IssuerKeyId criticality and unsupported implementations #263
Comments
This was referenced Jan 10, 2025
|
Apologies for the regression. The reason this was changed was for consistency with OpenPGP.js, although we could theoretically change it in both. I don't think it really makes sense for this to be an option, though. Perhaps, would it be an option for you to use a fork/patch that reverts this, instead? |
|
yes that's a valid option as well, but it always feels a bit sketchy to use a fork of crypto lib I think, so I would like to avoid it if possible... |
This was referenced Jan 15, 2025
Merged
|
We also experience the regression in Gitea's RPM package registry. Why |
caarlos0
added a commit
to caarlos0/go-crypto
that referenced
this issue
Jan 16, 2025
|
PS: opened #266 not sure if we can just do that, but given it was like that for years before, I imagine we can? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
In v1.1+ (#208), the issuer key ID subpacket was made critical again (reverting #175).
RPM 4.16 (used in centos 9, fedora 34, ...) does not support it. Seems to be fixed in 4.17+.
FWIW Centos 9 EOL is set to 2027-05-31.
Is it possible to set it back to false? Does it need to be true? Can we make that optional somehow?
see:
The text was updated successfully, but these errors were encountered: