	sha256sum $(find * -type f | egrep -v '(pool|i18n|dep11|source)/|Contents-.*\.(gz|diff)|installer|binary-|(In)?Release(.gpg)?|\.changes' | sort) > ${TMPLO}
648		- gpg --no-options --batch --no-tty --armour --personal-digest-preferences=SHA256 --homedir /srv/ftp-master.debian.org/s3kr1t/dot-gnupg --no-options --batch --no-tty --armour --default-key 2B90D010 --clearsign --output ${archiveroot}/extrafiles ${TMPLO}
	650	+ gpg --no-options --batch --no-tty --armour --personal-digest-preferences=SHA256 --homedir /srv/ftp-master.debian.org/s3kr1t/dot-gnupg --no-options --batch --no-tty --armour --default-key ${SKEY} --clearsign --output ${archiveroot}/extrafiles ${TMPLO}
649	651	rm -f ${TMPLO}
650	652	done
651	653	}

—
View it on GitLab.
You're receiving this email because of your account on salsa.debian.org. Manage all notifications · Help