Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add support for parsing TrustSignature packets #138

Merged
merged 4 commits into from
Jan 9, 2023
Merged

Add support for parsing TrustSignature packets #138

merged 4 commits into from
Jan 9, 2023

Conversation

arudzitis-stripe
Copy link
Contributor

This is written to address: #86

This change:

  • Adds parsing of TrustSignature packets on signatures per RFC 4880 5.2.3.13
  • Adds this data to the Signature struct
  • Adds a unit test to confirm we can parse a signature with this subpacket and re-serialize it

It does not appear to me that this library models trust, so nothing is actually done with the additional trust information except preserve it on the Signature.

@arudzitis-stripe arudzitis-stripe mentioned this pull request Jan 5, 2023
Closed
3 tasks
@twiss
Copy link
Member

twiss commented Jan 9, 2023

Hey 👋 Thanks for the PR, and apologies for the delay! (I was on vacation last week.)

I have a small nitpick about the API: I think the Signature.TrustSignature naming is a bit confusing (admittedly, this is mostly because the name of the subpacket in the spec is confusing), since it's a property of the signature rather than a new signature (i.e. it's not like the "Embedded Signature" subpacket). So I would drop the "Signature" from the name.

And then, to simplify things more, I would tend to add two properties, Signature.TrustLevel and Signature.TrustAmount, instead of a struct. The revocation reason subpacket is also split into two properties, RevocationReason and RevocationReasonText, so I think that's fine. And then, you could serialize it when TrustLevel != 0, since the spec anyway says that "Level 0 has the same meaning as an ordinary validity signature."

@arudzitis-stripe
Copy link
Contributor Author

@twiss updated with your feedback!

@twiss
Copy link
Member

twiss commented Jan 9, 2023

Thanks! Is there some reason TrustAmount needs to be a pointer? I assume if TrustLevel is 0 then TrustAmount is irrelevant too, so it can just default to 0 as well?

If you want to check that the TrustAmount was set explicitly before generating the subpacket, I think you could also just check that it's != 0 as well, as emitting Level > 0 and Amount == 0 seems fairly nonsensical to me.

@arudzitis-stripe
Copy link
Contributor Author

I agree with the argument it is nonsensical, but it sounds like from the RFC that 0 is an allowed value:

The trust amount is in a range from 0-255, interpreted such that
values less than 120 indicate partial trust and values of 120 or
greater indicate complete trust

However, I can make it not-a-pointer, and just assume if level > 0, then Amount was intentionally set to 0 (as is allowed by the RFC).

@arudzitis-stripe
Copy link
Contributor Author

@twiss updated

@twiss
Copy link
Member

twiss commented Jan 9, 2023

Right. The downside of this is that someone might forget to set the TrustAmount but since this is a very low-level API I think this is OK, they just need to be careful to set both :)

@twiss twiss merged commit 7efeeb0 into ProtonMail:main Jan 9, 2023
@arudzitis-stripe arudzitis-stripe mentioned this pull request Jan 10, 2023
Merged
@twiss twiss mentioned this pull request Jan 31, 2023
Merged
@dedekind125 dedekind125 mentioned this pull request Mar 8, 2024
Merged
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@twiss twiss twiss approved these changes

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.

None yet
2 participants
@arudzitis-stripe @twiss