You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Markus Fensterer (JIRA)" <ji...@apache.org> on 2016/11/16 08:12:59 UTC
[jira] [Comment Edited] (PDFBOX-3572) AES-Decryption with Bouncycastle throws NullPointerException

    [ https://issues.apache.org/jira/browse/PDFBOX-3572?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15669787#comment-15669787 ] 

Markus Fensterer edited comment on PDFBOX-3572 at 11/16/16 8:12 AM:
--------------------------------------------------------------------

I tested it with the newest 2.0.4-SNAPSHOT and it works.
Thanks!


was (Author: markus.f):
I tested it with the newest 2.0.4-SNAPSHOT and it works.

> AES-Decryption with Bouncycastle throws NullPointerException
> ------------------------------------------------------------
>
>                 Key: PDFBOX-3572
>                 URL: https://issues.apache.org/jira/browse/PDFBOX-3572
>             Project: PDFBox
>          Issue Type: Bug
>          Components: Crypto
>    Affects Versions: 2.0.0, 2.0.1, 2.0.2, 2.0.3
>            Reporter: Markus Fensterer
>              Labels: bouncycastle, decrypt, nullpointerexception
>             Fix For: 2.0.4, 2.1.0
>
>
> Using AES-Encryption with PdfBox and Bouncycastle yields a null pointer. When JCE is used everything works nicely:  com.sun.crypt.provider.AESCipher returns an empty byte array for the last 16 bytes of the metadata dictionary. Bouncycastle returns a null reference.
> {code:title=Demo.java|borderStyle=solid}
> public class Demo {
>     public static void main(String[] args) throws IOException, NoSuchAlgorithmException, NoSuchPaddingException {
>         String password = "pw";
>         String cipherString = "AES/CBC/PKCS5Padding";
>         String testFilename = "test.pdf";
>         PDDocument document = new PDDocument();
>         AccessPermission ap = new AccessPermission();
>         ap.setReadOnly();
>         StandardProtectionPolicy policy = new StandardProtectionPolicy(password, password, ap);
>         policy.setEncryptionKeyLength(128);
>         policy.setPreferAES(true);
>         document.protect(policy);
>         document.getDocumentInformation().setAuthor("author");
>         document.save(testFilename);
>         document.close();
>         // Decryption with SunJCE works
>         Cipher cipher = Cipher.getInstance(cipherString);
>         System.out.printf("Provider to use for %s decryption: %s\n", cipherString, cipher.getProvider());
>         document = PDDocument.load(new File(testFilename), password);
>         Security.removeProvider("SunJCE");
>         // Decryption with BouncyCastle fails with NPE
>         cipher = Cipher.getInstance(cipherString);
>         System.out.printf("Provider to use for %s decryption: %s\n", cipherString, cipher.getProvider());
>         document = PDDocument.load(new File(testFilename), password);
>     }
> }
> {code}
> {code:title=Output with stacktrace}
> Provider to use for AES/CBC/PKCS5Padding decryption: SunJCE version 1.8
> Provider to use for AES/CBC/PKCS5Padding decryption: BC version 1.54
> Exception in thread "main" java.lang.NullPointerException
> 	at java.io.OutputStream.write(OutputStream.java:75)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.encryptDataAESother(SecurityHandler.java:269)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.encryptData(SecurityHandler.java:152)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decryptString(SecurityHandler.java:532)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decrypt(SecurityHandler.java:391)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decryptDictionary(SecurityHandler.java:512)
> 	at org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decrypt(SecurityHandler.java:399)
> 	at org.apache.pdfbox.pdfparser.COSParser.parseFileObject(COSParser.java:798)
> 	at org.apache.pdfbox.pdfparser.COSParser.parseObjectDynamically(COSParser.java:726)
> 	at org.apache.pdfbox.pdfparser.COSParser.parseObjectDynamically(COSParser.java:657)
> 	at org.apache.pdfbox.pdfparser.COSParser.parseTrailerValuesDynamically(COSParser.java:2092)
> 	at org.apache.pdfbox.pdfparser.PDFParser.initialParse(PDFParser.java:201)
> 	at org.apache.pdfbox.pdfparser.PDFParser.parse(PDFParser.java:249)
> 	at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:891)
> 	at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:831)
> {code}
> This could possibly be fixed with a null check in the SecurityHandler before writing to the OutputStream.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org