Merge lp:~cjwatson/launchpad/no-auto-key-retrieve into lp:launchpad
Proposed by
Colin Watson
Status: | Merged |
---|---|
Merged at revision: | 18902 |
Proposed branch: | lp:~cjwatson/launchpad/no-auto-key-retrieve |
Merge into: | lp:launchpad |
Diff against target: |
163 lines (+54/-34) 2 files modified
lib/lp/services/gpg/doc/gpg-signatures.txt (+10/-4) lib/lp/services/gpg/handler.py (+44/-30) |
To merge this branch: | bzr merge lp:~cjwatson/launchpad/no-auto-key-retrieve |
Related bugs: |
Reviewer | Review Type | Date Requested | Status |
---|---|---|---|
William Grant | code | Approve | |
Review via email: mp+364100@code.launchpad.net |
Commit message
Use our own GPG key retrieval implementation when verifying signatures rather than relying on auto-key-retrieve.
Description of the change
It's hard to verify this in the test suite, but this should avoid a current problem where we sometimes seem to tickle SKS into returning old keys with old expiration dates as a result of auto-key-retrieve using slightly different URLs.
This doesn't quite fix bug 3052 (!), but it should make it easier to fix.
To post a comment you must log in.