Home GnuPG
Diffusion GnuPG 754a03f5a279

gpg: Forbid the creation of SHA-1 third-party key signatures.

Description

gpg: Forbid the creation of SHA-1 third-party key signatures.

* g10/sign.c (SIGNHINT_KEYSIG, SIGNHINT_SELFSIG): New.
(do_sign): Add arg signhints and inhibit SHA-1 signatures.  Change
callers to pass 0.
(complete_sig): Add arg signhints and pass on.
(make_keysig_packet, update_keysig_packet): Set signhints.

(cherry picked from commit dd18be979e138dd3712315ee390463e8ee1fe8c1)

  • Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance
wernerAuthored on Nov 11 2019, 11:41 AM
Parents
rG3b1fcf65239d: gpg: Add option --allow-weak-key-signatures.
Branches
Unknown
Tags
Unknown