Maniphest T7133

Add feature to load designated revoker from LDAP
Open, HighPublic
Actions

Assigned To

Authored By

	• ebo
	May 23 2024, 10:19 AM

Tags

Subscribers

Description

There is an option in gpg since February 2023 to configure a designated revoker for all new keys (--add-desig-revoker).

We should add another feature: Iff this option is configured, gpg shall try to load the requested key from LDAP in the same manner as it does for a trusted-key.

Revisions and Commits

rG GnuPG
	rG330354972a27 gpg: Autoload designated revoker key and ADSK when needed.
	rG465ea9116d1f gpg: Autoload designated revoker key and ADSK when needed.

Related Objects

Mentioned In: T6881: Kleopatra: Make designated revoker configurable for new keys
Mentioned Here: T7255: Release GnuPG 2.2.45

Event Timeline

• ebo created this task.May 23 2024, 10:19 AM

• ebo mentioned this in T6881: Kleopatra: Make designated revoker configurable for new keys.May 23 2024, 10:23 AM

• werner triaged this task as Normal priority.May 23 2024, 12:01 PM

• werner added a commit: rG465ea9116d1f: gpg: Autoload designated revoker key and ADSK when needed..Jun 5 2024, 10:34 AM

• werner added a commit: rG330354972a27: gpg: Autoload designated revoker key and ADSK when needed..Jul 1 2024, 3:13 PM

• ebo raised the priority of this task from Normal to Needs Triage.Oct 9 2024, 10:36 AM

I do not want to do that for 2.2.45 (T7255) because we want to do that release RSN

• werner triaged this task as High priority.Nov 4 2024, 12:54 PM