Sequoia does not accept Serge's key #1525
Description
Debian mostly switched to sequoia's OpenPGP implementation, which rejects keys/66D0387DB85D320F8408166DB175CFA98F192AF2.asc since 2026-02-01. Please update the key.
$ sq cert lint < keys/66D0387DB85D320F8408166DB175CFA98F192AF2.asc
Certificate B175CFA98F192AF2 contains a User ID (Serge Hallyn (kernel.org) <[email protected]>) protected by SHA-1
Certificate B175CFA98F192AF2, key D62F64D09CDDF031 uses a SHA-1-protected binding signature.
Examined 1 certificate.
0 certificates are invalid and were not linted. (GOOD)
1 certificate was linted.
1 of the 1 certificates (100%) has at least one issue. (BAD)
0 of the linted certificates were revoked.
0 of the 0 certificates has revocation certificates that are weaker than the certificate and should be recreated. (GOOD)
0 of the linted certificates were expired.
1 of the non-revoked linted certificate has at least one non-revoked User ID:
1 has at least one User ID protected by SHA-1. (BAD)
0 have all User IDs protected by SHA-1. (GOOD)
1 of the non-revoked linted certificates has at least one non-revoked, live subkey:
1 has at least one non-revoked, live subkey with a binding signature that uses SHA-1. (BAD)
1 of the non-revoked linted certificates has at least one non-revoked, live, signing-capable subkey:
0 certificates have at least one non-revoked, live, signing-capable subkey with a strong binding signature, but a backsig that uses SHA-1. (GOOD)