diff options
author | Justus Winter <justus@sequoia-pgp.org> | 2020-09-16 13:49:49 +0200 |
---|---|---|
committer | Justus Winter <justus@sequoia-pgp.org> | 2020-09-16 14:39:48 +0200 |
commit | 7d7e3457add3d3fe30f28471a2de9b0adf1de6b9 (patch) | |
tree | 1ccac579eb6dff7e936d76f0a6c0f3ea34ef7fc6 /openpgp-ffi/include | |
parent | 012ddfb07db57badf307c83956d74d6964e3f83b (diff) |
openpgp: Update backsig when changing expiration time.
- When updating the expiration time of signing-capable subkeys, also
create a new primary key binding signature.
- Fixes #534.
Diffstat (limited to 'openpgp-ffi/include')
-rw-r--r-- | openpgp-ffi/include/sequoia/openpgp.h | 5 |
1 files changed, 5 insertions, 0 deletions
diff --git a/openpgp-ffi/include/sequoia/openpgp.h b/openpgp-ffi/include/sequoia/openpgp.h index 99510a81..074170d5 100644 --- a/openpgp-ffi/include/sequoia/openpgp.h +++ b/openpgp-ffi/include/sequoia/openpgp.h @@ -1187,12 +1187,17 @@ pgp_signature_t pgp_valid_key_amalgamation_binding_signature (pgp_valid_key_amal /// Creates one or more self-signatures that when merged with the /// certificate cause the key to expire at the specified time. /// +/// `subkey_signer` must be `NULL` when updating the expiration of the +/// primary key, or updating the expiration of a non-signing capable +/// subkey. Otherwise, a signer for the subkey must be given. +/// /// The returned buffer must be freed using libc's allocator. /*/ pgp_status_t pgp_valid_key_amalgamation_set_expiration_time (pgp_error_t *errp, pgp_valid_key_amalgamation_t ka, pgp_signer_t signer, + pgp_signer_t subkey_signer, time_t time, pgp_signature_t **sigs, size_t *sig_count); |