From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: X-Spam-Checker-Version: SpamAssassin 3.4.4 (2020-01-24) on inbox.vuxu.org X-Spam-Level: X-Spam-Status: No, score=-0.8 required=5.0 tests=DKIM_INVALID,DKIM_SIGNED, MAILING_LIST_MULTI,T_SCC_BODY_TEXT_LINE autolearn=ham autolearn_force=no version=3.4.4 Received: from cgl.ntg.nl (Cgl.ntg.nl [5.39.185.202]) by inbox.vuxu.org (Postfix) with ESMTP id 601F52898B for ; Mon, 3 Jun 2024 16:35:56 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by cgl.ntg.nl (Postfix) with ESMTP id 0B62C484DCB for ; Mon, 3 Jun 2024 16:35:46 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at cgl.ntg.nl Authentication-Results: cgl.ntg.nl (amavisd-new); dkim=fail (2048-bit key) reason="fail (message has been altered)" header.d=gmx.es Received: from cgl.ntg.nl ([127.0.0.1]) by localhost (cgl.ntg.nl [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id xt6HjI3AWy9D for ; Mon, 3 Jun 2024 16:35:45 +0200 (CEST) Received: from cgl.ntg.nl (localhost [127.0.0.1]) by cgl.ntg.nl (Postfix) with ESMTP id A5A3F484DFC for ; Mon, 3 Jun 2024 16:35:25 +0200 (CEST) Received: from localhost (localhost [127.0.0.1]) by cgl.ntg.nl (Postfix) with ESMTP id 30E8C484DB4 for ; Mon, 3 Jun 2024 16:35:13 +0200 (CEST) X-Virus-Scanned: Debian amavisd-new at cgl.ntg.nl Received: from cgl.ntg.nl ([127.0.0.1]) by localhost (cgl.ntg.nl [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id hI5fsHjl_pd5 for ; Mon, 3 Jun 2024 16:35:12 +0200 (CEST) Received-SPF: Pass (mailfrom) identity=mailfrom; client-ip=212.227.15.15; helo=mout.gmx.net; envelope-from=oinos@gmx.es; receiver= Received: from mout.gmx.net (mout.gmx.net [212.227.15.15]) (using TLSv1.3 with cipher TLS_AES_256_GCM_SHA384 (256/256 bits) key-exchange ECDHE (P-256) server-signature RSA-PSS (2048 bits) server-digest SHA256) (No client certificate requested) by cgl.ntg.nl (Postfix) with ESMTPS id A382D484DB3 for ; Mon, 3 Jun 2024 16:35:12 +0200 (CEST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmx.es; s=s31663417; t=1717425309; x=1718030109; i=oinos@gmx.es; bh=R+P0JVugSA4vcLDSmFizeAut3efye3MaTDQqGTbeXHU=; h=X-UI-Sender-Class:Content-Type:Message-ID:Date:MIME-Version:From: Subject:To:cc:content-transfer-encoding:content-type:date:from: message-id:mime-version:reply-to:subject:to; b=RgG27XwYbAEhf7Ua1OTV6OUpLi1qtRDwh+PGm6aG7i0HHZJQLR3P2E3BjY8YNy6V I+NMVLCFhVkFj3t6nQ4BvhRLHGOgud3Ir/kUrpH7iMdbQGtGP86tWhAFcX7ZUFCGF Gc59RO2DUq53VvUg4CuKnXSA6gPPoDVF6ZURIgnSTJdK+PWyf0J5oBoi6sjalqcn8 Qpj9Ka/3Owv3Y4N+0VwodAfLHSzbSq3hUJCaUQucG6wG1MJjBxY9Qvv9DL5vFcyYr 9gGVZiTTu1hepMwRLxxKc6wZa7bQFdQq8oQyBpTMlpZk6R1G4ynpkkdaxVa3/4iYv fqLzXQOhsb83UVg0cQ== X-UI-Sender-Class: 724b4f7f-cbec-4199-ad4e-598c01a50d3a Received: from [192.168.1.101] ([91.126.43.205]) by mail.gmx.net (mrgmx005 [212.227.17.184]) with ESMTPSA (Nemesis) id 1M7sHo-1sAH9j1COQ-004xcp for ; Mon, 03 Jun 2024 16:35:09 +0200 Content-Type: multipart/mixed; boundary="------------OaC0YBHbtY50z7ZYPKRXx7A6" Message-ID: Date: Mon, 3 Jun 2024 16:35:02 +0200 MIME-Version: 1.0 User-Agent: Mozilla Thunderbird Content-Language: en-US To: ConTeXt users X-Provags-ID: V03:K1:+t2MOdxl1IIiVjlwDVHCrUjM3/s/nf/2IUxTCevo9cEAupsd5jw /KfTeQ26W3bGlSmAkJPVxNl2yKrrcZZIu2Cw7fv7CaPr+dXv1RMqGevaFkf16IFITKYOD4S GZuq2F/ND/zaS6wMPtGKcuAsU2m0uHIm1/gAppwrokT5APE59fPkogllKauNe97is1NI//L 0pbUGbtoUrl6iN7D2CxXw== UI-OutboundReport: notjunk:1;M01:P0:wDPJ5AP4bYE=;pqF/DOUzG50wMX+SQlLBi2o/zlr GEuzzbT9LN/Uub2L3Ry3CQi5NRBnjE2HdweQeK8PtcOnFI9z+gOWwyttZE5Zj33D1XT6FIiIB CprvWX8ncPP/KreiWx5SP2rV1GJXrKlSO4xCULLmkG9jDdx2Hw0vCXnFeCm9LDemDPIobb9N/ YrAcyg+140yMH3hVdS5tpbynDzsXWAAjhTG63GiqzFG6ezbVohN9TnAC65Lbg6cEEdYzoMLMt sAB/9113wdYdAVnzu3kGYIfJIuk8hE4SsZIlrTkqIwDi/8BAW01yZST4PPce3dnZpi6C8BAo0 aDPVW7RBcoZllkOOoDanN/SVmxvBOHC8YpDmulRdgaQiB0W/9xrEdaCHG2ckc/VHNu4Ht6djl 2lXVtEx3Q8bp9h96byhulAS8p5rR6e098fvkWRqNdU2YSUdPmQXUkgI1GeNN0wvVbxEbioe/W vY5V9GgOaDLN/JbUVf0vdN5K7MdxKTo/oeCZeW3BmYOWt1GuHd7jbj3/sdPb4gTnZzdMyt920 eYzrQkcTy7z+1spVfALc2qG04grYQvvUl5EBHXYcwXiBpzQjqwbMTJppaiPAEzsBQL5l5HDSo +eHbxleNreHJ5LlLmBo+aOx/03y3xjQ6rjh841K084CuldMvpyRjG3odUfY26dcS2vx6tp0Wm HVYvabveImOXLIuaQd/Bj7U3JGblM0TkqOdSDBwp7ToNxfeFJCcjR4gKcJekBE34JwCvBkPuZ I0B22eMPp6NgrrWvj5M3kExK3zSs6/PrCIupwZ/gNQMoQvL+KYxVyMDIv8IjsL2JidBHLqhyy dxwp1AqNP9jxn/xihdcJbZzWxXGXOv4x+qeUYRiSohEhc= Message-ID-Hash: ECSXLVMT3TMQBIHA2UZJPWJN7OVV5334 X-Message-ID-Hash: ECSXLVMT3TMQBIHA2UZJPWJN7OVV5334 X-MailFrom: oinos@gmx.es X-Mailman-Rule-Misses: dmarc-mitigation; no-senders; approved; emergency; loop; banned-address; member-moderation; nonmember-moderation; administrivia; implicit-dest; max-recipients; max-size; news-moderation; no-subject; digests; suspicious-header X-Mailman-Version: 3.3.8 Precedence: list Reply-To: mailing list for ConTeXt users Subject: [NTG-context] issue with signing List-Id: mailing list for ConTeXt users Archived-At: List-Archive: List-Help: List-Owner: List-Post: List-Subscribe: List-Unsubscribe: From: Pablo Rodriguez via ntg-context Cc: Pablo Rodriguez This is a multi-part message in MIME format. --------------OaC0YBHbtY50z7ZYPKRXx7A6 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 7bit Dear list, I have the following sample \setupinteraction[state=start] \definefield[signature][signed] \defineoverlay[signature][my signature] \starttext \startTEXpage[offset=1ts,frame=on,framecolor=darkblue] sign: \inframed[background=signature,framecolor=darkred] {\fieldbody[signature][width=3cm,option=hidden]} \stopTEXpage \stoptext After compiling, I sign it with the following command (in latest from 2024.05.31 18:50): mtxrun --script pdf --sign --certificate=mycert.pfx --password=ABCabc a It requires the pass phrase (again?) and I get a signed PDF document. But Acrobat cannot find (or display) any signature in that PDF document. pdfsig (from poppler-utils-24.02.0) complains about digest mismatch: $ pdfsig a.pdf Digital Signature Info of: a.pdf Signature #1: - Signature Field Name: signature - Signer Certificate Common Name: John Doe - Signer full Distinguished Name: CN=John Doe,O=No Brainer - Signing Time: Jun 03 2024 16:24:03 - Signing Hash Algorithm: SHA-256 - Signature Type: adbe.pkcs7.detached - Signed Ranges: [0 - 6428], [10527 - 10912] - Not total document signed - Signature Validation: Digest Mismatch. mutool sign (from mupdf-1.24.1) also complains about modified document after signing: $ mutool sign -v a.pdf Verifying signature 3: Distinguished name: cn=John Doe, o=No Brainer, ou=, email=, c=XX Certificate error: Self-signed certificate. Digest error: Signature invalidated by change to document. Sorry, but what am I doing wrong here? Many thanks for your help, Pablo --------------OaC0YBHbtY50z7ZYPKRXx7A6 Content-Type: application/x-pkcs12; name="mycert.pfx" Content-Disposition: attachment; filename="mycert.pfx" Content-Transfer-Encoding: base64 MIIKrAIBAzCCCmIGCSqGSIb3DQEHAaCCClMEggpPMIIKSzCCBJIGCSqGSIb3DQEHBqCCBIMw ggR/AgEAMIIEeAYJKoZIhvcNAQcBMFcGCSqGSIb3DQEFDTBKMCkGCSqGSIb3DQEFDDAcBAgO P1uXzc3epgICCAAwDAYIKoZIhvcNAgkFADAdBglghkgBZQMEASoEEEBr5xzap+6Ad7hcvPMP 4POAggQQdy+vC6+LopJTO81QehFQrsy+oyVmDetxdSchbi+nzfeEtghuOk+dGMl2hw4QhtZH o3sGckHA7zkgtkZ+Q54q/pfSiF3WRrl31JZO2qxjX/j/LGN2FLJW746wcCIJn3mgbeEtIPx8 Ps3lpMSOCJfAeWAKrXfn6aQyPfWomMpLt8+PRcMwG9ytg8VDdtMhlQV5Uuu0Z3cHJkO8cHZ/ X0byeOL0K5KJvh2J84wn4pncW9395dXdak52OugzSVuLKTA7LjXiD+DGRv2bRF+wdvv2MzrY jHGvsag9qA6xCFQB56vT+Vq4uDrE2X7tAneHfCgshrfznYbGj9oCexK+ch7wKwVTR4olnf6z qgqlioLoJ0H8HVojNJmhUfYuTy+IgXQ+daYDMHkm2ETe1oSO26xIJT4B+zD8r0fATRqHeDkd qbe21XIt5KwhF/kV5TKqDsks92GHgt/qcRfyAmLIFnZXzWJWeBQvRob6Od7A6Lzj3ifvkHUz YvOkSyvWf9HttEfGeerPJsA96zEMFGi2VDffOf1ARhVtfsV7JFOvBMNT+VdwwGa89sQTFLMp 186zpRVRRHim+jixd6s/NpCuGUJnazm5me1LbOnh0RG6Uux1QieSuT7je3luG6Zm5NTrqDN0 o1I/D+oPvqmbvjDEWA5g1k2vtUkhfcIPFtLtQ1hBckhJpbAuxBSo/29gzwjprDmadK7QdD46 5ff3SzZpEpGYfb6bsBVxF1SAfvxKHGm4kj9n2Jy7wlhIoPqy9VnmdkwydBEaqQ5dLkMG75lq IVMX/job9dSLG0kTSAt2jm1Pu1Cb6jZPsP0EOw2P/oN25+T4D/VmArUhv8Z+Av0X/FSNGrg3 ZwO1rzMv57xDk/9weJZ8DYpX0D8bkz0tR/7gQUQTAskbZH4oe7S+H0z69f004Dn0uNBusres hohi2Aofpm3vm6JOlo4N0IRfOdG41NDom/hjrLSi+33PSs9gH5IpVDCku+t6PWPD1wK9ATp7 wV3zM9bR9P8i2M8XlK3R2RiiIcT6Lu1+amsq/dYhrg1+kvl4ToA7tqgveslT9hmzldBNrWHK fBZnlYBaT02QjfujXB2BiJT9fQ0AxqDEKkQtxkdiW96L6NCOUV9H+ghEWhUik4Ukpd7qailL mUz21IXatGWu5K4Cz93yZNFdB6TC2yjAlAgucQaeDxT/c2hnAZ0KB1Rd+9WQxel5m5keHiyV ZPDMCv6SdU2EORHFQPiI3Rfi8QMk4mZ1/ESYAZn71fi2ADM0jeHMBZ4jheTgu8bHgSj26E+l vxGcezHkZ3steXi4AeysOL6TXw7IOzuxd60QaMduEzq+H62WCsABL3/6mdgM4qElR4QFk+Uq avIrUGwHxpYOwI+7iQABNiW/4jEwggWxBgkqhkiG9w0BBwGgggWiBIIFnjCCBZowggWWBgsq hkiG9w0BDAoBAqCCBTEwggUtMFcGCSqGSIb3DQEFDTBKMCkGCSqGSIb3DQEFDDAcBAjMYjRJ X9IGvQICCAAwDAYIKoZIhvcNAgkFADAdBglghkgBZQMEASoEEKWIwE7ujuHZZQ10H+IoD08E ggTQXDErmBZLYpzwoIFUSrQbF8E1yruCchvo6Gvpt4FzoQCzbiGMm/qmWwbXmHD+76oLt/ne FZDRYrKHrMKNIPuxS4HEJOTqT0NzsV+kHGE17K9+3X9chpdqJW4dEf+A9baFKFSPumxvF0Xh LzeVufx0Le50YyPbRsM24UedChrI5kySFI+/YYFzK0h4ps+4E6qEzbACi44MNBn4nXnhgwSi NN/lwVHG37bCbuw1kc7B7AdvHH3SVdzDaDF85oW+BFlgauMgZf2ZJiW3lQypiJvsz5XnSrA1 9Dgc5gA3La6kFKuKMAl53bdRa9QPs0NtDEYsdLPWdGauBAp1mTZ1Orz/OzUcJ7ngJbmNTF7s +6pi7glDZ/XkqWqKQwM7c6oGiZWTpoSrSNJlzguTlbf6NwEgTPDYqFUTCHvIbCXQIKcb7Wgd bMrnMsZ3NGa9pLJIV1BgfeoGYtf6EGet1Ul2VkxyEkqSMkXa8nTMFNwiwW8z78HcZDiVto9A ZrZql/t6hzt1H/4QgCsDEq7oGL+5wgjYEGjNPv39CfQHA7j9oFFlom7TRbIESufaP49eA2KL BR6jqj0VPUmRi3UK2LKSFfc+UthQyu9hS7JPEsS79gb+0zUCmKJLFgpZEXJPlrFYbLzZ1/NW FR/knzYebKTQxymIiGSZWFG+FY3FhZL1dX8VQ4RybecysoIuT0WMgw4a8ryD3zH5xnWkyqiQ SouAjTkV3ex5AUkhzf0zc+pm7/Ht5crtyfvUWcUft4WBkouwI/ssWBEDDXsAJ70/W26Cl68B Nsn9nJPxXz6Wyx8tlKBRepslACQCvryIes+6Hv9x7CNXoftskwza9bq+gYnN40z9F7BQNZ6/ tpFWisQ52qS7rcUJbwhT2gC0gBDoTb2Joh+0vbW2cyb9Kdw3R9KvLMT/lxaicH6xYIjsnp0O hm68BrbxbZLHrGiLqK4Jas+MI+HYKdCZkh76wXprFIIIEULDZ0Kz19CNHXszDgS1LDD1gdA/ E+wf4vjXp5MeUxjqKfxEmozNTPUnIJWO2ALQEmr0EcS4o08xR2RgpULfej0IjhiRfJ2Ga0p7 swh/oipktIzx/C5EFcEkLPBAHjzTY5D4SLS2Y66vbFNxOyaWaq/JoT/IfbGguxmUebay+sEX fdpknf6rphUx0t26ygEVkCrbkYkFFOGmCEBJJGFKYH5AW8Jg5yvR9b0AgRNVRzd+sxwwoMCT CJqJO8DwWNlqUZxOhRWuKCk3AENSdpzCO0lQhBikdpHv48QVsLxjuLLRxL0BF5h0BDP5TcfJ +D9QXcR4u5b8xwlhO8LcQ86e4pByP9uqrJgyY7cWheawlgJRV0GOf+rMb2VZKabdi5xEgOon gt0dRLNbjENB8Tja67UEoLwdQY4IOXhEFxHH0/SLHccFTjfQHclX20wlPUNhYnunDfuJCH40 +u0n3+2J6A81s+gOoCn6OX01I4LihbhEt+bb5kJjuzCBjp4ESJyZY2b8Ektf55gA2tm3ug04 /D8fy95J3OGFrnim1Jb3zTOA5g9od4tSKAb944+fotkKuUvr1fYBiJ9DaRnb9fSG8pYKpKmQ 7gHK6vfUqywhoACpvQCUILc8n37zcx+o5DdwZyy3O9ZCmoFbG/LnPvvRfJ+eQz4xUjAjBgkq hkiG9w0BCRUxFgQUvHJ7n+XH/6K5K2SmMza+Gsl350QwKwYJKoZIhvcNAQkUMR4eHABNAHkA IABDAGUAcgB0AGkAZgBpAGMAYQB0AGUwQTAxMA0GCWCGSAFlAwQCAQUABCCcqCGN1cMxplxe Ef1FxTQVpR76BMgd2felUgjGykM9WAQIrw9J/zLZ+LcCAggA --------------OaC0YBHbtY50z7ZYPKRXx7A6 Content-Type: text/plain; charset="us-ascii" MIME-Version: 1.0 Content-Transfer-Encoding: 7bit Content-Disposition: inline ___________________________________________________________________________________ If your question is of interest to others as well, please add an entry to the Wiki! maillist : ntg-context@ntg.nl / https://mailman.ntg.nl/mailman3/lists/ntg-context.ntg.nl webpage : https://www.pragma-ade.nl / https://context.aanhet.net (mirror) archive : https://github.com/contextgarden/context wiki : https://wiki.contextgarden.net ___________________________________________________________________________________ --------------OaC0YBHbtY50z7ZYPKRXx7A6--