Werner Koch <wk(_at_)isil(_dot_)d(_dot_)shuttle(_dot_)de> writes:
However, the octet count for the [un]hashed subpackets is limited to
65535.
It just came to my mind, that large signature packets (currently they
have a limit of about 128k) do impose a problem:
It will then not be possible to keep the complete signature packet in
memory. Signatures may be (theoretical) very large - up to 4 Gigs and
due to this they have to be handled like plaintext.
Doess it really make sense to build a protocol - based on OpenPGP -
which puts all it's dat into a signature packet? Such data should go
into a literal text packet or some new packet type.
--
Werner Koch at guug.de www.gnupg.org keyid 621CC013