Temporarily downgrade key assertions to "soon worthless"

This will only issue warnings instead of errors while we continue cleaning up our repositories.
author: Julian Andres Klode <julian.klode@canonical.com> 2024-02-28 17:04:05 +0100
committer: Julian Andres Klode <julian.klode@canonical.com> 2024-02-28 18:22:01 +0100
commit: 66998ed3d299bede651ad40368bdb270f5f5b0f9 (patch)
tree: 5da8b148e4c0091e7db4a24aba4d390d612f9b8c /methods
parent: 8a14c18c5b487139948dcb22abd37bffdd9cf5f4 (diff)
1 files changed, 1 insertions, 8 deletions
diff --git a/methods/gpgv.cc b/methods/gpgv.cc
index 20ef2861d..e465c3595 100644
--- a/methods/gpgv.cc
+++ b/methods/gpgv.cc
@@ -253,14 +253,7 @@ string GPGVMethod::VerifyGetSigners(const char *file, const char *outfile,
 	 auto const asserted = atoi(tokens[1].c_str());
 	 auto const pkstr = tokens[2];
 	 if (not asserted)
-	 {
-	    std::string reason;
-	    strprintf(reason, _("untrusted public key algorithm: %s"), pkstr.c_str());
-	    Signers.Worthless.push_back({fpr, reason});
-	    Signers.Good.erase(std::remove_if(Signers.Good.begin(), Signers.Good.end(), [&](std::string const &goodsig)
-					      { return IsTheSameKey(fpr, goodsig); }),
-			       Signers.Good.end());
-	 }
+	    Signers.SoonWorthless.push_back({fpr, pkstr});
       }
       else if (strncmp(buffer, GNUPGGOODSIG, sizeof(GNUPGGOODSIG)-1) == 0)
 	 PushEntryWithKeyID(Signers.Good, buffer, Debug);
author	Julian Andres Klode <julian.klode@canonical.com>	2024-02-28 17:04:05 +0100
committer	Julian Andres Klode <julian.klode@canonical.com>	2024-02-28 18:22:01 +0100
commit	66998ed3d299bede651ad40368bdb270f5f5b0f9 (patch)
tree	5da8b148e4c0091e7db4a24aba4d390d612f9b8c /methods
parent	8a14c18c5b487139948dcb22abd37bffdd9cf5f4 (diff)