Tails builds fail on Jenkins: artifact signing key has expired
Builds fail like this:
07:31:15 + gpg --batch --detach-sign --armor tails-build-artifacts.shasum
07:31:15 gpg: no default secret key: No secret key
07:31:15 gpg: signing failed: No secret key
07:31:15 Build step 'Execute shell' marked build as failure
07:31:15 [PostBuildScript] - [INFO] Executing post build scripts.
07:31:15 [PostBuildScript] - [INFO] Build does not have any of the results [SUCCESS]. Did not execute build step #0.
07:31:15 Archiving artifacts
07:31:15 Sending e-mails to: tails-rm@boum.org
07:33:12 [WS-CLEANUP] Deleting project workspace...
07:33:13 [WS-CLEANUP] done
07:33:14 Finished: FAILURE
Here's the key:
pub rsa4096/0xD83A438B2F916605 2013-09-23 [SC] [expired: 2020-09-24]
Key fingerprint = AA65 3423 DBE1 0866 0B18 3B17 D83A 438B 2F91 6605
uid [ expired] jenkins.tails.boum.org artifact signing key
Note: this happened last year as well (#17764 (closed)). It would be nice if our dear sysadmins could track this in a way that the key is updated before it expires :)