Re: [Sks-devel] primary uid flag

[Peter Palfrader]

On Mon, 26 Jan 2004, Yaron M. Minsky wrote:

> I've been looking into this a little further.  I think the problem is
> that I have the wrong algorithm for figuring out whether a key is
> primary.  Right now I do it by checking if any of the signatures
> indicate that the key is primary.  By this metric, the quickie.net key
> IS a primary uid, since it does have at least one signature that claims
> that it is primary.
> 
> So, if that algorithm is wrong, what's right?  When does a UID count as
> primary?  When the self-sig is primary?  I don't have the RFC in front
> of me.  Anyone know how I figure out which packet is the self-sig?

If more than one self sig has the is-primary subpacket set to indicate
this is the primary ID, then the one with the latest signature should be
considered primary.

I don't think that's defined in the RFC as such but is a pretty
reasonable interpretation.

Peter
-- 
 PGP signed and encrypted  |  .''`.  ** Debian GNU/Linux **
    messages preferred.    | : :' :      The  universal
                           | `. `'      Operating System
 http://www.palfrader.org/ |   `-    http://www.debian.org/

signature.asc
Description: Digital signature