What determines the clearsign hash algorithm used by GnuPG?

I wish to know, how to generate output with specific "Hash:" values ? say, SHA1 ?

To answer your question, use the --digest-algo SHA1 option.

As an example, here is a detached signature using SHA-256. I don't use --clearsign, so I'm not going to try to cobble it together:

gpg -a -u 1F8E37BD --digest-algo SHA256 --output test.txt.sig --detach-sig test.txt

-a produces the ASCII armour output. -u selects the signing key among different keys. --digest-algo selects the hash. --output is the output filename. The input filename must be last option.

The list of hashes and their values are available in RFC 4880, Section 9.4. SHA-1 is 2, and SHA-256 is 8.

You can audit the signature with:

$ cat test.txt.sig | gpg --list-packets | grep "digest algo"
    digest algo 8, begin of digest 05 94

Tags:

Digital Signature

Gnupg

Openpgp

Related

STDEV.P - ignore cells with value 0 Convert three letter month abbreviation to number? Cannot dismiss certain reminders in lightning/thunderbird Why is the Ubuntu VM screen corrupted on my HiDpi laptop? Windows 10 failed to install English (GB) typing, English (GB) optical character recognition ...... error code: 0x800F0908 What kind of special character is this: ? In 802.11n, is it possible to have MIMO on single antenna? PowerShell: How do I append a prefix to all files in a directory? Chrome's modal dialog box stuck off screen. How to move it back permanently? How to have the same text in multiple places be changed or refactored at once? disable MTP udev rules for specific device so it can be mount as a USB Mass Storage device Is it possible to have Windows 10's interface in language X but have default keyboard-layout to language Y?

Recent Posts