mirror of
git://git.gnupg.org/gnupg.git
synced 2025-07-03 22:56:33 +02:00
gpg: Do not use self-sigs-only for LDAP keyserver imports.
* dirmngr/ks-engine-ldap.c (ks_ldap_get): Print a SOURCE status. * g10/options.h (opts): New field expl_import_self_sigs_only. * g10/import.c (parse_import_options): Set it. * g10/keyserver.c (keyserver_get_chunk): Add special options for LDAP. -- I can be assumed that configured LDAP servers are somehow curated and not affected by rogue key signatures as the HKP servers are. Thus we can allow the import of key signature from LDAP keyservers by default. GnuPG-bug-id: 5387
This commit is contained in:
Werner Koch
parent
b0a7132856
commit
1303b0ed84
5 changed files with 37 additions and 5 deletions
|
|
@ -243,6 +243,9 @@ struct
|
|||
unsigned int use_only_openpgp_card:1;
|
||||
/* Force signing keys even if a key signature already exists. */
|
||||
unsigned int force_sign_key:1;
|
||||
/* The next flag is set internally iff IMPORT_SELF_SIGS_ONLY has
|
||||
* been set by the user and is not the default value. */
|
||||
unsigned int expl_import_self_sigs_only:1;
|
||||
} flags;
|
||||
|
||||
/* Linked list of ways to find a key if the key isn't on the local
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue