X.509 signatures Rake task (FREE SELF)
Introduced in GitLab 12.10.
When signing commits with X.509, the trust anchor might change and the signatures stored within the database must be updated.
Update all X.509 signatures
This task loops through all X.509 signed commits and updates their verification based on current certificate store.
To update all X.509 signatures, run:
Omnibus Installations:
sudo gitlab-rake gitlab:x509:update_signatures
Source Installations:
sudo -u git -H bundle exec rake gitlab:x509:update_signatures RAILS_ENV=production