asciilifeform: btw i confirmed that phf's v98 ( when patched to remove the subkey handler thing ) successfully presses ch1-11, with bitwise-correct results ( compared with classic vtron )
asciilifeform: loox like i'ma have to strip out the subkey garbage, and regenesis, 'v98-that-actually-worx'. unless phf has better idea.
asciilifeform: the funniest bit is that anybody who spends a few $10k to find sha1 collision, can take it one step further and make a valid subkey for asciilifeform's, or mircea_popescu's, etc. key☟︎
asciilifeform: though then you want to see the unpopped subkey siblings of the popped moduli, and start clicking, and you'll get zip.
asciilifeform: btw does mircea_popescu know what would happen if a pgp key with his main key but new magical subkey were generated and posted to sks ?☟︎
asciilifeform: (or more general variant where enemy can take something you signed and turn THAT into a subkey that is in turn accepted somewhere!!)
asciilifeform: Framedragger: concept of 'subkey' is waiting to be shot in the head incidentally.
asciilifeform: but now it seems like hdbuck somehow ended up with my expired subkey ?
asciilifeform: but looks like the actual rsa op was carried out WITH THE SUBKEY
asciilifeform: anyone recall how mircea_popescu spewed chunks when i pointed out that he's been signing with a subkey and not with the magical modulus ?☟︎
asciilifeform: my main objection to subkey as implemented in gpg is that IT DOES NOT TELL YOU OR EVEN LET YOU CHOOSE with which modulus (i.e. which sub) it actually signs with !☟︎☟︎
asciilifeform: subkey is one of those things that could be a useful idea IF IT WORKED and WERE NOT IMPLEMENTED BY IDIOT☟︎
asciilifeform: because there is no physically possible way to determine what subkey ought to be asked from sks et al, for that particular pubkeyblock hash
asciilifeform: i'd suggest term 'of', and use mathematical notation subkey(ofkey)
