Re: Git-commits mailing list feed.

From: Bernd Eckenfels
Date: Sat Apr 23 2005 - 13:40:12 EST

Next message: Jesper Juhl: "[PATCH] udf: uint32_t can't be less than zero"
Previous message: Victor STINNER: "[PATCH] radeon : fix resuming printk, kernel 2.6.11-7"
In reply to: Junio C Hamano: "Re: Git-commits mailing list feed."
Next in thread: Jan Harkes: "Re: Git-commits mailing list feed."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

In article <20050423175422.GA7100@xxxxxxxxxxxxxxxxxxxxxxxxxxxxxx> you wrote:
> # This creates the signature.
> gpg --clearsign < sign_this > signature

To not destroy the syntax of the original data, you better generate a
detached signatur and append it. However in that case you have to detech the
signatur handish:

> gpg --detach-sig -a tag-file
<requirs passphrase>
> ls tag*
-rw-rw-r-- 1 ecki ecki 45 Apr 23 20:25 tag-file
-rw-rw-r-- 1 ecki ecki 189 Apr 23 20:26 tag-file.asc
> cat tag.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.5 (GNU/Linux)

iD8DBQBCapNy/vciZ+ODzX4RAgBcAJ92ku1fc5iwhpZ+BJ18HvRFPYa5FACdG2r0
B22yNdcyi/Opz11nbWd2LaE=
=Zt5v
-----END PGP SIGNATURE-----
2ecki@calista:~> cat tag-file
commit 123
signer Bernd Eckenfels
tag RC-123

If you skip the -a the signature file is binary. You can merge both files,
but you have to separate them before you present them to GPG:

> gpg --verify tag.asc tag
gpg: Signature made Sat Apr 23 20:26:58 2005 CEST using DSA key ID E383CD7E
gpg: Good signature from "Bernd Eckenfels <ecki@xxxxxxxxxxxx>"
echo $?
0

If you dont care about the Format of the plaintext (i.e. additional GPG
Headers and Replacement of -- as well as sensitieness to line endings, then
you can use the clear sign method as well.

Greetings
Bernd

BTW: you can send gpg the passphrase via a specified FD, if you want to
cache it, however thats a bad idea generally. If you want to parse the
results from gpg verify (i.e. expired, who has signed, etc) it is better to
specify some more options which generate easyly parseable extra info:

> gpg --status-fd 1 --verify tag.asc tag
gpg: Signature made Sat Apr 23 20:26:58 2005 CEST using DSA key ID E383CD7E
[GNUPG:] SIG_ID e8Q/kei6ZdkSPK/7MCyBuXTdJIo 2005-04-23 1114280818
[GNUPG:] GOODSIG FEF72267E383CD7E Bernd Eckenfels <ecki@xxxxxxxxxxxx>
gpg: Good signature from "Bernd Eckenfels <ecki@xxxxxxxxxxxx>"
[GNUPG:] VALIDSIG 654F33BCA8B3868852DC731DFEF72267E383CD7E 2005-04-23 1114280818 0 3 0 17 2 00 654F33BCA8B3868852DC731DFEF72267E383CD7E
[GNUPG:] TRUST_ULTIMATE
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Jesper Juhl: "[PATCH] udf: uint32_t can't be less than zero"
Previous message: Victor STINNER: "[PATCH] radeon : fix resuming printk, kernel 2.6.11-7"
In reply to: Junio C Hamano: "Re: Git-commits mailing list feed."
Next in thread: Jan Harkes: "Re: Git-commits mailing list feed."
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]