-
Notifications
You must be signed in to change notification settings - Fork 291
New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
mkosi git signing key unusable #2219
Comments
Jesus. AFAIR, I just created the key in the recommended fashion and there is nothing special about it. There are two possibilities: either it was always wrong and for the last 12 years nobody attempted to check any of the signatures, or something changed in the software and it's now making the key harder to use. I would say the changes are 50/50. https://fedoraproject.org/wiki/User:Zbyszek#GPG_key now has the ascii-armored key. HTH. If somebody tells me what to do to fix keys.openpgp.org or api.github.com, I'd be happy to do it, but I don't want to spend time on the research into designed-to-fail pgp software ecosystem. |
This one, I think, no. I've searched for
Actually I just now noticed that my key has the same issue on You can do that here by uploading the You are then prompted to verify your e-mail address which is Seems a simple process - once you know it. Happy to help. (They also have manage to remove e-mail addresses in case you ever need that.)
That helps a lot, works for me, thank you! |
Thank you. I did the procedure and now the key can be imported correctly: $ wget https://keys.openpgp.org/vks/v1/by-fingerprint/5C251B5FC54EB2F80F407AAAC54CA336CFEB557E
...
Saving to: ‘5C251B5FC54EB2F80F407AAAC54CA336CFEB557E’
$ gpg --import 5C251B5FC54EB2F80F407AAAC54CA336CFEB557E
gpg: key C54CA336CFEB557E: public key "Zbigniew Jędrzejewski-Szmek <zbyszek@in.waw.pl>" imported
gpg: Total number processed: 1
gpg: imported: 1 |
It's good that it's signed...
but impossible to find the signing key.
https://fedoraproject.org/wiki/User:Zbyszek links to https://keys.openpgp.org/search?q=C54CA336 but that link is broken.
https://keys.openpgp.org/search?q=5C251B5FC54EB2F80F407AAAC54CA336CFEB557E works but when attempting to import the key I get:
A wild theory is that
keys.openpgp.org
removes key ids if the e-mail address is not confirmed.https://api.github.com/users/keszybz/gpg_keys also isn't useful.
Maybe https://unix.stackexchange.com/questions/614670/import-pgp-keys-with-no-user-id-into-gpg would work as a solution but I suppose this isn't how it's imagined what should be done.
@keszybz
The text was updated successfully, but these errors were encountered: