mirror of
git://git.gnupg.org/gnupg.git
synced 2025-07-02 22:46:30 +02:00
gpg: Do not use self-sigs-only for LDAP keyserver imports.
* dirmngr/ks-engine-ldap.c (ks_ldap_get): Print a SOURCE status. * g10/options.h (opts): New field expl_import_self_sigs_only. * g10/import.c (parse_import_options): Set it. * g10/keyserver.c (keyserver_get_chunk): Add special options for LDAP. -- I can be assumed that configured LDAP servers are somehow curated and not affected by rogue key signatures as the HKP servers are. Thus we can allow the import of key signature from LDAP keyservers by default. GnuPG-bug-id: 5387
This commit is contained in:
Werner Koch
parent
a16f726f94
commit
6c26e593df
5 changed files with 37 additions and 5 deletions
|
|
@ -256,6 +256,9 @@ struct
|
|||
unsigned int force_sign_key:1;
|
||||
/* On key generation do not set the ownertrust. */
|
||||
unsigned int no_auto_trust_new_key:1;
|
||||
/* The next flag is set internally iff IMPORT_SELF_SIGS_ONLY has
|
||||
* been set by the user and is not the default value. */
|
||||
unsigned int expl_import_self_sigs_only:1;
|
||||
} flags;
|
||||
|
||||
/* Linked list of ways to find a key if the key isn't on the local
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue