Fix embedding of encrypted attachments

DEVSIX-9183

Author: vitali-pr

kernel/src/main/java/com/itextpdf/kernel/pdf/PdfName.java

@@ -232,6 +232,7 @@ public class PdfName extends PdfPrimitiveObject implements Comparable<PdfName> {
     public static final PdfName CreatorInfo = createDirectName("CreatorInfo");
     public static final PdfName CropBox = createDirectName("CropBox");
     public static final PdfName Crypt = createDirectName("Crypt");
+    public static final PdfName CryptFilterDecodeParms = createDirectName("CryptFilterDecodeParms");
     public static final PdfName CS = createDirectName("CS");
     public static final PdfName CT = createDirectName("CT");
     public static final PdfName D = createDirectName("D");

kernel/src/main/java/com/itextpdf/kernel/pdf/PdfOutputStream.java

@@ -271,17 +271,25 @@ private void write(PdfStream pdfStream) {
                 java.io.OutputStream fout = this;
                 DeflaterOutputStream def = null;
                 OutputStreamEncryption ose = null;
+
+                long beginStreamContent;
                 if (crypto != null &&
                         (!crypto.isEmbeddedFilesOnly() || document.doesStreamBelongToEmbeddedFile(pdfStream))) {
+                    updateCryptFilterForEmbeddedFilesOnlyMode(pdfStream);
+
+                    // We should store current position here because crypto.getEncryptionStream(fout) may already
+                    // output something into the stream (iv vector for AES256)
+                    beginStreamContent = writePdfStreamAndGetPosition(pdfStream);
                     fout = ose = crypto.getEncryptionStream(fout);
-                }
-                if (toCompress && (allowCompression || userDefinedCompression)) {
+                } else if (toCompress && (allowCompression || userDefinedCompression)) {
                     updateCompressionFilter(pdfStream);
+
+                    beginStreamContent = writePdfStreamAndGetPosition(pdfStream);
                     fout = def = new DeflaterOutputStream(fout, pdfStream.getCompressionLevel(), 0x8000);
+                } else {
+                    beginStreamContent = writePdfStreamAndGetPosition(pdfStream);
                 }
-                this.write((PdfDictionary) pdfStream);
-                writeBytes(PdfOutputStream.stream);
-                long beginStreamContent = getCurrentPos();
+
                 byte[] buf = new byte[4192];
                 while (true) {
                     int n = pdfStream.getInputStream().read(buf);
@@ -342,6 +350,8 @@ private void write(PdfStream pdfStream) {
                         }
                     }
                     if (checkEncryption(pdfStream)) {
+                        updateCryptFilterForEmbeddedFilesOnlyMode(pdfStream);
+
                         ByteArrayOutputStream encodedStream = new ByteArrayOutputStream();
                         OutputStreamEncryption ose = crypto.getEncryptionStream(encodedStream);
                         byteArrayStream.writeTo(ose);
@@ -424,7 +434,7 @@ protected void updateCompressionFilter(PdfStream pdfStream) {
         if (filter == null) {
             // Remove if any
             pdfStream.remove(PdfName.DecodeParms);
-            
+
             pdfStream.put(PdfName.Filter, PdfName.FlateDecode);
             return;
         }
@@ -449,7 +459,50 @@ protected void updateCompressionFilter(PdfStream pdfStream) {
                         .setMessageParams(decodeParms.getClass().toString());
             }
         }
-        pdfStream.put(PdfName.Filter, filters);
+    }
+
+    /**
+     * Adds required Filter and DecodeParms to the pdf stream if the stream is embedded file stream
+     * and only embedded files are expected to be encrypted. See {@link EncryptionConstants#EMBEDDED_FILES_ONLY}.
+     *
+     * @param pdfStream embedded file pdf stream.
+     */
+    protected void updateCryptFilterForEmbeddedFilesOnlyMode(PdfStream pdfStream) {
+        if (crypto != null && crypto.isEmbeddedFilesOnly() &&
+                document.doesStreamBelongToEmbeddedFile(pdfStream) &&
+                // This code works only for AES256.
+                // All tests we currently have for earlier versions do not work with and without this code.
+                crypto.getEncryptionAlgorithm() >= EncryptionConstants.ENCRYPTION_AES_256) {
+            // Filter
+            PdfObject currentFilters = pdfStream.get(PdfName.Filter);
+            PdfArray filters = new PdfArray();
+            filters.add(PdfName.Crypt);
+            if (currentFilters instanceof PdfArray) {
+                filters.addAll((PdfArray) currentFilters);
+            } else if (currentFilters != null) {
+                filters.add(currentFilters);
+            }
+            pdfStream.put(PdfName.Filter, filters);
+
+            // DecodeParms
+            PdfDictionary crypt = new PdfDictionary();
+            crypt.put(PdfName.Name, PdfName.StdCF);
+            crypt.put(PdfName.Type, PdfName.CryptFilterDecodeParms);
+            PdfObject decodeParms = pdfStream.get(PdfName.DecodeParms);
+            if (decodeParms instanceof PdfDictionary || decodeParms == null) {
+                PdfArray array = new PdfArray();
+                array.add(crypt);
+                if (decodeParms != null) {
+                    array.add(decodeParms);
+                }
+                pdfStream.put(PdfName.DecodeParms, array);
+            } else if (decodeParms instanceof PdfArray) {
+                ((PdfArray) decodeParms).add(0, crypt);
+            } else {
+                throw new PdfException(KernelExceptionMessageConstant.THIS_DECODE_PARAMETER_TYPE_IS_NOT_SUPPORTED)
+                        .setMessageParams(decodeParms.getClass().toString());
+            }
+        }
     }
 
     protected byte[] decodeFlateBytes(PdfStream stream, byte[] bytes) {
@@ -551,6 +604,13 @@ protected byte[] decodeFlateBytes(PdfStream stream, byte[] bytes) {
         return bytes;
     }
 
+    private long writePdfStreamAndGetPosition(PdfStream pdfStream) {
+        write((PdfDictionary) pdfStream);
+        writeBytes(PdfOutputStream.stream);
+
+        return getCurrentPos();
+    }
+
     private static boolean isFlushed(PdfDictionary dict, PdfName name) {
         PdfObject obj = dict.get(name);
         return obj != null && obj.isFlushed();

kernel/src/test/java/com/itextpdf/kernel/crypto/pdfencryption/PdfEncryptionTest.java

@@ -391,7 +391,7 @@ public void encryptWithPasswordAes128EmbeddedFilesOnly() throws IOException {
     }
 
     @Test
-    public void encryptWithPasswordAes256EmbeddedFilesOnly() throws IOException, InterruptedException {
+    public void encryptWithPasswordAes256EmbeddedFilesOnly() throws IOException {
         String filename = "encryptWithPasswordAes256EmbeddedFilesOnly.pdf";
         int encryptionType = EncryptionConstants.ENCRYPTION_AES_256 | EncryptionConstants.EMBEDDED_FILES_ONLY;
 
@@ -424,6 +424,39 @@ public void encryptWithPasswordAes256EmbeddedFilesOnly() throws IOException, Int
                 textContent, ERROR_IS_EXPECTED);
     }
 
+    @Test
+    public void encryptWithPasswordAes256EmbeddedFilesOnly2() throws IOException {
+        String filename = "encryptWithPasswordAes256EmbeddedFilesOnly2.pdf";
+        int encryptionType = EncryptionConstants.ENCRYPTION_AES_256 | EncryptionConstants.EMBEDDED_FILES_ONLY;
+
+        String outFileName = destinationFolder + filename;
+        int permissions = EncryptionConstants.ALLOW_SCREENREADERS;
+        PdfWriter writer = new PdfWriter(outFileName,
+                new WriterProperties().setStandardEncryption(PdfEncryptionTestUtils.USER, PdfEncryptionTestUtils.OWNER, permissions,
+                        encryptionType).addXmpMetadata().setPdfVersion(PdfVersion.PDF_2_0)
+        );
+        PdfDocument document = new PdfDocument(writer);
+        document.getDocumentInfo().setMoreInfo(PdfEncryptionTestUtils.CUSTOM_INFO_ENTRY_KEY, PdfEncryptionTestUtils.CUSTOM_INFO_ENTRY_VALUE);
+        PdfPage page = document.addNewPage();
+        String textContent = "Hello world!";
+        PdfEncryptionTestUtils.writeTextBytesOnPageContent(page, textContent);
+
+        String descripton = "encryptedFile";
+        document.addFileAttachment(descripton,
+                PdfFileSpec.createEmbeddedFileSpec(document, "TEST".getBytes(StandardCharsets.UTF_8), descripton, "test.txt", null, null));
+
+        page.flush();
+        document.close();
+
+        //TODO DEVSIX-5355 Specific crypto filters for EFF StmF and StrF are not supported at the moment.
+        // However we can read embedded files only mode.
+        boolean ERROR_IS_EXPECTED = false;
+        encryptionUtil.checkDecryptedWithPasswordContent(destinationFolder + filename, PdfEncryptionTestUtils.OWNER,
+                textContent, ERROR_IS_EXPECTED);
+        encryptionUtil.checkDecryptedWithPasswordContent(destinationFolder + filename, PdfEncryptionTestUtils.USER,
+                textContent, ERROR_IS_EXPECTED);
+    }
+
     @Test
     public void encryptAes256Pdf2NotEncryptMetadata() throws InterruptedException, IOException {
         String filename = "encryptAes256Pdf2NotEncryptMetadata.pdf";

kernel/src/test/java/com/itextpdf/kernel/pdf/EncryptedEmbeddedStreamsHandlerTest.java

@@ -60,6 +60,7 @@ public static void afterClass() {
     @LogMessages(messages = @LogMessage(messageTemplate = KernelLogMessageConstant.MD5_IS_NOT_FIPS_COMPLIANT, 
             ignore = true))
     public void noReaderStandardEncryptionAddFileAttachment() throws IOException, InterruptedException {
+        // Test result here is wrong. Note that createEncryptedDocument adds EncryptionConstants.EMBEDDED_FILES_ONLY.
         String outFileName = destinationFolder + "noReaderStandardEncryptionAddFileAttachment.pdf";
         String cmpFileName = sourceFolder + "cmp_noReaderStandardEncryptionAddFileAttachment.pdf";
 
@@ -78,6 +79,7 @@ public void noReaderStandardEncryptionAddFileAttachment() throws IOException, In
     @LogMessages(messages = @LogMessage(messageTemplate = KernelLogMessageConstant.MD5_IS_NOT_FIPS_COMPLIANT, 
             ignore = true))
     public void noReaderAesEncryptionAddFileAttachment() throws IOException, InterruptedException {
+        // Test result here is wrong. Note that createEncryptedDocument adds EncryptionConstants.EMBEDDED_FILES_ONLY.
         String outFileName = destinationFolder + "noReaderAesEncryptionAddFileAttachment.pdf";
         String cmpFileName = sourceFolder + "cmp_noReaderAesEncryptionAddFileAttachment.pdf";
 
@@ -117,6 +119,7 @@ public void withReaderStandardEncryptionAddFileAttachment() throws IOException,
     @LogMessages(messages = @LogMessage(messageTemplate = KernelLogMessageConstant.MD5_IS_NOT_FIPS_COMPLIANT, 
             ignore = true))
     public void noReaderStandardEncryptionAddAnnotation() throws IOException, InterruptedException {
+        // Test result here is wrong. Note that createEncryptedDocument adds EncryptionConstants.EMBEDDED_FILES_ONLY.
         String outFileName = destinationFolder + "noReaderStandardEncryptionAddAnnotation.pdf";
         String cmpFileName = sourceFolder + "cmp_noReaderStandardEncryptionAddAnnotation.pdf";
 
@@ -156,6 +159,7 @@ public void withReaderStandardEncryptionAddAnnotation() throws IOException, Inte
     @LogMessages(messages = @LogMessage(messageTemplate = KernelLogMessageConstant.MD5_IS_NOT_FIPS_COMPLIANT, 
             ignore = true))
     public void readerWithoutEncryptionWriterStandardEncryption() throws IOException, InterruptedException {
+        // Test result here is wrong. Note that createEncryptedDocument adds EncryptionConstants.EMBEDDED_FILES_ONLY.
         String outFileName = destinationFolder + "readerWithoutEncryptionWriterStandardEncryption.pdf";
         String cmpFileName = sourceFolder + "cmp_readerWithoutEncryptionWriterStandardEncryption.pdf";
 

kernel/src/test/java/com/itextpdf/kernel/pdf/PdfOutputStreamTest.java

@@ -0,0 +1,143 @@
+/*
+    This file is part of the iText (R) project.
+    Copyright (c) 1998-2025 Apryse Group NV
+    Authors: Apryse Software.
+
+    This program is offered under a commercial and under the AGPL license.
+    For commercial licensing, contact us at https://itextpdf.com/sales.  For AGPL licensing, see below.
+
+    AGPL licensing:
+    This program is free software: you can redistribute it and/or modify
+    it under the terms of the GNU Affero General Public License as published by
+    the Free Software Foundation, either version 3 of the License, or
+    (at your option) any later version.
+
+    This program is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU Affero General Public License for more details.
+
+    You should have received a copy of the GNU Affero General Public License
+    along with this program.  If not, see <https://www.gnu.org/licenses/>.
+ */
+package com.itextpdf.kernel.pdf;
+
+import com.itextpdf.commons.utils.MessageFormatUtil;
+import com.itextpdf.kernel.crypto.pdfencryption.PdfEncryptionTestUtils;
+import com.itextpdf.kernel.exceptions.KernelExceptionMessageConstant;
+import com.itextpdf.kernel.exceptions.PdfException;
+import com.itextpdf.kernel.pdf.filespec.PdfFileSpec;
+import com.itextpdf.kernel.utils.CompareTool;
+import com.itextpdf.test.AssertUtil;
+import com.itextpdf.test.ExtendedITextTest;
+import com.itextpdf.test.TestUtil;
+import org.junit.jupiter.api.Assertions;
+import org.junit.jupiter.api.BeforeAll;
+import org.junit.jupiter.api.Tag;
+import org.junit.jupiter.api.Test;
+
+import java.io.ByteArrayOutputStream;
+import java.io.IOException;
+import java.nio.charset.StandardCharsets;
+
+@Tag("IntegrationTest")
+public class PdfOutputStreamTest extends ExtendedITextTest {
+
+    public static final String DESTINATION_FOLDER = TestUtil.getOutputPath() + "/kernel/pdf/PdfOutputStreamTest/";
+
+    @BeforeAll
+    public static void beforeClass() {
+        createOrClearDestinationFolder(DESTINATION_FOLDER);
+    }
+
+    @Test
+    public void invalidDecodeParamsTest() {
+        PdfWriter writer = new PdfWriter(new ByteArrayOutputStream(),
+                new WriterProperties().setStandardEncryption(PdfEncryptionTestUtils.USER, PdfEncryptionTestUtils.OWNER, 0,
+                        EncryptionConstants.ENCRYPTION_AES_256 | EncryptionConstants.EMBEDDED_FILES_ONLY));
+        PdfDocument document = new CustomPdfDocument1(writer);
+
+        document.addFileAttachment("descripton",
+                PdfFileSpec.createEmbeddedFileSpec(document, "TEST".getBytes(StandardCharsets.UTF_8), "descripton", "test.txt", null, null));
+
+        Exception e = Assertions.assertThrows(PdfException.class, () -> document.close());
+        Assertions.assertEquals(MessageFormatUtil.format(
+                KernelExceptionMessageConstant.THIS_DECODE_PARAMETER_TYPE_IS_NOT_SUPPORTED,
+                        PdfName.class),
+                e.getMessage());
+    }
+
+    @Test
+    public void arrayDecodeParamsTest() throws IOException {
+        final String fileName = "arrayDecodeParamsTest.pdf";
+        PdfWriter writer = CompareTool.createTestPdfWriter(DESTINATION_FOLDER + fileName,
+                new WriterProperties().setStandardEncryption(PdfEncryptionTestUtils.USER, PdfEncryptionTestUtils.OWNER, 0,
+                        EncryptionConstants.ENCRYPTION_AES_256 | EncryptionConstants.EMBEDDED_FILES_ONLY));
+        PdfDocument document = new CustomPdfDocument2(writer);
+
+        document.addFileAttachment("descripton",
+                PdfFileSpec.createEmbeddedFileSpec(document, "TEST".getBytes(StandardCharsets.UTF_8), "descripton", "test.txt", null, null));
+
+        AssertUtil.doesNotThrow(() -> document.close());
+    }
+
+    @Test
+    public void dictDecodeParamsTest() throws IOException {
+        final String fileName = "dictDecodeParamsTest.pdf";
+        PdfWriter writer = CompareTool.createTestPdfWriter(DESTINATION_FOLDER + fileName,
+                new WriterProperties().setStandardEncryption(PdfEncryptionTestUtils.USER, PdfEncryptionTestUtils.OWNER, 0,
+                        EncryptionConstants.ENCRYPTION_AES_256 | EncryptionConstants.EMBEDDED_FILES_ONLY));
+        PdfDocument document = new CustomPdfDocument3(writer);
+
+        document.addFileAttachment("descripton",
+                PdfFileSpec.createEmbeddedFileSpec(document, "TEST".getBytes(StandardCharsets.UTF_8), "descripton", "test.txt", null, null));
+
+        AssertUtil.doesNotThrow(() -> document.close());
+    }
+
+    private static final class CustomPdfDocument1 extends PdfDocument {
+        CustomPdfDocument1(PdfWriter writer) {
+            super(writer);
+        }
+
+        @Override
+        public void markStreamAsEmbeddedFile(PdfStream stream) {
+            stream.put(PdfName.DecodeParms, PdfName.Crypt);
+            stream.setCompressionLevel(CompressionConstants.NO_COMPRESSION);
+
+            super.markStreamAsEmbeddedFile(stream);
+        }
+    }
+
+    private static final class CustomPdfDocument2 extends PdfDocument {
+        CustomPdfDocument2(PdfWriter writer) {
+            super(writer);
+        }
+
+        @Override
+        public void markStreamAsEmbeddedFile(PdfStream stream) {
+            PdfArray decodeParmsValue = new PdfArray();
+            decodeParmsValue.add(new PdfNull());
+            stream.put(PdfName.DecodeParms, decodeParmsValue);
+            stream.setCompressionLevel(CompressionConstants.NO_COMPRESSION);
+
+            super.markStreamAsEmbeddedFile(stream);
+        }
+    }
+
+    private static final class CustomPdfDocument3 extends PdfDocument {
+        CustomPdfDocument3(PdfWriter writer) {
+            super(writer);
+        }
+
+        @Override
+        public void markStreamAsEmbeddedFile(PdfStream stream) {
+            PdfDictionary decodeParmsValue = new PdfDictionary();
+            decodeParmsValue.put(PdfName.Name, new PdfNull());
+            stream.put(PdfName.DecodeParms, decodeParmsValue);
+            stream.setCompressionLevel(CompressionConstants.NO_COMPRESSION);
+
+            super.markStreamAsEmbeddedFile(stream);
+        }
+    }
+}