gpgme needs to allow setting import options for import operations, so that Kleopatra can disable the import of secret keys retrieved via WKD.
Description
Description
Revisions and Commits
Revisions and Commits
| Status | Assigned | Task | ||
|---|---|---|---|---|
| Testing | ikloecker | T7150 Kleopatra: Import only public keys from WKD | ||
| Testing | ikloecker | T7152 gpgme: Support import options |
Event Timeline
Comment Actions
This should probably be tested with T7150.
Trying to import a secret key with the run-import test program I get
./run-import --verbose --import-options only-pubkeys ted.tester-sec.asc
reading file `ted.tester-sec.asc'
key import summary:
considered: 1
no user id: 0
imported: 0
imported_rsa: 0
unchanged: 0
new user ids: 0
new subkeys: 0
new signatures: 0
new revocations: 0
secret read: 1
secret imported: 0
secret unchanged: 0
skipped new keys: 0
not imported: 0
skipped v3 keys: 0
Diagnostic output:
gpg: importing secret keys not allowed
gpg: Total number processed: 1
gpg: secret keys read: 1Note: The actual name of the import option may change. Originally, we wanted to use "no-seckeys", but that turned out to be not that easy (see https://dev.gnupg.org/T7146#187045). I changed the option to "only-pubkeys", but only in my local development build.