From 540f23dfaf379aaf540eaa50b98320428e74ffc8 Mon Sep 17 00:00:00 2001
From: "Neal H. Walfield" <neal@pep.foundation>
Date: Mon, 14 May 2018 11:36:10 +0200
Subject: openpgp: Add support for verifying binding signatures.

  - Add support for verifying primary key bindings, subkey bindings,
    user id bindings, and user attribute bindings.

  - When canonicalizing a TPK, check all self-signatures.

    - If a self-signature does not verify, check whether it is out of
      order.  See https://dev.gnupg.org/T2236 for the motivation.
      Guilhem reports: "Of the 100 keys with lowest MSD
      http://pgp.cs.uu.nl/doc/top_1000.html, 27 have badly ordered
      packets."

    - Drop invalid self-signatures.

    - Drop user ids / user attributes / subkeys without a valid
      self-siganture.
---
 openpgp/tests/data/keys/dkg-sigs-out-of-order.pgp  | Bin 0 -> 27552 bytes
 openpgp/tests/data/keys/neal-sigs-out-of-order.pgp | Bin 0 -> 8442 bytes
 2 files changed, 0 insertions(+), 0 deletions(-)
 create mode 100644 openpgp/tests/data/keys/dkg-sigs-out-of-order.pgp
 create mode 100644 openpgp/tests/data/keys/neal-sigs-out-of-order.pgp

(limited to 'openpgp/tests')

diff --git a/openpgp/tests/data/keys/dkg-sigs-out-of-order.pgp b/openpgp/tests/data/keys/dkg-sigs-out-of-order.pgp
new file mode 100644
index 00000000..0e6f4c07
Binary files /dev/null and b/openpgp/tests/data/keys/dkg-sigs-out-of-order.pgp differ
diff --git a/openpgp/tests/data/keys/neal-sigs-out-of-order.pgp b/openpgp/tests/data/keys/neal-sigs-out-of-order.pgp
new file mode 100644
index 00000000..5332b61b
Binary files /dev/null and b/openpgp/tests/data/keys/neal-sigs-out-of-order.pgp differ
-- 
cgit v1.2.3