unipdf/pdf/model/signature.go

/*
 * This file is subject to the terms and conditions defined in
 * file 'LICENSE.md', which is part of this source code package.
 */

package model

import (
	"github.com/unidoc/unidoc/common"
	"github.com/unidoc/unidoc/pdf/core"
)

// PdfSignature represents a PDF signature dictionary and is used for signing via form signature fields.
// (Section 12.8, Table 252 - Entries in a signature dictionary p. 475 in PDF32000_2008).
type PdfSignature struct {
	container *core.PdfIndirectObject
	// Type: Sig/DocTimeStamp
	Type         *core.PdfObjectName
	Filter       *core.PdfObjectName
	SubFilter    *core.PdfObjectName
	Contents     *core.PdfObjectString
	Cert         core.PdfObject
	ByteRange    *core.PdfObjectArray
	Reference    *core.PdfObjectArray
	Changes      *core.PdfObjectArray
	Name         *core.PdfObjectString
	M            *core.PdfObjectString
	Location     *core.PdfObjectString
	Reason       *core.PdfObjectString
	ContactInfo  *core.PdfObjectString
	R            *core.PdfObjectInteger
	V            *core.PdfObjectInteger
	PropBuild    *core.PdfObjectDictionary
	PropAuthTime *core.PdfObjectInteger
	PropAuthType *core.PdfObjectName
}

// PdfSignatureReference represents a signature reference dictionary.
// (Table 253 - p. 477 in PDF32000_2008).
type PdfSignatureReference struct {
	// Type: SigRef
	TransformMethod *core.PdfObjectName
	TransformParams *core.PdfObjectDictionary
	Data            core.PdfObject
	DigestMethod    *core.PdfObjectName
}

// GetContainingPdfObject implements interface PdfModel.
func (sig *PdfSignature) GetContainingPdfObject() core.PdfObject {
	return sig.container
}

// ToPdfObject implements interface PdfModel.
func (sig *PdfSignature) ToPdfObject() core.PdfObject {
	container := sig.container
	dict := container.PdfObject.(*core.PdfObjectDictionary)

	dict.Set("Type", sig.Type)

	if sig.Filter != nil {
		dict.Set("Filter", sig.Filter)
	}
	if sig.SubFilter != nil {
		dict.Set("SubFilter", sig.SubFilter)
	}
	if sig.Contents != nil {
		dict.Set("Contents", sig.Contents)
	}
	if sig.Cert != nil {
		dict.Set("Cert", sig.Cert)
	}
	if sig.ByteRange != nil {
		dict.Set("ByteRange", sig.ByteRange)
	}
	if sig.Reference != nil {
		dict.Set("Reference", sig.Reference)
	}
	if sig.Changes != nil {
		dict.Set("Changes", sig.Changes)
	}
	if sig.Name != nil {
		dict.Set("Name", sig.Name)
	}
	if sig.M != nil {
		dict.Set("M", sig.M)
	}
	if sig.Reason != nil {
		dict.Set("Reason", sig.Reason)
	}
	if sig.ContactInfo != nil {
		dict.Set("ContactInfo", sig.ContactInfo)
	}

	// FIXME: ByteRange and Contents need to be updated dynamically.
	return container
}

// newPdfSignatureFromIndirect loads a PdfSignature from an indirect object containing the signature dictionary.
func (r *PdfReader) newPdfSignatureFromIndirect(container *core.PdfIndirectObject) (*PdfSignature, error) {
	dict, ok := container.PdfObject.(*core.PdfObjectDictionary)
	if !ok {
		common.Log.Debug("ERROR: Signature container not containing a dictionary")
		return nil, ErrTypeCheck
	}

	// If PdfSignature already processed and cached, return the cached entry.
	if sig, cached := r.modelManager.GetModelFromPrimitive(container).(*PdfSignature); cached {
		return sig, nil
	}

	sig := &PdfSignature{}
	sig.container = container

	sig.Type, ok = core.GetName(dict.Get("Type"))
	if !ok {
		common.Log.Error("ERROR: Signature Type attribute invalid or missing")
		return nil, ErrInvalidAttribute
	}

	sig.Filter, ok = core.GetName(dict.Get("Filter"))
	if !ok {
		common.Log.Error("ERROR: Signature Filter attribute invalid or missing")
		return nil, ErrInvalidAttribute
	}

	sig.SubFilter, _ = core.GetName(dict.Get("SubFilter"))

	sig.Contents, ok = core.GetString(dict.Get("Contents"))
	if !ok {
		common.Log.Error("ERROR: Signature contents missing")
		return nil, ErrInvalidAttribute
	}

	sig.Cert = dict.Get("Cert")
	sig.ByteRange, _ = core.GetArray(dict.Get("ByteRange"))
	sig.Reference, _ = core.GetArray(dict.Get("Reference"))
	sig.Changes, _ = core.GetArray(dict.Get("Changes"))
	sig.Name, _ = core.GetString(dict.Get("Name"))
	sig.M, _ = core.GetString(dict.Get("M"))
	sig.Location, _ = core.GetString(dict.Get("Location"))
	sig.Reason, _ = core.GetString(dict.Get("Reason"))
	sig.ContactInfo, _ = core.GetString(dict.Get("ContactInfo"))
	sig.R, _ = core.GetInt(dict.Get("R"))
	sig.V, _ = core.GetInt(dict.Get("V"))
	sig.PropBuild, _ = core.GetDict(dict.Get("Prop_Build"))
	sig.PropAuthTime, _ = core.GetInt(dict.Get("Prop_AuthTime"))
	sig.PropAuthType, _ = core.GetName(dict.Get("Prop_AuthType"))

	return sig, nil
}

// PdfSignatureField represents a form field that contains a digital signature.
// (12.7.4.5 - Signature Fields p. 454 in PDF32000_2008).
//
// The signature form field serves two primary purposes. 1. Define the form field that will provide the
// visual signing properties for display but may also hold information needed when the actual signing
// takes place such as signature method. This carries information from the author of the document to the
// software that later does signing.
//
// Filling in (signing) the signature field entails updating at least the V entry and usually the AP entry of the
// associated widget annotation. (Exporting a signature field exports the T, V, AP entries)
//
// The annotation rectangle (Rect) in such a dictionary shall give the position of the field on its page. Signature
// fields that are not intended to be visible shall have an annotation rectangle that has zero height and width. PDF
// processors shall treat such signatures as not visible. PDF processors shall also treat signatures as not
// visible if either the Hidden bit or the NoView bit of the F entry is true
//
// The location of a signature within a document can have a bearing on its legal meaning. For this reason,
// signature fields shall never refer to more than one annotation.
type PdfSignatureField struct {
	container *core.PdfIndirectObject

	V *PdfSignature
	// Type: /Sig
	// V: *PdfSignature...
	Lock *core.PdfIndirectObject // Shall be an indirect reference.
	SV   *core.PdfIndirectObject // Shall be an indirect reference.
}

// NewPdfSignatureField prepares a PdfSignatureField from a PdfSignature.
func NewPdfSignatureField(signature *PdfSignature) *PdfSignatureField {
	return &PdfSignatureField{
		V:         signature,
		container: core.MakeIndirectObject(core.MakeDict()),
	}
}

// ToPdfObject implements interface PdfModel.
func (sf *PdfSignatureField) ToPdfObject() core.PdfObject {
	container := sf.container
	dict := container.PdfObject.(*core.PdfObjectDictionary)

	dict.Set("FT", core.MakeName("Sig"))

	if sf.V != nil {
		dict.Set("V", sf.V.ToPdfObject())
	}
	if sf.Lock != nil {
		dict.Set("Lock", sf.Lock)
	}
	if sf.SV != nil {
		dict.Set("SV", sf.SV)
	}
	// Other standard fields...

	return container
}

// PdfSignatureFieldLock represents signature field lock dictionary.
// (Table 233 - p. 455 in PDF32000_2008).
type PdfSignatureFieldLock struct {
	Type   core.PdfObject
	Action *core.PdfObjectName
	Fields *core.PdfObjectArray
	P      *core.PdfObjectInteger
}

// PdfSignatureFieldSeed represents signature field seed value dictionary.
// (Table 234 - p. 455 in PDF32000_2008).
type PdfSignatureFieldSeed struct {
	// Type
	Ff               *core.PdfObjectInteger
	Filter           *core.PdfObjectName
	SubFilter        *core.PdfObjectArray
	DigestMethod     *core.PdfObjectArray
	V                *core.PdfObjectInteger
	Cert             core.PdfObject
	Reasons          *core.PdfObjectArray
	MDP              *core.PdfObjectDictionary
	TimeStamp        *core.PdfObjectDictionary
	LegalAttestation *core.PdfObjectArray
	AddRevInfo       *core.PdfObjectBool
	LockDocument     *core.PdfObjectName
	AppearanceFilter *core.PdfObjectString
}

// PdfCertificateSeed represents certificate seed value dictionary.
// (Table 235 - p. 457 in PDF32000_2008).
type PdfCertificateSeed struct {
	// Type
	Ff                            *core.PdfObjectInteger
	Subject                       *core.PdfObjectArray
	SignaturePolicyOID            *core.PdfObjectString
	SignaturePolicyHashValue      *core.PdfObjectString
	SignaturePolicyHashAlgorithm  *core.PdfObjectName
	SignaturePolicyCommitmentType *core.PdfObjectArray
	SubjectDN                     *core.PdfObjectArray
	KeyUsage                      *core.PdfObjectArray
	Issuer                        *core.PdfObjectArray
	OID                           *core.PdfObjectArray
	URL                           *core.PdfObjectString
	URLType                       *core.PdfObjectName
}
Initial import of signature models 2018-08-14 17:29:19 +00:00			`/*`
			`* This file is subject to the terms and conditions defined in`
			`* file 'LICENSE.md', which is part of this source code package.`
			`*/`

			`package model`

Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`import (`
			`"github.com/unidoc/unidoc/common"`
			`"github.com/unidoc/unidoc/pdf/core"`
			`)`
Initial import of signature models 2018-08-14 17:29:19 +00:00
			`// PdfSignature represents a PDF signature dictionary and is used for signing via form signature fields.`
Add ToInt64Slice convenience function to PdfObjectArray 2018-08-15 11:33:48 +00:00			`// (Section 12.8, Table 252 - Entries in a signature dictionary p. 475 in PDF32000_2008).`
Initial import of signature models 2018-08-14 17:29:19 +00:00			`type PdfSignature struct {`
			`container *core.PdfIndirectObject`
Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`// Type: Sig/DocTimeStamp`
Addressing PR 238 review comments 2018-10-23 12:03:47 +00:00			`Type *core.PdfObjectName`
			`Filter *core.PdfObjectName`
			`SubFilter *core.PdfObjectName`
			`Contents *core.PdfObjectString`
			`Cert core.PdfObject`
			`ByteRange *core.PdfObjectArray`
			`Reference *core.PdfObjectArray`
			`Changes *core.PdfObjectArray`
			`Name *core.PdfObjectString`
			`M *core.PdfObjectString`
			`Location *core.PdfObjectString`
			`Reason *core.PdfObjectString`
			`ContactInfo *core.PdfObjectString`
			`R *core.PdfObjectInteger`
			`V *core.PdfObjectInteger`
			`PropBuild *core.PdfObjectDictionary`
			`PropAuthTime *core.PdfObjectInteger`
			`PropAuthType *core.PdfObjectName`
Initial import of signature models 2018-08-14 17:29:19 +00:00			`}`

			`// PdfSignatureReference represents a signature reference dictionary.`
			`// (Table 253 - p. 477 in PDF32000_2008).`
			`type PdfSignatureReference struct {`
			`// Type: SigRef`
			`TransformMethod *core.PdfObjectName`
			`TransformParams *core.PdfObjectDictionary`
			`Data core.PdfObject`
			`DigestMethod *core.PdfObjectName`
			`}`

Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`// GetContainingPdfObject implements interface PdfModel.`
			`func (sig *PdfSignature) GetContainingPdfObject() core.PdfObject {`
			`return sig.container`
			`}`

Initial import of signature models 2018-08-14 17:29:19 +00:00			`// ToPdfObject implements interface PdfModel.`
			`func (sig *PdfSignature) ToPdfObject() core.PdfObject {`
			`container := sig.container`
			`dict := container.PdfObject.(*core.PdfObjectDictionary)`

Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`dict.Set("Type", sig.Type)`
Initial import of signature models 2018-08-14 17:29:19 +00:00
			`if sig.Filter != nil {`
			`dict.Set("Filter", sig.Filter)`
			`}`
			`if sig.SubFilter != nil {`
			`dict.Set("SubFilter", sig.SubFilter)`
			`}`
			`if sig.Contents != nil {`
			`dict.Set("Contents", sig.Contents)`
			`}`
			`if sig.Cert != nil {`
			`dict.Set("Cert", sig.Cert)`
			`}`
			`if sig.ByteRange != nil {`
			`dict.Set("ByteRange", sig.ByteRange)`
			`}`
			`if sig.Reference != nil {`
			`dict.Set("Reference", sig.Reference)`
			`}`
			`if sig.Changes != nil {`
			`dict.Set("Changes", sig.Changes)`
			`}`
			`if sig.Name != nil {`
			`dict.Set("Name", sig.Name)`
			`}`
			`if sig.M != nil {`
			`dict.Set("M", sig.M)`
			`}`
			`if sig.Reason != nil {`
			`dict.Set("Reason", sig.Reason)`
			`}`
			`if sig.ContactInfo != nil {`
			`dict.Set("ContactInfo", sig.ContactInfo)`
			`}`

don't use XXX for TODOs 2018-12-09 21:37:27 +02:00			`// FIXME: ByteRange and Contents need to be updated dynamically.`
Initial import of signature models 2018-08-14 17:29:19 +00:00			`return container`
			`}`

Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`// newPdfSignatureFromIndirect loads a PdfSignature from an indirect object containing the signature dictionary.`
			`func (r PdfReader) newPdfSignatureFromIndirect(container core.PdfIndirectObject) (*PdfSignature, error) {`
			`dict, ok := container.PdfObject.(*core.PdfObjectDictionary)`
			`if !ok {`
			`common.Log.Debug("ERROR: Signature container not containing a dictionary")`
			`return nil, ErrTypeCheck`
			`}`

			`// If PdfSignature already processed and cached, return the cached entry.`
			`if sig, cached := r.modelManager.GetModelFromPrimitive(container).(*PdfSignature); cached {`
			`return sig, nil`
			`}`

			`sig := &PdfSignature{}`
			`sig.container = container`

			`sig.Type, ok = core.GetName(dict.Get("Type"))`
			`if !ok {`
			`common.Log.Error("ERROR: Signature Type attribute invalid or missing")`
			`return nil, ErrInvalidAttribute`
			`}`

			`sig.Filter, ok = core.GetName(dict.Get("Filter"))`
			`if !ok {`
			`common.Log.Error("ERROR: Signature Filter attribute invalid or missing")`
			`return nil, ErrInvalidAttribute`
			`}`

			`sig.SubFilter, _ = core.GetName(dict.Get("SubFilter"))`

			`sig.Contents, ok = core.GetString(dict.Get("Contents"))`
			`if !ok {`
			`common.Log.Error("ERROR: Signature contents missing")`
			`return nil, ErrInvalidAttribute`
			`}`

			`sig.Cert = dict.Get("Cert")`
			`sig.ByteRange, _ = core.GetArray(dict.Get("ByteRange"))`
			`sig.Reference, _ = core.GetArray(dict.Get("Reference"))`
			`sig.Changes, _ = core.GetArray(dict.Get("Changes"))`
			`sig.Name, _ = core.GetString(dict.Get("Name"))`
			`sig.M, _ = core.GetString(dict.Get("M"))`
			`sig.Location, _ = core.GetString(dict.Get("Location"))`
			`sig.Reason, _ = core.GetString(dict.Get("Reason"))`
			`sig.ContactInfo, _ = core.GetString(dict.Get("ContactInfo"))`
			`sig.R, _ = core.GetInt(dict.Get("R"))`
			`sig.V, _ = core.GetInt(dict.Get("V"))`
Addressing PR 238 review comments 2018-10-23 12:03:47 +00:00			`sig.PropBuild, _ = core.GetDict(dict.Get("Prop_Build"))`
			`sig.PropAuthTime, _ = core.GetInt(dict.Get("Prop_AuthTime"))`
			`sig.PropAuthType, _ = core.GetName(dict.Get("Prop_AuthType"))`
Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00
			`return sig, nil`
			`}`

Initial import of signature models 2018-08-14 17:29:19 +00:00			`// PdfSignatureField represents a form field that contains a digital signature.`
Clean up validation code and loading of signature dictionary as model 2018-08-16 17:39:51 +00:00			`// (12.7.4.5 - Signature Fields p. 454 in PDF32000_2008).`
Initial import of signature models 2018-08-14 17:29:19 +00:00			`//`
			`// The signature form field serves two primary purposes. 1. Define the form field that will provide the`
			`// visual signing properties for display but may also hold information needed when the actual signing`
			`// takes place such as signature method. This carries information from the author of the document to the`
			`// software that later does signing.`
			`//`
			`// Filling in (signing) the signature field entails updating at least the V entry and usually the AP entry of the`
			`// associated widget annotation. (Exporting a signature field exports the T, V, AP entries)`
			`//`
			`// The annotation rectangle (Rect) in such a dictionary shall give the position of the field on its page. Signature`
			`// fields that are not intended to be visible shall have an annotation rectangle that has zero height and width. PDF`
			`// processors shall treat such signatures as not visible. PDF processors shall also treat signatures as not`
			`// visible if either the Hidden bit or the NoView bit of the F entry is true`
			`//`
			`// The location of a signature within a document can have a bearing on its legal meaning. For this reason,`
			`// signature fields shall never refer to more than one annotation.`
			`type PdfSignatureField struct {`
			`container *core.PdfIndirectObject`

			`V *PdfSignature`
			`// Type: /Sig`
			`// V: *PdfSignature...`
			`Lock *core.PdfIndirectObject // Shall be an indirect reference.`
			`SV *core.PdfIndirectObject // Shall be an indirect reference.`
			`}`

			`// NewPdfSignatureField prepares a PdfSignatureField from a PdfSignature.`
			`func NewPdfSignatureField(signature PdfSignature) PdfSignatureField {`
Addressing PR 238 review comments 2018-10-23 11:43:02 +00:00			`return &PdfSignatureField{`
			`V: signature,`
			`container: core.MakeIndirectObject(core.MakeDict()),`
			`}`
Initial import of signature models 2018-08-14 17:29:19 +00:00			`}`

			`// ToPdfObject implements interface PdfModel.`
			`func (sf *PdfSignatureField) ToPdfObject() core.PdfObject {`
			`container := sf.container`
			`dict := container.PdfObject.(*core.PdfObjectDictionary)`

			`dict.Set("FT", core.MakeName("Sig"))`

			`if sf.V != nil {`
			`dict.Set("V", sf.V.ToPdfObject())`
			`}`
			`if sf.Lock != nil {`
			`dict.Set("Lock", sf.Lock)`
			`}`
			`if sf.SV != nil {`
			`dict.Set("SV", sf.SV)`
			`}`
			`// Other standard fields...`

			`return container`
			`}`

			`// PdfSignatureFieldLock represents signature field lock dictionary.`
			`// (Table 233 - p. 455 in PDF32000_2008).`
			`type PdfSignatureFieldLock struct {`
			`Type core.PdfObject`
			`Action *core.PdfObjectName`
			`Fields *core.PdfObjectArray`
			`P *core.PdfObjectInteger`
			`}`

			`// PdfSignatureFieldSeed represents signature field seed value dictionary.`
			`// (Table 234 - p. 455 in PDF32000_2008).`
			`type PdfSignatureFieldSeed struct {`
			`// Type`
			`Ff *core.PdfObjectInteger`
			`Filter *core.PdfObjectName`
			`SubFilter *core.PdfObjectArray`
			`DigestMethod *core.PdfObjectArray`
			`V *core.PdfObjectInteger`
			`Cert core.PdfObject`
			`Reasons *core.PdfObjectArray`
			`MDP *core.PdfObjectDictionary`
			`TimeStamp *core.PdfObjectDictionary`
			`LegalAttestation *core.PdfObjectArray`
			`AddRevInfo *core.PdfObjectBool`
			`LockDocument *core.PdfObjectName`
			`AppearanceFilter *core.PdfObjectString`
			`}`

			`// PdfCertificateSeed represents certificate seed value dictionary.`
			`// (Table 235 - p. 457 in PDF32000_2008).`
			`type PdfCertificateSeed struct {`
			`// Type`
			`Ff *core.PdfObjectInteger`
			`Subject *core.PdfObjectArray`
			`SignaturePolicyOID *core.PdfObjectString`
			`SignaturePolicyHashValue *core.PdfObjectString`
			`SignaturePolicyHashAlgorithm *core.PdfObjectName`
			`SignaturePolicyCommitmentType *core.PdfObjectArray`
			`SubjectDN *core.PdfObjectArray`
			`KeyUsage *core.PdfObjectArray`
			`Issuer *core.PdfObjectArray`
			`OID *core.PdfObjectArray`
			`URL *core.PdfObjectString`
			`URLType *core.PdfObjectName`
			`}`