Import Debian version 2022.12.10debian/2022.12.10

extra-keyrings (2022.12.10) unstable; urgency=medium
.
  * Refresh torproject-archive-keyring, now expires 2024-07-15.
  * d/copyright: Bump year.
  * Update Standards-Version to 4.6.1.
.
extra-keyrings (2020.11.24) unstable; urgency=medium
.
  * New package for various third party repository archive keyrings.

1 files changed, 46 insertions, 0 deletions

diff --git a/dump-gpg-keys.sh b/dump-gpg-keys.sh
new file mode 100755
index 0000000..28344f4
--- /dev/null
+++ b/dump-gpg-keys.sh
@@ -0,0 +1,46 @@
+#!/bin/bash
+
+# requires: GPG 2.1
+
+# dumps out our minimal keys, useful to create nicely formatted
+# debian/upstream/signin-keys.asc in our packages
+
+
+set -eu -o pipefail
+
+removetemp () { rm -rf "$gpghome" && echo "$gpghome removed" >&2 ; }
+gpghome="$(mktemp -d)"
+trap removetemp EXIT
+
+GPG=("gpg" "--homedir" "$gpghome" "--batch")
+
+keys=($@)
+for key in "${keys[@]}";do
+   if [ -f "$key" ];then
+      action="--import"
+      keyIDs+=($(gpg --with-colons "$key" | cut -d: -f5))
+   else
+      action="--recv-keys"
+      keyIDs+=("$key")
+   fi
+   "${GPG[@]}" \
+       --keyserver keyserver.ubuntu.com \
+       $action \
+       "$key"
+done
+
+# print some information about the keys
+# (--fingerprint twice so the fingeprint of the subkeys is printed too)
+"${GPG[@]}" \
+    --list-keys \
+    --keyid-format none \
+    --with-subkey-fingerprint \
+    --list-options no-show-keyring \
+    | tail -n +3
+
+# re-export them
+"${GPG[@]}" \
+    --export \
+    --armor \
+    --export-options export-minimal \
+    "${keyIDs[@]}"