Home GnuPG
Diffusion GnuPG 99db4b0c7fd1

gpg: Do not use import-clean for LDAP keyserver imports.

Description

gpg: Do not use import-clean for LDAP keyserver imports.

* g10/options.h (opts): New field expl_import_only.
* g10/import.c (parse_import_options): Set it.
* g10/keyserver.c (keyserver_get_chunk): Add special options for LDAP.

I can be assumed that configured LDAP servers are somehow curated and
not affected by rogue key signatures as the HKP servers are. Thus we
don't clean the key anymore so that key certifications are kept even
if the public key has not yet been imported.

See-commit: 6c26e593df51475921410ac97e9227df6b258618

Details

Provenance
wernerAuthored on Mon, Apr 26, 2:15 PM
Parents
rG100037ac0f55: gpg: Auto import keys specified with --trusted-keys.
Branches
Unknown
Tags
Unknown
Tasks
T5387: Accept key signatures from LDAP servers