Support for a more flexible GPG auth model

[flammit]

Currently there is a single gpg keyring that is used to determine which keys are trusted in a Heads installation. Unfortunately, there are now different ways gpgv is used in init:

1. Verify when booting from local disks that the kexec config valid
2. Verify when booting from an ISO that is valid

In the future, there will probably be additional uses:

3. Validate access to the recovery shell (as in Impose Access Restriction to the Recovery Shell #361)
4. Validate normal boot procedure with 2FA
5. Decrypt the TPM-sealed luks disk key (instead of user-provided password)

It seems like maintaining a few key rings would be sufficient to cover a wide range of cases:
/.gnupg/user/: valid sigs to do anything in Heads
/.gnupg/admin/: additional valid sigs to access a recovery shell to wipe/re-provision hardware (but not access user's key material)
/.gnupg/distro/: additional valid sigs to ISO boot

On a standard reproducible build, Heads would have empty user and admin ring, and the distro ring would contain whatever standard distro keys are available (e.g. qubes, tails, alpine, etc.). An installer could then use cbfstool / #357 to add a public key into admin or necessary public key and private key stubs to user.

@osresearch @tlaurion @zaolin @kakaroto @kylerankin thoughts?

[tlaurion]

I love it. I think it would do the job entirely and fits all use cases.

[kakaroto]

I think it's a great idea as well. I vote yes.

[tlaurion]

Key installation doc here

[tlaurion]

And integrated into ash_history here

[tlaurion]

@flammit & @osresearch : This was merged and can be closed, no?