hexapdf 0.19.2 → 0.20.2

data/test/hexapdf/type/test_signature.rb

@@ -0,0 +1,131 @@
+# -*- encoding: utf-8 -*-
+
+require 'test_helper'
+require 'hexapdf/document'
+require 'hexapdf/type/signature'
+require_relative 'signature/common'
+require 'stringio'
+
+describe HexaPDF::Type::Signature::TransformParams do
+  before do
+    @doc = HexaPDF::Document.new
+    @params = @doc.add({Type: :TransformParams})
+  end
+
+  describe "validation" do
+    it "checks the /Annots field for valid values" do
+      @params[:Annots] = [:Create, :Other, :Delete, :Other, :New]
+      refute(@params.validate(auto_correct: false))
+      @params.validate
+      assert_equal([:Create, :Delete], @params[:Annots].value)
+    end
+
+    it "checks the /Form field for valid values" do
+      @params[:Form] = [:Add, :Other, :Delete, :Other, :New]
+      refute(@params.validate(auto_correct: false))
+      @params.validate
+      assert_equal([:Add, :Delete], @params[:Form].value)
+    end
+
+    it "checks the /EF field for valid values" do
+      @params[:EF] = [:Create, :Other, :Delete, :Other, :New]
+      refute(@params.validate(auto_correct: false))
+      @params.validate
+      assert_equal([:Create, :Delete], @params[:EF].value)
+    end
+  end
+end
+
+describe HexaPDF::Type::Signature::SignatureReference do
+  before do
+    @doc = HexaPDF::Document.new
+    @sigref = @doc.add({Type: :SigRef})
+  end
+
+  describe "validation" do
+    it "checks the existence of the /Data field for FieldMDP transforms" do
+      @sigref[:TransformMethod] = :FieldMDP
+      refute(@sigref.validate)
+      @sigref[:Data] = HexaPDF::Object.new('data', oid: 1)
+      assert(@sigref.validate)
+    end
+  end
+end
+
+describe HexaPDF::Type::Signature do
+  before do
+    @doc = HexaPDF::Document.new
+    @sig = @doc.add({Type: :Sig, Filter: :'Adobe.PPKLite', SubFilter: :'ETSI.CAdES.detached'})
+
+    @pdf_data = 'Some data'
+    @pkcs7 = OpenSSL::PKCS7.sign(CERTIFICATES.signer_certificate, CERTIFICATES.signer_key,
+                                 @pdf_data, [CERTIFICATES.ca_certificate],
+                                 OpenSSL::PKCS7::DETACHED)
+    @sig[:Contents] = @pkcs7.to_der
+  end
+
+  it "returns the signer name" do
+    assert_equal('signer', @sig.signer_name)
+  end
+
+  it "returns the signing time" do
+    assert_equal(@sig.signature_handler.signing_time, @sig.signing_time)
+  end
+
+  it "returns the signing reason" do
+    @sig[:Reason] = 'reason'
+    assert_equal('reason', @sig.signing_reason)
+  end
+
+  it "returns the signing location" do
+    @sig[:Location] = 'location'
+    assert_equal('location', @sig.signing_location)
+  end
+
+  it "returns the signature type" do
+    assert_equal('ETSI.CAdES.detached', @sig.signature_type)
+  end
+
+  describe "signature_handler" do
+    it "returns the signature handler" do
+      assert_kind_of(HexaPDF::Type::Signature::Handler, @sig.signature_handler)
+    end
+
+    it "fails if the required handler is not available" do
+      @sig[:SubFilter] = :Unknown
+      assert_raises(HexaPDF::Error) { @sig.signature_handler }
+    end
+  end
+
+  it "returns the signature contents" do
+    @sig[:Contents] = 'hallo'
+    assert_equal('hallo', @sig.contents)
+  end
+
+  describe "signed_data" do
+    it "reads the specified portions of the document" do
+      io = StringIO.new(MINIMAL_PDF)
+      doc = HexaPDF::Document.new(io: io)
+      @sig.document = doc
+      @sig[:ByteRange] = [0, 400, 500, 333]
+      assert_equal((MINIMAL_PDF[0, 400] << MINIMAL_PDF[500, 333]).b, @sig.signed_data)
+    end
+
+    it "fails if the document isn't associated with an existing PDF file" do
+      assert_raises(HexaPDF::Error) { @sig.signed_data }
+    end
+  end
+
+  it "invokes the signature handler for verification" do
+    handler = Object.new
+    store, kwargs = nil
+    handler.define_singleton_method(:verify) do |in_store, in_kwargs|
+      store, kwargs = in_store, in_kwargs
+      :result
+    end
+    @sig.define_singleton_method(:signature_handler) { handler }
+    assert_equal(:result, @sig.verify(allow_self_signed: true))
+    assert_kind_of(OpenSSL::X509::Store, store)
+    assert(kwargs[:allow_self_signed])
+  end
+end

metadata

@@ -1,14 +1,14 @@
 --- !ruby/object:Gem::Specification
 name: hexapdf
 version: !ruby/object:Gem::Version
-  version: 0.19.2
+  version: 0.20.2
 platform: ruby
 authors:
 - Thomas Leitner
 autorequire: 
 bindir: bin
 cert_chain: []
-date: 2021-12-13 00:00:00.000000000 Z
+date: 2022-01-17 00:00:00.000000000 Z
 dependencies:
 - !ruby/object:Gem::Dependency
   name: cmdparse
@@ -124,6 +124,11 @@ files:
 - data/hexapdf/afm/Times-Italic.afm
 - data/hexapdf/afm/Times-Roman.afm
 - data/hexapdf/afm/ZapfDingbats.afm
+- data/hexapdf/cert/demo_cert.rb
+- data/hexapdf/cert/root-ca.crt
+- data/hexapdf/cert/signing.crt
+- data/hexapdf/cert/signing.key
+- data/hexapdf/cert/sub-ca.crt
 - data/hexapdf/cmap/83pv-RKSJ-H
 - data/hexapdf/cmap/90ms-RKSJ-H
 - data/hexapdf/cmap/90ms-RKSJ-V
@@ -254,6 +259,7 @@ files:
 - lib/hexapdf/document/fonts.rb
 - lib/hexapdf/document/images.rb
 - lib/hexapdf/document/pages.rb
+- lib/hexapdf/document/signatures.rb
 - lib/hexapdf/encryption.rb
 - lib/hexapdf/encryption/aes.rb
 - lib/hexapdf/encryption/arc4.rb
@@ -396,6 +402,11 @@ files:
 - lib/hexapdf/type/page.rb
 - lib/hexapdf/type/page_tree_node.rb
 - lib/hexapdf/type/resources.rb
+- lib/hexapdf/type/signature.rb
+- lib/hexapdf/type/signature/adbe_pkcs7_detached.rb
+- lib/hexapdf/type/signature/adbe_x509_rsa_sha1.rb
+- lib/hexapdf/type/signature/handler.rb
+- lib/hexapdf/type/signature/verification_result.rb
 - lib/hexapdf/type/trailer.rb
 - lib/hexapdf/type/viewer_preferences.rb
 - lib/hexapdf/type/xref_stream.rb
@@ -497,6 +508,7 @@ files:
 - test/hexapdf/document/test_fonts.rb
 - test/hexapdf/document/test_images.rb
 - test/hexapdf/document/test_pages.rb
+- test/hexapdf/document/test_signatures.rb
 - test/hexapdf/encryption/common.rb
 - test/hexapdf/encryption/test_aes.rb
 - test/hexapdf/encryption/test_arc4.rb
@@ -605,6 +617,11 @@ files:
 - test/hexapdf/type/annotations/test_markup_annotation.rb
 - test/hexapdf/type/annotations/test_text.rb
 - test/hexapdf/type/annotations/test_widget.rb
+- test/hexapdf/type/signature/common.rb
+- test/hexapdf/type/signature/test_adbe_pkcs7_detached.rb
+- test/hexapdf/type/signature/test_adbe_x509_rsa_sha1.rb
+- test/hexapdf/type/signature/test_handler.rb
+- test/hexapdf/type/signature/test_verification_result.rb
 - test/hexapdf/type/test_annotation.rb
 - test/hexapdf/type/test_catalog.rb
 - test/hexapdf/type/test_cid_font.rb
@@ -623,6 +640,7 @@ files:
 - test/hexapdf/type/test_page.rb
 - test/hexapdf/type/test_page_tree_node.rb
 - test/hexapdf/type/test_resources.rb
+- test/hexapdf/type/test_signature.rb
 - test/hexapdf/type/test_trailer.rb
 - test/hexapdf/type/test_xref_stream.rb
 - test/hexapdf/utils/test_bit_field.rb
@@ -653,7 +671,7 @@ required_rubygems_version: !ruby/object:Gem::Requirement
     - !ruby/object:Gem::Version
       version: '0'
 requirements: []
-rubygems_version: 3.2.3
+rubygems_version: 3.3.3
 signing_key: 
 specification_version: 4
 summary: HexaPDF - A Versatile PDF Creation and Manipulation Library For Ruby