[jira] [Comment Edited] (PDFBOX-3572) AES-Decryption with Bouncycastle throws NullPointerException

Wed, 16 Nov 2016 00:13:58 -0800 

    [ 
https://issues.apache.org/jira/browse/PDFBOX-3572?page=com.atlassian.jira.plugin.system.issuetabpanels:comment-tabpanel&focusedCommentId=15669787#comment-15669787
 ] 

Markus Fensterer edited comment on PDFBOX-3572 at 11/16/16 8:12 AM:
--------------------------------------------------------------------

I tested it with the newest 2.0.4-SNAPSHOT and it works.
Thanks!


was (Author: markus.f):
I tested it with the newest 2.0.4-SNAPSHOT and it works.

> AES-Decryption with Bouncycastle throws NullPointerException
> ------------------------------------------------------------
>
>                 Key: PDFBOX-3572
>                 URL: https://issues.apache.org/jira/browse/PDFBOX-3572
>             Project: PDFBox
>          Issue Type: Bug
>          Components: Crypto
>    Affects Versions: 2.0.0, 2.0.1, 2.0.2, 2.0.3
>            Reporter: Markus Fensterer
>              Labels: bouncycastle, decrypt, nullpointerexception
>             Fix For: 2.0.4, 2.1.0
>
>
> Using AES-Encryption with PdfBox and Bouncycastle yields a null pointer. When 
> JCE is used everything works nicely:  com.sun.crypt.provider.AESCipher 
> returns an empty byte array for the last 16 bytes of the metadata dictionary. 
> Bouncycastle returns a null reference.
> {code:title=Demo.java|borderStyle=solid}
> public class Demo {
>     public static void main(String[] args) throws IOException, 
> NoSuchAlgorithmException, NoSuchPaddingException {
>         String password = "pw";
>         String cipherString = "AES/CBC/PKCS5Padding";
>         String testFilename = "test.pdf";
>         PDDocument document = new PDDocument();
>         AccessPermission ap = new AccessPermission();
>         ap.setReadOnly();
>         StandardProtectionPolicy policy = new 
> StandardProtectionPolicy(password, password, ap);
>         policy.setEncryptionKeyLength(128);
>         policy.setPreferAES(true);
>         document.protect(policy);
>         document.getDocumentInformation().setAuthor("author");
>         document.save(testFilename);
>         document.close();
>         // Decryption with SunJCE works
>         Cipher cipher = Cipher.getInstance(cipherString);
>         System.out.printf("Provider to use for %s decryption: %s\n", 
> cipherString, cipher.getProvider());
>         document = PDDocument.load(new File(testFilename), password);
>         Security.removeProvider("SunJCE");
>         // Decryption with BouncyCastle fails with NPE
>         cipher = Cipher.getInstance(cipherString);
>         System.out.printf("Provider to use for %s decryption: %s\n", 
> cipherString, cipher.getProvider());
>         document = PDDocument.load(new File(testFilename), password);
>     }
> }
> {code}
> {code:title=Output with stacktrace}
> Provider to use for AES/CBC/PKCS5Padding decryption: SunJCE version 1.8
> Provider to use for AES/CBC/PKCS5Padding decryption: BC version 1.54
> Exception in thread "main" java.lang.NullPointerException
>       at java.io.OutputStream.write(OutputStream.java:75)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.encryptDataAESother(SecurityHandler.java:269)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.encryptData(SecurityHandler.java:152)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decryptString(SecurityHandler.java:532)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decrypt(SecurityHandler.java:391)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decryptDictionary(SecurityHandler.java:512)
>       at 
> org.apache.pdfbox.pdmodel.encryption.SecurityHandler.decrypt(SecurityHandler.java:399)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.parseFileObject(COSParser.java:798)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.parseObjectDynamically(COSParser.java:726)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.parseObjectDynamically(COSParser.java:657)
>       at 
> org.apache.pdfbox.pdfparser.COSParser.parseTrailerValuesDynamically(COSParser.java:2092)
>       at 
> org.apache.pdfbox.pdfparser.PDFParser.initialParse(PDFParser.java:201)
>       at org.apache.pdfbox.pdfparser.PDFParser.parse(PDFParser.java:249)
>       at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:891)
>       at org.apache.pdfbox.pdmodel.PDDocument.load(PDDocument.java:831)
> {code}
> This could possibly be fixed with a null check in the SecurityHandler before 
> writing to the OutputStream.



--
This message was sent by Atlassian JIRA
(v6.3.4#6332)

---------------------------------------------------------------------
To unsubscribe, e-mail: dev-unsubscr...@pdfbox.apache.org
For additional commands, e-mail: dev-h...@pdfbox.apache.org

Reply via email to