pacman-key: verify TRUST_ULTIMATE keys as good

Extend our grep pattern to match TRUST_ULTIMATE, not just TRUST_FULLY, as these keys are to be trusted as well. Signed-off-by: Dave Reisner <dreisner@archlinux.org> Signed-off-by: Dan McGee <dan@archlinux.org>
2025-03-01 09:51:50 -05:00 · 2012-04-08 14:02:39 -04:00 · 2012-04-08 14:02:39 -04:00 · f053141c87
commit f053141c87
parent b752561a52
1 changed files with 1 additions and 1 deletions
--- a/scripts/pacman-key.sh.in
+++ b/scripts/pacman-key.sh.in
@ -441,7 +441,7 @@ refresh_keys() {
 verify_sig() {
 	local fd="$(mktemp)"
 	"${GPG_PACMAN[@]}" --status-file "${fd}" --verify $SIGNATURE
-	if ! grep -q TRUST_FULLY "${fd}"; then
+	if ! grep -qE 'TRUST_(FULLY|ULTIMATE)' "${fd}"; then
 		rm -f "${fd}"
 		error "$(gettext "The signature identified by %s could not be verified.")" "$SIGNATURE"
 		exit 1