• Update all X.509 signatures

X.509 signatures Rake task

{{< details >}}

• Tier: Free, Premium, Ultimate
• Offering: GitLab Self-Managed

{{< /details >}}

When signing commits with X.509, the trust anchor might change and the signatures stored in the database must be updated.

Update all X.509 signatures

This task:

• Iterates through all X.509-signed commits.
• Updates their verification status based on the current certificate store.
• Modifies only the database entries for the signatures.
• Leaves the commits unchanged.

To update all X.509 signatures, run:

{{< tabs >}}

{{< tab title=”Linux package (Omnibus)” >}}

sudo gitlab-rake gitlab:x509:update_signatures

{{< /tab >}}

{{< tab title=”Self-compiled (source)” >}}

sudo -u git -H bundle exec rake gitlab:x509:update_signatures RAILS_ENV=production

{{< /tab >}}

{{< /tabs >}}