openpgp fingerprints for subkeys

Simon Josefsson simon at
Mon Jun 16 11:55:51 CEST 2008

Daniel Kahn Gillmor < at> writes:

> Hey Folks--
> Another thought about OpenPGP certificate/key infrastructure (i'm
> submitting this here because the trac installation seems to be defunct
> From the spam, and i'm not sure what the rightful heir is).

Hi!  This list is the best place for now...

> gnutls_openpgp_privkey_get_fingerprint() and
> gnutls_openpgp_crt_get_fingerprint() both are capable of returning the
> fingerprint of the primary key.  However, subkeys can have
> fingerprints too, and in many circumstances it can be useful to
> calculate the subkey's fingerprint.

Makes sense.

> Having a parallel subkey-specific fingerprint function would be good.
> If you want to verify the subkey fingerprint calculations, you can see
> them emitted with gpg with two --fingerprint options:
>  gpg --fingerprint --fingerprint --list-key "$KEYID"

Is it easy to implement this?  I think we could squeeze this addition
into 2.4.0 if you or Nikos come up with a patch soon.


More information about the Gnutls-devel mailing list