mirror of
https://github.com/bitcoin/bitcoin.git
synced 2025-01-12 04:42:36 -03:00
4c43b7d41d
hkps://hkps.pool.sks-keyservers.net is essentially no-longer functional, and a number of distributions and GPG tools have since switched to using this key server as their default. See this Debian patch for additional context: https://salsa.debian.org/debian/gnupg2/-/blob/debian/main/debian/patches/Use-hkps-keys.openpgp.org-as-the-default-keyserver.patch Switch to using keys.openpgp.org in the CI as well.
27 lines
855 B
Markdown
27 lines
855 B
Markdown
## PGP keys of builders and Developers
|
|
|
|
The file `keys.txt` contains fingerprints of the public keys of builders and
|
|
active developers.
|
|
|
|
The associated keys are mainly used to sign git commits or the build results
|
|
of Guix builds.
|
|
|
|
The most recent version of each pgp key can be found on most pgp key servers.
|
|
|
|
Fetch the latest version from the key server to see if any key was revoked in
|
|
the meantime.
|
|
To fetch the latest version of all pgp keys in your gpg homedir,
|
|
|
|
```sh
|
|
gpg --refresh-keys
|
|
```
|
|
|
|
To fetch keys of builders and active developers, feed the list of fingerprints
|
|
of the primary keys into gpg:
|
|
|
|
```sh
|
|
while read fingerprint keyholder_name; do gpg --keyserver hkps://keys.openpgp.org --recv-keys ${fingerprint}; done < ./keys.txt
|
|
```
|
|
|
|
Add your key to the list if you provided Guix attestations for two major or
|
|
minor releases of Bitcoin Core.
|