ietf-openpgp
[Top] [All Lists]

Re: Some -15 text nits

2005-12-28 17:42:31

On Wed, Dec 28, 2005 at 02:17:45PM -0800, Jon Callas wrote:

In section 5.2.1. Signature Types, the signature class 0x18
description says "This signature is calculated directly on the subkey
itself, not on any User ID or other packets", but in fact 0x18
signatures are calculated on the primary key plus subkey.  Similarly,
the 0x19 description says "This signature is calculated directly on
the primary key itself, and not on any User ID or other packets", but
in reality it is calculated exactly the same way as 0x18 is
(primary+subkey).

To be sure, 5.2.4 gets this right, and 5.2.1 defers to 5.2.4, but it
would still be nice to not give two different answers for this.


fixed. Here's what they say now:

   0x18: Subkey Binding Signature
       This signature is a statement by the top-level signing key that
       indicates that it owns the subkey. This signature is calculated
       directly on the primary key and subkey, not on any User ID or
       other packets. A signature that binds a signing subkey MUST have
       an embedded signature subpacket in this binding signature which
       contains a 0x19 signature made by the signing subkey on the
       primary key.

   0x19 Primary Key Binding Signature
       This signature is a statement by a signing subkey, indicating
       that it is owned by the primary key and subkey. This signature
       is calculated directly on the primary key itself, and not on any
       User ID or other packets.

Minor problem here: 0x19 hashes both the primary key and subkey.  It
is actually the same as 0x18.

David

<Prev in Thread] Current Thread [Next in Thread>