gpg: Forbid the creation of SHA-1 third-party key signatures.
754a03f5a279
Actions

Edit Commit
Download Raw Diff
Edit Related Objects...
Edit Revisions
Edit Tasks
Mute Notifications
Award Token

Description

gpg: Forbid the creation of SHA-1 third-party key signatures.

* g10/sign.c (SIGNHINT_KEYSIG, SIGNHINT_SELFSIG): New.
(do_sign): Add arg signhints and inhibit SHA-1 signatures.  Change
callers to pass 0.
(complete_sig): Add arg signhints and pass on.
(make_keysig_packet, update_keysig_packet): Set signhints.

(cherry picked from commit dd18be979e138dd3712315ee390463e8ee1fe8c1)

Signed-off-by: Werner Koch <wk@gnupg.org>

Details

Provenance

• werner

Authored on Nov 11 2019, 11:41 AM

Parents

rG3b1fcf65239d: gpg: Add option --allow-weak-key-signatures.

Branches

Unknown

Tags

Unknown

Event Timeline

• werner committed rG754a03f5a279: gpg: Forbid the creation of SHA-1 third-party key signatures. (authored by • werner).Nov 11 2019, 12:39 PM

Changes (1)

Path

Size

g10/

sign.c

rG754a03f5a279

View Options

gpg: Forbid the creation of SHA-1 third-party key signatures.754a03f5a279Actions

Description

Details

Event Timeline

Changes (1)

rG754a03f5a279

g10/sign.c

gpg: Forbid the creation of SHA-1 third-party key signatures.
754a03f5a279
Actions