[Poppler-bugs] [Bug 99271] make it possible to extract digital signature data (also in pdfsig)

bugzilla-daemon at freedesktop.org bugzilla-daemon at freedesktop.org
Mon Jul 31 07:57:25 UTC 2017 

https://bugs.freedesktop.org/show_bug.cgi?id=99271

--- Comment #35 from Hans-Ulrich Jüttner <huj at froreich-bioscientia.de> ---
(In reply to Gustavo from comment #34)
> Hi,
> 
> I just tried the latest patch version against the trunk and it compiles
> fine. 
> I tried pdfsig with different PDF files on my end and it works as expected
> EXCEPT on one signed file and it crashes (coredump).
> 
> Maybe Hans-Ulrich could take a look at it using my file:
> 
> http://bit.ly/2u9AjQI

I tried pdfsig with the patch and your file and it didn't crash.
It says:

Digital Signature Info of: pdfsig_error_coredump.pdf
Signature #1:
  - Signer Certificate Common Name: MICHAEL ANDREY VARGAS BARRANTES (FIRMA)
  - Signer full Distinguished Name: CN=MICHAEL ANDREY VARGAS BARRANTES
(FIRMA),OU=CIUDADANO,O=PERSONA FISICA,C=CR,givenName=MICHAEL ANDREY,SN=VARGAS
BARRANTES,serialNumber=CPF-03-0394-0670
  - Signing Time: Jul 04 2017 21:33:17
  - Signing Hash Algorithm: SHA-256
  - Signature Type: ETSI.CAdES.detached
  - Signed Ranges: [0 - 122708], [166258 - 171742]
  - Not total document signed
  - Signature Validation: Signature is Valid.
  - Certificate Validation: Certificate issuer isn't Trusted.

However, the "- Not total document signed" part is a bug.
I'll fix this with a revised patch.

> 
> pdfsig does not crash without the patch, it just says 
> 
> "Unimplemented Feature (0): Unable to validate this type of signature".
> 
> Patched pdfsig says:
> 
> "Signature #1:
>   - Signer Certificate Common Name: XXXXXXXXXXXXXX
> Segmentation fault (core dumped)"
> 
> It does get the Common Name correctly.
> 
> Cheers

Concerning your crash, have you pulled the latest state of the master branch
before applying the patch? What processor architecture and system (32-bit or
64-bit) are you working on? I tried pdfsig on an i386 (32-bit) system and had
no crash as pointed out above.

Best regards
Hans-Ulrich

-- 
You are receiving this mail because:
You are the assignee for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.freedesktop.org/archives/poppler-bugs/attachments/20170731/6fbe4e42/attachment.html>

More information about the Poppler-bugs mailing list