Bug#579895: GnuPG::SubKey should have a list of signatures, not a single one [PATCH]
Daniel Kahn Gillmor
dkg at fifthhorseman.net
Sun May 2 03:46:13 UTC 2010
Package: libgnupg-interface-perl
Tags: patch
GnuPG::SubKey currently reports a single signature object. However, it
should have a list of signatures. RFC 4880 permits multiple binding
signatures to exist on a subkey.
For example:
* primary key X has subkey Y, with an initial binding signature A.
* This bundle is uploaded to the public keyservers.
* the keyholder then decides to set (or modify) the expiration date for
subkey Y, generating a new subkey binding signature.
* the new binding signature is uploaded to the keyservers, which now
have two signatures over the subkey.
* another user downloading the key from the keyservers (or importing it
from a file) will find two 'sig' lines after the 'sub' line.
The attached patch deprecates the signature() function of GnuPG::SubKey
(code that calls this function will carp()) and introduces two
functions: signatures() and push_signatures().
It also updates the test suite and the documentation.
Regards,
--dkg
-------------- next part --------------
A non-text attachment was scrubbed...
Name: multiple_subkey_signatures.patch
Type: text/x-patch
Size: 4368 bytes
Desc: not available
URL: <http://lists.alioth.debian.org/pipermail/pkg-perl-maintainers/attachments/20100501/95e333ec/attachment.bin>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 892 bytes
Desc: OpenPGP digital signature
URL: <http://lists.alioth.debian.org/pipermail/pkg-perl-maintainers/attachments/20100501/95e333ec/attachment.pgp>
More information about the pkg-perl-maintainers
mailing list