We released all SetaPDF components in new minor versions!
This release was pushed by several updates, improvements and bugfixes in the SetaPDF-Signer component.
It especially fixes an annoying bug which landed in the SetaPDF-Signer component two releases ago: We were using a fixed signature algorithm identifier without using the algorithm information of the public key in our CMS and PAdES signature modules. Because of this an invalid signature algorithm identifier was used if a key with ECDSA or DSA was used (RSA was fine throughout). We fixed this with this release and also prepared the support for keys with RSASSA-PSS keys if your OpenSSL version (>= 1.1.1) supports it.
If you use foreign or non RSA keys, please upgrade as soon as possible! The affected versions are 188.8.131.525 and 184.108.40.2067.
There were also some improvements in the SetaPDF-Core component which made it into all other components as well.
Check the release notes of the components below.
Log in to download the latest version of the related packages!
Use following minimal composer.json file to install a package through
Added support for validation of signatures with DSA/ECDSA/RSASSA-PSS (if supported by OpenSSL) keys in SetaPDF_Signer_Asn1_Signed class.
Added support for RSASSA-PSS signature scheme if PHP is compiled with a supporting OpenSSL version (>= 1.1.1; scheme needs to be determinable by the SubjectPublicKeyInfo of the signing certificate).
Added setKeyOption() and getKeyOptions() methods in SetaPDF_Signer_Signature_Module_OpenSslCliCms to e.g. support RSASSA-PSS signature scheme.
Allow independent order of private key and certificate in PEM files if they are used to initiate Certificate instance.
Use signature algorithm from SubjectPublicKeyInfo in SetaPDF_Signer_Signature_Module_Cms and SetaPDF_Signer_Signature_Module_Pades modules again instead of fixed "RSASSA-PKCS1-v1_5" algorithm identifier.
Optimized creation of nonce value in RFC 3161 timestamp module.
Increased default signature content length value.
Throw exception if no PEM encoded data were found in SetaPDF_Signer_Pem::extract().