Home GnuPG
Diffusion GnuPG 1303b0ed84da

gpg: Do not use self-sigs-only for LDAP keyserver imports.

Description

gpg: Do not use self-sigs-only for LDAP keyserver imports.

* dirmngr/ks-engine-ldap.c (ks_ldap_get): Print a SOURCE status.
* g10/options.h (opts): New field expl_import_self_sigs_only.
* g10/import.c (parse_import_options): Set it.
* g10/keyserver.c (keyserver_get_chunk): Add special options for LDAP.

I can be assumed that configured LDAP servers are somehow curated and
not affected by rogue key signatures as the HKP servers are. Thus we
can allow the import of key signature from LDAP keyservers by default.

Details

Provenance
wernerAuthored on Apr 13 2021, 2:25 PM
Parents
rGb0a7132856ef: po: Update Simplified Chinese Translation.
Branches
Unknown
Tags
Unknown
Tasks
T5387: Accept key signatures from LDAP servers