/src/qpdf/libqpdf/QPDFParser.cc
Line | Count | Source (jump to first uncovered line) |
1 | | #include <qpdf/QPDFParser.hh> |
2 | | |
3 | | #include <qpdf/BufferInputSource.hh> |
4 | | #include <qpdf/QPDF.hh> |
5 | | #include <qpdf/QPDFObjGen.hh> |
6 | | #include <qpdf/QPDFObjectHandle.hh> |
7 | | #include <qpdf/QPDFObject_private.hh> |
8 | | #include <qpdf/QPDFTokenizer_private.hh> |
9 | | #include <qpdf/QTC.hh> |
10 | | #include <qpdf/QUtil.hh> |
11 | | |
12 | | #include <memory> |
13 | | |
14 | | using namespace std::literals; |
15 | | using namespace qpdf; |
16 | | |
17 | | using ObjectPtr = std::shared_ptr<QPDFObject>; |
18 | | |
19 | | QPDFObjectHandle |
20 | | QPDFParser::parse(InputSource& input, std::string const& object_description, QPDF* context) |
21 | 6.45k | { |
22 | 6.45k | qpdf::Tokenizer tokenizer; |
23 | 6.45k | bool empty = false; |
24 | 6.45k | return QPDFParser( |
25 | 6.45k | input, |
26 | 6.45k | make_description(input.getName(), object_description), |
27 | 6.45k | object_description, |
28 | 6.45k | tokenizer, |
29 | 6.45k | nullptr, |
30 | 6.45k | context, |
31 | 6.45k | false) |
32 | 6.45k | .parse(empty, false); |
33 | 6.45k | } |
34 | | |
35 | | QPDFObjectHandle |
36 | | QPDFParser::parse_content( |
37 | | InputSource& input, |
38 | | std::shared_ptr<QPDFObject::Description> sp_description, |
39 | | qpdf::Tokenizer& tokenizer, |
40 | | QPDF* context) |
41 | 0 | { |
42 | 0 | bool empty = false; |
43 | 0 | return QPDFParser( |
44 | 0 | input, std::move(sp_description), "content", tokenizer, nullptr, context, true) |
45 | 0 | .parse(empty, true); |
46 | 0 | } |
47 | | |
48 | | QPDFObjectHandle |
49 | | QPDFParser::parse( |
50 | | InputSource& input, |
51 | | std::string const& object_description, |
52 | | QPDFTokenizer& tokenizer, |
53 | | bool& empty, |
54 | | QPDFObjectHandle::StringDecrypter* decrypter, |
55 | | QPDF* context) |
56 | 0 | { |
57 | 0 | return QPDFParser( |
58 | 0 | input, |
59 | 0 | make_description(input.getName(), object_description), |
60 | 0 | object_description, |
61 | 0 | *tokenizer.m, |
62 | 0 | decrypter, |
63 | 0 | context, |
64 | 0 | false) |
65 | 0 | .parse(empty, false); |
66 | 0 | } |
67 | | |
68 | | std::pair<QPDFObjectHandle, bool> |
69 | | QPDFParser::parse( |
70 | | InputSource& input, |
71 | | std::string const& object_description, |
72 | | qpdf::Tokenizer& tokenizer, |
73 | | QPDFObjectHandle::StringDecrypter* decrypter, |
74 | | QPDF& context, |
75 | | bool sanity_checks) |
76 | 102k | { |
77 | 102k | bool empty{false}; |
78 | 102k | auto result = QPDFParser( |
79 | 102k | input, |
80 | 102k | make_description(input.getName(), object_description), |
81 | 102k | object_description, |
82 | 102k | tokenizer, |
83 | 102k | decrypter, |
84 | 102k | &context, |
85 | 102k | true, |
86 | 102k | 0, |
87 | 102k | 0, |
88 | 102k | sanity_checks) |
89 | 102k | .parse(empty, false); |
90 | 102k | return {result, empty}; |
91 | 102k | } |
92 | | |
93 | | std::pair<QPDFObjectHandle, bool> |
94 | | QPDFParser::parse( |
95 | | is::OffsetBuffer& input, int stream_id, int obj_id, qpdf::Tokenizer& tokenizer, QPDF& context) |
96 | 20.0k | { |
97 | 20.0k | bool empty{false}; |
98 | 20.0k | auto result = QPDFParser( |
99 | 20.0k | input, |
100 | 20.0k | std::make_shared<QPDFObject::Description>( |
101 | 20.0k | QPDFObject::ObjStreamDescr(stream_id, obj_id)), |
102 | 20.0k | "", |
103 | 20.0k | tokenizer, |
104 | 20.0k | nullptr, |
105 | 20.0k | &context, |
106 | 20.0k | true, |
107 | 20.0k | stream_id, |
108 | 20.0k | obj_id) |
109 | 20.0k | .parse(empty, false); |
110 | 20.0k | return {result, empty}; |
111 | 20.0k | } |
112 | | |
113 | | QPDFObjectHandle |
114 | | QPDFParser::parse(bool& empty, bool content_stream) |
115 | 129k | { |
116 | | // This method must take care not to resolve any objects. Don't check the type of any object |
117 | | // without first ensuring that it is a direct object. Otherwise, doing so may have the side |
118 | | // effect of reading the object and changing the file pointer. If you do this, it will cause a |
119 | | // logic error to be thrown from QPDF::inParse(). |
120 | | |
121 | 129k | QPDF::ParseGuard pg(context); |
122 | 129k | empty = false; |
123 | 129k | start = input.tell(); |
124 | | |
125 | 129k | if (!tokenizer.nextToken(input, object_description)) { |
126 | 2.27k | warn(tokenizer.getErrorMessage()); |
127 | 2.27k | } |
128 | | |
129 | 129k | switch (tokenizer.getType()) { |
130 | 1.17k | case QPDFTokenizer::tt_eof: |
131 | 1.17k | if (content_stream) { |
132 | | // In content stream mode, leave object uninitialized to indicate EOF |
133 | 0 | return {}; |
134 | 0 | } |
135 | 1.17k | QTC::TC("qpdf", "QPDFParser eof in parse"); |
136 | 1.17k | warn("unexpected EOF"); |
137 | 1.17k | return {QPDFObject::create<QPDF_Null>()}; |
138 | | |
139 | 2.27k | case QPDFTokenizer::tt_bad: |
140 | 2.27k | QTC::TC("qpdf", "QPDFParser bad token in parse"); |
141 | 2.27k | return {QPDFObject::create<QPDF_Null>()}; |
142 | | |
143 | 215 | case QPDFTokenizer::tt_brace_open: |
144 | 467 | case QPDFTokenizer::tt_brace_close: |
145 | 467 | QTC::TC("qpdf", "QPDFParser bad brace"); |
146 | 467 | warn("treating unexpected brace token as null"); |
147 | 467 | return {QPDFObject::create<QPDF_Null>()}; |
148 | | |
149 | 474 | case QPDFTokenizer::tt_array_close: |
150 | 474 | QTC::TC("qpdf", "QPDFParser bad array close"); |
151 | 474 | warn("treating unexpected array close token as null"); |
152 | 474 | return {QPDFObject::create<QPDF_Null>()}; |
153 | | |
154 | 570 | case QPDFTokenizer::tt_dict_close: |
155 | 570 | QTC::TC("qpdf", "QPDFParser bad dictionary close"); |
156 | 570 | warn("unexpected dictionary close token"); |
157 | 570 | return {QPDFObject::create<QPDF_Null>()}; |
158 | | |
159 | 9.47k | case QPDFTokenizer::tt_array_open: |
160 | 98.5k | case QPDFTokenizer::tt_dict_open: |
161 | 98.5k | stack.clear(); |
162 | 98.5k | stack.emplace_back( |
163 | 98.5k | input, |
164 | 98.5k | (tokenizer.getType() == QPDFTokenizer::tt_array_open) ? st_array : st_dictionary_key); |
165 | 98.5k | frame = &stack.back(); |
166 | 98.5k | return parseRemainder(content_stream); |
167 | | |
168 | 1.29k | case QPDFTokenizer::tt_bool: |
169 | 1.29k | return withDescription<QPDF_Bool>(tokenizer.getValue() == "true"); |
170 | | |
171 | 203 | case QPDFTokenizer::tt_null: |
172 | 203 | return {QPDFObject::create<QPDF_Null>()}; |
173 | | |
174 | 7.15k | case QPDFTokenizer::tt_integer: |
175 | 7.15k | return withDescription<QPDF_Integer>(QUtil::string_to_ll(tokenizer.getValue().c_str())); |
176 | | |
177 | 416 | case QPDFTokenizer::tt_real: |
178 | 416 | return withDescription<QPDF_Real>(tokenizer.getValue()); |
179 | | |
180 | 7.72k | case QPDFTokenizer::tt_name: |
181 | 7.72k | return withDescription<QPDF_Name>(tokenizer.getValue()); |
182 | | |
183 | 6.95k | case QPDFTokenizer::tt_word: |
184 | 6.95k | { |
185 | 6.95k | auto const& value = tokenizer.getValue(); |
186 | 6.95k | if (content_stream) { |
187 | 0 | return withDescription<QPDF_Operator>(value); |
188 | 6.95k | } else if (value == "endobj") { |
189 | | // We just saw endobj without having read anything. Treat this as a null and do |
190 | | // not move the input source's offset. |
191 | 419 | input.seek(input.getLastOffset(), SEEK_SET); |
192 | 419 | empty = true; |
193 | 419 | return {QPDFObject::create<QPDF_Null>()}; |
194 | 6.54k | } else { |
195 | 6.54k | QTC::TC("qpdf", "QPDFParser treat word as string"); |
196 | 6.54k | warn("unknown token while reading object; treating as string"); |
197 | 6.54k | return withDescription<QPDF_String>(value); |
198 | 6.54k | } |
199 | 6.95k | } |
200 | | |
201 | 1.91k | case QPDFTokenizer::tt_string: |
202 | 1.91k | if (decrypter) { |
203 | 148 | std::string s{tokenizer.getValue()}; |
204 | 148 | decrypter->decryptString(s); |
205 | 148 | return withDescription<QPDF_String>(s); |
206 | 1.76k | } else { |
207 | 1.76k | return withDescription<QPDF_String>(tokenizer.getValue()); |
208 | 1.76k | } |
209 | | |
210 | 0 | default: |
211 | 0 | warn("treating unknown token type as null while reading object"); |
212 | 0 | return {QPDFObject::create<QPDF_Null>()}; |
213 | 129k | } |
214 | 129k | } |
215 | | |
216 | | QPDFObjectHandle |
217 | | QPDFParser::parseRemainder(bool content_stream) |
218 | 98.5k | { |
219 | | // This method must take care not to resolve any objects. Don't check the type of any object |
220 | | // without first ensuring that it is a direct object. Otherwise, doing so may have the side |
221 | | // effect of reading the object and changing the file pointer. If you do this, it will cause a |
222 | | // logic error to be thrown from QPDF::inParse(). |
223 | | |
224 | 98.5k | bad_count = 0; |
225 | 98.5k | bool b_contents = false; |
226 | | |
227 | 6.84M | while (true) { |
228 | 6.84M | if (!tokenizer.nextToken(input, object_description)) { |
229 | 26.5k | warn(tokenizer.getErrorMessage()); |
230 | 26.5k | } |
231 | 6.84M | ++good_count; // optimistically |
232 | | |
233 | 6.84M | if (int_count != 0) { |
234 | | // Special handling of indirect references. Treat integer tokens as part of an indirect |
235 | | // reference until proven otherwise. |
236 | 843k | if (tokenizer.getType() == QPDFTokenizer::tt_integer) { |
237 | 461k | if (++int_count > 2) { |
238 | | // Process the oldest buffered integer. |
239 | 203k | addInt(int_count); |
240 | 203k | } |
241 | 461k | last_offset_buffer[int_count % 2] = input.getLastOffset(); |
242 | 461k | int_buffer[int_count % 2] = QUtil::string_to_ll(tokenizer.getValue().c_str()); |
243 | 461k | continue; |
244 | | |
245 | 461k | } else if ( |
246 | 381k | int_count >= 2 && tokenizer.getType() == QPDFTokenizer::tt_word && |
247 | 381k | tokenizer.getValue() == "R") { |
248 | 215k | if (context == nullptr) { |
249 | 0 | QTC::TC("qpdf", "QPDFParser indirect without context"); |
250 | 0 | throw std::logic_error( |
251 | 0 | "QPDFParser::parse called without context on an object " |
252 | 0 | "with indirect references"); |
253 | 0 | } |
254 | 215k | auto id = QIntC::to_int(int_buffer[(int_count - 1) % 2]); |
255 | 215k | auto gen = QIntC::to_int(int_buffer[(int_count) % 2]); |
256 | 215k | if (!(id < 1 || gen < 0 || gen >= 65535)) { |
257 | 212k | add(QPDF::ParseGuard::getObject(context, id, gen, parse_pdf)); |
258 | 212k | } else { |
259 | 3.72k | QTC::TC("qpdf", "QPDFParser invalid objgen"); |
260 | 3.72k | addNull(); |
261 | 3.72k | } |
262 | 215k | int_count = 0; |
263 | 215k | continue; |
264 | | |
265 | 215k | } else if (int_count > 0) { |
266 | | // Process the buffered integers before processing the current token. |
267 | 166k | if (int_count > 1) { |
268 | 42.3k | addInt(int_count - 1); |
269 | 42.3k | } |
270 | 166k | addInt(int_count); |
271 | 166k | int_count = 0; |
272 | 166k | } |
273 | 843k | } |
274 | | |
275 | 6.16M | switch (tokenizer.getType()) { |
276 | 6.84k | case QPDFTokenizer::tt_eof: |
277 | 6.84k | warn("parse error while reading object"); |
278 | 6.84k | if (content_stream) { |
279 | | // In content stream mode, leave object uninitialized to indicate EOF |
280 | 0 | return {}; |
281 | 0 | } |
282 | 6.84k | QTC::TC("qpdf", "QPDFParser eof in parseRemainder"); |
283 | 6.84k | warn("unexpected EOF"); |
284 | 6.84k | return {QPDFObject::create<QPDF_Null>()}; |
285 | | |
286 | 24.1k | case QPDFTokenizer::tt_bad: |
287 | 24.1k | QTC::TC("qpdf", "QPDFParser bad token in parseRemainder"); |
288 | 24.1k | if (tooManyBadTokens()) { |
289 | 901 | return {QPDFObject::create<QPDF_Null>()}; |
290 | 901 | } |
291 | 23.2k | addNull(); |
292 | 23.2k | continue; |
293 | | |
294 | 2.52k | case QPDFTokenizer::tt_brace_open: |
295 | 4.79k | case QPDFTokenizer::tt_brace_close: |
296 | 4.79k | QTC::TC("qpdf", "QPDFParser bad brace in parseRemainder"); |
297 | 4.79k | warn("treating unexpected brace token as null"); |
298 | 4.79k | if (tooManyBadTokens()) { |
299 | 336 | return {QPDFObject::create<QPDF_Null>()}; |
300 | 336 | } |
301 | 4.45k | addNull(); |
302 | 4.45k | continue; |
303 | | |
304 | 66.8k | case QPDFTokenizer::tt_array_close: |
305 | 66.8k | if ((bad_count || sanity_checks) && !max_bad_count) { |
306 | | // Trigger warning. |
307 | 95 | (void)tooManyBadTokens(); |
308 | 95 | return {QPDFObject::create<QPDF_Null>()}; |
309 | 95 | } |
310 | 66.7k | if (frame->state == st_array) { |
311 | 65.0k | auto object = frame->null_count > 100 |
312 | 65.0k | ? QPDFObject::create<QPDF_Array>(std::move(frame->olist), true) |
313 | 65.0k | : QPDFObject::create<QPDF_Array>(std::move(frame->olist)); |
314 | 65.0k | setDescription(object, frame->offset - 1); |
315 | | // The `offset` points to the next of "[". Set the rewind offset to point to the |
316 | | // beginning of "[". This has been explicitly tested with whitespace surrounding the |
317 | | // array start delimiter. getLastOffset points to the array end token and therefore |
318 | | // can't be used here. |
319 | 65.0k | if (stack.size() <= 1) { |
320 | 1.45k | return object; |
321 | 1.45k | } |
322 | 63.5k | stack.pop_back(); |
323 | 63.5k | frame = &stack.back(); |
324 | 63.5k | add(std::move(object)); |
325 | 63.5k | } else { |
326 | 1.68k | QTC::TC("qpdf", "QPDFParser bad array close in parseRemainder"); |
327 | 1.68k | if (sanity_checks) { |
328 | | // During sanity checks, assume nesting of containers is corrupt and object is |
329 | | // unusable. |
330 | 1.28k | warn("unexpected array close token; giving up on reading object"); |
331 | 1.28k | return {QPDFObject::create<QPDF_Null>()}; |
332 | 1.28k | } |
333 | 393 | warn("treating unexpected array close token as null"); |
334 | 393 | if (tooManyBadTokens()) { |
335 | 24 | return {QPDFObject::create<QPDF_Null>()}; |
336 | 24 | } |
337 | 369 | addNull(); |
338 | 369 | } |
339 | 63.9k | continue; |
340 | | |
341 | 107k | case QPDFTokenizer::tt_dict_close: |
342 | 107k | if ((bad_count || sanity_checks) && !max_bad_count) { |
343 | | // Trigger warning. |
344 | 100 | (void)tooManyBadTokens(); |
345 | 100 | return {QPDFObject::create<QPDF_Null>()}; |
346 | 100 | } |
347 | 107k | if (frame->state <= st_dictionary_value) { |
348 | | // Attempt to recover more or less gracefully from invalid dictionaries. |
349 | 105k | auto& dict = frame->dict; |
350 | | |
351 | 105k | if (frame->state == st_dictionary_value) { |
352 | 5.61k | QTC::TC("qpdf", "QPDFParser no val for last key"); |
353 | 5.61k | warn( |
354 | 5.61k | frame->offset, |
355 | 5.61k | "dictionary ended prematurely; using null as value for last key"); |
356 | 5.61k | dict[frame->key] = QPDFObject::create<QPDF_Null>(); |
357 | 5.61k | } |
358 | 105k | if (!frame->olist.empty()) { |
359 | 29.0k | if (sanity_checks) { |
360 | 27.9k | warn( |
361 | 27.9k | frame->offset, |
362 | 27.9k | "expected dictionary keys but found non-name objects; ignoring"); |
363 | 27.9k | } else { |
364 | 1.11k | fixMissingKeys(); |
365 | 1.11k | } |
366 | 29.0k | } |
367 | | |
368 | 105k | if (!frame->contents_string.empty() && dict.contains("/Type") && |
369 | 105k | dict["/Type"].isNameAndEquals("/Sig") && dict.contains("/ByteRange") && |
370 | 105k | dict.contains("/Contents") && dict["/Contents"].isString()) { |
371 | 0 | dict["/Contents"] = QPDFObjectHandle::newString(frame->contents_string); |
372 | 0 | dict["/Contents"].setParsedOffset(frame->contents_offset); |
373 | 0 | } |
374 | 105k | auto object = QPDFObject::create<QPDF_Dictionary>(std::move(dict)); |
375 | 105k | setDescription(object, frame->offset - 2); |
376 | | // The `offset` points to the next of "<<". Set the rewind offset to point to the |
377 | | // beginning of "<<". This has been explicitly tested with whitespace surrounding |
378 | | // the dictionary start delimiter. getLastOffset points to the dictionary end token |
379 | | // and therefore can't be used here. |
380 | 105k | if (stack.size() <= 1) { |
381 | 75.9k | return object; |
382 | 75.9k | } |
383 | 29.7k | stack.pop_back(); |
384 | 29.7k | frame = &stack.back(); |
385 | 29.7k | add(std::move(object)); |
386 | 29.7k | } else { |
387 | 1.26k | QTC::TC("qpdf", "QPDFParser bad dictionary close in parseRemainder"); |
388 | 1.26k | if (sanity_checks) { |
389 | | // During sanity checks, assume nesting of containers is corrupt and object is |
390 | | // unusable. |
391 | 1.00k | warn("unexpected dictionary close token; giving up on reading object"); |
392 | 1.00k | return {QPDFObject::create<QPDF_Null>()}; |
393 | 1.00k | } |
394 | 261 | warn("unexpected dictionary close token"); |
395 | 261 | if (tooManyBadTokens()) { |
396 | 48 | return {QPDFObject::create<QPDF_Null>()}; |
397 | 48 | } |
398 | 213 | addNull(); |
399 | 213 | } |
400 | 29.9k | continue; |
401 | | |
402 | 136k | case QPDFTokenizer::tt_array_open: |
403 | 220k | case QPDFTokenizer::tt_dict_open: |
404 | 220k | if (stack.size() > 499) { |
405 | 113 | QTC::TC("qpdf", "QPDFParser too deep"); |
406 | 113 | warn("ignoring excessively deeply nested data structure"); |
407 | 113 | return {QPDFObject::create<QPDF_Null>()}; |
408 | 220k | } else { |
409 | 220k | b_contents = false; |
410 | 220k | stack.emplace_back( |
411 | 220k | input, |
412 | 220k | (tokenizer.getType() == QPDFTokenizer::tt_array_open) ? st_array |
413 | 220k | : st_dictionary_key); |
414 | 220k | frame = &stack.back(); |
415 | 220k | continue; |
416 | 220k | } |
417 | | |
418 | 3.63k | case QPDFTokenizer::tt_bool: |
419 | 3.63k | addScalar<QPDF_Bool>(tokenizer.getValue() == "true"); |
420 | 3.63k | continue; |
421 | | |
422 | 60.5k | case QPDFTokenizer::tt_null: |
423 | 60.5k | addNull(); |
424 | 60.5k | continue; |
425 | | |
426 | 382k | case QPDFTokenizer::tt_integer: |
427 | 382k | if (!content_stream) { |
428 | | // Buffer token in case it is part of an indirect reference. |
429 | 382k | last_offset_buffer[1] = input.getLastOffset(); |
430 | 382k | int_buffer[1] = QUtil::string_to_ll(tokenizer.getValue().c_str()); |
431 | 382k | int_count = 1; |
432 | 382k | } else { |
433 | 0 | addScalar<QPDF_Integer>(QUtil::string_to_ll(tokenizer.getValue().c_str())); |
434 | 0 | } |
435 | 382k | continue; |
436 | | |
437 | 27.7k | case QPDFTokenizer::tt_real: |
438 | 27.7k | addScalar<QPDF_Real>(tokenizer.getValue()); |
439 | 27.7k | continue; |
440 | | |
441 | 5.02M | case QPDFTokenizer::tt_name: |
442 | 5.02M | if (frame->state == st_dictionary_key) { |
443 | 469k | frame->key = tokenizer.getValue(); |
444 | 469k | frame->state = st_dictionary_value; |
445 | 469k | b_contents = decrypter && frame->key == "/Contents"; |
446 | 469k | continue; |
447 | 4.56M | } else { |
448 | 4.56M | addScalar<QPDF_Name>(tokenizer.getValue()); |
449 | 4.56M | } |
450 | 4.56M | continue; |
451 | | |
452 | 4.56M | case QPDFTokenizer::tt_word: |
453 | 166k | if (content_stream) { |
454 | 0 | addScalar<QPDF_Operator>(tokenizer.getValue()); |
455 | 0 | continue; |
456 | 0 | } |
457 | | |
458 | 166k | if (sanity_checks) { |
459 | 162k | if (tokenizer.getValue() == "endobj" || tokenizer.getValue() == "endstream") { |
460 | | // During sanity checks, assume an unexpected endobj or endstream indicates that |
461 | | // we are parsing past the end of the object. |
462 | 1.52k | warn( |
463 | 1.52k | "unexpected 'endobj' or 'endstream' while reading object; giving up on " |
464 | 1.52k | "reading object"); |
465 | 1.52k | return {QPDFObject::create<QPDF_Null>()}; |
466 | 1.52k | } |
467 | | |
468 | 161k | warn("unknown token while reading object; treating as null"); |
469 | 161k | if (tooManyBadTokens()) { |
470 | 5.98k | return {QPDFObject::create<QPDF_Null>()}; |
471 | 5.98k | } |
472 | 155k | addNull(); |
473 | 155k | continue; |
474 | 161k | } |
475 | | |
476 | 3.64k | QTC::TC("qpdf", "QPDFParser treat word as string in parseRemainder"); |
477 | 3.64k | warn("unknown token while reading object; treating as string"); |
478 | 3.64k | if (tooManyBadTokens()) { |
479 | 163 | return {QPDFObject::create<QPDF_Null>()}; |
480 | 163 | } |
481 | 3.47k | addScalar<QPDF_String>(tokenizer.getValue()); |
482 | | |
483 | 3.47k | continue; |
484 | | |
485 | 67.3k | case QPDFTokenizer::tt_string: |
486 | 67.3k | { |
487 | 67.3k | auto const& val = tokenizer.getValue(); |
488 | 67.3k | if (decrypter) { |
489 | 12.6k | if (b_contents) { |
490 | 220 | frame->contents_string = val; |
491 | 220 | frame->contents_offset = input.getLastOffset(); |
492 | 220 | b_contents = false; |
493 | 220 | } |
494 | 12.6k | std::string s{val}; |
495 | 12.6k | decrypter->decryptString(s); |
496 | 12.6k | addScalar<QPDF_String>(s); |
497 | 54.6k | } else { |
498 | 54.6k | addScalar<QPDF_String>(val); |
499 | 54.6k | } |
500 | 67.3k | } |
501 | 67.3k | continue; |
502 | | |
503 | 0 | default: |
504 | 0 | warn("treating unknown token type as null while reading object"); |
505 | 0 | if (tooManyBadTokens()) { |
506 | 0 | return {QPDFObject::create<QPDF_Null>()}; |
507 | 0 | } |
508 | 0 | addNull(); |
509 | 6.16M | } |
510 | 6.16M | } |
511 | 98.5k | } |
512 | | |
513 | | void |
514 | | QPDFParser::add(std::shared_ptr<QPDFObject>&& obj) |
515 | 3.51M | { |
516 | 3.51M | if (frame->state != st_dictionary_value) { |
517 | | // If state is st_dictionary_key then there is a missing key. Push onto olist for |
518 | | // processing once the tt_dict_close token has been found. |
519 | 3.08M | frame->olist.emplace_back(std::move(obj)); |
520 | 3.08M | } else { |
521 | 428k | if (auto res = frame->dict.insert_or_assign(frame->key, std::move(obj)); !res.second) { |
522 | 35.8k | warnDuplicateKey(); |
523 | 35.8k | } |
524 | 428k | frame->state = st_dictionary_key; |
525 | 428k | } |
526 | 3.51M | } |
527 | | |
528 | | void |
529 | | QPDFParser::addNull() |
530 | 246k | { |
531 | 246k | const static ObjectPtr null_obj = QPDFObject::create<QPDF_Null>(); |
532 | | |
533 | 246k | if (frame->state != st_dictionary_value) { |
534 | | // If state is st_dictionary_key then there is a missing key. Push onto olist for |
535 | | // processing once the tt_dict_close token has been found. |
536 | 217k | frame->olist.emplace_back(null_obj); |
537 | 217k | } else { |
538 | 28.3k | if (auto res = frame->dict.insert_or_assign(frame->key, null_obj); !res.second) { |
539 | 5.06k | warnDuplicateKey(); |
540 | 5.06k | } |
541 | 28.3k | frame->state = st_dictionary_key; |
542 | 28.3k | } |
543 | 246k | ++frame->null_count; |
544 | 246k | } |
545 | | |
546 | | void |
547 | | QPDFParser::addInt(int count) |
548 | 411k | { |
549 | 411k | auto obj = QPDFObject::create<QPDF_Integer>(int_buffer[count % 2]); |
550 | 411k | obj->setDescription(context, description, last_offset_buffer[count % 2]); |
551 | 411k | add(std::move(obj)); |
552 | 411k | } |
553 | | |
554 | | template <typename T, typename... Args> |
555 | | void |
556 | | QPDFParser::addScalar(Args&&... args) |
557 | 4.66M | { |
558 | 4.66M | if ((bad_count || sanity_checks) && |
559 | 4.66M | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { |
560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is |
561 | | // encountered. |
562 | 1.86M | max_bad_count = 0; |
563 | 1.86M | return; |
564 | 1.86M | } |
565 | 2.79M | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); |
566 | 2.79M | obj->setDescription(context, description, input.getLastOffset()); |
567 | 2.79M | add(std::move(obj)); |
568 | 2.79M | } void QPDFParser::addScalar<QPDF_Bool, bool>(bool&&) Line | Count | Source | 557 | 3.63k | { | 558 | 3.63k | if ((bad_count || sanity_checks) && | 559 | 3.63k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 561 | | // encountered. | 562 | 241 | max_bad_count = 0; | 563 | 241 | return; | 564 | 241 | } | 565 | 3.39k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 566 | 3.39k | obj->setDescription(context, description, input.getLastOffset()); | 567 | 3.39k | add(std::move(obj)); | 568 | 3.39k | } |
Unexecuted instantiation: void QPDFParser::addScalar<QPDF_Integer, long long>(long long&&) void QPDFParser::addScalar<QPDF_Real, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 557 | 27.7k | { | 558 | 27.7k | if ((bad_count || sanity_checks) && | 559 | 27.7k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 561 | | // encountered. | 562 | 584 | max_bad_count = 0; | 563 | 584 | return; | 564 | 584 | } | 565 | 27.1k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 566 | 27.1k | obj->setDescription(context, description, input.getLastOffset()); | 567 | 27.1k | add(std::move(obj)); | 568 | 27.1k | } |
void QPDFParser::addScalar<QPDF_Name, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 557 | 4.56M | { | 558 | 4.56M | if ((bad_count || sanity_checks) && | 559 | 4.56M | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 561 | | // encountered. | 562 | 1.86M | max_bad_count = 0; | 563 | 1.86M | return; | 564 | 1.86M | } | 565 | 2.69M | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 566 | 2.69M | obj->setDescription(context, description, input.getLastOffset()); | 567 | 2.69M | add(std::move(obj)); | 568 | 2.69M | } |
Unexecuted instantiation: void QPDFParser::addScalar<QPDF_Operator, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) void QPDFParser::addScalar<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 557 | 58.1k | { | 558 | 58.1k | if ((bad_count || sanity_checks) && | 559 | 58.1k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 561 | | // encountered. | 562 | 1.28k | max_bad_count = 0; | 563 | 1.28k | return; | 564 | 1.28k | } | 565 | 56.8k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 566 | 56.8k | obj->setDescription(context, description, input.getLastOffset()); | 567 | 56.8k | add(std::move(obj)); | 568 | 56.8k | } |
void QPDFParser::addScalar<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&) Line | Count | Source | 557 | 12.6k | { | 558 | 12.6k | if ((bad_count || sanity_checks) && | 559 | 12.6k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 560 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 561 | | // encountered. | 562 | 68 | max_bad_count = 0; | 563 | 68 | return; | 564 | 68 | } | 565 | 12.5k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 566 | 12.5k | obj->setDescription(context, description, input.getLastOffset()); | 567 | 12.5k | add(std::move(obj)); | 568 | 12.5k | } |
|
569 | | |
570 | | template <typename T, typename... Args> |
571 | | QPDFObjectHandle |
572 | | QPDFParser::withDescription(Args&&... args) |
573 | 24.5k | { |
574 | 24.5k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); |
575 | 24.5k | obj->setDescription(context, description, start); |
576 | 24.5k | return {obj}; |
577 | 24.5k | } QPDFObjectHandle QPDFParser::withDescription<QPDF_Bool, bool>(bool&&) Line | Count | Source | 573 | 1.29k | { | 574 | 1.29k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 1.29k | obj->setDescription(context, description, start); | 576 | 1.29k | return {obj}; | 577 | 1.29k | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Integer, long long>(long long&&) Line | Count | Source | 573 | 7.08k | { | 574 | 7.08k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 7.08k | obj->setDescription(context, description, start); | 576 | 7.08k | return {obj}; | 577 | 7.08k | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Real, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 573 | 416 | { | 574 | 416 | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 416 | obj->setDescription(context, description, start); | 576 | 416 | return {obj}; | 577 | 416 | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Name, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 573 | 7.72k | { | 574 | 7.72k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 7.72k | obj->setDescription(context, description, start); | 576 | 7.72k | return {obj}; | 577 | 7.72k | } |
Unexecuted instantiation: QPDFObjectHandle QPDFParser::withDescription<QPDF_Operator, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) QPDFObjectHandle QPDFParser::withDescription<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 573 | 7.87k | { | 574 | 7.87k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 7.87k | obj->setDescription(context, description, start); | 576 | 7.87k | return {obj}; | 577 | 7.87k | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&) Line | Count | Source | 573 | 147 | { | 574 | 147 | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 575 | 147 | obj->setDescription(context, description, start); | 576 | 147 | return {obj}; | 577 | 147 | } |
|
578 | | |
579 | | void |
580 | | QPDFParser::setDescription(ObjectPtr& obj, qpdf_offset_t parsed_offset) |
581 | 170k | { |
582 | 170k | if (obj) { |
583 | 170k | obj->setDescription(context, description, parsed_offset); |
584 | 170k | } |
585 | 170k | } |
586 | | |
587 | | void |
588 | | QPDFParser::fixMissingKeys() |
589 | 1.11k | { |
590 | 1.11k | std::set<std::string> names; |
591 | 5.09k | for (auto& obj: frame->olist) { |
592 | 5.09k | if (obj.getObj()->getTypeCode() == ::ot_name) { |
593 | 111 | names.insert(obj.getObj()->getStringValue()); |
594 | 111 | } |
595 | 5.09k | } |
596 | 1.11k | int next_fake_key = 1; |
597 | 4.31k | for (auto const& item: frame->olist) { |
598 | 4.34k | while (true) { |
599 | 4.34k | const std::string key = "/QPDFFake" + std::to_string(next_fake_key++); |
600 | 4.34k | const bool found_fake = !frame->dict.contains(key) && !names.contains(key); |
601 | 4.34k | QTC::TC("qpdf", "QPDFParser found fake", (found_fake ? 0 : 1)); |
602 | 4.34k | if (found_fake) { |
603 | 4.31k | warn( |
604 | 4.31k | frame->offset, |
605 | 4.31k | "expected dictionary key but found non-name object; inserting key " + key); |
606 | 4.31k | frame->dict[key] = item; |
607 | 4.31k | break; |
608 | 4.31k | } |
609 | 4.34k | } |
610 | 4.31k | } |
611 | 1.11k | } |
612 | | |
613 | | bool |
614 | | QPDFParser::tooManyBadTokens() |
615 | 193k | { |
616 | 193k | if (frame->olist.size() > 5'000 || frame->dict.size() > 5'000) { |
617 | 372 | if (bad_count) { |
618 | 328 | warn( |
619 | 328 | "encountered errors while parsing an array or dictionary with more than 5000 " |
620 | 328 | "elements; giving up on reading object"); |
621 | 328 | return true; |
622 | 328 | } |
623 | 44 | warn( |
624 | 44 | "encountered an array or dictionary with more than 5000 elements during xref recovery; " |
625 | 44 | "giving up on reading object"); |
626 | 44 | } |
627 | 193k | if (--max_bad_count > 0 && good_count > 4) { |
628 | 62.8k | good_count = 0; |
629 | 62.8k | bad_count = 1; |
630 | 62.8k | return false; |
631 | 62.8k | } |
632 | 130k | if (++bad_count > 5 || |
633 | 130k | (frame->state != st_array && QIntC::to_size(max_bad_count) < frame->olist.size())) { |
634 | | // Give up after 5 errors in close proximity or if the number of missing dictionary keys |
635 | | // exceeds the remaining number of allowable total errors. |
636 | 7.28k | warn("too many errors; giving up on reading object"); |
637 | 7.28k | return true; |
638 | 7.28k | } |
639 | 122k | good_count = 0; |
640 | 122k | return false; |
641 | 130k | } |
642 | | |
643 | | void |
644 | | QPDFParser::warn(QPDFExc const& e) const |
645 | 312k | { |
646 | | // If parsing on behalf of a QPDF object and want to give a warning, we can warn through the |
647 | | // object. If parsing for some other reason, such as an explicit creation of an object from a |
648 | | // string, then just throw the exception. |
649 | 312k | if (context) { |
650 | 312k | context->warn(e); |
651 | 312k | } else { |
652 | 0 | throw e; |
653 | 0 | } |
654 | 312k | } |
655 | | |
656 | | void |
657 | | QPDFParser::warnDuplicateKey() |
658 | 40.9k | { |
659 | 40.9k | QTC::TC("qpdf", "QPDFParser duplicate dict key"); |
660 | 40.9k | warn( |
661 | 40.9k | frame->offset, |
662 | 40.9k | "dictionary has duplicated key " + frame->key + "; last occurrence overrides earlier ones"); |
663 | 40.9k | } |
664 | | |
665 | | void |
666 | | QPDFParser::warn(qpdf_offset_t offset, std::string const& msg) const |
667 | 312k | { |
668 | 312k | if (stream_id) { |
669 | 12.3k | std::string descr = "object "s + std::to_string(obj_id) + " 0"; |
670 | 12.3k | std::string name = context->getFilename() + " object stream " + std::to_string(stream_id); |
671 | 12.3k | warn(QPDFExc(qpdf_e_damaged_pdf, name, descr, offset, msg)); |
672 | 299k | } else { |
673 | 299k | warn(QPDFExc(qpdf_e_damaged_pdf, input.getName(), object_description, offset, msg)); |
674 | 299k | } |
675 | 312k | } |
676 | | |
677 | | void |
678 | | QPDFParser::warn(std::string const& msg) const |
679 | 233k | { |
680 | 233k | warn(input.getLastOffset(), msg); |
681 | 233k | } |