From 53a500654f6db589232a9622874790019d11a4b4 Mon Sep 17 00:00:00 2001
From: Brandon Rozek <brozek@brandonrozek.com>
Date: Thu, 28 Dec 2023 11:45:44 -0500
Subject: [PATCH 1/4] Updated WKD keys

---
 .../hu/im4cc8qhazwkfsi65a8us1bc5gzk1o4p        | Bin 919 -> 3842 bytes
 .../hu/o1dbwkdx683fduwgzmrbwa3yip41frdn        | Bin 919 -> 3842 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)

diff --git a/static/.well-known/openpgpkey/hu/im4cc8qhazwkfsi65a8us1bc5gzk1o4p b/static/.well-known/openpgpkey/hu/im4cc8qhazwkfsi65a8us1bc5gzk1o4p
index 457af2410ace0976a68b2b4e335ac9e7afee03f3..b71933cf8eabad62b87ad10ca8dff0b2160f27e1 100644
GIT binary patch
delta 1899
zcmZYAc{J4P9|!R7cZ_{ccEXJ8cZB3;nz<NRl4X?am2AUxZkB4e-OMCn#*(oOvP3A<
zPpNDTlARecH;J;Z-5NVXxHCUGzk7b&^ZVoZ=Q+<guk$(2`~5uG{I`!#Lej!dRJTLH
z3>6;vfPj<|Lta6i_n94lkf21$RzA98FCcN)9pE6c`?3`bTPEQS<Fgh&*&CHdyYr?R
zKa9ZPdmWctBi8}$dBP5*Q7wE$US39+!%gN(aZNj~Wl<|spw(BxnU51DgRxL486i+N
z4d(^1g=7SQJ{bm}$^KHvI1DO#{U|nF0651a3xVDt@d170-4P?oYTskQWYeR6+Hyw0
zkS}bLs6`McXRgpEw<J3{kTo4^o2PdOs=QdJK_2dY0_FzU@3a^hgdd0i{Xn!y`mf~T
z`J)tH5Bw#cKl8j?q45zsud3sEYq5XRad+6<g76?JjjCxS?H~<sbc&&@OjArvLQ9M_
zkKWUn(V((glibGBZ(%cLIdQcjB-VE*^8m7rI~eO9$kk<lW4Oxaf3y4DN}v$d+wYr<
zW9XbCEQ`Q1@$oHXD99B3JHWN}4%tNQO6qP^Iod@I_<iPzjrA^`m_7g79fwr>Lnc3|
z<~wpB4X3$(S&9%#?X<h{|8R&0!>rZ6`N?^@uF3;>UxSG=gW9t<4Aih+gI@TG(@<Xi
zATaH*(*MrWII{%x>6pr+$$|M_kO}=6+g?o1>zB+Y3I$2I-yMs6L?t5_g0P;N0D*VD
zUtt<#<)6hdiXWIt>N#g#ZFp@UZD~s3<dandKD+%Bc#|&I0V!n{g%WGjk;E4jMmiOe
z+@sq4t4$1vvvH!;7g-<=M3E;gOz|LV{`*<8`~R#JUj;ZQq0r5Zu1eVka${%d4i@gl
zOZ_aJ-SXN!K7X6DGE)QsDN`Gpixtd5D#~jwWmtTgc{s0Mc{mqwMpYU)&p-?RFoI%6
z0OZxaD{_Dm_tE78H0$<{Az-k99mtv`#eeLvCncaSGTn4YOje}6n=^|#YqTWx1f5q|
z1aQ<{iZrXdSbU{T?Ce{4T734=m>X7}UY<S<Pa@8(eu6acAfSE)P6m<!K)rj1HniP*
zK&IZu9etu;`}Slmwa(f1DzW<ctyh;dRHi>->${Y%wEA}AJhgFulvyfC28P+5)2-rj
zsGPf82M4e;`4|_vNIHy*g5f<0Mj~NZ<548sd{F!j=1H=&yuhxU89hB@B-%tA&CJ)^
zsvK*OkeM=*b{urHJ%m>I!}*1CTg%1wwR5;8TYbFa(|}}+VEqw$q807mON?h0^P02)
z3cMe(VhAn}>@!~M5t8)hNG<vKmS50_!UymL=!HRr<I)alM#>fn(hRjBo4dQEfmLe=
zOnxqk&T2LwPAO3m<<tGl^%=FnZc((<v+g0EmTHg6O;<A2n>E=gAi#FTSZNPS9YRn`
zLuAa(3;c^A^oH16JM9){G+)gu&Wh#dT9+YE`RDrj0y-0=sY$U;+-_&5kueV~^5C^C
zdm>C<Jhk(vlqYoUbxZEcg}``dp%B|@BM434bx<6*Q!0*N&7*n+Rl}oCG*(K{DgDM1
zB<*pKy*?4C<z3<`-sz&0vGl8Z3H%ymz`#gOWj*$1;x2=eqxPVXCOp*JIb&lP?>t@z
zgM>}7l+2sMjO7W(uB~fI{Bj0qiyy~}Upsr)Zta7=scZG6E>+PQ*vqPF-TXr%EZQu?
zF6&g}V@tmpZxExVG<o?8)~zQcPSHmXT(NAsht<O_xbUoAZJ`EJ3-NQ6V+p<e<<5d@
zva+*8v)%5#=m#fTmHI8nNo{450>E946al}wR=YBPsFj>MEc3oA)Z-f&70D`SuP$WZ
z5|RYIfO%z&WtW%+-2$;~QgMqS^h_5dRkq$KN>m6#D$;+Zdff?mY7)C?p84At&xbgU
zA)BAnc&t~AQnnSL8DR+#OMOjz>JFLSoFS?hq}fNYix~VtfQGaaoxTv0V)6z#UY@eN
z!PTDwbGFhjr0ssVp$t4HFh5QL@X6rU&58f^wNAN)kC^`9V^vkLWb~3>D1NJXZwwcT
zob1{hHhQ!k%JGQX<I<K-I$dNP7ehBuiE<S(qJ=u@&tEs(XE<OM6T@>J-eh#Dz>Tr@
zoT&76zZ;)zn|~)^5IuWj(k4`H|CQE&C_?`3D0{!7Op+B4gI9&h@ApYrMh!~7Q*dM=
zY-m(JguA9O>-O<>&&DlY$U)%_s{HqkP!9;y)6+Q?F@ut#U;P_;e!cW|)P5TO@`(;1
zLNKxXoZCYifa`6m-qxB#GVxsdbH!XTOm@^P*d}M8O9OYWSkHxx?vME2=Qqj^0z-AI
zy;IMwh~jUOl`D!u*@%#B7_5`#3%{V+<EA4h0&rB3B9Fw`4WA=VGq02tC!1r1JpQ7!
P(>-p$4fI=<X#)QN)URln

delta 127
zcmV-_0D%939+wA@Ym<})Ad}4lH?wL7hyjyx1{;&83A&RI2^n8wnL+IW8w>>r0pT-%
z0162ZjrW{A#r$Q8YE%IL=8)D>?LW8YV8iSEi>YNhs$xY@+!GgfE_^1%$s-I80R0-)
h42m0CdN;;bkF>Qd`Ve+ND%=RJjMSEN_uv&{01Z~eG%5f9

diff --git a/static/.well-known/openpgpkey/hu/o1dbwkdx683fduwgzmrbwa3yip41frdn b/static/.well-known/openpgpkey/hu/o1dbwkdx683fduwgzmrbwa3yip41frdn
index 457af2410ace0976a68b2b4e335ac9e7afee03f3..b71933cf8eabad62b87ad10ca8dff0b2160f27e1 100644
GIT binary patch
delta 1899
zcmZYAc{J4P9|!R7cZ_{ccEXJ8cZB3;nz<NRl4X?am2AUxZkB4e-OMCn#*(oOvP3A<
zPpNDTlARecH;J;Z-5NVXxHCUGzk7b&^ZVoZ=Q+<guk$(2`~5uG{I`!#Lej!dRJTLH
z3>6;vfPj<|Lta6i_n94lkf21$RzA98FCcN)9pE6c`?3`bTPEQS<Fgh&*&CHdyYr?R
zKa9ZPdmWctBi8}$dBP5*Q7wE$US39+!%gN(aZNj~Wl<|spw(BxnU51DgRxL486i+N
z4d(^1g=7SQJ{bm}$^KHvI1DO#{U|nF0651a3xVDt@d170-4P?oYTskQWYeR6+Hyw0
zkS}bLs6`McXRgpEw<J3{kTo4^o2PdOs=QdJK_2dY0_FzU@3a^hgdd0i{Xn!y`mf~T
z`J)tH5Bw#cKl8j?q45zsud3sEYq5XRad+6<g76?JjjCxS?H~<sbc&&@OjArvLQ9M_
zkKWUn(V((glibGBZ(%cLIdQcjB-VE*^8m7rI~eO9$kk<lW4Oxaf3y4DN}v$d+wYr<
zW9XbCEQ`Q1@$oHXD99B3JHWN}4%tNQO6qP^Iod@I_<iPzjrA^`m_7g79fwr>Lnc3|
z<~wpB4X3$(S&9%#?X<h{|8R&0!>rZ6`N?^@uF3;>UxSG=gW9t<4Aih+gI@TG(@<Xi
zATaH*(*MrWII{%x>6pr+$$|M_kO}=6+g?o1>zB+Y3I$2I-yMs6L?t5_g0P;N0D*VD
zUtt<#<)6hdiXWIt>N#g#ZFp@UZD~s3<dandKD+%Bc#|&I0V!n{g%WGjk;E4jMmiOe
z+@sq4t4$1vvvH!;7g-<=M3E;gOz|LV{`*<8`~R#JUj;ZQq0r5Zu1eVka${%d4i@gl
zOZ_aJ-SXN!K7X6DGE)QsDN`Gpixtd5D#~jwWmtTgc{s0Mc{mqwMpYU)&p-?RFoI%6
z0OZxaD{_Dm_tE78H0$<{Az-k99mtv`#eeLvCncaSGTn4YOje}6n=^|#YqTWx1f5q|
z1aQ<{iZrXdSbU{T?Ce{4T734=m>X7}UY<S<Pa@8(eu6acAfSE)P6m<!K)rj1HniP*
zK&IZu9etu;`}Slmwa(f1DzW<ctyh;dRHi>->${Y%wEA}AJhgFulvyfC28P+5)2-rj
zsGPf82M4e;`4|_vNIHy*g5f<0Mj~NZ<548sd{F!j=1H=&yuhxU89hB@B-%tA&CJ)^
zsvK*OkeM=*b{urHJ%m>I!}*1CTg%1wwR5;8TYbFa(|}}+VEqw$q807mON?h0^P02)
z3cMe(VhAn}>@!~M5t8)hNG<vKmS50_!UymL=!HRr<I)alM#>fn(hRjBo4dQEfmLe=
zOnxqk&T2LwPAO3m<<tGl^%=FnZc((<v+g0EmTHg6O;<A2n>E=gAi#FTSZNPS9YRn`
zLuAa(3;c^A^oH16JM9){G+)gu&Wh#dT9+YE`RDrj0y-0=sY$U;+-_&5kueV~^5C^C
zdm>C<Jhk(vlqYoUbxZEcg}``dp%B|@BM434bx<6*Q!0*N&7*n+Rl}oCG*(K{DgDM1
zB<*pKy*?4C<z3<`-sz&0vGl8Z3H%ymz`#gOWj*$1;x2=eqxPVXCOp*JIb&lP?>t@z
zgM>}7l+2sMjO7W(uB~fI{Bj0qiyy~}Upsr)Zta7=scZG6E>+PQ*vqPF-TXr%EZQu?
zF6&g}V@tmpZxExVG<o?8)~zQcPSHmXT(NAsht<O_xbUoAZJ`EJ3-NQ6V+p<e<<5d@
zva+*8v)%5#=m#fTmHI8nNo{450>E946al}wR=YBPsFj>MEc3oA)Z-f&70D`SuP$WZ
z5|RYIfO%z&WtW%+-2$;~QgMqS^h_5dRkq$KN>m6#D$;+Zdff?mY7)C?p84At&xbgU
zA)BAnc&t~AQnnSL8DR+#OMOjz>JFLSoFS?hq}fNYix~VtfQGaaoxTv0V)6z#UY@eN
z!PTDwbGFhjr0ssVp$t4HFh5QL@X6rU&58f^wNAN)kC^`9V^vkLWb~3>D1NJXZwwcT
zob1{hHhQ!k%JGQX<I<K-I$dNP7ehBuiE<S(qJ=u@&tEs(XE<OM6T@>J-eh#Dz>Tr@
zoT&76zZ;)zn|~)^5IuWj(k4`H|CQE&C_?`3D0{!7Op+B4gI9&h@ApYrMh!~7Q*dM=
zY-m(JguA9O>-O<>&&DlY$U)%_s{HqkP!9;y)6+Q?F@ut#U;P_;e!cW|)P5TO@`(;1
zLNKxXoZCYifa`6m-qxB#GVxsdbH!XTOm@^P*d}M8O9OYWSkHxx?vME2=Qqj^0z-AI
zy;IMwh~jUOl`D!u*@%#B7_5`#3%{V+<EA4h0&rB3B9Fw`4WA=VGq02tC!1r1JpQ7!
P(>-p$4fI=<X#)QN)URln

delta 127
zcmV-_0D%939+wA@Ym<})Ad}4lH?wL7hyjyx1{;&83A&RI2^n8wnL+IW8w>>r0pT-%
z0162ZjrW{A#r$Q8YE%IL=8)D>?LW8YV8iSEi>YNhs$xY@+!GgfE_^1%$s-I80R0-)
h42m0CdN;;bkF>Qd`Ve+ND%=RJjMSEN_uv&{01Z~eG%5f9


From 52cc15261a947792f91f16fab87a1485fe5d8d0a Mon Sep 17 00:00:00 2001
From: Brandon Rozek <brozek@brandonrozek.com>
Date: Thu, 28 Dec 2023 12:20:45 -0500
Subject: [PATCH 2/4] New post

---
 content/blog/renewing-gpg-keys.md | 125 ++++++++++++++++++++++++++++++
 1 file changed, 125 insertions(+)
 create mode 100644 content/blog/renewing-gpg-keys.md

diff --git a/content/blog/renewing-gpg-keys.md b/content/blog/renewing-gpg-keys.md
new file mode 100644
index 0000000..1cf27e4
--- /dev/null
+++ b/content/blog/renewing-gpg-keys.md
@@ -0,0 +1,125 @@
+---
+title: "Renewing my GPG Keys"
+date: 2023-12-28T11:46:33-05:00
+draft: false
+tags: []
+math: false
+medium_enabled: false
+---
+
+Recently I let my GPG keys expire. I noticed this when I was working on a project, and when I went to [automatically sign my commits](/blog/signingcommits/) -- git threw an error at me. Since I was working at the time, I did the not-so-great practice of disabling the signing feature. 
+
+Having keys automatically expire is annoying. Though, it does give me a chance to reflect if these keys are still useful to me.  Currently I use GPG keys for: 
+
+- Code signing
+- Receiving encrypted messages
+- [Decentralized Identity](/blog/decentralized-identity-pgp-keyoxide/)
+
+So to me, having a GPG key is still worth it. Now to go about renewing my keys. This post will show how I go about the renewing process itself and what services I update. Mostly for me in the future.
+
+## Renewing my GPG key
+
+First, find your key
+
+```bash
+gpg --list-keys
+```
+
+```
+/home/brandon/.gnupg/pubring.kbx
+------------------------------
+pub   ed25519 2022-12-14 [SC] [expires: 2023-12-14]
+      5F37830BFA46FF7881F47AC78DF79C3DC5FC658A
+uid           [ultimate] Brandon Rozek <brozek@brandonrozek.com>
+uid           [ultimate] Brandon Rozek <hello@brandonrozek.com>
+sub   cv25519 2022-12-14 [E] [expires: 2023-12-14]
+sub   dsa2048 2022-12-17 [S] [expires: 2023-12-14]
+```
+
+The fingerprint is the line below `pub` and for me starts with `5F37`. Let's store that in a variable for easy reference later.
+
+```bash
+export FPR=5F37830BFA46FF7881F47AC78DF79C3DC5FC658A
+```
+
+If we want to extend the expiration date to a year from today, we can use the following command:
+
+```bash
+gpg --quick-set-expire $FPR 1y
+```
+
+Alternatively, you can specify an exact date with the ISO format `YYYY-MM-DD` or keep it relative with respect to days `d`, weeks `w`, and months `m`.
+
+When we check the key again, we should see an updated expiration date
+
+```bash
+gpg --list-keys
+```
+
+```
+/home/brandon/.gnupg/pubring.kbx
+------------------------------
+pub   ed25519 2022-12-14 [SC] [expires: 2024-12-28]
+      5F37830BFA46FF7881F47AC78DF79C3DC5FC658A
+uid           [ultimate] Brandon Rozek <brozek@brandonrozek.com>
+uid           [ultimate] Brandon Rozek <hello@brandonrozek.com>
+sub   cv25519 2022-12-14 [E] [expires: 2023-12-14]
+sub   dsa2048 2022-12-17 [S] [expires: 2023-12-14]
+```
+
+Notice that the two subkeys still have the old expiration date. We'll need to update that as well. We'll need to get their fingergrints with the following command
+
+```bash
+gpg --list-keys --verbose --with-subkey-fingerprints
+```
+
+```
+gpg: enabled compatibility flags:
+gpg: using pgp trust model
+/home/rozek/.gnupg/pubring.kbx
+------------------------------
+pub   ed25519 2022-12-14 [SC] [expires: 2024-12-27]
+      5F37830BFA46FF7881F47AC78DF79C3DC5FC658A
+uid           [ultimate] Brandon Rozek <brozek@brandonrozek.com>
+uid           [ultimate] Brandon Rozek <hello@brandonrozek.com>
+sub   cv25519 2022-12-14 [E] [expires: 2023-12-14]
+      D502A12A65F9997DAE4609C97DAEAD7BFFA8F9D3
+sub   dsa2048 2022-12-17 [S] [expires: 2023-12-14]
+      89859D1EDF70D6DC2F6BFFF226E457DA82C9F480
+```
+
+Store the fingerprints again for easy reference:
+
+```bash
+export SFPR1=D502A12A65F9997DAE4609C97DAEAD7BFFA8F9D3
+export SFPR2=89859D1EDF70D6DC2F6BFFF226E457DA82C9F480
+```
+
+Extend the expiration of the subkeys:
+
+```bash
+gpg --quick-set-expire $FPR 1y $SFPR1
+gpg --quick-set-expire $FPR 1y $SFPR2
+```
+
+
+
+## Updating Services
+
+I currently allow for two ways to query my keys: OpenGPG keyserver and WKD. To update my keys on my own WKD keyserver, I followed the steps in my [tutorial on WKD](/blog/decentralized-pgp-keys-wkd). 
+
+For OpenGPG, I followed the instructions on their [usage page](https://keys.openpgp.org/about/usage):
+
+```bash
+gpg --export your_address@example.net | curl -T - https://keys.openpgp.org 
+```
+
+## References
+
+https://www.gnupg.org/documentation/manuals/gnupg24/gpg.1.html
+
+https://whynothugo.nl/journal/2023/07/13/extending-an-expired-gpg-key/
+
+https://brandonrozek.com/blog/decentralized-pgp-keys-wkd/
+
+https://keys.openpgp.org/about/usage

From 348fb947a71d6d1ebb3d414022ca05fa0688a386 Mon Sep 17 00:00:00 2001
From: Brandon Rozek <brozek@brandonrozek.com>
Date: Thu, 28 Dec 2023 12:35:54 -0500
Subject: [PATCH 3/4] Tracking theme

---
 themes/pulp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/themes/pulp b/themes/pulp
index 5c679a4..a657c1a 160000
--- a/themes/pulp
+++ b/themes/pulp
@@ -1 +1 @@
-Subproject commit 5c679a4188bbe07b2fb144379b99e591fa702fcd
+Subproject commit a657c1ab4f2dad073248bca2183b3b567b942c17

From f53ec93dc9e9864e2c26b12060fa2e4a6c1065b8 Mon Sep 17 00:00:00 2001
From: Brandon Rozek <brozek@brandonrozek.com>
Date: Thu, 28 Dec 2023 12:45:08 -0500
Subject: [PATCH 4/4] Updated theme

---
 themes/pulp | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/themes/pulp b/themes/pulp
index a657c1a..0277672 160000
--- a/themes/pulp
+++ b/themes/pulp
@@ -1 +1 @@
-Subproject commit a657c1ab4f2dad073248bca2183b3b567b942c17
+Subproject commit 0277672917306e4c3bcef7e69c9f14d687595424