<html> <head> <base href="https://bugs.freedesktop.org/"> </head> <body> <div> <a class="bz_bug_link bz_status_NEW " title="NEW - Certificate chain from PDF digital signature back to trusted root certificate not verified?" href="https://bugs.freedesktop.org/show_bug.cgi?id=99365#c2">Comment # 2</a> on <a class="bz_bug_link bz_status_NEW " title="NEW - Certificate chain from PDF digital signature back to trusted root certificate not verified?" href="https://bugs.freedesktop.org/show_bug.cgi?id=99365">bug 99365</a> from <a class="email" href="mailto:aacid@kde.org" title="Albert Astals Cid <aacid@kde.org>"> Albert Astals Cid</a> <pre>Having a look at this enum SignatureValidationStatus { SIGNATURE_VALID, SIGNATURE_INVALID, SIGNATURE_DIGEST_MISMATCH, SIGNATURE_DECODING_ERROR, SIGNATURE_GENERIC_ERROR, SIGNATURE_NOT_FOUND, SIGNATURE_NOT_VERIFIED }; enum CertificateValidationStatus { CERTIFICATE_TRUSTED, CERTIFICATE_UNTRUSTED_ISSUER, CERTIFICATE_UNKNOWN_ISSUER, CERTIFICATE_REVOKED, CERTIFICATE_EXPIRED, CERTIFICATE_GENERIC_ERROR, CERTIFICATE_NOT_VERIFIED }; I don't think signature validation has anything to do with the certificates having been checked, I'd say certificate validation is what would give that information. I.e. valid signature is just saying "yeah this is a signature that seems to be from this guy", whether you trust that guy or not would be part of certificate trustness, that since in this case it's expired doesn't happen and that's why you get the same result whether you initialize the certificate database or not. This is my understanding, OTOH i did not write the code so I may be totally wrong.</pre> </div> <hr> You are receiving this mail because: <ul> <li>You are the assignee for the bug.</li> </ul> </body> </html>