fix: Improve pointer handling and refactor

tmathern · tmathern · commit f693f5510d68 · 2025-06-20T20:15:26.000-07:00
diff --git a/src/c2pa/c2pa.py b/src/c2pa/c2pa.py
@@ -683,26 +683,18 @@ def sign_file_with_callback_signer(
     source_path: Union[str, Path],
     dest_path: Union[str, Path],
     manifest: str,
-    callback: Callable[[bytes], bytes],
-    alg: C2paSigningAlg,
-    certs: str,
-    tsa_url: Optional[str] = None,
-    data_dir: Optional[Union[str, Path]] = None
+    signer: 'Signer'
 ) -> bytes:
-    """Sign a file with a C2PA manifest using a callback signer.
+    """Sign a file with a C2PA manifest using a signer.
 
-    This function provides a shortcut to sign files using a callback-based signer
+    This function provides a shortcut to sign files using a signer
     and returns the raw manifest bytes.
 
     Args:
         source_path: Path to the source file
         dest_path: Path to write the signed file to
         manifest: The manifest JSON string
-        callback: Function that signs data and returns the signature
-        alg: The signing algorithm to use
-        certs: Certificate chain in PEM format
-        tsa_url: Optional RFC 3161 timestamp authority URL
-        data_dir: Optional directory to write binary resources to
+        signer: The signer to use
 
     Returns:
         The manifest bytes (binary data)
@@ -713,9 +705,6 @@ def sign_file_with_callback_signer(
         C2paError.NotSupported: If the file type cannot be determined
     """
     try:
-        # Create a signer from the callback
-        signer = Signer.from_callback(callback, alg, certs, tsa_url)
-
         # Create a builder from the manifest
         builder = Builder(manifest)
 
@@ -733,12 +722,6 @@ def sign_file_with_callback_signer(
             # Use the builder's internal signing logic
             result, manifest_bytes = builder._sign_internal(signer, mime_type, source_stream, dest_stream)
 
-            # If we have manifest bytes and a data directory, write them
-            if manifest_bytes and data_dir:
-                manifest_path = os.path.join(str(data_dir), 'manifest.json')
-                with open(manifest_path, 'wb') as f:
-                    f.write(manifest_bytes)
-
             return manifest_bytes
 
     except Exception as e:
@@ -755,8 +738,6 @@ def sign_file_with_callback_signer(
         # Ensure resources are cleaned up
         if 'builder' in locals():
             builder.close()
-        if 'signer' in locals():
-            signer.close()
 
 
 class Stream:
@@ -1349,19 +1330,14 @@ def from_info(cls, signer_info: C2paSignerInfo) -> 'Signer':
         Raises:
             C2paError: If there was an error creating the signer
         """
-        # Validate signer info before creating
-        if not signer_info.sign_cert or not signer_info.private_key:
-            raise C2paError("Missing certificate or private key")
-
         signer_ptr = _lib.c2pa_signer_from_info(ctypes.byref(signer_info))
 
         if not signer_ptr:
             error = _parse_operation_result_for_error(_lib.c2pa_error())
             if error:
                 # More detailed error message when possible
                 raise C2paError(error)
-            raise C2paError(
-                "Failed to create signer from configured signer info")
+            raise C2paError("Failed to create signer from info")
 
         return cls(signer_ptr)
 
@@ -1898,11 +1874,20 @@ def _sign_internal(
 
             # Capture the manifest bytes if available
             manifest_bytes = b""
-            if manifest_bytes_ptr:
-                # Convert the C pointer to Python bytes
-                manifest_bytes = bytes(manifest_bytes_ptr[:result])
-                # Free the C-allocated memory
-                _lib.c2pa_manifest_bytes_free(manifest_bytes_ptr)
+            if manifest_bytes_ptr and result > 0:
+                try:
+                    # Convert the C pointer to Python bytes
+                    manifest_bytes = bytes(manifest_bytes_ptr[:result])
+                except Exception:
+                    # If there's any error accessing the memory, just return empty bytes
+                    manifest_bytes = b""
+                finally:
+                    # Always free the C-allocated memory, even if we failed to copy it
+                    try:
+                        _lib.c2pa_manifest_bytes_free(manifest_bytes_ptr)
+                    except Exception:
+                        # Ignore errors during cleanup
+                        pass
 
             return result, manifest_bytes
         finally:
diff --git a/tests/test_unit_tests.py b/tests/test_unit_tests.py
@@ -928,6 +928,14 @@ def sign_callback(data: bytes) -> bytes:
 
                 return signature
 
+            # Create signer with callback
+            signer = Signer.from_callback(
+                callback=sign_callback,
+                alg=SigningAlg.ES256,
+                certs=self.certs.decode('utf-8'),
+                tsa_url="http://timestamp.digicert.com"
+            )
+
             # Import the new function
             from c2pa.c2pa import sign_file_with_callback_signer
 
@@ -936,10 +944,7 @@ def sign_callback(data: bytes) -> bytes:
                 source_path=self.testPath,
                 dest_path=output_path,
                 manifest=self.manifestDefinition,
-                callback=sign_callback,
-                alg=SigningAlg.ES256,
-                certs=self.certs.decode('utf-8'),
-                tsa_url="http://timestamp.digicert.com"
+                signer=signer
             )
 
             # Verify the output file was created
