Page MenuHome GnuPG
Create Task
Maniphest T6023

Check how GnuPG handles several keys from WKD
Open, NormalPublic
Actions

Description

There is a report on the mailing list. We should clearly define the rules and we probably need to fix gpg.

Details

External Link
https://lists.gnupg.org/pipermail/gnupg-users/2022-June/066074.html

Event Timeline

werner triaged this task as High priority.Jun 9 2022, 10:37 AM
werner created this task.
ikloecker added a subscriber: ikloecker.Jun 9 2022, 11:23 AM

gpg tries to find the "best" key using get_best_pubkey_byname (https://dev.gnupg.org/source/gnupg/browse/master/g10/getkey.c$1507), but the applied rules are not clearly documented in one place.

werner lowered the priority of this task from High to Normal.Aug 1 2022, 11:33 AM
werner added a project: Documentation.

I don't think that we need to fix things here. Important is that the WKD import uses a filter which imports only keys with the requested mail address. However, if a key with the same fingerprint already exists it will be merged.