CODEWITHSUNDEEP
certificatedigital-signaturex509
Anandu BS
Anandu BS

Reputation: 11

c2pa manifest not taking certs

I was trying to include c2pa in my workflow and came across and issue of my certs not being used for the process by the c2patool cli. Below given is my manifest file

{
    "claim_generator_info": [
      {
        "name": "Anandu",
        "version": "1.0.0",
        "product": "Test",
        "description": "AI generated video"
      }
    ],
    "assertions": [
      {
        "label": "c2pa.actions",
        "data": {
          "actions": [
            {
              "action": "c2pa.edited",
              "softwareAgent": {
                "name": "Test",
                "version": "1.0.0",
                "company": "Anandu",
                "description": "Verified file"
              }
            }
          ]
        }
      }
    ],
    "private_key": "/mnt/d/project/c2pa/keys/private_key.pem",
    "sign_cert": "/mnt/d/project/c2pa/keys/cert.pem"
  }

And when I do the c2pa using the command c2patool ./img.jpg -m manifest.json -o output_img.jpg and then verify the out using the command c2patool ./output_img.jpg I get the following

claim generator [ClaimGeneratorInfo { name: "c2patool", version: Some("0.10.2"), icon: None, other: {} }]
{
  "active_manifest": "urn:uuid:ffd22a10-d98a-4684-b88b-084f511eaa4d",
  "manifests": {
    "urn:uuid:ffd22a10-d98a-4684-b88b-084f511eaa4d": {
      "claim_generator": "anandu/1.0.0",
      "claim_generator_info": [
        {
          "name": "Anandu",
          "version": "1.0.0",
          "product": "Test",
          "org.cai.c2pa_rs": "0.40.0",
          "description": "AI generated video"
        }
      ],
      "title": "new.jpg",
      "format": "image/jpeg",
      "instance_id": "xmp:iid:958e019c-b0ab-441e-b0a3-4489f47e17e2",
      "thumbnail": {
        "format": "image/jpeg",
        "identifier": "self#jumbf=/c2pa/urn:uuid:ffd22a10-d98a-4684-b88b-084f511eaa4d/c2pa.assertions/c2pa.thumbnail.claim.jpeg"
      },
      "ingredients": [],
      "assertions": [
        {
          "label": "c2pa.actions.v2",
          "data": {
            "actions": [
              {
                "action": "c2pa.edited",
                "softwareAgent": {
                  "name": "Test",
                  "version": "1.0.0",
                  "description": "Verified file",
                  "company": "Anandu"
                }
              }
            ]
          }
        }
      ],
      "signature_info": {
        "alg": "Es256",
        "issuer": "C2PA Test Signing Cert",
        "cert_serial_number": "640229841392226413189608867977836244731148734950"
      },
      "label": "urn:uuid:ffd22a10-d98a-4684-b88b-084f511eaa4d"
    }
  }
}

The issue is that the issuer is marked as C2PA Test Signing Cert. I believe that the certs that I gave was never taken and hence the issuer is a test one. How to change this ?

I already tried changing the certs but that did not help.

Upvotes: 0

Views: 13

Answers (0)

Related Questions