recommendation for key servers

Daniel Kahn Gillmor dkg at
Thu Jul 8 00:30:57 CEST 2021

On Wed 2021-07-07 19:57:14 +0200, Werner Koch wrote:
> You need to check for the canonical form anway and thus it is easier to
> directly sort it.  In case of signature subpackets (if that is one of
> your concerns), this if of course not possible and thus this would
> require that the specs require a specfic order

yep, i'm uninterested in any canonicalization trying to sort the hashed
subpackets -- they are whatever they are on the wire and any reasonable
implementation should accept them and retain them as is.
Canonicalization should be limited to the parts that are "flexible" in
that reordering does not invalidate signatures.

>> I'm happy for OpenPGP to continue avoiding ASN.1 as much as possible!
>> (and a bit bummed that a tiny, mangled bit of ASN.1 has crept in with
>> ECC but i guess that's water under the bridge)
> Oh, it is already also in PCKS#1.5

ugh, right.  so it goes…

-------------- next part --------------
A non-text attachment was scrubbed...
Name: signature.asc
Type: application/pgp-signature
Size: 227 bytes
Desc: not available
URL: <>

More information about the Gnupg-users mailing list