The signature created from cyrillic of the text doesn't validation (FF35).

Hi There,

Any plans to port this to Quantum?
Not sure whether it's possible at all, but add-on is now marked as "legacy" and not working on Quantum (Firefox 57 and above).

I need something like
SEC_OID_PKCS1_SHA256_WITH_RSA_ENCRYPTION
but the original API seems not to let us choose the hash alg.

I don't get if security devices are really used by the plugin.
I've got an error message that is not enough explicit : "internal error".

Basically, we need to implement something that will look like this code: https://hg.mozilla.org/releases/mozilla-esr31/annotate/a34e37399025/security/manager/pki/resources/content/formsigning.xul

The libnss3.dylib could not be loaded (main.js line 23).

Using FF34.0.5 on Linux with legacy crypto disabled via about config.
The xpi with SignTextJS 0.5 from the git repo is working for me even with a certificate/private key living in a PKCS#11 usb crypto token.

But the master password - when entered - is shown in cleartext.

Using signTextJS 0.5 from Dec 17 2014, Firefox 35.0

After Firefox (Portable) got updated automatically, the add-on stopped working.

The add-on is shown as active in the Add-ons Manager, but when I try to sign anything, i get the same message as when the add-on was non-existent (i.e., "your browser does not support...."). The e-signature works OK, because just before trying to sign, I logged in with the e-signature (so I'm waving off problems with the hardware).

Any idea what to try here?

Thanks,
D.

See #8.

my system:
WIN 7 (64x)
firefox 44

when I try to sign it gives the following error: Internalerror

Hello,
SignTextJS 0.7.4 is not working with Firefox 50.0beta. It gives TypeError: cert.getUsagesString is not a function main.js:306:5. Line 306:5 is cert.getUsagesString(true, {}, usages); // true for local-only verification.

See #8. It might be possible to grab the strings from previous localized versions of Firefox.

After testing, we found thees UI issues (Win7 FF35Beta):

1. Select with certificate list sizes to the longest cerificate name, so it can be much wider then dialog width and horizontal scrollbar appears.
2. Font used for dialog labels - Times. It looks ugly, I think Sans Serif is better
3. Dialog doesn't have any localization

Screenshot attached
Dialog from addon:

Native dialog from FF34

Pressing escape or enter key do not close certificate chooser dialog.
When focus is on password field, pressing enter cancels the dialog instead of confirming selection.

In my Firefox 48 with manually enabled Electrolysis (via browser.tabs.remote.autostart = true) extensions is enabled but doesn't work (window.crypto.signText is undefined). Please keep in mind that this settings will be enabled by default from Firefox 49. Check more info http://arewee10syet.com/

I'm sure that your solution is the last hope to use Firefox for online banking etc. Thanks a lot for your work.

Thanks for the add-on. Anywhere I can test the add-on? I have tried to build mine, but on window.crypto.signText it returns error - error:internalError. I am using USB token.

function signTextForm() {
var ss = window.crypto.signText(document.test.signText.value,"ask");
alert(ss);
return true;
}

:(

In signTextJS v. 0.6 certificate list gets filled incorrectly, loosing some certificates in process.
Non-unique field 'nickname' is being used as certificate array key (see main.js, lines 243-247).
If two certificates were issued for some subject by one issuer, their 'cert.nickname' values could be identical.
Hence, adding new array element replaces an existing element.
By the same reason the certificate's serial number should be added to the value in the drop-down list.
Invalid (expired or not valid yet) certificates should be marked in list as 'EXIPRED'.

I do not know how to do it right. Unique field 'cert.sha1Fingerprint' better as an array key,
but CERT_FindUserCertByUsage require "nickname" to find cert.

See also https://bugzilla.mozilla.org/show_bug.cgi?id=403910
(CERT_FindUserCertByUsage() returns wrong certificate if multiple certs with same subject available)

win2012r2 fb35
if you close the certChooser window by clicking on the upper right X
then the signText will return the signature (as if OK was pressed)
expected result is to return "error:userCancel" (as if CANCEL was pressed)

See https://bugzilla.mozilla.org/show_bug.cgi?id=1147085

With firefox 37 I see that if I type the wrong password for the password store, then add-on does not give any warning. Just it seems text is not signed properly and the site requesting signature throws an error. It would be less confusing if upon wrong password, the user is asked to try again.

Thanks for the plug-in. It saves the day.

It's agree that self-signed certificate are forbidden, but the error message is "internal error".

Is there a way to improve that ?

Apparently there are cases where a certificate will have an empty nickname, which is bad from a usability standpoint. Maybe the serial number or common name or something could be used instead.

plugin window height with deprecation warning message is too big and do not fit into screen (on notebooks & etc).
master-password field and action buttons are not accessible.
need to "blindly" input password and press "enter"

if you unzip the xpi from
https://addons.mozilla.org/en-US/firefox/addon/signtextjs/

you will see that files are different:

• data\certChooser.html
• data\certChooser.js
• lib\main.js

also the folder structure is different

See #8. Basically, a horizontal scrollbar shows up. We should be more like the original UI.

There is UI issue when running extension in FireFox 35.0.1 on MacOSX 10.10.2
Certificate selection dialog looks transparent and doesn't have a border
screenshot attached

With Firefox 44.0.2 (Windows or Linux) I'm having the same problem it doesn't mind if I have a Master Password or as if I don't have one, it keeps me asking again after an error signing.

It's a cool job the addon, but in this moment I'm starting to think about tweaking the code to try it without this confirmation...

Hi,
Than you very much for this plug-in. It is life saving for those of use actively using certificates.

I have one small issue. I've lost several hour to figure out why sometimes one of my certificates worked and sometimes it didn't. I finally figure out that I have a habit in the sing dialog to enter my pin and hit enter. It seams that this by default means Cancel button where I'm used to mean OK.
In the rare cases where my certificate worked I've clicked on OK with the mouse, which is somewhat annoying since I use the keyboard for speed.

Thanks in advance

The original implementation appears to break its output at 64 characters or whatever's common for base64.

it is related to 857627

replace this row:

converter.charset = "UTF-8";

with:

let domWindow = utils.getMostRecentBrowserWindow();
converter.charset = domWindow.content.document.characterSet;

Regards!

Hi, with Firefox 37.0.1 on Ubuntu 14.10 64bit, I always get the error:
TypeError: theWindow.crypto.signText is not a function

I have tried both versions of the extension: 0.6 and 0.7.2

Regards,

At the moment at addition installation i receive an error message that it isn't compatible to Seamonkey.

Plugin SignTextJS does not work on Firefox 50. Tested on Windows and MacOS.

We should probably match what the original implementation did with charsets: https://hg.mozilla.org/releases/mozilla-esr31/annotate/a34e37399025/security/manager/ssl/src/nsCrypto.cpp#l2701

i've installed FF35.0; then this addon from
https://addons.mozilla.org/en-US/firefox/addon/signtextjs/
but now in console i see that window.crypro.signText is undefined
and that window.crypto.signText is not a function...

also in BROWSER CONSOLE there is a record:
1418492568629 addons.xpi ERROR Failed to load bootstrap addon jid1-AXn9cXcB4fD1QQ@jetpack from C:\Users\xxx\AppData\Roaming\Mozilla\Firefox\Profiles\hzuw52pa.default\extensions\[email protected]: [Exception... "Unexpected error in XPConnect" nsresult: "0x80570008 (NS_ERROR_XPC_UNEXPECTED)" location: "JS frame :: resource://gre/modules/addons/XPIProvider.jsm :: XPI_loadBootstrapScope :: line 4307" data: no] Stack trace: XPI_loadBootstrapScope()@resource://gre/modules/addons/XPIProvider.jsm:4307 < XPI_callBootstrapMethod()@resource://gre/modules/addons/XPIProvider.jsm:4408 < XPI_startup()@resource://gre/modules/addons/XPIProvider.jsm:2159 < callProvider()@resource://gre/modules/AddonManager.jsm:208 < _startProvider()@resource://gre/modules/AddonManager.jsm:667 < AMI_startup()@resource://gre/modules/AddonManager.jsm:824 < AMP_startup()@resource://gre/modules/AddonManager.jsm:2402 < AMC_observe()@resource://gre/components/addonManager.js:55 < file:unknown Log.jsm:749