mirrors
/
fop
mirror of https://github.com/apache/fop.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 48 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
7372 Commits
70 Branches
Tree: 4f9ccbd0b7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4f9ccbd0b7'
${ noResults }
fop/src/java/org/apache/fop/pdf/PDFEncryptionJCE.java

PDFEncryptionJCE.java 19KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549550551552 
  1. /*

  2.  * Licensed to the Apache Software Foundation (ASF) under one or more

  3.  * contributor license agreements.  See the NOTICE file distributed with

  4.  * this work for additional information regarding copyright ownership.

  5.  * The ASF licenses this file to You under the Apache License, Version 2.0

  6.  * (the "License"); you may not use this file except in compliance with

  7.  * the License.  You may obtain a copy of the License at

  8.  *

  9.  *      http://www.apache.org/licenses/LICENSE-2.0

  10.  *

  11.  * Unless required by applicable law or agreed to in writing, software

  12.  * distributed under the License is distributed on an "AS IS" BASIS,

  13.  * WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  14.  * See the License for the specific language governing permissions and

  15.  * limitations under the License.

  16.  */

  17. 

  18. /* $Id$ */

  19. 

  20. package org.apache.fop.pdf;

  21. 

  22. import java.io.IOException;

  23. import java.io.OutputStream;

  24. import java.security.InvalidKeyException;

  25. import java.security.MessageDigest;

  26. import java.security.NoSuchAlgorithmException;

  27. import java.util.Arrays;

  28. 

  29. import javax.crypto.BadPaddingException;

  30. import javax.crypto.Cipher;

  31. import javax.crypto.CipherOutputStream;

  32. import javax.crypto.IllegalBlockSizeException;

  33. import javax.crypto.NoSuchPaddingException;

  34. import javax.crypto.spec.SecretKeySpec;

  35. 

  36. /**

  37.  * An implementation of the Standard Security Handler.

  38.  */

  39. public final class PDFEncryptionJCE extends PDFObject implements PDFEncryption {

  40. 

  41.     private final MessageDigest digest;

  42. 

  43.     private byte[] encryptionKey;

  44. 

  45.     private String encryptionDictionary;

  46. 

  47.     private class EncryptionInitializer {

  48. 

  49.         private final PDFEncryptionParams encryptionParams;

  50. 

  51.         private int encryptionLength;

  52. 

  53.         private int version;

  54. 

  55.         private int revision;

  56. 

  57.         EncryptionInitializer(PDFEncryptionParams params) {

  58.             this.encryptionParams = new PDFEncryptionParams(params);

  59.         }

  60. 

  61.         void init() {

  62.             encryptionLength = encryptionParams.getEncryptionLengthInBits();

  63.             determineEncryptionAlgorithm();

  64.             int permissions = Permission.computePermissions(encryptionParams);

  65.             EncryptionSettings encryptionSettings = new EncryptionSettings(

  66.                     encryptionLength, permissions,

  67.                     encryptionParams.getUserPassword(), encryptionParams.getOwnerPassword());

  68.             InitializationEngine initializationEngine = (revision == 2)

  69.                     ? new Rev2Engine(encryptionSettings)

  70.                     : new Rev3Engine(encryptionSettings);

  71.             initializationEngine.run();

  72.             encryptionDictionary = createEncryptionDictionary(permissions,

  73.                     initializationEngine.oValue,

  74.                     initializationEngine.uValue);

  75.         }

  76. 

  77.         private void determineEncryptionAlgorithm() {

  78.             if (isVersion1Revision2Algorithm()) {

  79.                 version = 1;

  80.                 revision = 2;

  81.             } else {

  82.                 version = 2;

  83.                 revision = 3;

  84.             }

  85.         }

  86. 

  87.         private boolean isVersion1Revision2Algorithm() {

  88.             return encryptionLength == 40

  89.                     && encryptionParams.isAllowFillInForms()

  90.                     && encryptionParams.isAllowAccessContent()

  91.                     && encryptionParams.isAllowAssembleDocument()

  92.                     && encryptionParams.isAllowPrintHq();

  93.         }

  94. 

  95.         private String createEncryptionDictionary(final int permissions, final byte[] oValue,

  96.                 final byte[] uValue) {

  97.             return "<< /Filter /Standard\n"

  98.                     + "/V " + version + "\n"

  99.                     + "/R " + revision + "\n"

  100.                     + "/Length " + encryptionLength + "\n"

  101.                     + "/P "  + permissions + "\n"

  102.                     + "/O " + PDFText.toHex(oValue) + "\n"

  103.                     + "/U " + PDFText.toHex(uValue) + "\n"

  104.                     + ">>";

  105.         }

  106. 

  107.     }

  108. 

  109.     private static enum Permission {

  110. 

  111.         PRINT(3),

  112.         EDIT_CONTENT(4),

  113.         COPY_CONTENT(5),

  114.         EDIT_ANNOTATIONS(6),

  115.         FILL_IN_FORMS(9),

  116.         ACCESS_CONTENT(10),

  117.         ASSEMBLE_DOCUMENT(11),

  118.         PRINT_HQ(12);

  119. 

  120.         private final int mask;

  121. 

  122.         /**

  123.          * Creates a new permission.

  124.          *

  125.          * @param bit bit position for this permission, 1-based to match the PDF Reference

  126.          */

  127.         private Permission(int bit) {

  128.             mask = 1 << (bit - 1);

  129.         }

  130. 

  131.         private int removeFrom(int permissions) {

  132.             return permissions - mask;

  133.         }

  134. 

  135.         static int computePermissions(PDFEncryptionParams encryptionParams) {

  136.             int permissions = -4;

  137. 

  138.             if (!encryptionParams.isAllowPrint()) {

  139.                 permissions = PRINT.removeFrom(permissions);

  140.             }

  141.             if (!encryptionParams.isAllowCopyContent()) {

  142.                 permissions = COPY_CONTENT.removeFrom(permissions);

  143.             }

  144.             if (!encryptionParams.isAllowEditContent()) {

  145.                 permissions = EDIT_CONTENT.removeFrom(permissions);

  146.             }

  147.             if (!encryptionParams.isAllowEditAnnotations()) {

  148.                 permissions = EDIT_ANNOTATIONS.removeFrom(permissions);

  149.             }

  150.             if (!encryptionParams.isAllowFillInForms()) {

  151.                 permissions = FILL_IN_FORMS.removeFrom(permissions);

  152.             }

  153.             if (!encryptionParams.isAllowAccessContent()) {

  154.                 permissions = ACCESS_CONTENT.removeFrom(permissions);

  155.             }

  156.             if (!encryptionParams.isAllowAssembleDocument()) {

  157.                 permissions = ASSEMBLE_DOCUMENT.removeFrom(permissions);

  158.             }

  159.             if (!encryptionParams.isAllowPrintHq()) {

  160.                 permissions = PRINT_HQ.removeFrom(permissions);

  161.             }

  162.             return permissions;

  163.         }

  164.     }

  165. 

  166.     private static final class EncryptionSettings {

  167. 

  168.         final int encryptionLength; // CSOK: VisibilityModifier

  169. 

  170.         final int permissions; // CSOK: VisibilityModifier

  171. 

  172.         final String userPassword; // CSOK: VisibilityModifier

  173. 

  174.         final String ownerPassword; // CSOK: VisibilityModifier

  175. 

  176.         EncryptionSettings(int encryptionLength, int permissions,

  177.                 String userPassword, String ownerPassword) {

  178.             this.encryptionLength = encryptionLength;

  179.             this.permissions = permissions;

  180.             this.userPassword = userPassword;

  181.             this.ownerPassword = ownerPassword;

  182.         }

  183. 

  184.     }

  185. 

  186.     private abstract class InitializationEngine {

  187. 

  188.         /** Padding for passwords. */

  189.         protected final byte[] padding = new byte[] {

  190.                 (byte) 0x28, (byte) 0xBF, (byte) 0x4E, (byte) 0x5E,

  191.                 (byte) 0x4E, (byte) 0x75, (byte) 0x8A, (byte) 0x41,

  192.                 (byte) 0x64, (byte) 0x00, (byte) 0x4E, (byte) 0x56,

  193.                 (byte) 0xFF, (byte) 0xFA, (byte) 0x01, (byte) 0x08,

  194.                 (byte) 0x2E, (byte) 0x2E, (byte) 0x00, (byte) 0xB6,

  195.                 (byte) 0xD0, (byte) 0x68, (byte) 0x3E, (byte) 0x80,

  196.                 (byte) 0x2F, (byte) 0x0C, (byte) 0xA9, (byte) 0xFE,

  197.                 (byte) 0x64, (byte) 0x53, (byte) 0x69, (byte) 0x7A};

  198. 

  199.         protected final int encryptionLengthInBytes;

  200. 

  201.         private final int permissions;

  202. 

  203.         private byte[] oValue;

  204. 

  205.         private byte[] uValue;

  206. 

  207.         private final byte[] preparedUserPassword;

  208. 

  209.         protected final String ownerPassword;

  210. 

  211.         InitializationEngine(EncryptionSettings encryptionSettings) {

  212.             this.encryptionLengthInBytes = encryptionSettings.encryptionLength / 8;

  213.             this.permissions = encryptionSettings.permissions;

  214.             this.preparedUserPassword = preparePassword(encryptionSettings.userPassword);

  215.             this.ownerPassword = encryptionSettings.ownerPassword;

  216.         }

  217. 

  218.         void run() {

  219.             oValue = computeOValue();

  220.             createEncryptionKey();

  221.             uValue = computeUValue();

  222.         }

  223. 

  224.         /**

  225.          * Applies Algorithm 3.3 Page 79 of the PDF 1.4 Reference.

  226.          *

  227.          * @return the O value

  228.          */

  229.         private byte[] computeOValue() {

  230.             // Step 1

  231.             byte[] md5Input = prepareMD5Input();

  232.             // Step 2

  233.             digest.reset();

  234.             byte[] hash = digest.digest(md5Input);

  235.             // Step 3

  236.             hash = computeOValueStep3(hash);

  237.             // Step 4

  238.             byte[] key = new byte[encryptionLengthInBytes];

  239.             System.arraycopy(hash, 0, key, 0, encryptionLengthInBytes);

  240.             // Steps 5, 6

  241.             byte[] encryptionResult = encryptWithKey(key, preparedUserPassword);

  242.             // Step 7

  243.             encryptionResult = computeOValueStep7(key, encryptionResult);

  244.             // Step 8

  245.             return encryptionResult;

  246.         }

  247. 

  248.         /**

  249.          * Applies Algorithm 3.2 Page 78 of the PDF 1.4 Reference.

  250.          */

  251.         private void createEncryptionKey() {

  252.             // Steps 1, 2

  253.             digest.reset();

  254.             digest.update(preparedUserPassword);

  255.             // Step 3

  256.             digest.update(oValue);

  257.             // Step 4

  258.             digest.update((byte) (permissions >>> 0));

  259.             digest.update((byte) (permissions >>> 8));

  260.             digest.update((byte) (permissions >>> 16));

  261.             digest.update((byte) (permissions >>> 24));

  262.             // Step 5

  263.             digest.update(getDocumentSafely().getFileIDGenerator().getOriginalFileID());

  264.             byte[] hash = digest.digest();

  265.             // Step 6

  266.             hash = createEncryptionKeyStep6(hash);

  267.             // Step 7

  268.             encryptionKey = new byte[encryptionLengthInBytes];

  269.             System.arraycopy(hash, 0, encryptionKey, 0, encryptionLengthInBytes);

  270.         }

  271. 

  272.         protected abstract byte[] computeUValue();

  273. 

  274.         /**

  275.          * Adds padding to the password as directed in page 78 of the PDF 1.4 Reference.

  276.          *

  277.          * @param password the password

  278.          * @return the password with additional padding if necessary

  279.          */

  280.         private byte[] preparePassword(String password) {

  281.             int finalLength = 32;

  282.             byte[] preparedPassword = new byte[finalLength];

  283.             byte[] passwordBytes = password.getBytes();

  284.             System.arraycopy(passwordBytes, 0, preparedPassword, 0, passwordBytes.length);

  285.             System.arraycopy(padding, 0, preparedPassword, passwordBytes.length,

  286.                     finalLength - passwordBytes.length);

  287.             return preparedPassword;

  288.         }

  289. 

  290.         private byte[] prepareMD5Input() {

  291.             if (ownerPassword.length() != 0) {

  292.                 return preparePassword(ownerPassword);

  293.             } else {

  294.                 return preparedUserPassword;

  295.             }

  296.         }

  297. 

  298.         protected abstract byte[] computeOValueStep3(byte[] hash);

  299. 

  300.         protected abstract byte[] computeOValueStep7(byte[] key, byte[] encryptionResult);

  301. 

  302.         protected abstract byte[] createEncryptionKeyStep6(byte[] hash);

  303. 

  304.     }

  305. 

  306.     private class Rev2Engine extends InitializationEngine {

  307. 

  308.         Rev2Engine(EncryptionSettings encryptionSettings) {

  309.             super(encryptionSettings);

  310.         }

  311. 

  312.         @Override

  313.         protected byte[] computeOValueStep3(byte[] hash) {

  314.             return hash;

  315.         }

  316. 

  317.         @Override

  318.         protected byte[] computeOValueStep7(byte[] key, byte[] encryptionResult) {

  319.             return encryptionResult;

  320.         }

  321. 

  322.         @Override

  323.         protected byte[] createEncryptionKeyStep6(byte[] hash) {

  324.             return hash;

  325.         }

  326. 

  327.         @Override

  328.         protected byte[] computeUValue() {

  329.             return encryptWithKey(encryptionKey, padding);

  330.         }

  331. 

  332.     }

  333. 

  334.     private class Rev3Engine extends InitializationEngine {

  335. 

  336.         Rev3Engine(EncryptionSettings encryptionSettings) {

  337.             super(encryptionSettings);

  338.         }

  339. 

  340.         @Override

  341.         protected byte[] computeOValueStep3(byte[] hash) {

  342.             for (int i = 0; i < 50; i++) {

  343.                 hash = digest.digest(hash);

  344.             }

  345.             return hash;

  346.         }

  347. 

  348.         @Override

  349.         protected byte[] computeOValueStep7(byte[] key, byte[] encryptionResult) {

  350.             return xorKeyAndEncrypt19Times(key, encryptionResult);

  351.         }

  352. 

  353.         @Override

  354.         protected byte[] createEncryptionKeyStep6(byte[] hash) {

  355.             for (int i = 0; i < 50; i++) {

  356.                 digest.update(hash, 0, encryptionLengthInBytes);

  357.                 hash = digest.digest();

  358.             }

  359.             return hash;

  360.         }

  361. 

  362.         @Override

  363.         protected byte[] computeUValue() {

  364.             // Step 1 is encryptionKey

  365.             // Step 2

  366.             digest.reset();

  367.             digest.update(padding);

  368.             // Step 3

  369.             digest.update(getDocumentSafely().getFileIDGenerator().getOriginalFileID());

  370.             // Step 4

  371.             byte[] encryptionResult = encryptWithKey(encryptionKey, digest.digest());

  372.             // Step 5

  373.             encryptionResult = xorKeyAndEncrypt19Times(encryptionKey, encryptionResult);

  374.             // Step 6

  375.             byte[] uValue = new byte[32];

  376.             System.arraycopy(encryptionResult, 0, uValue, 0, 16);

  377.             // Add the arbitrary padding

  378.             Arrays.fill(uValue, 16, 32, (byte) 0);

  379.             return uValue;

  380.         }

  381. 

  382.         private byte[] xorKeyAndEncrypt19Times(byte[] key, byte[] input) {

  383.             byte[] result = input;

  384.             byte[] encryptionKey = new byte[key.length];

  385.             for (int i = 1; i <= 19; i++) {

  386.                 for (int j = 0; j < key.length; j++) {

  387.                     encryptionKey[j] = (byte) (key[j] ^ i);

  388.                 }

  389.                 result = encryptWithKey(encryptionKey, result);

  390.             }

  391.             return result;

  392.         }

  393. 

  394.     }

  395. 

  396.     private class EncryptionFilter extends PDFFilter {

  397. 

  398.         private int streamNumber;

  399. 

  400.         private int streamGeneration;

  401. 

  402.         EncryptionFilter(int streamNumber, int streamGeneration) {

  403.             this.streamNumber  = streamNumber;

  404.             this.streamGeneration = streamGeneration;

  405.         }

  406. 

  407.         /**

  408.          * Returns a PDF string representation of this filter.

  409.          *

  410.          * @return the empty string

  411.          */

  412.         public String getName() {

  413.             return "";

  414.         }

  415. 

  416.         /**

  417.          * Returns a parameter dictionary for this filter.

  418.          *

  419.          * @return null, this filter has no parameters

  420.          */

  421.         public PDFObject getDecodeParms() {

  422.             return null;

  423.         }

  424. 

  425.         /** {@inheritDoc} */

  426.         public OutputStream applyFilter(OutputStream out) throws IOException {

  427.             byte[] key = createEncryptionKey(streamNumber, streamGeneration);

  428.             Cipher cipher = initCipher(key);

  429.             return new CipherOutputStream(out, cipher);

  430.         }

  431. 

  432.     }

  433. 

  434.     private PDFEncryptionJCE(int objectNumber, PDFEncryptionParams params, PDFDocument pdf) {

  435.         setObjectNumber(objectNumber);

  436.         try {

  437.             digest = MessageDigest.getInstance("MD5");

  438.         } catch (NoSuchAlgorithmException e) {

  439.             throw new UnsupportedOperationException(e.getMessage());

  440.         }

  441.         setDocument(pdf);

  442.         EncryptionInitializer encryptionInitializer = new EncryptionInitializer(params);

  443.         encryptionInitializer.init();

  444.     }

  445. 

  446.     /**

  447.      * Creates and returns an encryption object.

  448.      *

  449.      * @param objectNumber the object number for the encryption dictionary

  450.      * @param params the encryption parameters

  451.      * @param pdf the PDF document to be encrypted

  452.      * @return the newly created encryption object

  453.      */

  454.     public static PDFEncryption make(

  455.             int objectNumber, PDFEncryptionParams params, PDFDocument pdf) {

  456.         return new PDFEncryptionJCE(objectNumber, params, pdf);

  457.     }

  458. 

  459.     /** {@inheritDoc} */

  460.     public byte[] encrypt(byte[] data, PDFObject refObj) {

  461.         PDFObject o = refObj;

  462.         while (o != null && !o.hasObjectNumber()) {

  463.             o = o.getParent();

  464.         }

  465.         if (o == null) {

  466.             throw new IllegalStateException("No object number could be obtained for a PDF object");

  467.         }

  468.         byte[] key = createEncryptionKey(o.getObjectNumber(), o.getGeneration());

  469.         return encryptWithKey(key, data);

  470.     }

  471. 

  472.     /** {@inheritDoc} */

  473.     public void applyFilter(AbstractPDFStream stream) {

  474.         stream.getFilterList().addFilter(

  475.                 new EncryptionFilter(stream.getObjectNumber(), stream.getGeneration()));

  476.     }

  477. 

  478.     /**

  479.      *  Prepares the encryption dictionary for output to a PDF file.

  480.      *

  481.      *  @return the encryption dictionary as a byte array

  482.      */

  483.     public byte[] toPDF() {

  484.         assert encryptionDictionary != null;

  485.         return encode(this.encryptionDictionary);

  486.     }

  487. 

  488.     /** {@inheritDoc} */

  489.     public String getTrailerEntry() {

  490.         return "/Encrypt " + getObjectNumber() + " " + getGeneration() + " R\n";

  491.     }

  492. 

  493.     private static byte[] encryptWithKey(byte[] key, byte[] data) {

  494.         try {

  495.             final Cipher c = initCipher(key);

  496.             return c.doFinal(data);

  497.         } catch (IllegalBlockSizeException e) {

  498.             throw new IllegalStateException(e.getMessage());

  499.         } catch (BadPaddingException e) {

  500.             throw new IllegalStateException(e.getMessage());

  501.         }

  502.     }

  503. 

  504.     private static Cipher initCipher(byte[] key) {

  505.         try {

  506.             Cipher c = Cipher.getInstance("RC4");

  507.             SecretKeySpec keyspec = new SecretKeySpec(key, "RC4");

  508.             c.init(Cipher.ENCRYPT_MODE, keyspec);

  509.             return c;

  510.         } catch (InvalidKeyException e) {

  511.             throw new IllegalStateException(e);

  512.         } catch (NoSuchAlgorithmException e) {

  513.             throw new UnsupportedOperationException(e);

  514.         } catch (NoSuchPaddingException e) {

  515.             throw new UnsupportedOperationException(e);

  516.         }

  517.     }

  518. 

  519.     /**

  520.      * Applies Algorithm 3.1 from the PDF 1.4 Reference.

  521.      *

  522.      * @param objectNumber the object number

  523.      * @param generationNumber the generation number

  524.      * @return the key to use for encryption

  525.      */

  526.     private byte[] createEncryptionKey(int objectNumber, int generationNumber) {

  527.         // Step 1 passed in

  528.         // Step 2

  529.         byte[] md5Input = prepareMD5Input(objectNumber, generationNumber);

  530.         // Step 3

  531.         digest.reset();

  532.         byte[] hash = digest.digest(md5Input);

  533.         // Step 4

  534.         int keyLength = Math.min(16, md5Input.length);

  535.         byte[] key = new byte[keyLength];

  536.         System.arraycopy(hash, 0, key, 0, keyLength);

  537.         return key;

  538.     }

  539. 

  540.     private byte[] prepareMD5Input(int objectNumber, int generationNumber) {

  541.         byte[] md5Input = new byte[encryptionKey.length + 5];

  542.         System.arraycopy(encryptionKey, 0, md5Input, 0, encryptionKey.length);

  543.         int i = encryptionKey.length;

  544.         md5Input[i++] = (byte) (objectNumber >>> 0);

  545.         md5Input[i++] = (byte) (objectNumber >>> 8);

  546.         md5Input[i++] = (byte) (objectNumber >>> 16);

  547.         md5Input[i++] = (byte) (generationNumber >>> 0);

  548.         md5Input[i++] = (byte) (generationNumber >>> 8);

  549.         return md5Input;

  550.     }

  551. 

  552. }