Add anchor, and clarify intended meaning of section

This commit is contained in:
Heiko Schaefer 2023-11-22 15:05:17 +01:00
parent 17d4894ee7
commit 886e8f5ff2
No known key found for this signature in database
GPG key ID: DAE9A9050FCCF1EB

View file

@ -161,12 +161,12 @@ Linking a User ID to an OpenPGP certificate
This signature is calculated over the primary key, User ID and the metadata of the signature packet.
### Adding metadata to the primary key
(primary-metadata)=
### Adding metadata to the primary key/certificate
The signatures that bind subkeys and identity components to a certificate serve two different purposes: Linking components to the certificate and adding metadata to a component.
The primary key in a certificate doesn't need to be linked to the certificate. It acts as the anchor for linking, itself and thus doesn't require being linked. However, there is nevertheless a need to associate metadata with the primary key.
The primary key in a certificate doesn't need to be linked to the certificate. It acts as the anchor for linking, itself and thus doesn't require being linked. However, there is nevertheless a need to associate metadata with the primary key, which typically applies to the certificate as a whole.
There are two mechanisms for adding metadata to the primary key: