Skip to content

Commit

Permalink
getuto: Refresh keys in parallel
Browse files Browse the repository at this point in the history 
Signed-off-by: Zen <z@pyl.onl>
  • Loading branch information
@desultory
desultory committed Oct 23, 2024
1 parent 98dc8c1 commit 9256cf7
Showing 1 changed file with 5 additions and 3 deletions.
8 changes: 5 additions & 3 deletions getuto
View file
Original file line number Diff line number Diff line change
Expand Up @@ -71,12 +71,14 @@ getuto_refresh() {
# Refresh all keys from the keyserver if we can.
for keyserver in "${mykeyservers[@]}" ; do
# TODO: keys.openpgp.org lacks a UID for our keys, need to verify email
gpg ${QUIET_GPG} --no-permission-warning --batch --keyserver "${keyserver}" --refresh-keys || true
einfo "Refreshing keys from: ${keyserver}"
gpg ${QUIET_GPG} --no-permission-warning --batch --keyserver "${keyserver}" --refresh-keys || true &
done
# We only sign (-> ultimate trust) the keys we originally import, so this is fine and
# just serves as an additional refresh method.
gpg ${QUIET_GPG} --no-permission-warning --auto-key-locate=clear,nodefault,wkd --locate-key releng@gentoo.org infrastructure@gentoo.org repomirrorci@gentoo.org || true

einfo "Refreshing keys using WKD."
gpg ${QUIET_GPG} --no-permission-warning --auto-key-locate=clear,nodefault,wkd --locate-key releng@gentoo.org infrastructure@gentoo.org repomirrorci@gentoo.org || true &
wait
touch ${LASTRUNFILE}
else
[[ -n ${QUIET} ]] || einfo "gnupg keyring for package signatures already up-to-date."
Expand Down

0 comments on commit 9256cf7

Please sign in to comment.