Re: [openpgp] OpenPGP certificate structure: multiple binding signatures on subkeys? (MR 43)

Paul Schaub <vanitasvitae@fsfe.org> Fri, 21 May 2021 18:14 UTC

Return-Path: <vanitasvitae@fsfe.org>
X-Original-To: openpgp@ietfa.amsl.com
Delivered-To: openpgp@ietfa.amsl.com
Received: from localhost (localhost [127.0.0.1]) by ietfa.amsl.com (Postfix) with ESMTP id 167C53A1A22 for <openpgp@ietfa.amsl.com>; Fri, 21 May 2021 11:14:22 -0700 (PDT)
X-Virus-Scanned: amavisd-new at amsl.com
X-Spam-Flag: NO
X-Spam-Score: -1.932
X-Spam-Level:
X-Spam-Status: No, score=-1.932 tagged_above=-999 required=5 tests=[BAYES_00=-1.9, RCVD_IN_DNSWL_LOW=-0.7, RCVD_IN_MSPIKE_H3=0.001, RCVD_IN_MSPIKE_WL=0.001, SPF_SOFTFAIL=0.665, URIBL_BLOCKED=0.001] autolearn=no autolearn_force=no
Received: from mail.ietf.org ([4.31.198.44]) by localhost (ietfa.amsl.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id 5ZfdKHhckbxZ for <openpgp@ietfa.amsl.com>; Fri, 21 May 2021 11:14:17 -0700 (PDT)
Received: from mx1.riseup.net (mx1.riseup.net [198.252.153.129]) (using TLSv1.2 with cipher ECDHE-RSA-AES256-GCM-SHA384 (256/256 bits)) (No client certificate requested) by ietfa.amsl.com (Postfix) with ESMTPS id B2BD03A1A1F for <openpgp@ietf.org>; Fri, 21 May 2021 11:14:17 -0700 (PDT)
Received: from fews2.riseup.net (fews2-pn.riseup.net [10.0.1.84]) (using TLSv1 with cipher ECDHE-RSA-AES256-SHA (256/256 bits)) (Client CN "*.riseup.net", Issuer "Sectigo RSA Domain Validation Secure Server CA" (not verified)) by mx1.riseup.net (Postfix) with ESMTPS id 4FmvrT1WnvzDqr4; Fri, 21 May 2021 11:14:17 -0700 (PDT)
X-Riseup-User-ID: A2F5CE2FAA05DB59A4EF76C653249DD939DB20BDF087943940F0A5194FC379D0
Received: from [127.0.0.1] (localhost [127.0.0.1]) by fews2.riseup.net (Postfix) with ESMTPSA id 4FmvrS2b6vz1xph; Fri, 21 May 2021 11:14:16 -0700 (PDT)
Date: Fri, 21 May 2021 18:14:12 +0000 (UTC)
From: Paul Schaub <vanitasvitae@fsfe.org>
To: Daniel Kahn Gillmor <dkg@fifthhorseman.net>
Cc: openpgp@ietf.org
Message-ID: <076a1bac-b6c5-4975-8c24-e5c90ffbd5be@fsfe.org>
In-Reply-To: <87bl94dmov.fsf@fifthhorseman.net>
References: <87bl94dmov.fsf@fifthhorseman.net>
MIME-Version: 1.0
Content-Type: multipart/signed; micalg=pgp-sha512; protocol="application/pgp-signature"; boundary="----=_Part_10_180247185.1621620852991"
X-Correlation-ID: <076a1bac-b6c5-4975-8c24-e5c90ffbd5be@fsfe.org>
Autocrypt: addr=vanitasvitae@fsfe.org; prefer-encrypt=mutual; keydata= mQINBFfz1ucBEADXSvUjnOWSzgW5hXki1xUpGv7vacT8XqqGbO9Z32P3eFxa4E9J vveJmx+voxRWpleZ/L6XCYYmCKnagjF0fMxFD1Zxicp5tzbruC1cm/Els0IJVjFV RLke3SegTHxHncA8+BYn2k/VnTKwDXzP0ZLyc7mUbDl8CCtWGGUkXpaa7WyZIA/q mvUqh7671Vr4vJlq0kFbUibsFblZjk9uydHvvqaVpmBzbr/gWDyirHXwPl5lCnWp ORjT7tc8hjyt+dxpmnGdqlDIcqUjdCWoN6NxffLtKz/XpJ+dBvA8rXT/QaPSaVCG o0DbgybvRF1HvX30udx4FF9fFsVAbYP1mvZx4fHy+Z1rJJhODZv1YpH7YY1bmG02 vfFkwpW4AyAdsONA+n/XdMCsA006/pljNd3GxjcqB5D6BhpdUvcgUslkuELsVYWb EyhxKzzJvZNjQ/iHsaThooy9SFHc71PgYdyEL/WzoGr421GwpCL6BuE0rlumgaTm joU/9ydLO6zpbV4RYDgtsaGQxOxVc0y1Lj8CWTi/XYIVRnmqrjGmubRV7q8pTxrg oyk2zwQ+twyxp/8ZRHzl5ISiDLKSDlcMK1oa7NqyL+MCwiswpaObk56HxgF2ZwEb JZYCwetxyTK7HX4/WV0V6TaPzS7dHAsb6t1Aq8IS1JdGjWKRPkjkhR95nQARAQAB tCNQYXVsIFNjaGF1YiA8dmFuaXRhc3ZpdGFlQGZzZmUub3JnPokEwgQTAQoCrAIb AwYLCQgHAwIGFQgCCQoLBBYCAwECHgECF4ACGQEWIQR/kRb+qQpZg5NsfPqgJ9sv Ph4RigUCYAwbLDUUgAAAAAASABpwcm9vZkBtZXRhY29kZS5iaXpkbnM6amFiYmVy aGVhZC50az90eXBlPVRYVD4UgAAAAAASACNwcm9vZkBtZXRhY29kZS5iaXpodHRw czovL2Zvc3N0b2Rvbi5vcmcvQHZhbml0YXN2aXRhZZAUgAAAAAASAHVwcm9vZkBt ZXRhY29kZS5iaXp4bXBwOnZhbml0YXN2aXRhZUBqYWJiZXJoZWFkLnRrP29tZW1v LXNpZC0yMDkzNjgxNTQ1PTYyODlhYTNiZDhhNTAxYTM2MzIyYTBmODk0ZjhkMWQ5 NzE4ZGVkMDM2MTYwMzlmMWNmNDhiMmE0MWVlMzU5MjCPFIAAAAAAEgB0cHJvb2ZA bWV0YWNvZGUuYml6eG1wcDp2YW5pdGFzdml0YWVAamFiYmVyaGVhZC50az9vbWVt by1zaWQtMTk5MTQxODIwPWY0YThmZjg0MDA0MzkzYTg3ZjcwMTNjNjAwNjViZGM4 OWIxMTY5ZWJjZmI4MDYwYzRmOTY2OWI0M2JhMGM4MTSQFIAAAAAAEgB1cHJvb2ZA bWV0YWNvZGUuYml6eG1wcDp2YW5pdGFzdml0YWVAamFiYmVyaGVhZC50az9vbWVt by1zaWQtMTQyOTY3NzEyNT1lOGE3YjEyMzZiODUwYjQ2N2E1MDkyYzBiZGZlYTg2 YTUzZTM2ODQyODNhMWQ1ZmUyNmVmNTg3MmRkMGFlZjQxSBSAAAAAABIALXByb29m QG1ldGFjb2RlLmJpemh0dHBzOi8vY29kZWJlcmcub3JnL3Zhbml0YXN2aXRhZS9n aXRlYV9wcm9vZgAKCRCgJ9svPh4RivdTEADC3xMcrcDR/+4JlDl5fblecfJHr3/E 0fzkPWJJBL+TIn3ON2sSKIfLn9M7NYWIGT0QLI4LnqT+SZ3Ont1h8irM4O8LuTwZ kqjLkytGhgCErSdGzJ3oIcdXcnzX/p6fmxer1Qg/bpFy8mRrpSQ5tI0TYUXfD0qs BEbUhB3Tsg8AYaDRcdPx8gf1METZDxx/E6RQNzVIfyCK8hszzU1pRFr15DYDCjl5 RZjTxXqxJFKUz85LvQToaFo5SXgH/fWf0EeoD+YNqyhROYr8iWMLCLiHqvqkEXny lm7qNlFxFGFSu8Mcj6HSet5qvRj2wn6XssOWm2pOalDJx+L/biETr5vEnBwfw7p2 1Pmrg/jhK9yasKsdYKRlJdJWOtpEi9amcQ4sGA9OD74weJ/zEEPgLKbvkWFuUy8a 69AEeKAbB3RH3r7+PRnPVvxC3MpEmLsRsjVdP21xGhtnqAzJFkMRXf5lpC6czJiH gd/sao0mJPrkWUHDn0k9rgoZI9gRRENk3tXefjwQ2A5aEcAagmb2l0DjugYAb7dU ip9bJNUhBgjiaWYBj9uZOzYdQ7kFcFWp7iCGvkoeBMQf29rXZOZsxQmKLgEPZuCl YmIO4PS6sERoPT+FUGl85YAkEIBII0TCQdVQd/Vx6JRLc/f/cFCoKBv2+9LKVPIp wNNL5J+0m/H1dLkCDQRX89bnARAAs1NzkaHRNHWu2YiQk8lTctciFjyMlVH/Vy28 yZSfpHWrt7MCzhkaK1PYsWlnJifOlCnvzyDW26ouLqbPR51lzRFs9UID1dzg4RCu PMs0TwlIfcUCbBRc3lq3An941sEwD0+gguGog1oIum2regAftnbSoQj/1+OoZZz0 zqeDkHorQcCDTc3EfYsLjswiFioioOPWgPjG6DSa39xf07YdrW0DOwpJ/M+MCVoP xREqbXC/oCYUQ85h4V66a8YMYrmkeHzq1kuX7HXuoJKtX8W3vHCiPo/sU/wF74b0 oDiskfeXwMaZoRhVPkYGBEIhAO6n9tqWtuSzxWmMWH/TDw8h2GM6hCa67YPVuiTn ztNdr8FR9D3WFpcizpbNJFj6HBcrfO6IwD5NK8h5fiqFeIQAIfo1PL88OC8jDVjs cF0YoJeCiI8sRFjP/1y/MbYaKIR4fA+PbogeW/klGeI8bp49dGQa+8cnrgDcnzNS 1TXh1Zcaob9H+DDHdSCN37hHtfroFDBCr6KRQ55WzBTdR+zmibZDjkGY4T0uaQjF QAGshPNGcr63rCSWyZnInx1H4WWwnsUquTt7T+qt0TAOfd+9shgPqz/dLKkkF87m BtS423dGdDp6BZJ5t4lpl8LGiSuk9p/ckoB4MET+1iLjaU+FECLFyIg95v6Gk1OY FxeDnnEAEQEAAYkCfgQYAQgAcgWCX/iQQwkQoCfbLz4eEYpHFAAAAAAAHgAgc2Fs dEBub3RhdGlvbnMuc2VxdW9pYS1wZ3Aub3JnYWATd/tucGd3FDiHb4AJdZ9NptbA cccakj1mpmFlMEkCGwwWIQR/kRb+qQpZg5NsfPqgJ9svPh4RigAAMB0P/RLNvisc aB3Ii0ZLMs6wQOsYkJ/O1c4fm8ajmz+Z5lgEhgVbeFhmsqJHIgk/ni4UcdHAsKIB wfcVxZPzR+nH1g5CId/E2mZXCcCi586Z8jyn8b34Vx/rYdJVkqyBL3OtS+EOMBRO vA5VsNWrIVm0BrGqzEjm0mKUuRldpZyjNRzD2beITJkOCk1H/Vqt+bCXmxb2akb+ 06bB0NqKG+kjRvlCnSwBvZ+RyiXVrOeeoj4ODgGyta0W+Rtnoa+AXpr5JE6uBc3Z +vgZrDndqBgD/SZUXjNC//Y3M6qxfji84e8HXmFzuZccmSzwH+Op6Mlh4XiPhqxm L5/AJoE8QxCUnCb4mENcnfGdmnlmWGrbApNkdmb3hXDXpZCJzRYgdPtUEuWJ5/ml m0979/bF8b0HN0eCG06VqoNi+nSNbeth7f/4gseq60DpcJaf4lGVs9AgjXFNGWSy ZmHuFwM+UpfHZiRXfprbilB7ZBhfhx9d0MZ7luyFAa1IdCjb3bpdvZMPSSx8xoW4 obcuExVayJzJz1HCeWwr3wYuzV4SkWbSm3YWOBfK9EaGc2RogTu89esmyCwW2usl cSrnYS6Dp0lCcC1CXsKlZKWV2GZgbZAUI+w7T71UT4Dw/P4qOvuKIfqvD2SJ0Zfo KoV1oa5YNHqpsJUmmc+UXmfTZgfP14xzBUyV
Archived-At: <https://mailarchive.ietf.org/arch/msg/openpgp/CDn5XT-osvo9yCeOy2_j9IottH8>
Subject: Re: [openpgp] OpenPGP certificate structure: multiple binding signatures on subkeys? (MR 43)
X-BeenThere: openpgp@ietf.org
X-Mailman-Version: 2.1.29
Precedence: list
List-Id: "Ongoing discussion of OpenPGP issues." <openpgp.ietf.org>
List-Unsubscribe: <https://www.ietf.org/mailman/options/openpgp>, <mailto:openpgp-request@ietf.org?subject=unsubscribe>
List-Archive: <https://mailarchive.ietf.org/arch/browse/openpgp/>
List-Post: <mailto:openpgp@ietf.org>
List-Help: <mailto:openpgp-request@ietf.org?subject=help>
List-Subscribe: <https://www.ietf.org/mailman/listinfo/openpgp>, <mailto:openpgp-request@ietf.org?subject=subscribe>
X-List-Received-Date: Fri, 21 May 2021 18:14:22 -0000

Hey list!

21.05.2021 19:25:19 Daniel Kahn Gillmor <dkg@fifthhorseman.net>et>:

> I note that if the change in the structure is correct, then the text
> below it should also be changed (it should not say "has a single
> signature after it…")

Good catch, shall I update the PR accordingly?

Another Paul