MDL-10496:
[moodle-linuxchix.git] / lib / tcpdf / tcpdfprotection.php
bloba43202979c305ca618686b04c11fd07622afb151
1 <?php
2 /****************************************************************************
3 * Software: FPDF_Protection *
4 * Version: 1.02 *
5 * Date: 2005/05/08 *
6 * Author: Klemen VODOPIVEC *
7 * License: Freeware *
8 * *
9 * You may use and modify this software as you wish as stated in original *
10 * FPDF package. *
11 * *
12 * Thanks: Cpdf (http://www.ros.co.nz/pdf) was my working sample of how to *
13 * implement protection in pdf. *
14 ****************************************************************************/
16 require_once('tcpdf.php');
18 class TCPDF_Protection extends TCPDF
20 var $encrypted; //whether document is protected
21 var $Uvalue; //U entry in pdf document
22 var $Ovalue; //O entry in pdf document
23 var $Pvalue; //P entry in pdf document
24 var $enc_obj_id; //encryption object id
25 var $last_rc4_key; //last RC4 key encrypted (cached for optimisation)
26 var $last_rc4_key_c; //last RC4 computed key
28 function TCPDF_Protection($orientation='P',$unit='mm',$format='A4') {
29 parent::TCPDF($orientation,$unit,$format);
31 $this->encrypted=false;
32 $this->last_rc4_key='';
33 $this->padding="\x28\xBF\x4E\x5E\x4E\x75\x8A\x41\x64\x00\x4E\x56\xFF\xFA\x01\x08".
34 "\x2E\x2E\x00\xB6\xD0\x68\x3E\x80\x2F\x0C\xA9\xFE\x64\x53\x69\x7A";
37 /**
38 * Function to set permissions as well as user and owner passwords
40 * - permissions is an array with values taken from the following list:
41 * copy, print, modify, annot-forms
42 * If a value is present it means that the permission is granted
43 * - If a user password is set, user will be prompted before document is opened
44 * - If an owner password is set, document can be opened in privilege mode with no
45 * restriction if that password is entered
47 function SetProtection($permissions=array(),$user_pass='',$owner_pass=null) {
48 $options = array('print' => 4, 'modify' => 8, 'copy' => 16, 'annot-forms' => 32 );
49 $protection = 192;
50 foreach($permissions as $permission){
51 if (!isset($options[$permission]))
52 $this->Error('Incorrect permission: '.$permission);
53 $protection += $options[$permission];
55 if ($owner_pass === null)
56 $owner_pass = uniqid(rand());
57 $this->encrypted = true;
58 $this->_generateencryptionkey($user_pass, $owner_pass, $protection);
61 /****************************************************************************
62 * *
63 * Private methods *
64 * *
65 ****************************************************************************/
67 function _putstream($s) {
68 if ($this->encrypted) {
69 $s = $this->_RC4($this->_objectkey($this->n), $s);
71 parent::_putstream($s);
74 function _textstring($s) {
75 if ($this->encrypted) {
76 $s = $this->_RC4($this->_objectkey($this->n), $s);
78 return parent::_textstring($s);
81 /**
82 * Compute key depending on object number where the encrypted data is stored
84 function _objectkey($n) {
85 return substr($this->_md5_16($this->encryption_key.pack('VXxx',$n)),0,10);
88 /**
89 * Escape special characters
91 function _escape($s) {
92 $s=str_replace('\\','\\\\',$s);
93 $s=str_replace(')','\\)',$s);
94 $s=str_replace('(','\\(',$s);
95 $s=str_replace("\r",'\\r',$s);
96 return $s;
99 function _putresources() {
100 parent::_putresources();
101 if ($this->encrypted) {
102 $this->_newobj();
103 $this->enc_obj_id = $this->n;
104 $this->_out('<<');
105 $this->_putencryption();
106 $this->_out('>>');
107 $this->_out('endobj');
111 function _putencryption() {
112 $this->_out('/Filter /Standard');
113 $this->_out('/V 1');
114 $this->_out('/R 2');
115 $this->_out('/O ('.$this->_escape($this->Ovalue).')');
116 $this->_out('/U ('.$this->_escape($this->Uvalue).')');
117 $this->_out('/P '.$this->Pvalue);
120 function _puttrailer() {
121 parent::_puttrailer();
122 if ($this->encrypted) {
123 $this->_out('/Encrypt '.$this->enc_obj_id.' 0 R');
124 $this->_out('/ID [()()]');
129 * RC4 is the standard encryption algorithm used in PDF format
131 function _RC4($key, $text) {
132 if ($this->last_rc4_key != $key) {
133 $k = str_repeat($key, 256/strlen($key)+1);
134 $rc4 = range(0,255);
135 $j = 0;
136 for ($i=0; $i<256; $i++){
137 $t = $rc4[$i];
138 $j = ($j + $t + ord($k{$i})) % 256;
139 $rc4[$i] = $rc4[$j];
140 $rc4[$j] = $t;
142 $this->last_rc4_key = $key;
143 $this->last_rc4_key_c = $rc4;
144 } else {
145 $rc4 = $this->last_rc4_key_c;
148 $len = strlen($text);
149 $a = 0;
150 $b = 0;
151 $out = '';
152 for ($i=0; $i<$len; $i++){
153 $a = ($a+1)%256;
154 $t= $rc4[$a];
155 $b = ($b+$t)%256;
156 $rc4[$a] = $rc4[$b];
157 $rc4[$b] = $t;
158 $k = $rc4[($rc4[$a]+$rc4[$b])%256];
159 $out.=chr(ord($text{$i}) ^ $k);
162 return $out;
166 * Get MD5 as binary string
168 function _md5_16($string) {
169 return pack('H*',md5($string));
173 * Compute O value
175 function _Ovalue($user_pass, $owner_pass) {
176 $tmp = $this->_md5_16($owner_pass);
177 $owner_RC4_key = substr($tmp,0,5);
178 return $this->_RC4($owner_RC4_key, $user_pass);
182 * Compute U value
184 function _Uvalue() {
185 return $this->_RC4($this->encryption_key, $this->padding);
189 * Compute encryption key
191 function _generateencryptionkey($user_pass, $owner_pass, $protection) {
192 // Pad passwords
193 $user_pass = substr($user_pass.$this->padding,0,32);
194 $owner_pass = substr($owner_pass.$this->padding,0,32);
195 // Compute O value
196 $this->Ovalue = $this->_Ovalue($user_pass,$owner_pass);
197 // Compute encyption key
198 $tmp = $this->_md5_16($user_pass.$this->Ovalue.chr($protection)."\xFF\xFF\xFF");
199 $this->encryption_key = substr($tmp,0,5);
200 // Compute U value
201 $this->Uvalue = $this->_Uvalue();
202 // Compute P value
203 $this->Pvalue = -(($protection^255)+1);