[master] GPG fixes #66316

lkubb · 2024-04-04T15:52:13Z

What does this PR do?

Creates GNUPGHOME dir if it does not exist
Tries to respect process-specific (or user-specific if user was passed) GNUPGHOME environmental variable as fallback
Attempts to update keys in gpg.present if they are expired, otherwise fails the state

Also:

Some refactoring for code reuse, simplicity and output clarity
Adds some tests for test=true

What issues does this PR fix or reference?

Fixes: #66312
Fixes: #66313
Fixes: #66314

Previous Behavior

crashes if GNUPGHOME does not exist
falls back to ~/.gnupg, ignoring (user) env
accepts expired keys, offers no method of updating them with an extended validity period

Merge requirements satisfied?

[NOTICE] Bug fixes or features added to Salt require tests.

Docs
Changelog - https://docs.saltproject.io/en/master/topics/development/changelog.html
Tests written/updated

Commits signed with GPG?

Yes

... otherwise fail since expired keys are meaningless. Also: * Untangle `gpg.present` logic * Correctly order key changes in returned comment and prefix messages with key ID * Reuse key rendering logic in execution module * Add some tests for test mode because of logic reordering

salt-project-bot-prod-environment bot changed the title ~~GPG fixes~~ [master] GPG fixes Apr 4, 2024

lkubb force-pushed the gpg-fixes branch from 2062ac3 to 89914b1 Compare April 4, 2024 15:59

lkubb temporarily deployed to ci April 4, 2024 16:22 — with GitHub Actions Inactive

lkubb force-pushed the gpg-fixes branch from 89914b1 to 9d856ca Compare April 4, 2024 18:46

lkubb temporarily deployed to ci April 4, 2024 19:12 — with GitHub Actions Inactive

lkubb force-pushed the gpg-fixes branch from 9d856ca to 5b90c08 Compare April 4, 2024 21:03

lkubb temporarily deployed to ci April 4, 2024 21:22 — with GitHub Actions Inactive

lkubb force-pushed the gpg-fixes branch from 5b90c08 to 5c0e0a8 Compare April 4, 2024 22:29

lkubb temporarily deployed to ci April 4, 2024 22:46 — with GitHub Actions Inactive

lkubb had a problem deploying to ci April 6, 2024 16:08 — with GitHub Actions Failure

lkubb added 3 commits April 15, 2024 02:57

Create GNUPGHOME if it does not exist

e89fb12

Try to respect custom GNUPGHOME env var

e73ada8

lkubb force-pushed the gpg-fixes branch from ba64c16 to b9e5718 Compare April 15, 2024 00:58

lkubb temporarily deployed to ci April 15, 2024 01:12 — with GitHub Actions Inactive

lkubb marked this pull request as ready for review April 15, 2024 07:03

lkubb requested a review from a team as a code owner April 15, 2024 07:03

lkubb requested review from whytewolf and removed request for a team April 15, 2024 07:03

whytewolf approved these changes Apr 15, 2024

View reviewed changes

Merge branch 'master' into gpg-fixes

596a296

lkubb temporarily deployed to ci April 25, 2024 23:19 — with GitHub Actions Inactive

dwoz merged commit 21d5cca into saltstack:master Apr 30, 2024
181 checks passed

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

[master] GPG fixes #66316

[master] GPG fixes #66316

lkubb commented Apr 4, 2024 •

edited

[master] GPG fixes #66316

[master] GPG fixes #66316

Conversation

lkubb commented Apr 4, 2024 • edited

What does this PR do?

What issues does this PR fix or reference?

Previous Behavior

Merge requirements satisfied?

Commits signed with GPG?

lkubb commented Apr 4, 2024 •

edited