We released all SetaPDF components in new minor versions!
This release was pushed by several updates, improvements and bugfixes in the SetaPDF-Signer component.
It especially fixes an annoying bug which landed in the SetaPDF-Signer component two releases ago: We were using a fixed signature algorithm identifier without using the algorithm information of the public key in our CMS and PAdES signature modules. Because of this an invalid signature algorithm identifier was used if a key with ECDSA or DSA was used (RSA was fine throughout). We fixed this with this release and also prepared the support for keys with RSASSA-PSS keys if your OpenSSL version (>= 1.1.1) supports it.
If you use foreign or non RSA keys, please upgrade as soon as possible! The affected versions are 2.33.0.1425 and 2.34.0.1487.
There were also some improvements in the SetaPDF-Core component which made it into all other components as well.
Check the release notes of the components below.
Log in to download the latest version of the related packages!
Use following minimal composer.json file to install a package through
Composer.
]
Information
SetaPDF-Signer Component
Feature
Added support for validation of signatures with DSA/ECDSA/RSASSA-PSS (if supported by OpenSSL) keys in SetaPDF_Signer_Asn1_Signed class.
Added support for RSASSA-PSS signature scheme if PHP is compiled with a supporting OpenSSL version (>= 1.1.1; scheme needs to be determinable by the SubjectPublicKeyInfo of the signing certificate).
Added setKeyOption() and getKeyOptions() methods in SetaPDF_Signer_Signature_Module_OpenSslCliCms to e.g. support RSASSA-PSS signature scheme.
Bugfix
Allow independent order of private key and certificate in PEM files if they are used to initiate Certificate instance.
Use signature algorithm from SubjectPublicKeyInfo in SetaPDF_Signer_Signature_Module_Cms and SetaPDF_Signer_Signature_Module_Pades modules again instead of fixed "RSASSA-PKCS1-v1_5" algorithm identifier.
Tweak
Optimized creation of nonce value in RFC 3161 timestamp module.
Increased default signature content length value.
Throw exception if no PEM encoded data were found in SetaPDF_Signer_Pem::extract().
This website makes use of cookies to enhance browsing experience and provide additional functionality.
For more details please see our
Data Privacy Statement
(German).