Don't apply the patch [3/3], as that contains the pubkey from a random 3072D key I generated to test this.
I'm not sure what best practice is for key generation at the moment. Unfortunately, the existing code only handles DSA keys, which might conflict with following that. Jon Turney (3): Remove gpg-error-config-fake Restructure how we try keys in order for signature checking setup.ini signing key rotation crypto.cc | 123 +++++++++++++++++++++++++----------------- cyg-old-pubkey.h | 14 +++++ cyg-pubkey.h | 10 ++-- cygwin-old.pub | Bin 0 -> 964 bytes cygwin.pub | Bin 964 -> 2248 bytes gpg-error-config-fake | 57 -------------------- 6 files changed, 93 insertions(+), 111 deletions(-) create mode 100644 cyg-old-pubkey.h create mode 100644 cygwin-old.pub delete mode 100755 gpg-error-config-fake -- 2.21.0