| commit | aefd606df077d2d44dba2ec26c9d95ef1f730e2d | |
| author | Thomas Leonard <talex5@gmail.com> | |
| Sun, 1 Jan 2006 19:36:04 +0000 (1 19:36 +0000) | ||
| committer | Thomas <Leonard> | |
| Sun, 29 May 2005 19:36:13 +0000 (29 19:36 +0000) | ||
| tree | a386a3ae6b1dd1ddcba96d03a1de49c0b425c90a | treesnapshot (tar.gz zip) |
| parent | f3a6df0a4fadc5702718a2ea09a693d334ea3f53 | commitdiff |
Added support for XML comment signatures. These are specially formatted
comment blocks at the end of the XML containing a base64 encoded string
which is a GPG detached signature.
The base64 encoding ensures that people can't sneak XML special characters
into the signature (which would be ignored by GPG but might confuse XML
parsers).
The result of vertifying an XML-signed file is the original data (with the
signature), not the data alone (as it is with the old signatures). This is
possible because the signed version is now valid XML.
git-svn-id: file:///home/talex/Backups/sf.net/Subversion/zero-install/injector/injector@621 9f8c893c-44ee-0310-b757-c8ca8341c71e
comment blocks at the end of the XML containing a base64 encoded string
which is a GPG detached signature.
The base64 encoding ensures that people can't sneak XML special characters
into the signature (which would be ignored by GPG but might confuse XML
parsers).
The result of vertifying an XML-signed file is the original data (with the
signature), not the data alone (as it is with the old signatures). This is
possible because the signed version is now valid XML.
git-svn-id: file:///home/talex/Backups/sf.net/Subversion/zero-install/injector/injector@621 9f8c893c-44ee-0310-b757-c8ca8341c71e
| tests/testgpg.py | diffblobblamehistory | |
| zeroinstall/injector/gpg.py | diffblobblamehistory |