doc: Add a comment to explain the signature postscript.

-- Hal Finney explained this on January 22, 2004 on a question from Peter Gutmann on the WG list.
author: Werner Koch <[email protected]> 2020-03-12 10:05:37 +0000
committer: Werner Koch <[email protected]> 2020-03-12 10:05:37 +0000
commit: 90fb4a69d2f6249eba41af512838a730da671e4a (patch)
tree: 7b00b4bbded79af5156915f66da44a00d3d2c8db /g10/sign.c
parent: gpgconf: Rewrite the gpgconf-comp module. (diff)
download: gnupg-90fb4a69d2f6249eba41af512838a730da671e4a.tar.gz
gnupg-90fb4a69d2f6249eba41af512838a730da671e4a.zip
1 files changed, 8 insertions, 3 deletions
diff --git a/g10/sign.c b/g10/sign.c
index 11360b95b..f0d622b31 100644
--- a/g10/sign.c
+++ b/g10/sign.c
@@ -293,10 +293,15 @@ hash_sigversion_to_magic (gcry_md_hd_t md, const PKT_signature *sig,
           gcry_md_write (md, buf, 6);
         }
     }
-  /* Add some magic.  */
+  /* Add some magic aka known as postscript.  The idea was to make it
+   * impossible to make up a document with a v3 signature and then
+   * turn this into a v4 signature for another document.  The last
+   * hashed 5 bytes of a v4 signature should never look like a the
+   * last 5 bytes of a v3 signature.  The length can be used to parse
+   * from the end. */
   i = 0;
-  buf[i++] = sig->version;
-  buf[i++] = 0xff;
+  buf[i++] = sig->version;  /* Hash convention version.  */
+  buf[i++] = 0xff;          /* Not any sig type value.   */
   if (sig->version >= 5)
     {
       /* Note: We don't hashed any data larger than 2^32 and thus we
author	Werner Koch <[email protected]>	2020-03-12 10:05:37 +0000
committer	Werner Koch <[email protected]>	2020-03-12 10:05:37 +0000
commit	90fb4a69d2f6249eba41af512838a730da671e4a (patch)
tree	7b00b4bbded79af5156915f66da44a00d3d2c8db /g10/sign.c
parent	gpgconf: Rewrite the gpgconf-comp module. (diff)
download	gnupg-90fb4a69d2f6249eba41af512838a730da671e4a.tar.gz gnupg-90fb4a69d2f6249eba41af512838a730da671e4a.zip