diff options
author | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-13 14:25:47 +0000 |
---|---|---|
committer | Daniel Baumann <daniel.baumann@progress-linux.org> | 2024-04-13 14:25:47 +0000 |
commit | 4ed1a6e1d4fcb1ba272a4fb3931b33d1c6fbee0d (patch) | |
tree | 26048107dbe7d72d60d9339d90f5cfe678937863 /t/no-revoked.t | |
parent | Initial commit. (diff) | |
download | debian-keyring-01898be3cb7227e155cabd182a7a93b81f0fb1e7.tar.xz debian-keyring-01898be3cb7227e155cabd182a7a93b81f0fb1e7.zip |
Adding upstream version 2023.12.24.upstream/2023.12.24
Signed-off-by: Daniel Baumann <daniel.baumann@progress-linux.org>
Diffstat (limited to '')
-rwxr-xr-x | t/no-revoked.t | 22 |
1 files changed, 22 insertions, 0 deletions
diff --git a/t/no-revoked.t b/t/no-revoked.t new file mode 100755 index 0000000..efd90b0 --- /dev/null +++ b/t/no-revoked.t @@ -0,0 +1,22 @@ +#!/bin/sh +# Looks for revoked keys in our active keyrings +set -e + +find_revoked () { + k=$1 + gpg --no-options --no-auto-check-trustdb --no-default-keyring \ + --keyring "./output/keyrings/$k" --list-keys --with-colons \ + | grep -a '^pub' \ + | awk -F: -v keyring=$1 \ + 'BEGIN { ok = 1 } \ + $2 == "r" {print keyring ":\t0x" $5 " is revoked"; ok = 0} \ + END { if (!ok) { exit 1 } }' +} + +fail=0 +for keyring in debian-keyring.gpg debian-maintainers.gpg \ + debian-nonupload.gpg; do + find_revoked $keyring +done + +exit $fail |