[Rpm-maint] [rpm-software-management/rpm] Give error message for failed PGP key import (PR #2097)

Neal H. Walfield notifications at github.com
Wed Jun 29 08:13:26 UTC 2022


An OpenPGP certificate usually contains several keys.  The keys are bound together using binding signatures.  It is entirely possible and indeed reasonable for there to be multiple binding signatures for a key, e.g., to extend the expiration time.  Thus, if a signature happens to use SHA-1, the whole certificate should not be rejected, just that signature.

-- 
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/pull/2097#issuecomment-1169671045
You are receiving this because you are subscribed to this thread.

Message ID: <rpm-software-management/rpm/pull/2097/c1169671045 at github.com>
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.rpm.org/pipermail/rpm-maint/attachments/20220629/8184ac18/attachment.html>


More information about the Rpm-maint mailing list