EL7
$ gpg2 --version
gpg (GnuPG) 2.0.22
libgcrypt 1.5.3
Copyright (C) 2013 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <http://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: ~/.gnupg
Supported algorithms:
Pubkey: RSA, ?, ?, ELG, DSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
Hash: MD5, SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2EL8
$ gpg2 --version
gpg (GnuPG) 2.2.20
libgcrypt 1.8.5
Copyright (C) 2020 Free Software Foundation, Inc.
License GPLv3+: GNU GPL version 3 or later <https://gnu.org/licenses/gpl.html>
This is free software: you are free to change and redistribute it.
There is NO WARRANTY, to the extent permitted by law.
Home: /root/.gnupg
Supported algorithms:
Pubkey: RSA, ELG, DSA, ECDH, ECDSA, EDDSA
Cipher: IDEA, 3DES, CAST5, BLOWFISH, AES, AES192, AES256, TWOFISH,
CAMELLIA128, CAMELLIA192, CAMELLIA256
Hash: SHA1, RIPEMD160, SHA256, SHA384, SHA512, SHA224
Compression: Uncompressed, ZIP, ZLIB, BZIP2EL7
$ >f
$ gpg2 --sign f
$ netpgpverify f.gpg
Good signature for f.gpg made Tue Feb 23 15:46:15 2021
signature 4096/RSA (Encrypt or Sign) 4735b9a256aaacaf 2016-12-06
fingerprint d44c d410 956a 6aff 0554 740a 4735 b9a2 56aa acaf
uid Joyent Package Signing (Linux) <pkgsrc@joyent.com>EL8
$ >f
$ gpg2 --sign f
$ netpgpverify f.gpg
recog_userid: not 13
recog_primary_key: not userid
short pubring recognition???
Signature did not match contents -- Signature key id 4735b9a256aaacaf does not match onepass keyidEL7
$ sq packet dump el7.gpg
Compressed Data Packet, old CTB, indeterminate length
│ Algorithm: ZIP
│
├── One-Pass Signature Packet, old CTB, 13 bytes
│ Version: 3
│ Type: Binary
│ Pk algo: RSA (Encrypt or Sign)
│ Hash algo: SHA1
│ Issuer: 4735 B9A2 56AA ACAF
│ Last: true
│
├── Literal Data Packet, new CTB, 7 bytes
│ Format: Binary data
│ Filename: f
│ Timestamp: 2021-02-19 17:37:59 UTC
│ Content: ""
│
└── Signature Packet, old CTB, 540 bytes
Version: 4
Type: Binary
Pk algo: RSA (Encrypt or Sign)
Hash algo: SHA1
Hashed area:
Signature creation time: 2021-02-19 17:37:59 UTC
Unhashed area:
Issuer: 4735 B9A2 56AA ACAF
Digest prefix: C531
Level: 0 (signature over data)
EL8
$ sq packet dump el8.gpg
Compressed Data Packet, old CTB, indeterminate length
│ Algorithm: ZIP
│
├── One-Pass Signature Packet, old CTB, 13 bytes
│ Version: 3
│ Type: Binary
│ Pk algo: RSA (Encrypt or Sign)
│ Hash algo: SHA256
│ Issuer: 4735 B9A2 56AA ACAF
│ Last: true
│
├── Literal Data Packet, new CTB, 7 bytes
│ Format: Binary data
│ Filename: f
│ Timestamp: 2021-02-19 17:38:05 UTC
│ Content: ""
│
└── Signature Packet, old CTB, 563 bytes
Version: 4
Type: Binary
Pk algo: RSA (Encrypt or Sign)
Hash algo: SHA256
Hashed area:
Issuer Fingerprint: D44C D410 956A 6AFF 0554 740A 4735 B9A2 56AA ACAF
Signature creation time: 2021-02-19 17:38:05 UTC
Unhashed area:
Issuer: 4735 B9A2 56AA ACAF
Digest prefix: AF59
Level: 0 (signature over data)
Diff
--- el7.txt 2021-02-19 17:39:44.000000000 +0000
+++ el8.txt 2021-02-19 17:39:39.000000000 +0000
@@ -5,25 +5,26 @@
│ Version: 3
│ Type: Binary
│ Pk algo: RSA (Encrypt or Sign)
-│ Hash algo: SHA1
+│ Hash algo: SHA256
│ Issuer: 4735 B9A2 56AA ACAF
│ Last: true
│
├── Literal Data Packet, new CTB, 7 bytes
│ Format: Binary data
│ Filename: f
-│ Timestamp: 2021-02-19 17:37:59 UTC
+│ Timestamp: 2021-02-19 17:38:05 UTC
│ Content: ""
│
-└── Signature Packet, old CTB, 540 bytes
+└── Signature Packet, old CTB, 563 bytes
Version: 4
Type: Binary
Pk algo: RSA (Encrypt or Sign)
- Hash algo: SHA1
+ Hash algo: SHA256
Hashed area:
- Signature creation time: 2021-02-19 17:37:59 UTC
+ Issuer Fingerprint: D44C D410 956A 6AFF 0554 740A 4735 B9A2 56AA ACAF
+ Signature creation time: 2021-02-19 17:38:05 UTC
Unhashed area:
Issuer: 4735 B9A2 56AA ACAF
- Digest prefix: C531
+ Digest prefix: AF59
Level: 0 (signature over data)