RubyGems - origami - Versions diffs - 1.2.7 → 2.0.0 - Mend

origami 1.2.7 → 2.0.0

Files changed (162) hide show

checksums.yaml +4 -4
data/CHANGELOG.md +66 -0
data/README.md +112 -0
data/bin/config/pdfcop.conf.yml +232 -233
data/bin/gui/about.rb +27 -37
data/bin/gui/config.rb +108 -117
data/bin/gui/file.rb +416 -365
data/bin/gui/gtkhex.rb +1138 -1153
data/bin/gui/hexview.rb +55 -57
data/bin/gui/imgview.rb +48 -51
data/bin/gui/menu.rb +388 -386
data/bin/gui/properties.rb +114 -130
data/bin/gui/signing.rb +571 -617
data/bin/gui/textview.rb +77 -95
data/bin/gui/treeview.rb +382 -387
data/bin/gui/walker.rb +227 -232
data/bin/gui/xrefs.rb +56 -60
data/bin/pdf2pdfa +53 -57
data/bin/pdf2ruby +212 -228
data/bin/pdfcop +338 -348
data/bin/pdfdecompress +58 -65
data/bin/pdfdecrypt +56 -60
data/bin/pdfencrypt +75 -80
data/bin/pdfexplode +185 -182
data/bin/pdfextract +201 -218
data/bin/pdfmetadata +83 -82
data/bin/pdfsh +4 -5
data/bin/pdfwalker +1 -2
data/bin/shell/.irbrc +45 -82
data/bin/shell/console.rb +105 -130
data/bin/shell/hexdump.rb +40 -64
data/examples/README.md +34 -0
data/examples/attachments/attachment.rb +38 -0
data/examples/attachments/nested_document.rb +51 -0
data/examples/encryption/encryption.rb +28 -0
data/{samples/actions/triggerevents/trigger.rb → examples/events/events.rb} +13 -16
data/examples/flash/flash.rb +37 -0
data/{samples → examples}/flash/helloworld.swf +0 -0
data/examples/forms/javascript.rb +54 -0
data/examples/forms/xfa.rb +115 -0
data/examples/javascript/hello_world.rb +22 -0
data/examples/javascript/js_emulation.rb +54 -0
data/examples/loop/goto.rb +32 -0
data/examples/loop/named.rb +33 -0
data/examples/signature/signature.rb +65 -0
data/examples/uri/javascript.rb +56 -0
data/examples/uri/open-uri.rb +21 -0
data/examples/uri/submitform.rb +47 -0
data/lib/origami.rb +29 -42
data/lib/origami/3d.rb +350 -225
data/lib/origami/acroform.rb +262 -288
data/lib/origami/actions.rb +268 -288
data/lib/origami/annotations.rb +697 -722
data/lib/origami/array.rb +258 -184
data/lib/origami/boolean.rb +74 -84
data/lib/origami/catalog.rb +397 -434
data/lib/origami/collections.rb +144 -0
data/lib/origami/destinations.rb +233 -194
data/lib/origami/dictionary.rb +253 -232
data/lib/origami/encryption.rb +1274 -1243
data/lib/origami/export.rb +232 -268
data/lib/origami/extensions/fdf.rb +307 -220
data/lib/origami/extensions/ppklite.rb +368 -435
data/lib/origami/filespec.rb +197 -0
data/lib/origami/filters.rb +301 -295
data/lib/origami/filters/ascii.rb +177 -180
data/lib/origami/filters/ccitt.rb +528 -535
data/lib/origami/filters/crypt.rb +26 -35
data/lib/origami/filters/dct.rb +46 -52
data/lib/origami/filters/flate.rb +95 -94
data/lib/origami/filters/jbig2.rb +49 -55
data/lib/origami/filters/jpx.rb +38 -44
data/lib/origami/filters/lzw.rb +189 -183
data/lib/origami/filters/predictors.rb +221 -235
data/lib/origami/filters/runlength.rb +103 -104
data/lib/origami/font.rb +173 -186
data/lib/origami/functions.rb +67 -81
data/lib/origami/graphics.rb +25 -21
data/lib/origami/graphics/colors.rb +178 -187
data/lib/origami/graphics/instruction.rb +79 -85
data/lib/origami/graphics/path.rb +142 -148
data/lib/origami/graphics/patterns.rb +160 -167
data/lib/origami/graphics/render.rb +43 -50
data/lib/origami/graphics/state.rb +138 -153
data/lib/origami/graphics/text.rb +188 -205
data/lib/origami/graphics/xobject.rb +819 -815
data/lib/origami/header.rb +63 -78
data/lib/origami/javascript.rb +596 -597
data/lib/origami/linearization.rb +285 -290
data/lib/origami/metadata.rb +139 -148
data/lib/origami/name.rb +112 -148
data/lib/origami/null.rb +53 -62
data/lib/origami/numeric.rb +162 -175
data/lib/origami/obfuscation.rb +186 -174
data/lib/origami/object.rb +593 -573
data/lib/origami/outline.rb +42 -47
data/lib/origami/outputintents.rb +73 -82
data/lib/origami/page.rb +703 -592
data/lib/origami/parser.rb +238 -290
data/lib/origami/parsers/fdf.rb +41 -33
data/lib/origami/parsers/pdf.rb +75 -95
data/lib/origami/parsers/pdf/lazy.rb +137 -0
data/lib/origami/parsers/pdf/linear.rb +64 -66
data/lib/origami/parsers/ppklite.rb +34 -70
data/lib/origami/pdf.rb +1030 -1005
data/lib/origami/reference.rb +102 -102
data/lib/origami/signature.rb +591 -609
data/lib/origami/stream.rb +668 -551
data/lib/origami/string.rb +397 -373
data/lib/origami/template/patterns.rb +56 -0
data/lib/origami/template/widgets.rb +151 -0
data/lib/origami/trailer.rb +144 -158
data/lib/origami/tree.rb +62 -0
data/lib/origami/version.rb +23 -0
data/lib/origami/webcapture.rb +88 -79
data/lib/origami/xfa.rb +2863 -2882
data/lib/origami/xreftable.rb +472 -384
data/test/dataset/calc.pdf +85 -0
data/test/dataset/crypto.pdf +82 -0
data/test/dataset/empty.pdf +49 -0
data/test/test_actions.rb +27 -0
data/test/test_annotations.rb +90 -0
data/test/test_pages.rb +31 -0
data/test/test_pdf.rb +16 -0
data/test/test_pdf_attachment.rb +34 -0
data/test/test_pdf_create.rb +24 -0
data/test/test_pdf_encrypt.rb +95 -0
data/test/test_pdf_parse.rb +96 -0
data/test/test_pdf_sign.rb +58 -0
data/test/test_streams.rb +182 -0
data/test/test_xrefs.rb +67 -0
metadata +88 -58
data/README +0 -67
data/bin/pdf2graph +0 -121
data/bin/pdfcocoon +0 -104
data/lib/origami/file.rb +0 -233
data/samples/README.txt +0 -45
data/samples/actions/launch/calc.rb +0 -87
data/samples/actions/launch/winparams.rb +0 -22
data/samples/actions/loop/loopgoto.rb +0 -24
data/samples/actions/loop/loopnamed.rb +0 -21
data/samples/actions/named/named.rb +0 -31
data/samples/actions/samba/smbrelay.rb +0 -26
data/samples/actions/webbug/submitform.js +0 -26
data/samples/actions/webbug/webbug-browser.rb +0 -68
data/samples/actions/webbug/webbug-js.rb +0 -67
data/samples/actions/webbug/webbug-reader.rb +0 -90
data/samples/attachments/attach.rb +0 -40
data/samples/attachments/attached.txt +0 -1
data/samples/crypto/crypto.rb +0 -28
data/samples/digsig/signed.rb +0 -46
data/samples/exploits/cve-2008-2992-utilprintf.rb +0 -87
data/samples/exploits/cve-2009-0927-geticon.rb +0 -65
data/samples/exploits/exploit_customdictopen.rb +0 -55
data/samples/exploits/getannots.rb +0 -69
data/samples/flash/flash.rb +0 -31
data/samples/javascript/attached.txt +0 -1
data/samples/javascript/js.rb +0 -52
data/templates/patterns.rb +0 -66
data/templates/widgets.rb +0 -173
data/templates/xdp.rb +0 -92
data/test/ts_pdf.rb +0 -50

data/lib/origami/extensions/ppklite.rb CHANGED

@@ -1,25 +1,20 @@
 =begin
-= File
-	formats/ppklite.rb
-= Info
-	This file is part of Origami, PDF manipulation framework for Ruby
-	Copyright (C) 2010	Guillaume Delugré <guillaume AT security-labs DOT org>
-	All right reserved.
-  Origami is free software: you can redistribute it and/or modify
-  it under the terms of the GNU Lesser General Public License as published by
-  the Free Software Foundation, either version 3 of the License, or
-  (at your option) any later version.
-  Origami is distributed in the hope that it will be useful,
-  but WITHOUT ANY WARRANTY; without even the implied warranty of
-  MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
-  GNU Lesser General Public License for more details.
-  You should have received a copy of the GNU Lesser General Public License
-  along with Origami.  If not, see <http://www.gnu.org/licenses/>.
+    This file is part of Origami, PDF manipulation framework for Ruby
+    Copyright (C) 2016	Guillaume Delugré.
+    Origami is free software: you can redistribute it and/or modify
+    it under the terms of the GNU Lesser General Public License as published by
+    the Free Software Foundation, either version 3 of the License, or
+    (at your option) any later version.
+    Origami is distributed in the hope that it will be useful,
+    but WITHOUT ANY WARRANTY; without even the implied warranty of
+    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
+    GNU Lesser General Public License for more details.
+    You should have received a copy of the GNU Lesser General Public License
+    along with Origami.  If not, see <http://www.gnu.org/licenses/>.
 =end
@@ -40,452 +35,390 @@ require 'openssl'
 module Origami
-  module Adobe
     #
     # Class representing an Adobe Reader certificate store.
     #
     class PPKLite
-      #
-      # Class representing a certificate store header.
-      #
-      class Header
-        MAGIC = /\A%PPKLITE-(\d)\.(\d)/
-        attr_accessor :majorversion, :minorversion
+        class Error < Origami::Error; end
+        def self.read(path, options = {})
+            path = File.expand_path(path) if path.is_a?(::String)
+            PPKLite::Parser.new(options).parse(path)
+        end
         #
-        # Creates a file header, with the given major and minor versions.
-        # _majorversion_:: Major version.
-        # _minorversion_:: Minor version.
+        # Class representing a certificate store header.
         #
-        def initialize(majorversion = 2, minorversion = 1)
-          @majorversion, @minorversion = majorversion, minorversion
+        class Header
+            MAGIC = /%PPKLITE-(?<major>\d)\.(?<minor>\d)/
+            attr_accessor :major_version, :minor_version
+            #
+            # Creates a file header, with the given major and minor versions.
+            # _major_version_:: Major version.
+            # _minor_version_:: Minor version.
+            #
+            def initialize(major_version = 2, minor_version = 1)
+                @major_version, @minor_version = major_version, minor_version
+            end
+            def self.parse(stream) #:nodoc:
+                if not stream.scan(MAGIC).nil?
+                    maj = stream['major'].to_i
+                    min = stream['minor'].to_i
+                else
+                    raise InvalidHeader, "Invalid header format"
+                end
+                stream.skip(REGEXP_WHITESPACES)
+                PPKLite::Header.new(maj, min)
+            end
+            #
+            # Outputs self into PDF code.
+            #
+            def to_s
+                "%PPKLITE-#{@major_version}.#{@minor_version}".b + EOL
+            end
+            def to_sym #:nodoc:
+                "#{@major_version}.#{@minor_version}".to_sym
+            end
+            def to_f #:nodoc:
+                to_sym.to_s.to_f
+            end
         end
-        def self.parse(stream) #:nodoc:
-          if not stream.scan(MAGIC).nil?
-            maj = stream[1].to_i
-            min = stream[2].to_i
-          else
-            raise InvalidHeader, "Invalid header format"
-          end
-          PPKLite::Header.new(maj,min)
+        class Revision #:nodoc;
+            attr_accessor :document
+            attr_accessor :body, :xreftable
+            attr_reader :trailer
+            def initialize(adbk)
+                @document = adbk
+                @body = {}
+                @xreftable = nil
+                @trailer = nil
+            end
+            def trailer=(trl)
+                trl.document = @document
+                @trailer = trl
+            end
+            def each_object(&b)
+                @body.each_value(&b)
+            end
+            def objects
+                @body.values
+            end
         end
-        #
-        # Outputs self into PDF code.
-        #
-        def to_s
-          "%PPKLITE-#{@majorversion}.#{@minorversion}" + EOL
+        module Descriptor
+            CERTIFICATE = 1
+            USER = 2
+            def self.included(receiver) #:nodoc:
+                receiver.field    :ID,        :Type => Integer, :Required => true
+                receiver.field    :ABEType,   :Type => Integer, :Default => Descriptor::CERTIFICATE, :Required => true
+            end
+        end
+        class Certificate < Dictionary
+            include StandardObject
+            include Descriptor
+            add_type_info self, :ABEType, Descriptor::CERTIFICATE
+            module Flags
+                CAN_CERTIFY             = 1 << 1
+                ALLOW_DYNAMIC_CONTENT   = 1 << 2
+                UNKNOWN_1               = 1 << 3
+                ALLOW_HIGH_PRIV_JS      = 1 << 4
+                UNKNOWN_2               = 1 << 5
+                IS_ROOT_CA              = 1 << 6
+                #FULL_TRUST = 1 << 1 | 1 << 2 | 1 << 3 | 1 << 4 | 1 << 5 | 1 << 6
+                FULL_TRUST = 8190
+            end
+            field   :ABEType,       :Type => Integer, :Default => Descriptor::CERTIFICATE, :Required => true
+            field   :Usage,         :Type => Integer, :Default => 1, :Required => true
+            field   :Viewable,      :Type => Boolean, :Default => true
+            field   :Editable,      :Type => Boolean, :Default => true
+            field   :Cert,          :Type => String, :Required => true
+            field   :Trust,         :Type => Integer, :Default => Flags::UNKNOWN_2, :Required => true
+        end
+        class User < Dictionary
+            include StandardObject
+            include Descriptor
+            add_type_info self, :ABEType, Descriptor::USER
+            field   :ABEType,       :Type => Integer, :Default => Descriptor::USER, :Required => true
+            field   :Name,          :Type => String, :Required => true
+            field   :Encrypt,       :Type => Integer
+            field   :Certs,         :Type => Array.of(Certificate), :Default => [], :Required => true
         end
-        def to_sym #:nodoc:
-          "#{@majorversion}.#{@minorversion}".to_sym
+        class AddressList < Dictionary
+            include StandardObject
+            field   :Type,        :Type => Name, :Default => :AddressBook, :Required => true
+            field   :NextID,      :Type => Integer
+            field   :Entries,     :Type => Array.of(Descriptor), :Default => [], :Required => true
         end
-        def to_f #:nodoc:
-          to_sym.to_s.to_f
+        class UserList < Dictionary
+            include StandardObject
+            field   :Type,        :Type => Name, :Default => :User, :Required => true
         end
-      end
-      class Revision #:nodoc;
-        attr_accessor :pdf
-        attr_accessor :body, :xreftable, :trailer
-        def initialize(adbk)
-          @pdf = adbk
-          @body = {}
-          @xreftable = nil
-          @trailer = nil
+        class PPK < Dictionary
+            include StandardObject
+            field   :Type,        :Type => Name, :Default => :PPK, :Required => true
+            field   :User,        :Type => UserList, :Required => true
+            field   :AddressBook, :Type => AddressList, :Required => true
+            field   :V,           :Type => Integer, :Default => 0x10001, :Required => true
         end
-        def trailer=(trl)
-          trl.pdf = @pdf
-          @trailer = trl
+        class Catalog < Dictionary
+            include StandardObject
+            field   :Type,      :Type => Name, :Default => :Catalog, :Required => true
+            field   :PPK,       :Type => PPK, :Required => true
         end
-      end
-      attr_accessor :header, :revisions
-      def initialize #:nodoc:
-        @header = PPKLite::Header.new
-        @revisions = [ Revision.new(self) ]
-        @revisions.first.trailer = Trailer.new
-      end
-      def objects
-        def append_subobj(root, objset)
-          if objset.find{ |o| o.object_id == root.object_id }.nil?
-            objset << root
-            if root.is_a?(Array) or root.is_a?(Dictionary)
-              root.each { |subobj| append_subobj(subobj, objset) unless subobj.is_a?(Reference) }
+        attr_accessor :header, :revisions
+        def initialize(parser = nil) #:nodoc:
+            @header = PPKLite::Header.new
+            @revisions = [ Revision.new(self) ]
+            @revisions.first.trailer = Trailer.new
+            init if parser.nil?
+        end
+        def indirect_objects
+            @revisions.inject([]) do |set, rev| set.concat(rev.objects) end
+        end
+        alias root_objects indirect_objects
+        def cast_object(reference, type, parser = nil) #:nodoc:
+            @revisions.each do |rev|
+                if rev.body.include?(reference) and type < rev.body[reference].class
+                    rev.body[reference] = rev.body[reference].cast_to(type, parser)
+                    rev.body[reference]
+                else
+                    nil
+                end
             end
-          end
         end
-        objset = []
-        @revisions.first.body.values.each do |object|
-          unless object.is_a?(Reference)
-            append_subobj(object, objset)
-          end
+        def get_object(no, generation = 0) #:nodoc:
+            case no
+            when Reference
+              target = no
+            when ::Integer
+              target = Reference.new(no, generation)
+            when Origami::Object
+              return no
+            end
+            @revisions.first.body[target]
         end
-        objset
-      end
-      def <<(object)
-        object.set_indirect(true)
-        if object.no.zero?
-        maxno = 1
-          while get_object(maxno) do maxno = maxno.succ end
-          object.generation = 0
-          object.no = maxno
+        def <<(object)
+            object.set_indirect(true)
+            object.set_document(self)
+            if object.no.zero?
+                maxno = 1
+                maxno = maxno.succ while get_object(maxno)
+                object.generation = 0
+                object.no = maxno
+            end
+            @revisions.first.body[object.reference] = object
+            object.reference
+        end
+        alias insert <<
+        def Catalog
+            get_object(@revisions.first.trailer.Root)
         end
-        @revisions.first.body[object.reference] = object
-        object.reference
-      end
-      def Catalog
-        get_object(@trailer.Root)
-      end
-      def save(filename)
-        bin = ""
-        bin << @header.to_s
-        lastno, brange = 0, 0
-        xrefs = [ XRef.new(0, XRef::LASTFREE, XRef::FREE) ]
-        xrefsection = XRef::Section.new
-        @revisions.first.body.values.sort.each { |obj|
-          if (obj.no - lastno).abs > 1
+        def indirect_objects
+            @revisions.inject([]) do |set, rev| set.concat(rev.objects) end
+        end
+        alias root_objects indirect_objects
+        def save(path)
+            bin = "".b
+            bin << @header.to_s
+            lastno, brange = 0, 0
+            xrefs = [ XRef.new(0, XRef::FIRSTFREE, XRef::FREE) ]
+            xrefsection = XRef::Section.new
+            @revisions.first.body.values.sort.each { |obj|
+                if (obj.no - lastno).abs > 1
+                    xrefsection << XRef::Subsection.new(brange, xrefs)
+                    brange = obj.no
+                    xrefs.clear
+                end
+                xrefs << XRef.new(bin.size, obj.generation, XRef::USED)
+                lastno = obj.no
+                obj.pre_build
+                bin << obj.to_s
+                obj.post_build
+            }
             xrefsection << XRef::Subsection.new(brange, xrefs)
-            brange = obj.no
-            xrefs.clear
-          end
-          xrefs << XRef.new(bin.size, obj.generation, XRef::USED)
-          lastno = obj.no
-          bin << obj.to_s
-        }
-        xrefsection << XRef::Subsection.new(brange, xrefs)
-        @xreftable = xrefsection
-        @trailer ||= Trailer.new
-        @trailer.Size = rev.body.size + 1
-        @trailer.startxref = bin.size
-        bin << @xreftable.to_s
-        bin << @trailer.to_s
-        fd = File.open(filename, "w").binmode
-          fd << bin
-        fd.close
-        show_entries
-      end
-      alias saveas save
-      #
-      # Prints registered users in the address book
-      #
-      def show_users
-        puts "----------"
-        puts "Users list"
-        puts "----------"
-        @revisions.first.body.values.each { |obj| if obj.is_a?(User) then obj.show; puts end }
-        nil
-      end
-      #
-      # Prints registered certificates in the addressbook
-      #
-      def show_certs
-        puts "-----------------"
-        puts "Certificates list"
-        puts "-----------------"
-        @revisions.first.body.values.each { |obj| if obj.is_a?(Certificate) then obj.show; puts end }
-        nil
-      end
-      #
-      # Prints certificate with the specified id
-      #
-      def show_cert(id)
-        @revisions.first.body.values.find_all { |obj| obj.is_a?(Certificate) and obj.ID == id }.each do |cert|
-          cert.show
-          puts
+            @xreftable = xrefsection
+            @trailer ||= Trailer.new
+            @trailer.Size = @revisions.first.body.size + 1
+            @trailer.startxref = bin.size
+            bin << @xreftable.to_s
+            bin << @trailer.to_s
+            if path.respond_to?(:write)
+                io = path
+            else
+                path = File.expand_path(path)
+                io = File.open(path, "wb", encoding: 'binary')
+                close = true
+            end
+            begin
+                io.write(bin)
+            ensure
+                io.close if close
+            end
+            self
         end
-        nil
-      end
-      #
-      # Returns a Certificate dictionary corresponding to the specified id
-      #
-      def get_cert(id)
-        @revisions.first.body.values.find { |obj| obj.is_a?(Certificate) and obj.ID == id }
-      end
-      def show_user(id)
-        users = @revisions.first.body.values.find_all { |obj| obj.is_a?(User) and obj.ID == id }.each do |user|
-          user.show
-          puts
+        def each_user(&b)
+            each_entry(Descriptor::USER, &b)
         end
-        nil
-      end
-      #
-      # Prints users and certificates registered in the address book
-      #
-      def show_entries
-        show_users
-        show_certs
-        puts "End of address book."
-      end
-      #
-      # Add a certificate into the address book
-      #
-      def add_certificate(certfile, attributes, viewable = false, editable = false)
-        cert = Certificate.new
-        cert.Cert = OpenSSL::X509::Certificate.new(certfile).to_der
-        cert.ID = self.Catalog.PPK.AddressBook.NextID
-        self.Catalog.PPK.AddressBook.NextID += 1
-        cert.Trust = attributes
-        cert.Viewable = viewable
-        cert.Editable = editable
-        self.Catalog.PPK.AddressBook.Entries.push(self << cert)
-        show_certs
-      end
-      alias to_s show_entries
-      alias to_str show_entries
-      class Catalog < Dictionary
-        include StandardObject
-        field   :Type,      :Type => Name, :Default => :Catalog, :Required => true
-        field   :PPK,       :Type => Dictionary, :Required => true
-        def initialize(hash = {}) #:nodoc:
-          super(hash)
+        def get_user(id)
+            self.each_user.find {|user| user.ID == id }
         end
-      end
-      class PPK < Dictionary
-        include StandardObject
-        field   :Type,        :Type => Name, :Default => :PPK, :Required => true
-        field   :User,        :Type => Dictionary, :Required => true
-        field   :AddressBook, :Type => Dictionary, :Required => true
-        field   :V,           :Type => Integer, :Default => 0x10001, :Required => true
-        def initialize(hash = {}) #:nodoc:
-          super(hash)
+        def users
+            self.each_user.to_a
         end
-      end
-      class UserList < Dictionary
-        include StandardObject
-        field   :Type,        :Type => Name, :Default => :User, :Required => true
-        def initialize(hash = {})
-          super(hash)
+        def each_certificate(&b)
+            each_entry(Descriptor::CERTIFICATE, &b)
         end
-      end
-      class AddressList < Dictionary
-        include StandardObject
-        field   :Type,        :Type => Name, :Default => :AddressBook, :Required => true
-        field   :NextID,      :Type => Integer
-        field   :Entries,     :Type => Array, :Default => [], :Required => true
-        def initialize(hash = {}) #:nodoc:
-          super(hash)
+        def get_certificate(id)
+            self.each_certificate.find {|cert| cert.ID == id }
         end
-      end
-      module Descriptor
-        CERTIFICATE = 1
-        USER = 2
-        def self.included(receiver) #:nodoc:
-          receiver.field    :ID,        :Type => Integer, :Required => true
-          receiver.field    :ABEType,   :Type => Integer, :Default => Descriptor::CERTIFICATE, :Required => true
+        def certificates
+            self.each_certificate.to_a
         end
-        def initialize(hash = {}) #:nodoc:
-          super(hash)
+        #
+        # Add a certificate into the address book
+        #
+        def add_certificate(certfile, attributes, viewable: false, editable: false)
+            if certfile.is_a?(OpenSSL::X509::Certificate)
+                x509 = certfile
+            else
+                x509 = OpenSSL::X509::Certificate.new(certfile)
+            end
+            address_book = get_address_book
+            cert = Certificate.new
+            cert.Cert = x509.to_der
+            cert.ID = address_book.NextID
+            address_book.NextID += 1
+            cert.Trust = attributes
+            cert.Viewable = viewable
+            cert.Editable = editable
+            address_book.Entries.push(self << cert)
         end
-      end
-      class User < Dictionary
-        include StandardObject
-        include Descriptor
-        field   :ABEType,       :Type => Integer, :Default => Descriptor::USER, :Required => true
-        field   :Name,          :Type => String, :Required => true
-        field   :Encrypt,       :Type => Integer
-        field   :Certs,         :Type => Array, :Default => [], :Required => true
-        def show
-          puts "ID: #{self.ID}"
-          puts "Name: #{self.Name}"
-          puts "Certificates: " + self.Certs.join(", ")
+        private
+        def init
+            catalog = Catalog.new(
+                PPK: PPK.new(
+                    User: UserList.new,
+                    AddressBook: AddressList.new(
+                        Entries: [],
+                        NextID: 1
+                    )
+                )
+            )
+            @revisions.first.trailer.Root = self.insert(catalog)
         end
-      end
-      class Certificate < Dictionary
-        include StandardObject
-        include Descriptor
-        module Flags
-          CAN_CERTIFY = 1 << 1
-          ALLOW_DYNAMIC_CONTENT = 1 << 2
-          UNKNOWN_1 = 1 << 3
-          ALLOW_HIGH_PRIV_JS = 1 << 4
-          UNKNOWN_2 = 1 << 5
-          IS_ROOT_CA = 1 << 6
-          #~ FULL_TRUST = 1 << 1 | 1 << 2 | 1 << 3 | 1 << 4 | 1 << 5 | 1 << 6
-          FULL_TRUST = 8190
+        def each_entry(type)
+            return enum_for(__method__, type) unless block_given?
+            address_book = get_address_book
+            address_book.Entries.each do |entry|
+                entry = entry.solve
+                yield(entry) if entry.is_a?(Dictionary) and entry.ABEType == type
+            end
         end
-        field   :ABEType,       :Type => Integer, :Default => Descriptor::CERTIFICATE, :Required => true
-        field   :Usage,         :Type => Integer, :Default => 1, :Required => true
-        field   :Viewable,      :Type => Boolean, :Default => true
-        field   :Editable,      :Type => Boolean, :Default => true
-        field   :Cert,          :Type => String, :Required => true
-        field   :Trust,         :Type => Integer, :Default => Flags::UNKNOWN_2, :Required => true
-        def show
-          puts "ID: #{self.ID}"
-          puts "Viewable: #{self.Viewable}"
-          puts "Editable: #{self.Editable}"
-          puts "Trust attributes: #{self.Trust}"
+        def get_address_book
+            raise Error, "Broken catalog" unless self.Catalog.is_a?(Dictionary) and self.Catalog.PPK.is_a?(Dictionary)
+            ppk = self.Catalog.PPK
+            raise Error, "Broken PPK" unless ppk.AddressBook.is_a?(Dictionary)
+            address_book = ppk.AddressBook
+            raise Error, "Broken address book" unless address_book.Entries.is_a?(Array)
+            address_book
         end
-      end
-      def get_object(no, generation = 0) #:nodoc:
-        case no
-        when Reference
-          target = no
-        when ::Integer
-          target = Reference.new(no, generation)
-        when Origami::Object
-          return no
+        def get_object_offset(no,generation) #:nodoc:
+            bodyoffset = @header.to_s.size
+            objectoffset = bodyoffset
+            @revisions.first.body.values.each { |object|
+                if object.no == no and object.generation == generation then return objectoffset
+                else
+                    objectoffset += object.to_s.size
+                end
+            }
+            nil
         end
-        @revisions.first.body[target]
-      end
-      private
-      def rebuildxrefs #:nodoc:
-        startxref = @header.to_s.size
-        @revisions.first.body.values.each { |object|
-          startxref += object.to_s.size
-        }
-        @xreftable = buildxrefs(@revisions.first.body)
-        @trailer ||= Trailer.new
-        @trailer.Size = @revisions.first.body.size + 1
-        @trailer.startxref = startxref
-        self
-      end
-      def buildxrefs(objects) #:nodoc:
-        lastno = 0
-        brange = 0
-        xrefs = [ XRef.new(0, XRef::LASTFREE, XRef::FREE) ]
-        xrefsection = XRef::Section.new
-        objects.sort.each { |object|
-          if (object.no - lastno).abs > 1
-            xrefsection << XRef::Subsection.new(brange, xrefs)
-            brange = object.no
-            xrefs.clear
-          end
-          xrefs << XRef.new(get_object_offset(object.no, object.generation), object.generation, XRef::USED)
-          lastno = object.no
-        }
-        xrefsection << XRef::Subsection.new(brange, xrefs)
-        xrefsection
-      end
-      def get_object_offset(no,generation) #:nodoc:
-        bodyoffset = @header.to_s.size
-        objectoffset = bodyoffset
-        @revisions.first.body.values.each { |object|
-          if object.no == no and object.generation == generation then return objectoffset
-          else
-            objectoffset += object.to_s.size
-          end
-        }
-        nil
-      end
     end
-  end
 end