npm - @libpdf/core - Versions diffs - 0.0.1-beta.8 → 0.0.1-beta.9 - Mend

@libpdf/core 0.0.1-beta.8 → 0.0.1-beta.9

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (4) hide show

package/dist/index.d.mts CHANGED Viewed

@@ -2344,18 +2344,22 @@ interface Signer {
   /** Signature algorithm - required for CMS construction */
   readonly signatureAlgorithm: SignatureAlgorithm;
   /**
-   * Sign data and return raw signature bytes.
+   * Sign data and return signature bytes.
    *
    * The signer is responsible for hashing the data using the specified algorithm
    * before creating the signature. For WebCrypto-based implementations, this is
    * handled automatically by the sign() function.
    *
-   * For RSA: PKCS#1 v1.5 or PSS signature
-   * For ECDSA: DER-encoded (r, s) pair
+   * Signature format requirements:
+   * - RSA: PKCS#1 v1.5 or PSS signature bytes
+   * - ECDSA: DER-encoded SEQUENCE { INTEGER r, INTEGER s }
+   *
+   * Note: WebCrypto returns ECDSA signatures in P1363 format (r || s concatenated).
+   * Use pkijs.createCMSECDSASignature() to convert to DER format.
    *
    * @param data - The data to sign (will be hashed internally)
    * @param algorithm - The digest algorithm to use for hashing
-   * @returns Raw signature bytes
+   * @returns Signature bytes in the format required by CMS/PKCS#7
    */
   sign(data: Uint8Array, algorithm: DigestAlgorithm): Promise<Uint8Array>;
 }

package/dist/index.mjs CHANGED Viewed

@@ -5,10 +5,11 @@ import { md5, sha1 } from "@noble/hashes/legacy.js";
 import { sha256, sha384, sha512 } from "@noble/hashes/sha2.js";
 import { Boolean, Constructed, Integer, Null, ObjectIdentifier, OctetString, Sequence, UTCTime, fromBER } from "asn1js";
 import * as pkijs from "pkijs";
+import { createCMSECDSASignature } from "pkijs";
 import { base64 } from "@scure/base";
 //#region package.json
-var version = "0.0.1-beta.8";
+var version = "0.0.1-beta.9";
 //#endregion
 //#region src/objects/pdf-array.ts
@@ -38241,6 +38242,14 @@ var PDF = class PDF {
 				securityHandler = handler;
 			}
 		}
+		if (useIncremental && !fileId) {
+			const idArray = this.ctx.info.trailer.getArray("ID");
+			if (idArray && idArray.length >= 2) {
+				const id1 = idArray.at(0);
+				const id2 = idArray.at(1);
+				if (id1 instanceof PdfString && id2 instanceof PdfString) fileId = [id1.bytes, id2.bytes];
+			}
+		}
 		const useXRefStream = options.useXRefStream ?? (useIncremental ? this.usesXRefStreams : false);
 		if (useIncremental) {
 			const result$1 = writeIncremental(this.ctx.registry, {
@@ -38396,6 +38405,7 @@ var CryptoKeySigner = class {
 				break;
 		}
 		const signature = await cryptoEngine$1.sign(signAlgorithm, this.privateKey, new Uint8Array(data));
+		if (this.signatureAlgorithm === "ECDSA") return new Uint8Array(createCMSECDSASignature(signature));
 		return new Uint8Array(signature);
 	}
 	/**
@@ -40777,6 +40787,7 @@ var P12Signer = class P12Signer {
 				break;
 		}
 		const signature = await cryptoEngine.sign(signAlgorithm, this.privateKey, new Uint8Array(data));
+		if (this.signatureAlgorithm === "ECDSA") return new Uint8Array(createCMSECDSASignature(signature));
 		return new Uint8Array(signature);
 	}
 	/**