go.crypto/openpgp: fix user id signing. Entity.SignIdentity used the wrong signature function and produced invalid certification signatures. Fixed. VerifyUserIdSignature was used for checking the self-signature on an identity, but didn't support anything but a self-signature. This change alters the low-level API so that checking cross-signatures is possible. Fixes golang/go#7371. LGTM=bradfitz R=bradfitz CC=golang-codereviews https://golang.org/cl/96240043

commit: 84ca184138ec653f724c2dd81d4e96bfe2b9b68a [log] [tgz]
author: Adam Langley <agl@golang.org> Mon May 12 11:23:48 2014 -0700
committer: Adam Langley <agl@golang.org> Mon May 12 11:23:48 2014 -0700
tree: 69970defc03590052f580e6c4f00dd543ec83409
parent: 2dfe547928fdf792f2d4b626eeab4490419ca5f4 [diff] [blame]
diff --git a/openpgp/packet/public_key_test.go b/openpgp/packet/public_key_test.go
index 47168a4..7ad7d91 100644
--- a/openpgp/packet/public_key_test.go
+++ b/openpgp/packet/public_key_test.go

@@ -133,7 +133,7 @@
 			t.Error(err)
 		}
 		uidSig := p.(*Signature)
-		err = pubkey.VerifyUserIdSignature(uid.Id, uidSig)
+		err = pubkey.VerifyUserIdSignature(uid.Id, pubkey, uidSig)
 		if err != nil {
 			t.Error(err, ": UID")
 		}
commit	84ca184138ec653f724c2dd81d4e96bfe2b9b68a	[log] [tgz]
author	Adam Langley <agl@golang.org>	Mon May 12 11:23:48 2014 -0700
committer	Adam Langley <agl@golang.org>	Mon May 12 11:23:48 2014 -0700
tree	69970defc03590052f580e6c4f00dd543ec83409
parent	2dfe547928fdf792f2d4b626eeab4490419ca5f4 [diff] [blame]