[ODFPlugtest] ODF 1.2 signatures

Hanssens Bart Bart.Hanssens at fedict.be
Tue Jul 26 14:29:00 CEST 2011 

Hi,


I've been working on the eID applet in order to get signatures in line with ODF 1.2 COS.
Note that we need XAdES, so the signature is more complex than just the basic XML-DSIG.


Some issues:


1) The unsigned file was created with OOo 3.x, so that file it is actually not 100% valid to begin with.
But nevertheless I ran it through the Oracle online ODF Validator , using the option "ODF 1.2 Validation".
The Validator reports an error:

" Error:The file 'META-INF/documentsignatures.xml' shall be listed in the 'META-INF/manifest.xml' file as it exists in the ODF package"

However, ODF 1.2 COS, part 3,  3.2 Manifest, says

" The "META-INF/manifest.xml" file need not contain <manifest:file-entry> elements 4.3 whose manifest:full-path attribute 4.8.4 
references files whose relative path start with "META-INF/".

http://docs.oasis-open.org/office/v1.2/cos01/OpenDocument-v1.2-cos01-part3.html

So I guess that's an issue with the validator  ?






2) And as you might know, OOo has an issue with namespace prefixes in documentsignatures and ignores the signature altogether:
http://openoffice.org/bugzilla/show_bug.cgi?id=107864



3) LibreOffice 3.4.2rc (Win7 - 64 bit) even crashes on the signed file (not on the unsigned)

Problem signature:
  Problem Event Name:	BEX
  Application Name:	soffice.bin
  Application Version:	3.4.201.500
  Application Timestamp:	4e1cbc9f
  Fault Module Name:	MSVCR90.dll
  Fault Module Version:	9.0.30729.6161
  Fault Module Timestamp:	4dace5b9
  Exception Offset:	0006ccd5
  Exception Code:	c0000417
  Exception Data:	00000000
  OS Version:	6.1.7601.2.1.0.256.4
  Locale ID:	2067
  Additional Information 1:	4935
  Additional Information 2:	4935eb945911156e9147882956d0c814
  Additional Information 3:	e15d
  Additional Information 4:	e15d0a9b8da56cc48a6d0c5c0a27b7da


4) Questions: should the <meta:generator> be updated (since the signature was added) or not ?
(as the content isn't actually updated, just signed)



Perhaps someone could test it in Symphony  / Calligra / MS-Office etc ?



Best regards

Bart
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hello-world.odt
Type: application/octet-stream
Size: 7248 bytes
Desc: hello-world.odt
URL: <http://open.nlnet.nl/pipermail/plugtest/attachments/20110726/407926bf/attachment.obj>
-------------- next part --------------
A non-text attachment was scrubbed...
Name: hello-world-signed-3491066726237962908.odt
Type: application/octet-stream
Size: 9211 bytes
Desc: hello-world-signed-3491066726237962908.odt
URL: <http://open.nlnet.nl/pipermail/plugtest/attachments/20110726/407926bf/attachment-0001.obj>

More information about the Plugtest mailing list