Page MenuHome GnuPG

gpg: Add import option "no-seckeys"
Testing, NormalPublic


When importing keys that were retrieved via WKD (e.g. manually downloaded or by some other program like Kleopatra) only public keys should be imported. As far as I can see, there is no way to set the internal IMPORT_NO_SECKEY keyserver option flag from the command line with the --import-options option (or some other option).

Event Timeline

werner changed the task status from Open to Testing.Jun 11 2024, 3:56 PM
werner claimed this task.
werner moved this task from Restricted Project Column to Restricted Project Column on the Restricted Project board.
werner added a subscriber: werner.

Done for all branches,

werner triaged this task as Normal priority.Jun 11 2024, 3:57 PM
ikloecker changed the task status from Testing to Open.Jun 12 2024, 10:28 AM

This doesn't seem to work. I get

$ gpg --version
gpg (GnuPG) 2.4.6-beta4
libgcrypt 1.11.0

$ gpg --verbose --import-options no-seckeys ted.tester-pub.asc
gpg: unknown option 'no-seckeys'
gpg: invalid import options

I suspect that this is caused by the special handling of the "no-" prefix in parse_options.

I verified this hypothesis by renaming the option to "only-pubkeys". This makes the option work for me.

Okay. The option has been renamed to "only-pubkeys"

ikloecker changed the task status from Open to Testing.Mon, Jun 24, 3:23 PM

The import option "only-pubkeys" works for me/Kleopatra.