For --sig-policy-url and --cert-policy-url, clarify what is a sig and what

is a cert.  A sig has sigclass 0x00, 0x01, 0x02, or 0x40, and everything
else is a cert.

Add a "nrlsign" for nonrevocable and local key signatures.

Add a --no-force-mdc to undo --force-mdc.

Add a knob to force --disable-mdc/--no-disable-mdc.  Off by default, of
course, but is used in --pgp2 and --pgp6 modes.

Allow specifying multiple users in the "Enter the user ID" loop.  Enter a
blank line to stop.  Show each key+id as it is added.

It is not illegal (though possibly silly) to have multiple policy URLs in
a given signature, so print all that are present.

More efficient implementation of URL-ifying code for --search on an HKP
keyserver.

g10/sign.c

@@ -49,7 +49,6 @@
   #define LF "\n"
 #endif
 
-
 /****************
  * Create a notation.  It is assumed that the stings in STRLIST
  * are already checked to contain only printable data and have a valid
@@ -96,14 +95,14 @@ mk_notation_and_policy( PKT_signature *sig, PKT_public_key *pk )
     }
 
     /* set policy URL */
-    if( (sig->sig_class==0 || sig->sig_class==1) && opt.sig_policy_url )
+    if( IS_SIG(sig) && opt.sig_policy_url )
       {
 	if(sig->version<4)
 	  log_info("can't put a policy URL into v3 signatures\n");
 	else
 	  s=m_strdup(opt.sig_policy_url);
       }
-    else if( !(sig->sig_class==0 || sig->sig_class==1) && opt.cert_policy_url )
+    else if( IS_CERT(sig) && opt.cert_policy_url )
       {
 	if(sig->version<4)
 	  log_info("can't put a policy URL into v3 key signatures\n");