If we want to allow changing the profile signing key, we must make sure we store secret keys for both the old and the new profile signing key, and that for signing updates we use the one that the keyserver considers active. This is critical for not getting stuck in case the client misses a success reply to an update that actually went through.
If we want to allow changing the profile signing key, we must make sure we store secret keys for both the old and the new profile signing key, and that for signing updates we use the one that the keyserver considers active. This is critical for not getting stuck in case the client misses a success reply to an update that actually went through.