Yup - that's exactly my point: we can now have arbitrary number of signatures
with different algorithms each, stored in a single array. If we signed hashes
instead, we'd have to store those hashes (separately) for each, to permit the
same flexibility (and safety) in variety. Which is adds complexity, but of
course its all a tradeoff one way or the other.
--
Reply to this email directly or view it on GitHub:
https://github.com/rpm-software-management/rpm/issues/2224#issuecomment-2519884885
You are receiving this because you are subscribed to this thread.
Message ID: <rpm-software-management/rpm/issues/2224/2519884...@github.com>
_______________________________________________
Rpm-maint mailing list
Rpm-maint@lists.rpm.org
https://lists.rpm.org/mailman/listinfo/rpm-maint
