php.net |  support |  documentation |  report a bug |  advanced search |  search howto |  statistics |  random bug |  login
Bug #58297 gnupg using version 3 signatures?
Submitted: 2008-07-30 10:57 UTC Modified: -
From: seth_gregory at harvard dot edu Assigned:
Status: Open Package: gnupg (PECL)
PHP Version: 5.1.6 OS: RHEL4
Private report: No CVE-ID: None
View Add Comment Developer Edit
Welcome! If you don't have a Git account, you can't do anything here.
You can add a comment by following this link or if you reported this bug, you can edit this bug over here.
Block user comment
Status: Assign to:
Package:
Bug Type:
Summary:
From: seth_gregory at harvard dot edu
New email:
PHP Version: OS:

 

 [2008-07-30 10:57 UTC] seth_gregory at harvard dot edu
Description:
------------
Hi,

I am using the stable (1.3.1) release of the gnupg pecl extension to sign a string that is being sent to an external service.  Unfortunately, I receive bad signature errors back from this service.  I believe this to be because gnupg is creating version 3 signatures and the app I am talking to expects version 4 signatures.  I compared the two types of signatures on http://www.pgpdump.net

Reproduce code:
---------------
The signature that gnupg makes:

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iD8DBQFIj5143LhJDcISRa0RAs1CAJ4nHO5Jj/bOgPTTGyMnbkzPzobA0QCfXsEa
45MijrT1HPYzBuEVUo4mYf8=
=hQsl
-----END PGP SIGNATURE-----


The signature that I create using commandline gpg with the --openpgp flag:

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.6 (GNU/Linux)

iEYEARECAAYFAkiPn/YACgkQ3LhJDcISRa3XYwCggj38w+ErkCixO5oR1qglr4fC
QrkAn2bRbHerMt3iHRhbXTOVvaZx9a3M
=+k8o
-----END PGP SIGNATURE-----



Expected result:
----------------
Is there a way to make the gnupg pecl library sign keys in the way I need it to?  (openpgp v4 signatures)

Thank you


Patches

Add a Patch

Pull Requests

Add a Pull Request

 
PHP Copyright © 2001-2017 The PHP Group
All rights reserved.
Last updated: Sun Nov 19 01:31:42 2017 UTC