/show_bug.cgi?id=31039
URL in basic-link is scrambled by encryption
Summary: URL in basic-link is scrambled by encryption
Product: Fop
Version: 0.20.5
Platform: PC
OS/Version: Other
Status: NEW
Severity: Normal
Priority
/show_bug.cgi?id=31039
URL in basic-link is scrambled by encryption
--- Additional Comments From [EMAIL PROTECTED] 2004-09-03 13:56 ---
Created an attachment (id=12629)
example xml
/show_bug.cgi?id=31039
URL in basic-link is scrambled by encryption
--- Additional Comments From [EMAIL PROTECTED] 2004-09-03 13:56 ---
Created an attachment (id=12630)
example xsl
/show_bug.cgi?id=31039
URL in basic-link is scrambled by encryption
--- Additional Comments From [EMAIL PROTECTED] 2004-09-03 13:57 ---
Created an attachment (id=12631)
example pdf with no encryption (link works)
/show_bug.cgi?id=31039
URL in basic-link is scrambled by encryption
--- Additional Comments From [EMAIL PROTECTED] 2004-09-03 13:58 ---
Created an attachment (id=12632)
example pdf with printing disabled (link doesn't work)
/show_bug.cgi?id=21303
Embeded Fonts and signets disturbed by encryption
[EMAIL PROTECTED] changed:
What|Removed |Added
OS/Version|Windows NT/2K |All
Platform
/show_bug.cgi?id=21303
Embeded Fonts and signets disturbed by encryption
--- Additional Comments From [EMAIL PROTECTED] 2004-06-21 08:20 ---
this not only appears unter windows (also my windows fop-version (0.20.5)
ignores the -nocopy, -noedit, -o flags). this also is true for the linux
/show_bug.cgi?id=26589
AIX 5.2, ibm jdk 1.4.0, OutOfMemoryError with PDF Encryption only
Summary: AIX 5.2, ibm jdk 1.4.0, OutOfMemoryError with PDF
Encryption only
Product: Fop
Version: 0.20.5
Platform: Other
OS/Version: AIX
/show_bug.cgi?id=26589
AIX 5.2, ibm jdk 1.4.0, OutOfMemoryError with PDF Encryption only
[EMAIL PROTECTED] changed:
What|Removed |Added
Status|NEW |RESOLVED
/show_bug.cgi?id=21303
Embeded Fonts and signets disturbed by encryption
--- Additional Comments From [EMAIL PROTECTED] 2003-12-01 19:18 ---
Can anyone please tell me as to when this will be fixed??
Thanks in advance.
Beena
/show_bug.cgi?id=21303
Embeded Fonts and signets disturbed by encryption
--- Additional Comments From [EMAIL PROTECTED] 2003-12-01 20:28 ---
Not anytime soon, I'm afraid. Actually, the problem is fixed in our main
development tree (aka redesign), though that won't help you much until
/show_bug.cgi?id=21303
Embeded Fonts and signets disturbed by encryption
Summary: Embeded Fonts and signets disturbed by encryption
Product: Fop
Version: 0.20.5
Platform: PC
OS/Version: Windows NT/2K
Status: NEW
Severity: Normal
/show_bug.cgi?id=20480
PDF outline texts are garbled when PDF encryption is activated.
Summary: PDF outline texts are garbled when PDF encryption is
activated.
Product: Fop
Version: 0.20.5
Platform: All
URL: http
/show_bug.cgi?id=20480
PDF outline texts are garbled when PDF encryption is activated.
[EMAIL PROTECTED] changed:
What|Removed |Added
CC||[EMAIL
/show_bug.cgi?id=20480
PDF outline texts are garbled when PDF encryption is activated.
--- Additional Comments From [EMAIL PROTECTED] 2003-06-04 14:52 ---
The reason for the garbled text is the lack of encryption on string objects as
they occur in outline objects in PDF. In HEAD it took quite
Jeremias Maerki wrote:
+1 for a 0.20.5rc3 ASAP (as Clay Leeds suggests). 0.20.5rc2 is bugged
and I believe Jörg is tired of marking new bug reports as duplicates. :-)
+1 for really (!) going to bugfixing-only mode in the maintenance branch.
+1 for 0.20.5 being the last release from the
Forgive my ignorance, but can someone explain the argument for limiting
the number of Release Candidates? If testing needs to be done, why not
create snapshots that could be used for testing more widely.
Since I don't currently use hyphenation, I don't want to wait for the
hyphenation patterns to
rid of this duplicated text
problem which poeple complain about much too often and get also
a more thourough test of the encryption stuff.
Yes, another RC makes sense but I'm a bit unsure about the
timeframe because I'd like 0.20.5rc3 to be the last RC before
releasing 0.20.5 (i.e at best
Jeremias Maerki wrote:
You lost me. Error reporting: line numbers for FO's?
Yes.
Maint branch or trunk???
Maintenance. I though it was limited errort but it got out of
hand. We may have to rework the concept for HEAD.
So, do I get you right that you want (me) to follow up on that idea to
use
a more thourough test of the encryption stuff.
J.Pietschmann
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
J.Pietschmann wrote:
Because hyphenation license updates seem to be slow, what about
doing an rc3 in 10-15 days? We'll get rid of this duplicated text
problem which poeple complain about much too often and get also
a more thourough test of the encryption stuff.
Here's my non-committer's obligatory
rid of this duplicated text
problem which poeple complain about much too often and get also
a more thourough test of the encryption stuff.
censored what=rude four letter word/ Don't remind me of the license
stuff. There's still s much work. Worst of all: It's no fun. :-(
So, do I get you
Jeremias Maerki wrote:
Ok, I've done so. ASCII filters such as ASCII85 and ASCIIHex will be
disabled/ignored when encryption is active.
Can you fix the maintenance branch too (if not already done)?
J.Pietschmann
-
To unsubscribe
Hmm, not so easy. I'll have a look.
On 27.03.2003 23:04:50 J.Pietschmann wrote:
Jeremias Maerki wrote:
Ok, I've done so. ASCII filters such as ASCII85 and ASCIIHex will be
disabled/ignored when encryption is active.
Can you fix the maintenance branch too (if not already done)?
Jeremias
As I thought, not so easy. To do that in maintenance branch I would have
to backport a lot of changes I did in the PDF library. Problems:
- No access to the PDFDocument from the spot where filters are applied
to find out if encryption is active.
- The application of encryption is pretty much
Peter B. West wrote:
This step seems to have some problems. I have just gone through the
cycle of building locally, checking the changes into HEAD, getting
forrestbot to refresh, checking the just-constucted site, and then
getting forrestbot to publish. I had problems on the live site that
On Tue, Mar 25, 2003 at 01:56:04AM +1000, Peter B. West wrote:
Victor Mote wrote:
My understanding is as follows:
1. The refresh button on the http://forrestbot.cocoondev.org site will
take the contents at cvs.apache.org/cvs/xml-fop as input, and generate the
web site. That is what is
Jeremias,
Forrest CVS. I modified forrest.build.xml in my xml-forrest tree to get
it to locate the .js files. I haven't tried a cvs up on forrest because
of warnings that things might be a bit unstable ATM.
Peter
Jeremias Maerki wrote:
Peter,
which one is broken, forrest CVS or fop CVS?
--
On Tue, Mar 18, 2003 at 05:30:47PM +1000, Peter B. West wrote:
Victor,
There's a slight problem here. My files can only be built successfully
with a mod to forrest.build.xml that copies the contents of
resources/scripts into context. If forrestbot is building off CVS with
a slightly
On Tue, Mar 18, 2003 at 08:03:42PM +1100, Jeff Turner wrote:
...
Instead of modifying Forrest, if you copy the *.js files from resources/*
to content/*, so you have:
[xml-fop ~/src/documentation/content]$ find . -name codedisplay.js
./design/alt.design/properties/codedisplay.js
Jeff Turner wrote:
Then the only broken files are:
- [broken page] pdf-security.html -
- [broken page] dev/output.html -
The attached patch fixes these two.
Thanks very much. I have just committed these changes. I will probably be
regenerating the site later in the day.
Victor Mote
Victor,
I'll make and commit the changes that Jeff recommended. We can then use
the bot output or out own forrest run to generate the site. It still
has to be committed and the leve site updated by hand, as I understand
things.
Peter
Victor Mote wrote:
Peter B. West wrote:
...
I just took
On Tue, Mar 18, 2003 at 10:04:58PM -0700, Victor Mote wrote:
Peter B. West wrote:
That should be, ...still has to be committed. The 6-hourly script
will presumably update from the website CVS.
Peter B. West wrote:
Victor,
I'll make and commit the changes that Jeff recommended.
Keiron Liddle wrote:
Peter, Keiron: how is the web site updated? I thought there was a
cron job every few hours?
Currently it only updates the site here:
http://forrestbot.cocoondev.com (seems to
be down at the moment)
From this site you can update the main site by entering the correct
Victor,
There's a slight problem here. My files can only be built successfully
with a mod to forrest.build.xml that copies the contents of
resources/scripts into context. If forrestbot is building off CVS with
a slightly elderly version (and I understand the current CVS is going to
be a
Jeremias,
From my understanding of the spec, encryption MUST be the last step.
Encryption will not make the size grow, but it does negate any benefit that
ASCII85 or ASCIIHEX filters provide and THEY do make the file larger.
In a nutshell, I would disable the ASCII85 or ASCIIHEX filters
Do I interpret the PDF specs correctly that if encryption is applied it
doesn't make sense to apply ASCII85 or ASCIIHEX filters, because the
generated PDF will always be binary and the filters only increase the
file size? So, these two filters could be disabled in this case. Right?
Here's the key
the design and make it easier to apply
filters/encryption in a more uniform way. The code is currently
scattered all around the package and in the PDF renderer package.
While doing the above work I also realized that the font support was
more or less broken. I've fixed it along the way as good
Hi crypto-guys!
I've just committed PDF encryption support by Patrick C. Lankswert to
the redesign. The bad message is that it doesn't work yet. I get blank
pages in Acrobat when enabled, although the PDF looks good when compared
with one generated by the maintenance branch. I guess that's
Jeremias Maerki wrote:
I've just committed PDF encryption support by Patrick C. Lankswert to
the redesign. The bad message is that it doesn't work yet. I get blank
pages in Acrobat when enabled, although the PDF looks good when compared
with one generated by the maintenance branch. I guess that's
Can you port your change to the maintenance branch?
I'm very interested to have encryption with JDK1.3.
Many thanks,
Bernard
-Original Message-
From: Jeremias Maerki [mailto:[EMAIL PROTECTED]
Sent: 13 March, 2003 18:00
To: [EMAIL PROTECTED]
Subject: Re: PDF Encryption in HEAD
Hi
That's why I didn't commit the patch: I didn't want to re-add
the PDFDocument reference to PDFXObject in order to get the
add the encryption filter after the makeStream() without asking
why the reference had been dropped on the way from maintenance
to HEAD.
The PDFDocument was used
Manual,
I think so... the encryption objects are associated with the PDF Document so
as long as there is only on thread in a given PDF document instance, you
should be good to go.
Pat
-Original Message-
From: Manuel Mall [mailto:[EMAIL PROTECTED]
Sent: Wednesday, March 12, 2003 4:57 AM
Clay,
Right now the options are pass the the render. Examples can be found in the
command line implementation. But to save you some time, the rendor options
are pass as a hash map (name value pairs) to the render. If any encryption
options are passed, encryption is enabled. The value names
Clay,
Ooops... sorry, you asked about command line.
J,
Thanks for all your help pulling this together.
Pat
-Original Message-
From: J.Pietschmann [mailto:[EMAIL PROTECTED]
Sent: Wednesday, March 12, 2003 3:10 PM
To: [EMAIL PROTECTED]
Subject: Re: PDF Encryption in HEAD
Clay Leeds
Jeremias,
Be more than happy to look at it. Did you commit to HEAD or else where?
Pat
-Original Message-
From: Jeremias Maerki [mailto:[EMAIL PROTECTED]
Sent: Thursday, March 13, 2003 12:00 PM
To: [EMAIL PROTECTED]
Subject: Re: PDF Encryption in HEAD
Hi crypto-guys!
I've just
many thanks
I will try
Bernard
-Original Message-
From: J.Pietschmann [mailto:[EMAIL PROTECTED]
Sent: 13 March, 2003 22:57
To: [EMAIL PROTECTED]
Subject: Re: PDF Encryption in HEAD
Bernard D'Have wrote:
Can you port your change to the maintenance branch?
I'm very
Yes, redesign happens in HEAD. Thanks. I'll be after it, too, today.
On 14.03.2003 03:14:31 Patrick C. Lankswert wrote:
Be more than happy to look at it. Did you commit to HEAD or else where?
Jeremias Maerki
-
To
Patrick,
I am following with much interest the integration of PDF encryption into
FOP.
While trying to understand how it is invoked (not configured) I got
confused. We currently using a 3rd party external tool to encrypt our PDFs
after creation through FOP. Each PDF is given its own different
file to render on *nix Win*. I'd be interested
in finding out how to run these encryption (?) options running FOP from
the command line.
Web Maestro Clay
Manuel Mall wrote:
Patrick,
I am following with much interest the integration of PDF encryption into
FOP.
While trying to understand how
Clay Leeds wrote:
I'd be interested
in finding out how to run these encryption (?) options running FOP from
the command line.
The easiest way you can imagine:
1. get the latest CVS maintenance branch code (it's not in 0.20.5rc2)
2. build
3. run fop.sh/fop.bat without parameters.
Also, the docs
Manuel Mall wrote:
If we want to use the
encryption within FOP we would need to be able to set the owner password
before each individual run. Is that possible?
Roughly like
Renderer renderer=new PDFRenderer();
HashMap options = new HashMap();
options.put(ownerPassword,secret
The encryption filter uses the number and generation as part of the hash to
generate the key for a given object. In short, the encryption key is
different for every object and is based on the number and generation of the
object. I would have preferred something simpler but the PDFXObject
The encryption filter uses the number and generation as part of the hash to
generate the key for a given object. In short, the encryption key is
different for every object and is based on the number and generation of the
object. I would have preferred something simpler but the PDFXObject
Hi all,
I tried to get PDF encryption into HEAD and failed.
Most of the problem is that PDFXObject no longer has a reference
to the PDFDocument, where the encryption object resides in the patch.
I'm not sure how important this is, the encryption filter is
different from the other filters: it takes
I'll have a look at it (Tuesday or Wednesday).
On 09.03.2003 23:44:27 J.Pietschmann wrote:
I tried to get PDF encryption into HEAD and failed.
Most of the problem is that PDFXObject no longer has a reference
to the PDFDocument, where the encryption object resides in the patch.
I'm not sure
Peter B. West wrote:
Keiron Liddle wrote:
Peter, Keiron: how is the web site updated? I thought there was a
cron job every few hours?
Currently it only updates the site here:
http://forrestbot.cocoondev.com (seems to
be down at the moment)
From this site you can update the main
Patrick C. Lankswert wrote:
If there is anything you need reworked, just let me know.
No problem apart from the surprise.
I wrote up something in pdfencryption.xml, checked in in HEAD (not
the maintenance branch). If you (or someone else) would proofread
it, in order to spare others the trouble...
Peter, Keiron: how is the web site updated? I thought there was a
cron job every few hours?
Currently it only updates the site here: http://forrestbot.cocoondev.com (seems to
be down at the moment)
From this site you can update the main site by entering the correct
name/password, I'll send
Keiron Liddle wrote:
Peter, Keiron: how is the web site updated? I thought there was a
cron job every few hours?
Currently it only updates the site here: http://forrestbot.cocoondev.com (seems to
be down at the moment)
From this site you can update the main site by entering the correct
Patrick C. Lankswert wrote:
Add jce-jdk13-118.jar (for 1.3.x) to %JAVA_HOME%\jre\lib\ext and add
security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
to %JAVA_HOME%\jre\lib\security\java.security in the appropriate section.
This should work. This is how it is done to support any
PROTECTED]
Subject: Re: Encryption
Patrick C. Lankswert wrote:
Add jce-jdk13-118.jar (for 1.3.x) to %JAVA_HOME%\jre\lib\ext and add
security.provider.6=org.bouncycastle.jce.provider.BouncyCastleProvider
to %JAVA_HOME%\jre\lib\security\java.security in the appropriate section.
This should work
Patrick C. Lankswert wrote:
Thanks... if there are any issues or work that is needed, I'm MORE than
happy to help.
I got the JDK 1.3 compatibility now.
However, while testing the encryption I'm getting
Cannot find any provider supporting RC4
The JCE doc for JDK1.4 at
http://java.sun.com/j2se
Would you prefer a direct use of the bouncycastle crypto or modification to
the build that tests the JDK?
Pat
-Original Message-
From: J.Pietschmann [mailto:[EMAIL PROTECTED]
Sent: Sunday, March 02, 2003 5:59 PM
To: [EMAIL PROTECTED]
Subject: Re: Encryption
J.Pietschmann wrote
To: [EMAIL PROTECTED]
Subject: Re: Encryption
Patrick C. Lankswert wrote:
Thanks... if there are any issues or work that is needed, I'm MORE than
happy to help.
I got the JDK 1.3 compatibility now.
However, while testing the encryption I'm getting
Cannot find any provider supporting RC4
The JCE
[mailto:[EMAIL PROTECTED]
Sent: Thursday, February 13, 2003 10:36 PM
To: [EMAIL PROTECTED]
Subject: Encryption
To all that may concern,
Here it is... PDF encryption. Unfortunately, I seem to be lame when it comes
to cvs. When I generate the unified using WinCVS's cvs diff -uN, it does
not include
Patrick C. Lankswert wrote:
Has anybody looked at this?
Yes. I'm currently in the process of integrating the stuff.
J.Pietschmann
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
Thanks... if there are any issues or work that is needed, I'm MORE than
happy to help.
Pat
-Original Message-
From: J.Pietschmann [mailto:[EMAIL PROTECTED]
Sent: Sunday, March 02, 2003 12:35 PM
To: [EMAIL PROTECTED]
Subject: Re: Encryption
Patrick C. Lankswert wrote:
Has anybody
J.Pietschmann wrote:
Patrick C. Lankswert wrote:
Has anybody looked at this?
Yes. I'm currently in the process of integrating the stuff.
I'll have to do some more test, in particular for JDK1.3 compatibility
(no javax.crypto there).
Commit deferred to next Friday.
J.Pietschmann
From: Patrick C. Lankswert [EMAIL PROTECTED]
However, it does not seem to support the CVS diff command. When I select
diff, it gives me a visual comparison. I assume that CVS diff is like the
UN*X command line diff for use with patch... can anybody help.
Unfortunately, I am on a Windows
Chris,
Thanks...
Pat
-Original Message-
From: Chris Bowditch [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 13, 2003 5:24 AM
To: [EMAIL PROTECTED]
Subject: RE: Encryption
From: Patrick C. Lankswert [EMAIL PROTECTED]
However, it does not seem to support the CVS diff command. When
To all that may concern,
Here it is... PDF encryption. Unfortunately, I seem to be lame when it comes
to cvs. When I generate the unified using WinCVS's cvs diff -uN, it does
not include the file PDFEncryption.java. I have included it as a second
attachment. It belongs in src/org/apache/fop/pdf
Jeremias (et al.),
I have implemented the changes as prescribed and tested it with several fo
files containing text and graphics. Everything looks good so far. I have two
open issues:
1) I have implemented the encryption through the command line interface and
renderOptions. Should it have been
Hi Patrick
On 10.02.2003 06:17:26 Patrick C. Lankswert wrote:
Ok... with two separate weekends of the stomach flu in my house, it took a
little longer than I had hoped. However, I have a working copy of the V1 R2
encryption with support for user and owner passwords, print, copy, content
edit
Jeremias,
Ok... with two separate weekends of the stomach flu in my house, it took a
little longer than I had hoped. However, I have a working copy of the V1 R2
encryption with support for user and owner passwords, print, copy, content
edit and annotation edit control written against v0.20.4
2:07 AM
To: [EMAIL PROTECTED]
Subject: Re: Encryption
Hi Patrick
That's great news! I'll be glad to help testing and integrating.
But one question: Why would you want to implement RC4 yourself? Wouldn't
it be better if we used (for example) bouncycastle.org's implementation
for that? They have
the compatibilty of encryption work. Can it have the 1.4 features and
still work in 1.3?
non-commercial RC4 implementation. If I get the time, I could have it
cleaned up in a week and a half. It might be a little longer if I go ahead
and implement RC4 myself. I might need some help testing, but I already have
Hi Patrick
That's great news! I'll be glad to help testing and integrating.
But one question: Why would you want to implement RC4 yourself? Wouldn't
it be better if we used (for example) bouncycastle.org's implementation
for that? They have an MIT licence which is compatible with the APL
AFAIK.
To all,
I tried to determine the reason from the archives with clarity... but why
isn't PDF encryption in the core?
Pat Lankswert
-
To unsubscribe, e-mail: [EMAIL PROTECTED]
For additional commands, email: [EMAIL PROTECTED]
Hi Patrick
Because still noone has started working on it? :-) It's one of the most
requested features. On the other side, iText seems to work for those who
want to add encryption.
Would you like to help? We can use all the help we can get.
On 09.01.2003 07:34:09 Patrick C. Lankswert wrote:
I
Hi all,
for the archives, I've written a small proof-of-concept
program which couples FOP and iText in order to provide
PDF encryption. Watermarking and everything else, possibly
even Henrik Holle's total page count problem, could be
done in a similar way.
Most of the iText code is directly
Geez, self-followup:
writer.setEncryption(PdfWriter.STRENGTH40BITS,
pdf, null, PdfWriter.AllowCopy);
If I set encryption to STRENGTH128BITS, as the original
had, Acrobat Reader 4.0 complains about Error while
decrypting. Probably an export restriction :-(, so be
careful
Actually, 128 bit is a ver. 5.0 requirement. I'm using this exact setup in
my app (iText w/ FOP for encryption), and we are requiring all users to have
AcroReader 5.0 for 128 bit encryption. Also, if you encrypt at 128 bit, and
then check the encryptions properties of the doc in Reader, you'll
To apply encryption to FOP generated PDF files we post process the files
with a command line tool called pdcat from a PDF tools set available from
http://pdf.glance.ch.
If you are looking for an all Java solution I believe iText from
http://www.lowagie.com/iText/ also allows encryption
I quickly looked at iText, and that is not a XSL-FO - PDF engine.
RenderX's XEP Java app does do encryption, but they are not a viable option
for us. Where in the FOP process could we hotwire some encryption?
Also, the command line app won't work because we want the write the file
directly
. first
produce a temporary PDF file on disk using FOP and then call for example the
pdcat tool to copy the temporary PDF file to its permanent home and apply
the encryption while doing it. This is how we do it here within a Tomcat
hosted servlet.
Manuel
-Original Message-
From: David B
PROTECTED]
Sent: Wednesday, March 06, 2002 9:51 PM
Subject: RE: Encryption
David,
You are correct both solutions are post processing type solutions, ie. it
is
an additional step after the XSL-FO - PDF conversion. I am pretty certain
FOP, in its current version, cannot do it. The question for you
What is involved in encrypting the outputted PDF? Is this
something that is simple to implement?
88 matches
Mail list logo
