DSGL proposal: drop criterion that init commit be signed #2
castedo
started this conversation in
Baseprint Feature D's
Replies: 0 comments
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
-
Currently Hidos will error if the initial commit of a signed succession is not signed. And the DSGL spec 1.1 has this as a criterion for an ungarbled succession.
I propose that it is OK for the initial commit to be unsigned, even for a signed succession. It is still a hard criterion that all non-initial commits be signed with an allowed key.
But this really isn't necessary. It really only maters that non-initial commits are signed with whatever keys are listed in the init commit.
I originally made Hidos error figuring that it is a good way to make sure a user has their signing key setup properly. But on second thought I don't this is worth the extra complexity and artificial constraint.
Beta Was this translation helpful? Give feedback.
All reactions