From: Bradley R. <rh...@ri...> - 2006-02-09 19:23:12
|
OK, answering my own question: The code I tried *does* in fact produce a valid ascii-armoured detached signature, it's just that the header says "MESSAGE" instead of "SIGNATURE". It would appear from RFC2440 that PGP2.x uses the former and GPG uses the latter and that either is correct. Thanks! Bradley On Feb 9, 2006, at 10:47 AM, Bradley Rhodes wrote: > Is there any way to produce an ascii-armoured detached signature > using Cryptix OpenPGP? I'm trying to produce the same output I'd > get from "gpg --armor --output foo.tar.gz.asc --detach-sig > foo.tar.gz ", as used by Apache to sign releases. > > I've tried the following code: > > PGPDetachedSignatureMessage detachedSig = > msg.getDetachedSignature(); > PGPArmouredMessage armouredSig = new PGPArmouredMessage > (detachedSig); > String sigBlock = armouredSig.getEncodedString()); > > but that's producing a block with the header "-----BEGIN PGP > MESSAGE-----" instead of "-----BEGIN PGP SIGNATURE-----". > > I looked at the code for PGPArmoury but don't see any obvious way > to get the correct header. Is this feature simply not implemented? > > Thanks, > Bradley |