Hi, i have a green pass issued due to negative test that dcc-utils and covid-pass-verifier.com can't validate. It gives error on this two while VerificaC19 is working.

Please let me know, thanks

Issue content

Hey there, first of all, thank you for the repo.

I am trying to use this library but it seems that besides the provided QR I can't veirfy any other one. All the QR I am trying are taken from the IO italian app.

The cose library keep returning this error: "Signature missmatch". To do the verification I have tried to use the provided cert and the one from the government (https://get.dgc.gov.it/v1/dgc/signercertificate/update) with the same result.

I am also having problem using the tool provided in the EU repo to check the DCC (https://github.pathcheck.org/debug.html), with the QR provided in this repo it validates, but it doesn't with any one I have tried.

The only visible difference in the provided QR and the one I am trying it's the "ver" property in the payload. The provided one has '1.2.1', all the others have '1.0.0'.

The issue is on the IO side with a malformed or non standard QR generation? To note that all my QR are valid with the official italian app (VerificaC19).

Thanks in advance,
Matteo.

    const dcc = await DCC.fromRaw(code.data);
    var myCert = require("./certificates.json")
    const verified = await dcc.checkSignatureWithKeysList(myCert);
    if (verified) {

        const VR_DE_0001_RULE_URL = "https://get.dgc.gov.it/v1/dgc/settings";
        const response = await fetch(VR_DE_0001_RULE_URL);
        const ruleJSON = await response.json();
        const rule = Rule.fromJSON(ruleJSON, {
            validationClock: new Date().toISOString(),
        });

        rule.evaluateDCC(dcc)
    }

la verifica del certificato funziona, ma restituisce questo errore nel momento in cui provo ad applicare le rules:

sto utilizzando node.js 14

Issue content

I wanted to know how to check if the green pass is valid by checking with the black list.

Can anyone tell me how and where to get the updated black list?

Hello, my issue is a question.

In the example verify_signature_from_list.js I have seen that is used this url
https://raw.githubusercontent.com/bcsongor/covid-pass-verifier/35336fd3c0ff969b5b4784d7763c64ead6305615/src/data/certificates.json

for get the certificates, but I can use this list and it is always valid or it is only for example purpose?

In this case, Is there a url where we can get the valid certificates?

Thankyou.

Hi,

I'm a bit lost here. I need to verify in our mobile app the covid certificate. Is there an step by step tutorial or an how to?

What I have to do, do verify German covid certificate?

Issue content

I would now if the file signing_certificate.crt is generic for check all Green Pass or needed a specific one.

Thanks.

Hi this link stop working:
https://get.dgc.gov.it/v1/dgc/signercertificate/update

Have you got some information?

Originally posted by @valeprog in #7 (comment)

Angular CLI: 12.0.5
Node: 14.17.1
Package Manager: npm 6.14.13
OS: win32 x64

Description

Hi, i'm trying to use dcc-utils with new empty Angular app, but i get this error :
inherits_browser.js:5 --> Uncaught TypeError: Object prototype may only be an Object or null: undefined

To Reproduce

• ng new testangular
• cd testangular
• npm install dcc-utils
• in app.component.ts include library on top of file with
  const { DCC } = require('dcc-utils');
  // and add
  constructor(){ console.log(DCC.fromRaw('dcc sample test string')); }

// ng serve now will produce first errors, that you can solve editing compiling options

• npm i -D @angular-builders/custom-webpack
• edit angular.json file in the root folder:

into architect.build --->

 "builder": "@angular-builders/custom-webpack:browser",
  "options": {
	  "customWebpackConfig": {
			  "path": "./custom-webpack.config.js"
	  },
  }

into architect.serve --->

 "builder": "@angular-builders/custom-webpack:dev-server",
  "options": {
    "browserTarget": "app:build"
  },

• create a file in the root of angular folder, named custom-webpack.config.js containing this code

const webpack = require('webpack');
const path = require('path');

module.exports = {
    plugins: [
        new webpack.ProvidePlugin({
            process: 'process/browser',
        }),
    ],
    resolve: {
        alias: { util$: path.resolve(__dirname, 'node_modules/util') },
        //mainFields: ['browser', 'module', 'main'],
        fallback: {
            "fs": false,
            "stream": false,
            "path": false,
            "crypto": false,
            "assert": false,
            "http": false,
            "https": false,
            "zlib": false,
            "util": false,
            "node-inspect-extracted": false,
        }
    }
}

• run npm i --save-dev @types/node
• in tsconfig.app -> compiler options -> "types":["node"]
• run ng serve to reproduce my error

I need help to be able to use this library in an Angular project,
let me know if you need extra info, i will keep this issue update

Thank you for your precious help,
Ciao

Stiamo testando da tempo in azienda un sistema di verifica green pass basato su dcc-utils.

Lo abbiamo integrato con la verifica della signatures e delle rules, il tutto incapsulato in un webservice che gira con express.

Node mi sembra la piattaforma più integrabile di tutte, è un bel problema cercare di integrare solo la versione Android.
Sarebbe bello rendere anche questo dcc-utils un SDK ufficiale da utilizzare in linea col DPCM del 12/10.

Is your feature request related to a problem? Please describe.
A clear and concise description of what the problem is. Ex. I'm always frustrated when [...]

Describe the solution you'd like
A clear and concise description of what you want to happen.

Describe alternatives you've considered
A clear and concise description of any alternative solutions or features you've considered.

Additional context
Add any other context or screenshots about the feature request here.

Hi :)
First of all, great work with this utils!
Is there a way to fetch a valid set of rules for a specific country?
It could be useful to implement this feature.
The rules system is not very intuitive and the possibility to have access to official rule sets .
Am I missing something and there is a way? Or, for some reason, is not possible?

Thanks :)

DESCRIPTION:
On decryption of the embedded zlib archive of green passes of people who has had their QR code re-emitted after their third dose of vaccine, the call on zlib fails to decompress the package, blocking the successive process of validation.

Steps to reproduce the behavior:

• Cloned the repo of official italian SDK from https://github.com/italia/verificac19-sdk/; ran npm i and started my personal validator server wrote following literal instructions** of the SDK [view README.md];
• Passed a raw GP to the validator server formatted as required [ see lucadentella's https://github.com/lucadentella/raspberry-dgc/blob/main/cameraClient/cameraClient.py ], as json {dgc: raw_gp_string}

Expected behavior
As per usual working behavior, i usually received the values i requested from my validator server: an object from where i extract name (obj.person), surname (same), DoB (obj.date_of_birth) and GP validity (obj.code). Here an example without personal info:

Is this DCC valid? true
Details:
VALID
true
string 

when decrypting a 'third dose' greenpass, i get this:

CertificateParsingError: certificate can't be parsed, incorrect data check
    at Object.fromRaw (/home/user/greenpass-sdk/src/certificate.js:121:11)
    at processTicksAndRejections (node:internal/process/task_queues:96:5)
    at async Server.<anonymous> (/home/user/greenpass-sdk/validatorServer.js:49:19) {
  data: {
    error: Error: incorrect data check
        at Zlib.zlibOnError [as onerror] (node:zlib:190:17)
        at processChunkSync (node:zlib:456:12)
        at zlibBufferSync (node:zlib:178:12)
        at Object.syncBufferWrapper [as inflateSync] (node:zlib:791:14)
        at Function.fromRaw (/home/user/greenpass-sdk/node_modules/dcc-utils/src/dcc.js:17:25)
        at Object.fromRaw (/home/user/greenpass-sdk/src/certificate.js:118:27)
        at Server.<anonymous> (/home/user/greenpass-sdk/validatorServer.js:49:37)
        at Server.emit (node:events:520:28)
        at parserOnIncoming (node:_http_server:951:12)
        at HTTPParser.parserOnHeadersComplete (node:_http_common:128:17) {
      errno: -3,
      code: 'Z_DATA_ERROR'
    }
  }
}

Screenshots

Food for Thoughts
It looks like a zlib decompressing error, but as I'm not directly involved in the green pass creation I can't figure out what exactly changes in a newly-emitted GP. The error, i think, resides in the line 17 - dcc._coseRaw = zlib.inflateSync(base45Data);
It looks like, by printing out the variable base45data in dcc.js the new GPs are longer byte strings, so it may be related to that, but can't tell for sure The process breaks right on that line and does not go on. Tried on amd64 and aarch64, same issue. I've seen zlib compilation issues on Apple M1 but experimenting on 64bit it seems like the issue remains the same. Perhaps passing an option to the method zlib.inflateSync as per https://nodejs.org/api/zlib.html#zlibinflatesyncbuffer-options might fix the problem, but i only managed to try unsuccessfully.

Please let me know if this is the wrong place to open the issue, but i was really unsure about where to post it, and this seemed the most reasonable place. Thanks for eventual aid fixing this.
Also, a huge thanks to all developers i am using code from!

Hi, but with this code can i get if a covid19 certificate is expired? if yes, how?

Hi!

It seems that Swiss DGCs use algorithm -37 in the COSE sign process:
lucadentella/raspberry-dgc#7

At the moment the cose-js library used in this library doesn't support this algorithm and therefore cannot verify the signature.
A PR was submitted but hasn't merged yet.

Issue content

Hello I've a question on content of GreenPass.
In my Green Pass, i can see an Unique Certificate Identifier, that I can see also after decoding with key "CI".
But what does it contain?

I have read this https://ec.europa.eu/health/sites/default/files/ehealth/docs/vaccination-proof_interoperability-guidelines_en.pdf and I can see that there are 3 versions.

But did all countries choose one of these or each country choose their own?
In this case, Which one did Italy choose?