gpgsm: Create binary detached sigs with definite form length octets.

* sm/sign.c: Include tlv.h. (write_detached_signature): New, (gpgsm_sign): Fixup binary detached signatures. -- This helps some other software to verify detached signatures.
2025-07-03 22:56:33 +02:00 · 2023-04-03 12:01:37 +02:00 · 2023-04-03 12:01:37 +02:00 · 8996b0b655
commit 8996b0b655
parent 4b9346492e
2 changed files with 262 additions and 9 deletions
--- a/16
+++ b/16
@ -1,15 +1,21 @@
 Noteworthy changes in version 2.4.1 (unreleased)
 ------------------------------------------------

-  * gpg: New option --add-desig-revoker.
+  * gpg: New option --add-desig-revoker.  [rG3d094e2bcf]

-  * gpg: New list-option "show-unusable-sigs".
+  * gpg: New list-option "show-unusable-sigs".  Also show
+    "[self-signature]" instead of the user-id in key signature
+    listings.  [rG103acfe9ca]

-  * gpg: Show "[self-signature]" instead of the user-id in key
-    signature listings.
+  * gpgsm: Verification of detached signatures does now strip trailing
+    zeroes from the input if --assume-binary is used.  [rG2a13f7f9dc]
+
+  * gpgsm: Non-armored detached signature are now created without
+    using indefinite form length octets.  This improves compatibility
+    with some PDF signature verification software.

  * gpg: Make list-options "show-sig-subpackets" work again.
-    Fixes regression in 2.4.0.
+    Fixes regression in 2.4.0.  [rG5a223303d7]