unipdf/pdf/crypt_test.go

/*
 * This file is subject to the terms and conditions defined in
 * file 'LICENSE.md', which is part of this source code package.
 */

// Test the PDF crypt support.

package pdf

import (
	"fmt"
	"testing"

	"github.com/unidoc/unidoc/common"
)

func init() {
	common.SetLogger(common.ConsoleLogger{})
}

func TestPadding(t *testing.T) {
	crypter := PdfCrypt{}

	// Case 1 empty pass, should match padded string.
	key := crypter.paddedPass([]byte(""))
	if len(key) != 32 {
		t.Errorf("Fail, expected padded pass length = 32 (%d)", len(key))
	}
	if key[0] != 0x28 {
		t.Errorf("key[0] != 0x28 (%q in %q)", key[0], key)
	}
	if key[31] != 0x7A {
		t.Errorf("key[31] != 0x7A (%q in %q)", key[31], key)
	}

	// Case 2, non empty pass.
	key = crypter.paddedPass([]byte("bla"))
	if len(key) != 32 {
		t.Errorf("Fail, expected padded pass length = 32 (%d)", len(key))
	}
	if string(key[0:3]) != "bla" {
		t.Errorf("Expecting start with bla (%s)", key)
	}
	if key[3] != 0x28 {
		t.Errorf("key[3] != 0x28 (%q in %q)", key[3], key)
	}
	if key[31] != 0x64 {
		t.Errorf("key[31] != 0x64 (%q in %q)", key[31], key)
	}
}

// Test algorithm 2.
func TestAlg2(t *testing.T) {
	crypter := PdfCrypt{}
	crypter.V = 2
	crypter.R = 3
	crypter.P = -3904
	crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,
		0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})
	crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,
		0x5C, 0x72, 0x64, 0xA9, 0x5C, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,
		0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,
		0x72, 0x6A, 0x8C, 0xDB}
	crypter.length = 128
	crypter.encryptMetadata = true

	key := crypter.alg2([]byte(""))

	keyExp := []byte{0xf8, 0x94, 0x9c, 0x5a, 0xf5, 0xa0, 0xc0, 0xca,
		0x30, 0xb8, 0x91, 0xc1, 0xbb, 0x2c, 0x4f, 0xf5}

	if string(key) != string(keyExp) {
		fmt.Printf("   Key (%d): % x\n", len(key), key)
		fmt.Printf("KeyExp (%d): % x\n", len(keyExp), keyExp)
		t.Errorf("alg2 -> key != expected\n")
	}

}

// Test algorithm 3.
func TestAlg3(t *testing.T) {
	crypter := PdfCrypt{}
	crypter.V = 2
	crypter.R = 3
	crypter.P = -3904
	crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,
		0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})
	Oexp := []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,
		0x0d, 0x64, 0xA9, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,
		0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,
		0x72, 0x6A, 0x8C, 0xDB}
	crypter.length = 128
	crypter.encryptMetadata = true

	O, err := crypter.alg3([]byte(""), []byte("test"))
	if err != nil {
		t.Errorf("crypt alg3 error %s", err)
		return
	}

	if string(O) != string(Oexp) {
		fmt.Printf("   O (%d): % x\n", len(O), O)
		fmt.Printf("Oexp (%d): % x\n", len(Oexp), Oexp)
		t.Errorf("alg3 -> key != expected\n")
	}
}

// Test algorithm 5 for computing dictionary's U (user password) value
// valid for R >= 3.
func TestAlg5(t *testing.T) {
	crypter := PdfCrypt{}
	crypter.V = 2
	crypter.R = 3
	crypter.P = -3904
	crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,
		0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})
	crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,
		0x5C, 0x72, 0x64, 0xA9, 0x5C, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,
		0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,
		0x72, 0x6A, 0x8C, 0xDB}
	crypter.length = 128
	crypter.encryptMetadata = true

	U, _, err := crypter.alg5([]byte(""))
	if err != nil {
		t.Errorf("Error %s", err)
		return
	}

	Uexp := []byte{0x59, 0x66, 0x38, 0x6c, 0x76, 0xfe, 0x95, 0x7d, 0x3d,
		0x0d, 0x14, 0x3d, 0x36, 0xfd, 0x01, 0x3d, 0x00, 0x00, 0x00, 0x00,
		0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00}

	if string(U[0:16]) != string(Uexp[0:16]) {
		common.Log.Info("   U (%d): % x\n", len(U), U)
		common.Log.Info("Uexp (%d): % x\n", len(Uexp), Uexp)
		t.Errorf("U != expected\n")
	}
}

// Test decrypting. Example with V=2, R=3, using standard algorithm.
func TestDecryption1(t *testing.T) {
	crypter := PdfCrypt{}
	crypter.decryptedObjects = map[PdfObject]bool{}
	// Default algorithm is V2 (RC4).
	crypter.cryptFilters = CryptFilters{}
	crypter.cryptFilters["Default"] = CryptFilter{cfm: "V2", length: crypter.length}
	crypter.V = 2
	crypter.R = 3
	crypter.P = -3904
	crypter.id0 = string([]byte{0x5f, 0x91, 0xff, 0xf2, 0x00, 0x88, 0x13,
		0x5f, 0x30, 0x24, 0xd1, 0x0f, 0x28, 0x31, 0xc6, 0xfa})
	crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,
		0x0d, 0x64, 0xA9, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,
		0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,
		0x72, 0x6A, 0x8C, 0xDB}
	crypter.U = []byte{0xED, 0x5B, 0xA7, 0x76, 0xFD, 0xD8, 0xE3, 0x89,
		0x4F, 0x54, 0x05, 0xC1, 0x3B, 0xFD, 0x86, 0xCF, 0x00, 0x00, 0x00,
		0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,
		0x00, 0x00}
	crypter.length = 128
	crypter.encryptMetadata = true

	streamData := []byte{0xBC, 0x89, 0x86, 0x8B, 0x3E, 0xCF, 0x24, 0x1C,
		0xC4, 0x88, 0xF3, 0x60, 0x74, 0x8A, 0x22, 0xE3, 0xAD, 0xF4, 0x48,
		0x8E, 0x20, 0x94, 0x06, 0x4B, 0x4B, 0xB5, 0x3E, 0x93, 0x89, 0x4E,
		0x32, 0x38, 0xB4, 0xF6, 0x05, 0x3C, 0x5D, 0x0C, 0x12, 0xE4, 0xEB,
		0x9B, 0x8D, 0x26, 0x32, 0x7B, 0x09, 0x97, 0xA1, 0xC5, 0x98, 0xF6,
		0xE7, 0x1C, 0x3B}

	// Plain text stream (hello world).
	exp := []byte{0x20, 0x20, 0x42, 0x54, 0x0A, 0x20, 0x20, 0x20, 0x20,
		0x2F, 0x46, 0x31, 0x20, 0x31, 0x38, 0x20, 0x54, 0x66, 0x0A, 0x20,
		0x20, 0x20, 0x20, 0x30, 0x20, 0x30, 0x20, 0x54, 0x64, 0x0A, 0x20,
		0x20, 0x20, 0x20, 0x28, 0x48, 0x65, 0x6C, 0x6C, 0x6F, 0x20, 0x57,
		0x6F, 0x72, 0x6C, 0x64, 0x29, 0x20, 0x54, 0x6A, 0x0A, 0x20, 0x20,
		0x45, 0x54}
	rawText := "2 0 obj\n<< /Length 55 >>\nstream\n" + string(streamData) + "\nendstream\n"

	parser := PdfParser{}
	parser.xrefs = make(XrefTable)
	parser.objstms = make(ObjectStreams)
	parser.reader = makeReaderForText(rawText)
	parser.crypter = &crypter

	obj, err := parser.parseIndirectObject()
	if err != nil {
		t.Errorf("Error parsing object")
		return
	}

	so, ok := obj.(*PdfObjectStream)
	if !ok {
		t.Errorf("Should be stream (is %q)", obj)
		return
	}

	authenticated, err := parser.Decrypt([]byte(""))
	if err != nil {
		t.Errorf("Error authenticating")
		return
	}
	if !authenticated {
		t.Errorf("Failed to authenticate")
		return
	}

	parser.crypter.Decrypt(so, 0, 0)
	if string(so.Stream) != string(exp) {
		t.Errorf("Stream content wrong")
		return
	}
}
Init Signed-off-by: Alfred Hall <ahall@ahall.org> 2016-07-09 14:09:27 +00:00			`/*`
			`* This file is subject to the terms and conditions defined in`
Revised licensing. 2016-07-29 17:23:39 +00:00			`* file 'LICENSE.md', which is part of this source code package.`
Init Signed-off-by: Alfred Hall <ahall@ahall.org> 2016-07-09 14:09:27 +00:00			`*/`

			`// Test the PDF crypt support.`

			`package pdf`

			`import (`
			`"fmt"`
			`"testing"`
Fixing the logger. 2016-07-17 19:59:17 +00:00
			`"github.com/unidoc/unidoc/common"`
Init Signed-off-by: Alfred Hall <ahall@ahall.org> 2016-07-09 14:09:27 +00:00			`)`

Fixing the logger. 2016-07-17 19:59:17 +00:00			`func init() {`
			`common.SetLogger(common.ConsoleLogger{})`
			`}`

Init Signed-off-by: Alfred Hall <ahall@ahall.org> 2016-07-09 14:09:27 +00:00			`func TestPadding(t *testing.T) {`
			`crypter := PdfCrypt{}`

			`// Case 1 empty pass, should match padded string.`
			`key := crypter.paddedPass([]byte(""))`
			`if len(key) != 32 {`
			`t.Errorf("Fail, expected padded pass length = 32 (%d)", len(key))`
			`}`
			`if key[0] != 0x28 {`
			`t.Errorf("key[0] != 0x28 (%q in %q)", key[0], key)`
			`}`
			`if key[31] != 0x7A {`
			`t.Errorf("key[31] != 0x7A (%q in %q)", key[31], key)`
			`}`

			`// Case 2, non empty pass.`
			`key = crypter.paddedPass([]byte("bla"))`
			`if len(key) != 32 {`
			`t.Errorf("Fail, expected padded pass length = 32 (%d)", len(key))`
			`}`
			`if string(key[0:3]) != "bla" {`
			`t.Errorf("Expecting start with bla (%s)", key)`
			`}`
			`if key[3] != 0x28 {`
			`t.Errorf("key[3] != 0x28 (%q in %q)", key[3], key)`
			`}`
			`if key[31] != 0x64 {`
			`t.Errorf("key[31] != 0x64 (%q in %q)", key[31], key)`
			`}`
			`}`

			`// Test algorithm 2.`
			`func TestAlg2(t *testing.T) {`
			`crypter := PdfCrypt{}`
			`crypter.V = 2`
			`crypter.R = 3`
			`crypter.P = -3904`
			`crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,`
			`0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})`
			`crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,`
			`0x5C, 0x72, 0x64, 0xA9, 0x5C, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,`
			`0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,`
			`0x72, 0x6A, 0x8C, 0xDB}`
			`crypter.length = 128`
			`crypter.encryptMetadata = true`

			`key := crypter.alg2([]byte(""))`

			`keyExp := []byte{0xf8, 0x94, 0x9c, 0x5a, 0xf5, 0xa0, 0xc0, 0xca,`
			`0x30, 0xb8, 0x91, 0xc1, 0xbb, 0x2c, 0x4f, 0xf5}`

			`if string(key) != string(keyExp) {`
			`fmt.Printf(" Key (%d): % x\n", len(key), key)`
			`fmt.Printf("KeyExp (%d): % x\n", len(keyExp), keyExp)`
			`t.Errorf("alg2 -> key != expected\n")`
			`}`

			`}`

			`// Test algorithm 3.`
			`func TestAlg3(t *testing.T) {`
			`crypter := PdfCrypt{}`
			`crypter.V = 2`
			`crypter.R = 3`
			`crypter.P = -3904`
			`crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,`
			`0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})`
			`Oexp := []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,`
			`0x0d, 0x64, 0xA9, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,`
			`0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,`
			`0x72, 0x6A, 0x8C, 0xDB}`
			`crypter.length = 128`
			`crypter.encryptMetadata = true`

			`O, err := crypter.alg3([]byte(""), []byte("test"))`
			`if err != nil {`
			`t.Errorf("crypt alg3 error %s", err)`
			`return`
			`}`

			`if string(O) != string(Oexp) {`
			`fmt.Printf(" O (%d): % x\n", len(O), O)`
			`fmt.Printf("Oexp (%d): % x\n", len(Oexp), Oexp)`
			`t.Errorf("alg3 -> key != expected\n")`
			`}`
			`}`

			`// Test algorithm 5 for computing dictionary's U (user password) value`
			`// valid for R >= 3.`
			`func TestAlg5(t *testing.T) {`
			`crypter := PdfCrypt{}`
			`crypter.V = 2`
			`crypter.R = 3`
			`crypter.P = -3904`
			`crypter.id0 = string([]byte{0x4e, 0x00, 0x99, 0xe5, 0x36, 0x78, 0x93, 0x24,`
			`0xff, 0xd5, 0x82, 0xe4, 0xec, 0x0e, 0xa3, 0xb4})`
			`crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,`
			`0x5C, 0x72, 0x64, 0xA9, 0x5C, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,`
			`0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,`
			`0x72, 0x6A, 0x8C, 0xDB}`
			`crypter.length = 128`
			`crypter.encryptMetadata = true`

			`U, _, err := crypter.alg5([]byte(""))`
			`if err != nil {`
			`t.Errorf("Error %s", err)`
			`return`
			`}`

			`Uexp := []byte{0x59, 0x66, 0x38, 0x6c, 0x76, 0xfe, 0x95, 0x7d, 0x3d,`
			`0x0d, 0x14, 0x3d, 0x36, 0xfd, 0x01, 0x3d, 0x00, 0x00, 0x00, 0x00,`
			`0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00}`

			`if string(U[0:16]) != string(Uexp[0:16]) {`
Fixing the logger. 2016-07-17 19:59:17 +00:00			`common.Log.Info(" U (%d): % x\n", len(U), U)`
			`common.Log.Info("Uexp (%d): % x\n", len(Uexp), Uexp)`
Init Signed-off-by: Alfred Hall <ahall@ahall.org> 2016-07-09 14:09:27 +00:00			`t.Errorf("U != expected\n")`
			`}`
			`}`

			`// Test decrypting. Example with V=2, R=3, using standard algorithm.`
			`func TestDecryption1(t *testing.T) {`
			`crypter := PdfCrypt{}`
			`crypter.decryptedObjects = map[PdfObject]bool{}`
			`// Default algorithm is V2 (RC4).`
			`crypter.cryptFilters = CryptFilters{}`
			`crypter.cryptFilters["Default"] = CryptFilter{cfm: "V2", length: crypter.length}`
			`crypter.V = 2`
			`crypter.R = 3`
			`crypter.P = -3904`
			`crypter.id0 = string([]byte{0x5f, 0x91, 0xff, 0xf2, 0x00, 0x88, 0x13,`
			`0x5f, 0x30, 0x24, 0xd1, 0x0f, 0x28, 0x31, 0xc6, 0xfa})`
			`crypter.O = []byte{0xE6, 0x00, 0xEC, 0xC2, 0x02, 0x88, 0xAD, 0x8B,`
			`0x0d, 0x64, 0xA9, 0x29, 0xC6, 0xA8, 0x3E, 0xE2, 0x51,`
			`0x76, 0x79, 0xAA, 0x02, 0x18, 0xBE, 0xCE, 0xEA, 0x8B, 0x79, 0x86,`
			`0x72, 0x6A, 0x8C, 0xDB}`
			`crypter.U = []byte{0xED, 0x5B, 0xA7, 0x76, 0xFD, 0xD8, 0xE3, 0x89,`
			`0x4F, 0x54, 0x05, 0xC1, 0x3B, 0xFD, 0x86, 0xCF, 0x00, 0x00, 0x00,`
			`0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00, 0x00,`
			`0x00, 0x00}`
			`crypter.length = 128`
			`crypter.encryptMetadata = true`

			`streamData := []byte{0xBC, 0x89, 0x86, 0x8B, 0x3E, 0xCF, 0x24, 0x1C,`
			`0xC4, 0x88, 0xF3, 0x60, 0x74, 0x8A, 0x22, 0xE3, 0xAD, 0xF4, 0x48,`
			`0x8E, 0x20, 0x94, 0x06, 0x4B, 0x4B, 0xB5, 0x3E, 0x93, 0x89, 0x4E,`
			`0x32, 0x38, 0xB4, 0xF6, 0x05, 0x3C, 0x5D, 0x0C, 0x12, 0xE4, 0xEB,`
			`0x9B, 0x8D, 0x26, 0x32, 0x7B, 0x09, 0x97, 0xA1, 0xC5, 0x98, 0xF6,`
			`0xE7, 0x1C, 0x3B}`

			`// Plain text stream (hello world).`
			`exp := []byte{0x20, 0x20, 0x42, 0x54, 0x0A, 0x20, 0x20, 0x20, 0x20,`
			`0x2F, 0x46, 0x31, 0x20, 0x31, 0x38, 0x20, 0x54, 0x66, 0x0A, 0x20,`
			`0x20, 0x20, 0x20, 0x30, 0x20, 0x30, 0x20, 0x54, 0x64, 0x0A, 0x20,`
			`0x20, 0x20, 0x20, 0x28, 0x48, 0x65, 0x6C, 0x6C, 0x6F, 0x20, 0x57,`
			`0x6F, 0x72, 0x6C, 0x64, 0x29, 0x20, 0x54, 0x6A, 0x0A, 0x20, 0x20,`
			`0x45, 0x54}`
			`rawText := "2 0 obj\n<< /Length 55 >>\nstream\n" + string(streamData) + "\nendstream\n"`

			`parser := PdfParser{}`
			`parser.xrefs = make(XrefTable)`
			`parser.objstms = make(ObjectStreams)`
			`parser.reader = makeReaderForText(rawText)`
			`parser.crypter = &crypter`

			`obj, err := parser.parseIndirectObject()`
			`if err != nil {`
			`t.Errorf("Error parsing object")`
			`return`
			`}`

			`so, ok := obj.(*PdfObjectStream)`
			`if !ok {`
			`t.Errorf("Should be stream (is %q)", obj)`
			`return`
			`}`

			`authenticated, err := parser.Decrypt([]byte(""))`
			`if err != nil {`
			`t.Errorf("Error authenticating")`
			`return`
			`}`
			`if !authenticated {`
			`t.Errorf("Failed to authenticate")`
			`return`
			`}`

			`parser.crypter.Decrypt(so, 0, 0)`
			`if string(so.Stream) != string(exp) {`
			`t.Errorf("Stream content wrong")`
			`return`
			`}`
			`}`