Problem with faked-system-time option

David Shaw dshaw at jabberwocky.com
Wed Jun 15 23:14:54 CEST 2011


On Jun 15, 2011, at 3:30 PM, Hauke Laging wrote:

> Am Mittwoch, 15. Juni 2011, 21:10:45 schrieb David Shaw:

>> and are not well specified (0x40 sigclass - is it a binary
>> signature?  a text signature?).
> 
> How is this a problem? Does it matter for that purpose (or any other) how a 
> signature is encoded (does "text signature" mean --armor?)?

It matters for text input.  That's why there are actually two different forms of data signature: 0x00 for data, and 0x01 for text where line endings are canonicalized.  This is so a signed text message created on one platform is verifiable on a different platform with different line endings.

There is only one 0x40, so it's either data or text, but cannot be both.

David




More information about the Gnupg-users mailing list