Expand pgp_update generation, more options for key gen

[zapu]

Mostly pgp_update improvements. It can change expiration times and change identities now. This was used to test signature chain verification for expiration bugs where expiring pgp key was invalidating the whole chain.

Changes to _compute_time: it is used for more things now (like key.generated for key generation time, which might be different than link creation time), but _compute_time will only advance simulation clock when handling linkdesc.ctime, and it will always happen at the very beginning of forging link (used to be in _populate_proof so at the very end).

4.cson has an example of pgp_update that moves key expiration and changes identity name.

[maxtaco]

Small comment, otherwise looks good

[maxtaco]

👍