You are viewing a plain text version of this content. The canonical link for it is here.
Posted to dev@pdfbox.apache.org by "Moritz Flöter (Jira)" <ji...@apache.org> on 2021/11/04 15:07:00 UTC
[jira] [Created] (PDFBOX-5312) Decryption for V4 fails when no
Length entry is set in Encryption Dictionary
Moritz Flöter created PDFBOX-5312:
-------------------------------------
Summary: Decryption for V4 fails when no Length entry is set in Encryption Dictionary
Key: PDFBOX-5312
URL: https://issues.apache.org/jira/browse/PDFBOX-5312
Project: PDFBox
Issue Type: Bug
Reporter: Moritz Flöter
Attachments: ausdat.pdf
The PDF standard defines the "Length" entry in the encryption dictionary to only have an effect in V2 or V3.
However, PDFBox relies on that value for V4 as well and fails to decrypt files that do not define this length entry. It does not consider the entry in the crypt filte dictionary instead:
<</StdCF
<</CFM
/AESV2/Length
16>>>>
It should be noted that Adobe Acrobat generates files with the required "Length" entry in the encryption dictionary even when V4 is used. It would however be desirable for PDFBox to also handle other output that conforms to the PDF-Standard.
I attached a file that is encrypted with an empty password and fails to be decrypted by pdfbox. However, you can open it with SumatraPDF, Acrobat Reader, Okular etc. (ignore the text on the actual page of the pdf-file ... our application read an RC4 file and wrote the output as AES 128Bit)
--
This message was sent by Atlassian Jira
(v8.3.4#803005)
---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscribe@pdfbox.apache.org
For additional commands, e-mail: dev-help@pdfbox.apache.org