View Source OpenPGP.PublicKeyPacket (OpenPGP v0.6.2)

Represents structured data for Public-Key Packet.

RFC4880

5.5.2. Public-Key Packet Formats

There are two versions of key-material packets. Version 3 packets were first generated by PGP 2.6. Version 4 keys first appeared in PGP 5.0 and are the preferred key version for OpenPGP.

OpenPGP implementations MUST create keys with version 4 format. V3 keys are deprecated; an implementation MUST NOT generate a V3 key, but MAY accept it.

A version 3 public key or public-subkey packet contains:

  • A one-octet version number (3).

  • A four-octet number denoting the time that the key was created.

  • A two-octet number denoting the time in days that this key is valid. If this number is zero, then it does not expire.

  • A one-octet number denoting the public-key algorithm of this key.

  • A series of multiprecision integers comprising the key material:

    - a multiprecision integer (MPI) of RSA public modulus n;

- an MPI of RSA public encryption exponent e.

V3 keys are deprecated. They contain three weaknesses. First, it is relatively easy to construct a V3 key that has the same Key ID as any other key because the Key ID is simply the low 64 bits of the public modulus. Secondly, because the fingerprint of a V3 key hashes the key material, but not its length, there is an increased opportunity for fingerprint collisions. Third, there are weaknesses in the MD5 hash algorithm that make developers prefer other algorithms. See below for a fuller discussion of Key IDs and fingerprints.

V2 keys are identical to the deprecated V3 keys except for the version number. An implementation MUST NOT generate them and MAY accept or reject them as it sees fit.

The version 4 format is similar to the version 3 format except for the absence of a validity period. This has been moved to the Signature packet. In addition, fingerprints of version 4 keys are calculated differently from version 3 keys, as described in the section "Enhanced Key Formats".

A version 4 packet contains:

  • A one-octet version number (4).

  • A four-octet number denoting the time that the key was created.

  • A one-octet number denoting the public-key algorithm of this key.

  • A series of multiprecision integers comprising the key material. This algorithm-specific portion is:

    Algorithm-Specific Fields for RSA public keys:

    • multiprecision integer (MPI) of RSA public modulus n;

    • MPI of RSA public encryption exponent e.

    Algorithm-Specific Fields for DSA public keys:

    • MPI of DSA prime p;

    • MPI of DSA group order q (q is a prime divisor of p-1);

    • MPI of DSA group generator g;

    • MPI of DSA public-key value y (= g**x mod p where x is secret).

    Algorithm-Specific Fields for Elgamal public keys:

    • MPI of Elgamal prime p;

    • MPI of Elgamal group generator g;

    • MPI of Elgamal public key value y (= g**x mod p where x is secret).

Summary

Types

t()

Functions

decode(input)

Decode Public Key Packet given input binary. Return structured packet and remaining binary.

Types

Link to this type

t()

View Source 
@type t() :: %OpenPGP.PublicKeyPacket{
  algo: OpenPGP.Util.public_key_algo_tuple(),
  created_at: DateTime.t(),
  expires: nil | non_neg_integer(),
  fingerprint: binary(),
  id: binary(),
  material: tuple(),
  version: 2 | 3 | 4
}

Functions

Link to this function

decode(input)

View Source 
@spec decode(binary()) :: {t(), binary()}

Decode Public Key Packet given input binary. Return structured packet and remaining binary.