search

JakubMelka / PDF4QT

Open source PDF editor.
https://jakubmelka.github.io/
GNU Lesser General Public License v3.0
665 stars 67 forks source link

Can it be possible to trust a certificate like in acrobat? #161

Open IDontKnow2Code opened 7 months ago

IDontKnow2Code commented 7 months ago

Here is the reference for what I am asking? Validity-Unknown-in-Aadhaar-Card-when-it-is-not-Verified.png

Validate-E-Aadhaar-Card-Signature-after-Downloading.gif

Validated-Aadhaar-Card-Sign-after-Validating-Aadhaar-Card.png

JakubMelka commented 7 months ago

Hello, I have fixed it. Now, you can just open context menu and add the certificate as valid.

IDontKnow2Code commented 7 months ago

It still shows not trusted and no green - tick either but certificate did get add to trusted store. pic-selected-240206-2035-30.png

pic-selected-240206-2036-04.png

JakubMelka commented 7 months ago

Strange, it worked for me. Could you please provide sample document, where it does not work?

IDontKnow2Code commented 7 months ago

Strange, it worked for me. Could you please provide sample document, where it does not work?

Unfortunately, I can't provide it. It is a government issued document. I don't know where to get similar dummy document. My search about that document show that it's certificate is x.509 certificate, they generate it with iTextPDF The document is called Aadhar card.

itsKV commented 2 months ago

Hello, I have fixed it. Now, you can just open context menu and add the certificate as valid.

@JakubMelka Would you plz explain how to do this? I couldn't find the context menu as no menu gets open on right click.

JakubMelka commented 2 months ago

@itsKV, please try this: image

itsKV commented 2 months ago

Sorry to say but that context menu doesn't come on any of the field from signature sidebar content. Nothing happens when you right click on any of them. image

This also happens for Actual PDF content too. Nothing happens when you right click or left click anywhere on the pdf content. I don't know if that's the normal behavior.

JakubMelka commented 2 months ago

Could you please try a newest install from daily build? Could you please attach problematic PDF, if it is possible?

itsKV commented 2 months ago

I am not installing the build but using the zip version by extracting it locally (no admin rights to install). I can't share the pdf because the file is itself a critical document (analogues to your social security number SSN document) However, I can post issuer's chained certificates if you ask.

image

JakubMelka commented 2 months ago

OK @itsKV , if you can post the certificates, please post them.

itsKV commented 2 months ago

Complete chain of trust is as follows. Read from bottom to top where root CA is at last and so on. 

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----
MIIGNTCCBR2gAwIBAgIEYhS1BTANBgkqhkiG9w0BAQsFADCB+DELMAkGA1UEBhMC
SU4xQTA/BgNVBAoTOEd1amFyYXQgTmFybWFkYSBWYWxsZXkgRmVydGlsaXplcnMg
YW5kIENoZW1pY2FscyBMaW1pdGVkMR0wGwYDVQQLExRDZXJ0aWZ5aW5nIEF1dGhv
cml0eTEPMA0GA1UEERMGMzgwMDU0MRAwDgYDVQQIEwdHdWphcmF0MSMwIQYDVQQJ
ExpCb2Rha2RldiBTRyBSb2FkIEFobWVkYWJhZDEbMBkGA1UEMxMSMzA0IEdORkMg
SW5mb3Rvd2VyMSIwIAYDVQQDExkobilDb2RlIFNvbHV0aW9ucyBDQSAyMDIyMB4X
DTIyMDQwMTEzMTMwOFoXDTMyMDMxNDE4MzAwMFowgZExCzAJBgNVBAYTAklOMUEw
PwYDVQQKEzhHdWphcmF0IE5hcm1hZGEgVmFsbGV5IEZlcnRpbGl6ZXJzIGFuZCBD
aGVtaWNhbHMgTGltaXRlZDEPMA0GA1UECxMGU3ViLUNBMS4wLAYDVQQDEyUobilD
b2RlIFNvbHV0aW9ucyBTdWItQ0EgZm9yIERTQyAyMDIyMIIBIjANBgkqhkiG9w0B
AQEFAAOCAQ8AMIIBCgKCAQEAzGQAmXXoP+X1PT9M7p+ImuQiXpHtMT1FuOURMbfK
n7J8AkJNY5gDJ/hnCnZNGe11IowYifyfwxbc6YIAHCxHCb8u7qscjWjLfMzxhTC1
DYrT2rKkvmyT96TGUc5ym6QEmNsmKeQ3hifFnhvfQS3bQX/UsRVM4cgAqEYNpJgB
cAEM0+5XLF0ct0m/YhoFq5Yq/qapGHtnyzjrGtkcUfAvSpvStD8YsZyHH4S9oZnh
trQT4rDrgrbJHO45O2zdg+Sat1svLG5EZQMdamzBGrWrI9EtkoXXXUdO9+JHBzC/
3+RU4xWRykb/W4x3ikD3XVzPYwCNaO5mc/fyed4VlykJVQIDAQABo4ICKjCCAiYw
DwYDVR0TBAgwBgEB/wIBADASBgNVHSAECzAJMAcGBWCCZGQCMFMGCCsGAQUFBwEB
BEcwRTBDBggrBgEFBQcwAoY3aHR0cHM6Ly93d3cubmNvZGVzb2x1dGlvbnMuY29t
L3JlcG9zaXRvcnkvbmNvZGVjYTIyLmRlcjCCAWcGA1UdHwSCAV4wggFaMD2gO6A5
hjdodHRwczovL3d3dy5uY29kZXNvbHV0aW9ucy5jb20vcmVwb3NpdG9yeS9uY29k
ZWNhMjIuY3JsMIIBF6CCAROgggEPpIIBCzCCAQcxCzAJBgNVBAYTAklOMUEwPwYD
VQQKEzhHdWphcmF0IE5hcm1hZGEgVmFsbGV5IEZlcnRpbGl6ZXJzIGFuZCBDaGVt
aWNhbHMgTGltaXRlZDEdMBsGA1UECxMUQ2VydGlmeWluZyBBdXRob3JpdHkxDzAN
BgNVBBETBjM4MDA1NDEQMA4GA1UECBMHR3VqYXJhdDEjMCEGA1UECRMaQm9kYWtk
ZXYgU0cgUm9hZCBBaG1lZGFiYWQxGzAZBgNVBDMTEjMwNCBHTkZDIEluZm90b3dl
cjEiMCAGA1UEAxMZKG4pQ29kZSBTb2x1dGlvbnMgQ0EgMjAyMjENMAsGA1UEAxME
Q1JMMTALBgNVHQ8EBAMCAQYwEwYDVR0jBAwwCoAIRMjP+tcFGZYwHQYDVR0OBBYE
FEbBNqG2RDls3sAxZvFIaIXiY787MA0GCSqGSIb3DQEBCwUAA4IBAQAIBatF1dqs
4G/AZoPDHjXoCXqB9UcfEZS/m0sCKISOmIFDiMpHNIcM01MLeh1lly2dfY9syP3E
92RCED7D9Lq72MwPPKYZk9yIMrXCi3sUTkuU42eDUT9N4XPfwSeqS0Ys6mfyjuxl
EDhvTNj+sxXASL7Wfz+zF/zxJ1gKGluileL2IYndlu2rsfGtAOjtN9QvYeZi2P/H
XAn0K868+F+2Z2GZX5g0bsilAUexGs3ErU2kJFfRfaxb+/6jU7r5aHS2dBUln4p9
3acM1rp1Rc5hpYdQg/trO8lq9FGNywB/b/x8wZvOBMr4+kSFUfNLNnqPJcSeypk3
m1P5CnhSLgK9
-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
lucifer-woo commented 2 weeks ago

Hey folks, what is the status of the issue ?

This app is the only fully featured alternative to adobe. If this is done. It would be great.

JakubMelka commented 2 weeks ago

@lucifer-woo, sorry, I will try to take time to solve it. I will reopen the issue.

lucifer-woo commented 2 weeks ago

Cool to know. Looking forward for the fix.

8 Sept 2024, by @.***:

@lucifer-woo https://github.com/lucifer-woo> , sorry, I will try to take time to solve it. I will reopen the issue.

— Reply to this email directly, > view it on GitHub https://github.com/JakubMelka/PDF4QT/issues/161#issuecomment-2336731326> , or > unsubscribe https://github.com/notifications/unsubscribe-auth/BHW4ETI6MI5AWWSCYOFHMEDZVRV73AVCNFSM6AAAAABCO4UCF6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGMZWG4ZTCMZSGY> . You are receiving this because you were mentioned.> Message ID: > <JakubMelka/PDF4QT/issues/161/2336731326> @> github> .> com>

JakubMelka commented 1 week ago

Hello, I am not an expert in internet security and I was unable to create a PDF with the given certificate chain. But I think the workaround exists. @lucifer-woo, @itsKV, could you please try to install the root certificate to the system's certificate store? When PDF4QT validates the PDF's signatures, it also looks in the system's certificate store to retrieve the root certificates for the validation.

lucifer-woo commented 1 week ago

I understand your frustation. But how do I install the root CA to the system CA. I am novice to this stuff. I am not that much proficient in this.

Foxit PDF reader for linux also provides this feature. Maybe check it out as a reference ?

As of now, I added the certificate by right clicking and "Add to Trusted certificates". I could also see it in Tools > Options > Signatures. But I cannot see it in Tools > Certificates. Is that a problem ?

So far, this is how it is done - https://www.youtube.com/watch?v=aVNfUNlccZs.

It's an old video. Trusting isn't even needed as of now because Adobe just validates and renders it using OCSP servers. No need to trust certificates. Maybe you need to rethink the logic behind it.

Some docs regarding:

I think could be implemented using this python library : https://pyhanko.readthedocs.io/en/latest/cli-guide/validation.html

I just pulled the web regarding this info. I don't know much other than these.

itsKV commented 1 week ago

Hello, I am not an expert in internet security and I was unable to create a PDF with the given certificate chain. But I think the workaround exists. @lucifer-woo, @itsKV, could you please try to install the root certificate to the system's certificate store? When PDF4QT validates the PDF's signatures, it also looks in the system's certificate store to retrieve the root certificates for the validation.

The issue is not about root cert availability in cert store. The issue is UI bug which doesn't give option to validate the document's signature. See the OP. btw, the root and intermediate certs are already installed into windows store.

itsKV commented 1 week ago

I understand your frustation. But how do I install the root CA to the system CA. I am novice to this stuff. I am not that much proficient in this.

See the article here... https://www.itechtics.com/update-root-certificates/ Adding the signature into PDF reader's trusted database in different and adding the certificate into operating system's root store is different thing.

lucifer-woo commented 5 days ago

It isn't the same way for linux, I am not sure if those root and intermediate CA or installed. Can you tell the name ?

For windows, problem is validation. For linux, to trust and also validate.

16 Sept 2024, 13:05 by @.***:

I understand your frustation. But how do I install the root CA to the system CA. I am novice to this stuff. I am not that much proficient in this.

See the article here... > https://www.itechtics.com/update-root-certificates/ Adding the signature into PDF reader's trusted database in different and adding the certificate into operating system's root store is different thing.

— Reply to this email directly, > view it on GitHub https://github.com/JakubMelka/PDF4QT/issues/161#issuecomment-2352202292> , or > unsubscribe https://github.com/notifications/unsubscribe-auth/BHW4ETPFVZZK4AL2DXV6QRTZW2C27AVCNFSM6AAAAABCO4UCF6VHI2DSMVQWIX3LMV43OSLTON2WKQ3PNVWWK3TUHMZDGNJSGIYDEMRZGI> . You are receiving this because you were mentioned.> Message ID: > <JakubMelka/PDF4QT/issues/161/2352202292> @> github> .> com>