Class StandardHandlerUsingAes256

java.lang.Object
com.itextpdf.kernel.crypto.securityhandler.SecurityHandler
com.itextpdf.kernel.crypto.securityhandler.StandardSecurityHandler
com.itextpdf.kernel.crypto.securityhandler.StandardHandlerUsingAes256
Direct Known Subclasses:
StandardHandlerUsingAesGcm
public class StandardHandlerUsingAes256 extends StandardSecurityHandler

  • Field Details

    • VALIDATION_SALT_OFFSET

      private static final int VALIDATION_SALT_OFFSET
      See Also:

    • KEY_SALT_OFFSET

      private static final int KEY_SALT_OFFSET
      See Also:

    • SALT_LENGTH

      private static final int SALT_LENGTH
      See Also:

    • encryptMetadata

      protected boolean encryptMetadata

    • isPdf2

      private boolean isPdf2

  • Constructor Details

    • StandardHandlerUsingAes256

      public StandardHandlerUsingAes256(PdfDictionary encryptionDictionary, byte[] userPassword, byte[] ownerPassword, int permissions, boolean encryptMetadata, boolean embeddedFilesOnly, PdfVersion version)

    • StandardHandlerUsingAes256

      public StandardHandlerUsingAes256(PdfDictionary encryptionDictionary, byte[] password)

  • Method Details

    • isEncryptMetadata

      public boolean isEncryptMetadata()
      Checks whether the document-level metadata stream will be encrypted.
      Returns:
      true if the document-level metadata stream shall be encrypted, false otherwise

    • setHashKeyForNextObject

      public void setHashKeyForNextObject(int objNumber, int objGeneration)
      Description copied from class: SecurityHandler
      Note: For most of the supported security handlers algorithm to calculate encryption key for particular object is the same.
      Overrides:
      setHashKeyForNextObject in class SecurityHandler
      Parameters:
      objNumber - number of particular object for encryption
      objGeneration - generation of particular object for encryption

    • getEncryptionStream

      public OutputStreamEncryption getEncryptionStream(OutputStream os)
      Description copied from class: SecurityHandler
      Gets a stream wrapper, responsible for encryption.
      Specified by:
      getEncryptionStream in class SecurityHandler
      Parameters:
      os - OutputStream to be wrapped
      Returns:
      OutputStreamEncryption, responsible for encryption.

    • getDecryptor

      public IDecryptor getDecryptor()
      Description copied from class: SecurityHandler
      Gets decryptor object.
      Specified by:
      getDecryptor in class SecurityHandler
      Returns:
      IDecryptor

    • setPermissions

      public void setPermissions(int permissions, PdfDictionary encryptionDictionary)
      Updates encryption dictionary with the security permissions provided.
      Overrides:
      setPermissions in class StandardSecurityHandler
      Parameters:
      permissions - new permissions to set
      encryptionDictionary - encryption dictionary to update

    • setAES256DicEntries

      void setAES256DicEntries(PdfDictionary encryptionDictionary, byte[] oeKey, byte[] ueKey, byte[] aes256Perms, boolean encryptMetadata, boolean embeddedFilesOnly)

    • setEncryptionDictionaryEntries

      void setEncryptionDictionaryEntries(PdfDictionary encryptionDictionary, byte[] oeKey, byte[] ueKey, byte[] aes256Perms, boolean encryptMetadata, boolean embeddedFilesOnly, int version, int revision, PdfName cryptoFilter)

    • isPdf2

      boolean isPdf2(PdfDictionary encryptionDictionary)

    • initMd5MessageDigest

      protected void initMd5MessageDigest()
      Init md5 message digest.
      Overrides:
      initMd5MessageDigest in class SecurityHandler

    • initKeyAndFillDictionary

      private void initKeyAndFillDictionary(PdfDictionary encryptionDictionary, byte[] userPassword, byte[] ownerPassword, int permissions, boolean encryptMetadata, boolean embeddedFilesOnly)

    • getAes256Perms

      private byte[] getAes256Perms(int permissions, boolean encryptMetadata)

    • initKeyAndReadDictionary

      private void initKeyAndReadDictionary(PdfDictionary encryptionDictionary, byte[] password)

    • computeHash

      private byte[] computeHash(byte[] password, byte[] salt, int saltOffset, int saltLen) throws NoSuchAlgorithmException
      Throws:
      NoSuchAlgorithmException

    • computeHash

      private byte[] computeHash(byte[] password, byte[] salt, int saltOffset, int saltLen, byte[] userKey) throws NoSuchAlgorithmException
      Throws:
      NoSuchAlgorithmException

    • truncateArray

      private byte[] truncateArray(byte[] array)