Bouncy城堡分离签名更改api

在我看来，Bouncy castle已经改变了API，下面的代码在1.52中不再工作：

  /**
   * SignatureInterface implementation. Creates detached signature of stream
   * using SHA-256.
   * 
   * @param content
   *          original content stream to sign
   * @throws SignatureException
   *           in case of signature error
   * @throws IOException
   *           in case of I/O error
   * @return signed byte content
   */
  @Override
  public byte[] sign(final InputStream content) throws SignatureException,
      IOException {
    try {
      CMSProcessableInputStream input = new CMSProcessableInputStream(content);
      List<Certificate> certList = Arrays.asList(keystore
          .getCertificateChain(alias));
      CertStore certStore = CertStore.getInstance("Collection",
          new CollectionCertStoreParameters(certList), provider);
      CMSSignedDataGenerator gen = new CMSSignedDataGenerator();      
      gen.addSigner((PrivateKey) keystore.getKey(alias, pin),
          (X509Certificate) keystore.getCertificate(alias),
          CMSSignedGenerator.DIGEST_SHA256);
      gen.addCertificatesAndCRLs(certStore);
      return gen.generate(input, false, provider).getEncoded();
    } catch (Exception e) {
      throw new SignatureException(
          "Problem while preparing signature. Wrong certificate or alias.");
    }
  }

有人知道如何在新的API中实现同样的行为吗？我在移植指南中没有找到任何相关信息。

已编辑（添加变量定义）：

 /**
   * Size of the read buffer for signing.
   */
  private static final int BUFSIZE = 8192;
  /**
   * Stored instance of BC.
   */
  private BouncyCastleProvider provider;
  /**
   * PKCS#12 key store.
   */
  private KeyStore keystore;
  /**
   * Alias for certificate to sign.
   */
  private String alias;
  /**
   * Password to private key.
   */
  private char[] pin;