[Poppler-bugs] [Bug 16770] support for digital signatures

Fri Sep 7 05:11:03 PDT 2012

https://bugs.freedesktop.org/show_bug.cgi?id=16770

--- Comment #16 from Andre Guerreiro <aguerreiro1985 at gmail.com> 2012-09-07 12:11:03 UTC ---
Created attachment 66786
  --> https://bugs.freedesktop.org/attachment.cgi?id=66786
PDF Signature verification support

Here's an initial attempt at solving this issue.

This patch adds signature verification support to poppler core.
It uses OpenSSL PKCS7 API for the crypto operations (signature and certificate
Validations).

4 new functions were added at the glib wrapper level: 
    poppler_document_is_signed
    poppler_document_signature_validate
    poppler_document_signature_get_time
    poppler_document_signature_get_signername

I've coordinated with Vasco Dias to expose this feature in Evince and his work
is in the latest patches attached to this bug:
https://bugzilla.gnome.org/show_bug.cgi?id=614929

As the additional dependency on OpenSSL couldn't possibly satisfy everyone I
made it optional at build-time with --enable-openssl for Autotools and
-DENABLE_OPENSSL=ON for cmake

Current limitations: 
- Timestamps contained in the PKCS7 signature are not verified
- the new functionality is not yet exposed in the qt4 wrapper as I prioritized
the glib wrapper to support Evince.

-- 
Configure bugmail: https://bugs.freedesktop.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are the assignee for the bug.