/src/qpdf/libqpdf/QPDFParser.cc
Line | Count | Source (jump to first uncovered line) |
1 | | #include <qpdf/QPDFParser.hh> |
2 | | |
3 | | #include <qpdf/QPDF.hh> |
4 | | #include <qpdf/QPDFObjGen.hh> |
5 | | #include <qpdf/QPDFObjectHandle.hh> |
6 | | #include <qpdf/QPDFObject_private.hh> |
7 | | #include <qpdf/QPDFTokenizer_private.hh> |
8 | | #include <qpdf/QTC.hh> |
9 | | #include <qpdf/QUtil.hh> |
10 | | |
11 | | #include <memory> |
12 | | |
13 | | using namespace std::literals; |
14 | | using namespace qpdf; |
15 | | |
16 | | using ObjectPtr = std::shared_ptr<QPDFObject>; |
17 | | |
18 | | QPDFObjectHandle |
19 | | QPDFParser::parse(InputSource& input, std::string const& object_description, QPDF* context) |
20 | 12.1k | { |
21 | 12.1k | qpdf::Tokenizer tokenizer; |
22 | 12.1k | bool empty = false; |
23 | 12.1k | return QPDFParser( |
24 | 12.1k | input, |
25 | 12.1k | make_description(input.getName(), object_description), |
26 | 12.1k | object_description, |
27 | 12.1k | tokenizer, |
28 | 12.1k | nullptr, |
29 | 12.1k | context, |
30 | 12.1k | false) |
31 | 12.1k | .parse(empty, false); |
32 | 12.1k | } |
33 | | |
34 | | QPDFObjectHandle |
35 | | QPDFParser::parse_content( |
36 | | InputSource& input, |
37 | | std::shared_ptr<QPDFObject::Description> sp_description, |
38 | | qpdf::Tokenizer& tokenizer, |
39 | | QPDF* context) |
40 | 0 | { |
41 | 0 | bool empty = false; |
42 | 0 | return QPDFParser( |
43 | 0 | input, |
44 | 0 | std::move(sp_description), |
45 | 0 | "content", |
46 | 0 | tokenizer, |
47 | 0 | nullptr, |
48 | 0 | context, |
49 | 0 | true, |
50 | 0 | 0, |
51 | 0 | 0, |
52 | 0 | context && context->reconstructed_xref()) |
53 | 0 | .parse(empty, true); |
54 | 0 | } |
55 | | |
56 | | QPDFObjectHandle |
57 | | QPDFParser::parse( |
58 | | InputSource& input, |
59 | | std::string const& object_description, |
60 | | QPDFTokenizer& tokenizer, |
61 | | bool& empty, |
62 | | QPDFObjectHandle::StringDecrypter* decrypter, |
63 | | QPDF* context) |
64 | 0 | { |
65 | 0 | return QPDFParser( |
66 | 0 | input, |
67 | 0 | make_description(input.getName(), object_description), |
68 | 0 | object_description, |
69 | 0 | *tokenizer.m, |
70 | 0 | decrypter, |
71 | 0 | context, |
72 | 0 | false) |
73 | 0 | .parse(empty, false); |
74 | 0 | } |
75 | | |
76 | | std::pair<QPDFObjectHandle, bool> |
77 | | QPDFParser::parse( |
78 | | InputSource& input, |
79 | | std::string const& object_description, |
80 | | qpdf::Tokenizer& tokenizer, |
81 | | QPDFObjectHandle::StringDecrypter* decrypter, |
82 | | QPDF& context, |
83 | | bool sanity_checks) |
84 | 133k | { |
85 | 133k | bool empty{false}; |
86 | 133k | auto result = QPDFParser( |
87 | 133k | input, |
88 | 133k | make_description(input.getName(), object_description), |
89 | 133k | object_description, |
90 | 133k | tokenizer, |
91 | 133k | decrypter, |
92 | 133k | &context, |
93 | 133k | true, |
94 | 133k | 0, |
95 | 133k | 0, |
96 | 133k | sanity_checks) |
97 | 133k | .parse(empty, false); |
98 | 133k | return {result, empty}; |
99 | 133k | } |
100 | | |
101 | | std::pair<QPDFObjectHandle, bool> |
102 | | QPDFParser::parse( |
103 | | is::OffsetBuffer& input, int stream_id, int obj_id, qpdf::Tokenizer& tokenizer, QPDF& context) |
104 | 25.8k | { |
105 | 25.8k | bool empty{false}; |
106 | 25.8k | auto result = QPDFParser( |
107 | 25.8k | input, |
108 | 25.8k | std::make_shared<QPDFObject::Description>( |
109 | 25.8k | QPDFObject::ObjStreamDescr(stream_id, obj_id)), |
110 | 25.8k | "", |
111 | 25.8k | tokenizer, |
112 | 25.8k | nullptr, |
113 | 25.8k | &context, |
114 | 25.8k | true, |
115 | 25.8k | stream_id, |
116 | 25.8k | obj_id) |
117 | 25.8k | .parse(empty, false); |
118 | 25.8k | return {result, empty}; |
119 | 25.8k | } |
120 | | |
121 | | QPDFObjectHandle |
122 | | QPDFParser::parse(bool& empty, bool content_stream) |
123 | 171k | { |
124 | | // This method must take care not to resolve any objects. Don't check the type of any object |
125 | | // without first ensuring that it is a direct object. Otherwise, doing so may have the side |
126 | | // effect of reading the object and changing the file pointer. If you do this, it will cause a |
127 | | // logic error to be thrown from QPDF::inParse(). |
128 | | |
129 | 171k | QPDF::ParseGuard pg(context); |
130 | 171k | empty = false; |
131 | 171k | start = input.tell(); |
132 | | |
133 | 171k | if (!tokenizer.nextToken(input, object_description)) { |
134 | 1.91k | warn(tokenizer.getErrorMessage()); |
135 | 1.91k | } |
136 | | |
137 | 171k | switch (tokenizer.getType()) { |
138 | 899 | case QPDFTokenizer::tt_eof: |
139 | 899 | if (content_stream) { |
140 | | // In content stream mode, leave object uninitialized to indicate EOF |
141 | 0 | return {}; |
142 | 0 | } |
143 | 899 | QTC::TC("qpdf", "QPDFParser eof in parse"); |
144 | 899 | warn("unexpected EOF"); |
145 | 899 | return {QPDFObject::create<QPDF_Null>()}; |
146 | | |
147 | 1.85k | case QPDFTokenizer::tt_bad: |
148 | 1.85k | QTC::TC("qpdf", "QPDFParser bad token in parse"); |
149 | 1.85k | return {QPDFObject::create<QPDF_Null>()}; |
150 | | |
151 | 443 | case QPDFTokenizer::tt_brace_open: |
152 | 678 | case QPDFTokenizer::tt_brace_close: |
153 | 678 | QTC::TC("qpdf", "QPDFParser bad brace"); |
154 | 678 | warn("treating unexpected brace token as null"); |
155 | 678 | return {QPDFObject::create<QPDF_Null>()}; |
156 | | |
157 | 724 | case QPDFTokenizer::tt_array_close: |
158 | 724 | QTC::TC("qpdf", "QPDFParser bad array close"); |
159 | 724 | warn("treating unexpected array close token as null"); |
160 | 724 | return {QPDFObject::create<QPDF_Null>()}; |
161 | | |
162 | 487 | case QPDFTokenizer::tt_dict_close: |
163 | 487 | QTC::TC("qpdf", "QPDFParser bad dictionary close"); |
164 | 487 | warn("unexpected dictionary close token"); |
165 | 487 | return {QPDFObject::create<QPDF_Null>()}; |
166 | | |
167 | 7.08k | case QPDFTokenizer::tt_array_open: |
168 | 130k | case QPDFTokenizer::tt_dict_open: |
169 | 130k | stack.clear(); |
170 | 130k | stack.emplace_back( |
171 | 130k | input, |
172 | 130k | (tokenizer.getType() == QPDFTokenizer::tt_array_open) ? st_array : st_dictionary_key); |
173 | 130k | frame = &stack.back(); |
174 | 130k | return parseRemainder(content_stream); |
175 | | |
176 | 659 | case QPDFTokenizer::tt_bool: |
177 | 659 | return withDescription<QPDF_Bool>(tokenizer.getValue() == "true"); |
178 | | |
179 | 198 | case QPDFTokenizer::tt_null: |
180 | 198 | return {QPDFObject::create<QPDF_Null>()}; |
181 | | |
182 | 10.3k | case QPDFTokenizer::tt_integer: |
183 | 10.3k | return withDescription<QPDF_Integer>(QUtil::string_to_ll(tokenizer.getValue().c_str())); |
184 | | |
185 | 893 | case QPDFTokenizer::tt_real: |
186 | 893 | return withDescription<QPDF_Real>(tokenizer.getValue()); |
187 | | |
188 | 14.3k | case QPDFTokenizer::tt_name: |
189 | 14.3k | return withDescription<QPDF_Name>(tokenizer.getValue()); |
190 | | |
191 | 9.25k | case QPDFTokenizer::tt_word: |
192 | 9.25k | { |
193 | 9.25k | auto const& value = tokenizer.getValue(); |
194 | 9.25k | if (content_stream) { |
195 | 0 | return withDescription<QPDF_Operator>(value); |
196 | 9.25k | } else if (value == "endobj") { |
197 | | // We just saw endobj without having read anything. Treat this as a null and do |
198 | | // not move the input source's offset. |
199 | 625 | input.seek(input.getLastOffset(), SEEK_SET); |
200 | 625 | empty = true; |
201 | 625 | return {QPDFObject::create<QPDF_Null>()}; |
202 | 8.62k | } else { |
203 | 8.62k | QTC::TC("qpdf", "QPDFParser treat word as string"); |
204 | 8.62k | warn("unknown token while reading object; treating as string"); |
205 | 8.62k | return withDescription<QPDF_String>(value); |
206 | 8.62k | } |
207 | 9.25k | } |
208 | | |
209 | 567 | case QPDFTokenizer::tt_string: |
210 | 567 | if (decrypter) { |
211 | 112 | std::string s{tokenizer.getValue()}; |
212 | 112 | decrypter->decryptString(s); |
213 | 112 | return withDescription<QPDF_String>(s); |
214 | 455 | } else { |
215 | 455 | return withDescription<QPDF_String>(tokenizer.getValue()); |
216 | 455 | } |
217 | | |
218 | 0 | default: |
219 | 0 | warn("treating unknown token type as null while reading object"); |
220 | 0 | return {QPDFObject::create<QPDF_Null>()}; |
221 | 171k | } |
222 | 171k | } |
223 | | |
224 | | QPDFObjectHandle |
225 | | QPDFParser::parseRemainder(bool content_stream) |
226 | 130k | { |
227 | | // This method must take care not to resolve any objects. Don't check the type of any object |
228 | | // without first ensuring that it is a direct object. Otherwise, doing so may have the side |
229 | | // effect of reading the object and changing the file pointer. If you do this, it will cause a |
230 | | // logic error to be thrown from QPDF::inParse(). |
231 | | |
232 | 130k | bad_count = 0; |
233 | 130k | bool b_contents = false; |
234 | | |
235 | 5.25M | while (true) { |
236 | 5.25M | if (!tokenizer.nextToken(input, object_description)) { |
237 | 35.2k | warn(tokenizer.getErrorMessage()); |
238 | 35.2k | } |
239 | 5.25M | ++good_count; // optimistically |
240 | | |
241 | 5.25M | if (int_count != 0) { |
242 | | // Special handling of indirect references. Treat integer tokens as part of an indirect |
243 | | // reference until proven otherwise. |
244 | 1.27M | if (tokenizer.getType() == QPDFTokenizer::tt_integer) { |
245 | 778k | if (++int_count > 2) { |
246 | | // Process the oldest buffered integer. |
247 | 443k | addInt(int_count); |
248 | 443k | } |
249 | 778k | last_offset_buffer[int_count % 2] = input.getLastOffset(); |
250 | 778k | int_buffer[int_count % 2] = QUtil::string_to_ll(tokenizer.getValue().c_str()); |
251 | 778k | continue; |
252 | | |
253 | 778k | } else if ( |
254 | 500k | int_count >= 2 && tokenizer.getType() == QPDFTokenizer::tt_word && |
255 | 500k | tokenizer.getValue() == "R") { |
256 | 272k | if (context == nullptr) { |
257 | 0 | QTC::TC("qpdf", "QPDFParser indirect without context"); |
258 | 0 | throw std::logic_error( |
259 | 0 | "QPDFParser::parse called without context on an object " |
260 | 0 | "with indirect references"); |
261 | 0 | } |
262 | 272k | auto id = QIntC::to_int(int_buffer[(int_count - 1) % 2]); |
263 | 272k | auto gen = QIntC::to_int(int_buffer[(int_count) % 2]); |
264 | 272k | if (!(id < 1 || gen < 0 || gen >= 65535)) { |
265 | 269k | add(QPDF::ParseGuard::getObject(context, id, gen, parse_pdf)); |
266 | 269k | } else { |
267 | 3.44k | QTC::TC("qpdf", "QPDFParser invalid objgen"); |
268 | 3.44k | addNull(); |
269 | 3.44k | } |
270 | 272k | int_count = 0; |
271 | 272k | continue; |
272 | | |
273 | 272k | } else if (int_count > 0) { |
274 | | // Process the buffered integers before processing the current token. |
275 | 227k | if (int_count > 1) { |
276 | 61.8k | addInt(int_count - 1); |
277 | 61.8k | } |
278 | 227k | addInt(int_count); |
279 | 227k | int_count = 0; |
280 | 227k | } |
281 | 1.27M | } |
282 | | |
283 | 4.20M | switch (tokenizer.getType()) { |
284 | 7.92k | case QPDFTokenizer::tt_eof: |
285 | 7.92k | warn("parse error while reading object"); |
286 | 7.92k | if (content_stream) { |
287 | | // In content stream mode, leave object uninitialized to indicate EOF |
288 | 0 | return {}; |
289 | 0 | } |
290 | 7.92k | QTC::TC("qpdf", "QPDFParser eof in parseRemainder"); |
291 | 7.92k | warn("unexpected EOF"); |
292 | 7.92k | return {QPDFObject::create<QPDF_Null>()}; |
293 | | |
294 | 33.0k | case QPDFTokenizer::tt_bad: |
295 | 33.0k | QTC::TC("qpdf", "QPDFParser bad token in parseRemainder"); |
296 | 33.0k | if (tooManyBadTokens()) { |
297 | 780 | return {QPDFObject::create<QPDF_Null>()}; |
298 | 780 | } |
299 | 32.2k | addNull(); |
300 | 32.2k | continue; |
301 | | |
302 | 3.56k | case QPDFTokenizer::tt_brace_open: |
303 | 4.89k | case QPDFTokenizer::tt_brace_close: |
304 | 4.89k | QTC::TC("qpdf", "QPDFParser bad brace in parseRemainder"); |
305 | 4.89k | warn("treating unexpected brace token as null"); |
306 | 4.89k | if (tooManyBadTokens()) { |
307 | 420 | return {QPDFObject::create<QPDF_Null>()}; |
308 | 420 | } |
309 | 4.47k | addNull(); |
310 | 4.47k | continue; |
311 | | |
312 | 109k | case QPDFTokenizer::tt_array_close: |
313 | 109k | if ((bad_count || sanity_checks) && !max_bad_count) { |
314 | | // Trigger warning. |
315 | 179 | (void)tooManyBadTokens(); |
316 | 179 | return {QPDFObject::create<QPDF_Null>()}; |
317 | 179 | } |
318 | 109k | if (frame->state == st_array) { |
319 | 107k | auto object = frame->null_count > 100 |
320 | 107k | ? QPDFObject::create<QPDF_Array>(std::move(frame->olist), true) |
321 | 107k | : QPDFObject::create<QPDF_Array>(std::move(frame->olist)); |
322 | 107k | setDescription(object, frame->offset - 1); |
323 | | // The `offset` points to the next of "[". Set the rewind offset to point to the |
324 | | // beginning of "[". This has been explicitly tested with whitespace surrounding the |
325 | | // array start delimiter. getLastOffset points to the array end token and therefore |
326 | | // can't be used here. |
327 | 107k | if (stack.size() <= 1) { |
328 | 1.41k | return object; |
329 | 1.41k | } |
330 | 105k | stack.pop_back(); |
331 | 105k | frame = &stack.back(); |
332 | 105k | add(std::move(object)); |
333 | 105k | } else { |
334 | 2.07k | QTC::TC("qpdf", "QPDFParser bad array close in parseRemainder"); |
335 | 2.07k | if (sanity_checks) { |
336 | | // During sanity checks, assume nesting of containers is corrupt and object is |
337 | | // unusable. |
338 | 1.33k | warn("unexpected array close token; giving up on reading object"); |
339 | 1.33k | return {QPDFObject::create<QPDF_Null>()}; |
340 | 1.33k | } |
341 | 738 | warn("treating unexpected array close token as null"); |
342 | 738 | if (tooManyBadTokens()) { |
343 | 59 | return {QPDFObject::create<QPDF_Null>()}; |
344 | 59 | } |
345 | 679 | addNull(); |
346 | 679 | } |
347 | 106k | continue; |
348 | | |
349 | 165k | case QPDFTokenizer::tt_dict_close: |
350 | 165k | if ((bad_count || sanity_checks) && !max_bad_count) { |
351 | | // Trigger warning. |
352 | 117 | (void)tooManyBadTokens(); |
353 | 117 | return {QPDFObject::create<QPDF_Null>()}; |
354 | 117 | } |
355 | 165k | if (frame->state <= st_dictionary_value) { |
356 | | // Attempt to recover more or less gracefully from invalid dictionaries. |
357 | 164k | auto& dict = frame->dict; |
358 | | |
359 | 164k | if (frame->state == st_dictionary_value) { |
360 | 7.91k | QTC::TC("qpdf", "QPDFParser no val for last key"); |
361 | 7.91k | warn( |
362 | 7.91k | frame->offset, |
363 | 7.91k | "dictionary ended prematurely; using null as value for last key"); |
364 | 7.91k | dict[frame->key] = QPDFObject::create<QPDF_Null>(); |
365 | 7.91k | } |
366 | 164k | if (!frame->olist.empty()) { |
367 | 49.5k | if (sanity_checks) { |
368 | 46.2k | warn( |
369 | 46.2k | frame->offset, |
370 | 46.2k | "expected dictionary keys but found non-name objects; ignoring"); |
371 | 46.2k | } else { |
372 | 3.36k | fixMissingKeys(); |
373 | 3.36k | } |
374 | 49.5k | } |
375 | | |
376 | 164k | if (!frame->contents_string.empty() && dict.contains("/Type") && |
377 | 164k | dict["/Type"].isNameAndEquals("/Sig") && dict.contains("/ByteRange") && |
378 | 164k | dict.contains("/Contents") && dict["/Contents"].isString()) { |
379 | 12 | dict["/Contents"] = QPDFObjectHandle::newString(frame->contents_string); |
380 | 12 | dict["/Contents"].setParsedOffset(frame->contents_offset); |
381 | 12 | } |
382 | 164k | auto object = QPDFObject::create<QPDF_Dictionary>(std::move(dict)); |
383 | 164k | setDescription(object, frame->offset - 2); |
384 | | // The `offset` points to the next of "<<". Set the rewind offset to point to the |
385 | | // beginning of "<<". This has been explicitly tested with whitespace surrounding |
386 | | // the dictionary start delimiter. getLastOffset points to the dictionary end token |
387 | | // and therefore can't be used here. |
388 | 164k | if (stack.size() <= 1) { |
389 | 109k | return object; |
390 | 109k | } |
391 | 54.4k | stack.pop_back(); |
392 | 54.4k | frame = &stack.back(); |
393 | 54.4k | add(std::move(object)); |
394 | 54.4k | } else { |
395 | 1.28k | QTC::TC("qpdf", "QPDFParser bad dictionary close in parseRemainder"); |
396 | 1.28k | if (sanity_checks) { |
397 | | // During sanity checks, assume nesting of containers is corrupt and object is |
398 | | // unusable. |
399 | 730 | warn("unexpected dictionary close token; giving up on reading object"); |
400 | 730 | return {QPDFObject::create<QPDF_Null>()}; |
401 | 730 | } |
402 | 552 | warn("unexpected dictionary close token"); |
403 | 552 | if (tooManyBadTokens()) { |
404 | 42 | return {QPDFObject::create<QPDF_Null>()}; |
405 | 42 | } |
406 | 510 | addNull(); |
407 | 510 | } |
408 | 54.9k | continue; |
409 | | |
410 | 155k | case QPDFTokenizer::tt_array_open: |
411 | 261k | case QPDFTokenizer::tt_dict_open: |
412 | 261k | if (stack.size() > 499) { |
413 | 83 | QTC::TC("qpdf", "QPDFParser too deep"); |
414 | 83 | warn("ignoring excessively deeply nested data structure"); |
415 | 83 | return {QPDFObject::create<QPDF_Null>()}; |
416 | 261k | } else { |
417 | 261k | b_contents = false; |
418 | 261k | stack.emplace_back( |
419 | 261k | input, |
420 | 261k | (tokenizer.getType() == QPDFTokenizer::tt_array_open) ? st_array |
421 | 261k | : st_dictionary_key); |
422 | 261k | frame = &stack.back(); |
423 | 261k | continue; |
424 | 261k | } |
425 | | |
426 | 9.95k | case QPDFTokenizer::tt_bool: |
427 | 9.95k | addScalar<QPDF_Bool>(tokenizer.getValue() == "true"); |
428 | 9.95k | continue; |
429 | | |
430 | 49.9k | case QPDFTokenizer::tt_null: |
431 | 49.9k | addNull(); |
432 | 49.9k | continue; |
433 | | |
434 | 500k | case QPDFTokenizer::tt_integer: |
435 | 500k | if (!content_stream) { |
436 | | // Buffer token in case it is part of an indirect reference. |
437 | 500k | last_offset_buffer[1] = input.getLastOffset(); |
438 | 500k | int_buffer[1] = QUtil::string_to_ll(tokenizer.getValue().c_str()); |
439 | 500k | int_count = 1; |
440 | 500k | } else { |
441 | 0 | addScalar<QPDF_Integer>(QUtil::string_to_ll(tokenizer.getValue().c_str())); |
442 | 0 | } |
443 | 500k | continue; |
444 | | |
445 | 59.7k | case QPDFTokenizer::tt_real: |
446 | 59.7k | addScalar<QPDF_Real>(tokenizer.getValue()); |
447 | 59.7k | continue; |
448 | | |
449 | 2.74M | case QPDFTokenizer::tt_name: |
450 | 2.74M | if (frame->state == st_dictionary_key) { |
451 | 678k | frame->key = tokenizer.getValue(); |
452 | 678k | frame->state = st_dictionary_value; |
453 | 678k | b_contents = decrypter && frame->key == "/Contents"; |
454 | 678k | continue; |
455 | 2.06M | } else { |
456 | 2.06M | addScalar<QPDF_Name>(tokenizer.getValue()); |
457 | 2.06M | } |
458 | 2.06M | continue; |
459 | | |
460 | 2.06M | case QPDFTokenizer::tt_word: |
461 | 176k | if (content_stream) { |
462 | 0 | addScalar<QPDF_Operator>(tokenizer.getValue()); |
463 | 0 | continue; |
464 | 0 | } |
465 | | |
466 | 176k | if (sanity_checks) { |
467 | 169k | if (tokenizer.getValue() == "endobj" || tokenizer.getValue() == "endstream") { |
468 | | // During sanity checks, assume an unexpected endobj or endstream indicates that |
469 | | // we are parsing past the end of the object. |
470 | 1.93k | warn( |
471 | 1.93k | "unexpected 'endobj' or 'endstream' while reading object; giving up on " |
472 | 1.93k | "reading object"); |
473 | 1.93k | return {QPDFObject::create<QPDF_Null>()}; |
474 | 1.93k | } |
475 | | |
476 | 167k | warn("unknown token while reading object; treating as null"); |
477 | 167k | if (tooManyBadTokens()) { |
478 | 3.66k | return {QPDFObject::create<QPDF_Null>()}; |
479 | 3.66k | } |
480 | 163k | addNull(); |
481 | 163k | continue; |
482 | 167k | } |
483 | | |
484 | 7.62k | QTC::TC("qpdf", "QPDFParser treat word as string in parseRemainder"); |
485 | 7.62k | warn("unknown token while reading object; treating as string"); |
486 | 7.62k | if (tooManyBadTokens()) { |
487 | 166 | return {QPDFObject::create<QPDF_Null>()}; |
488 | 166 | } |
489 | 7.45k | addScalar<QPDF_String>(tokenizer.getValue()); |
490 | | |
491 | 7.45k | continue; |
492 | | |
493 | 72.6k | case QPDFTokenizer::tt_string: |
494 | 72.6k | { |
495 | 72.6k | auto const& val = tokenizer.getValue(); |
496 | 72.6k | if (decrypter) { |
497 | 11.9k | if (b_contents) { |
498 | 625 | frame->contents_string = val; |
499 | 625 | frame->contents_offset = input.getLastOffset(); |
500 | 625 | b_contents = false; |
501 | 625 | } |
502 | 11.9k | std::string s{val}; |
503 | 11.9k | decrypter->decryptString(s); |
504 | 11.9k | addScalar<QPDF_String>(s); |
505 | 60.7k | } else { |
506 | 60.7k | addScalar<QPDF_String>(val); |
507 | 60.7k | } |
508 | 72.6k | } |
509 | 72.6k | continue; |
510 | | |
511 | 0 | default: |
512 | 0 | warn("treating unknown token type as null while reading object"); |
513 | 0 | if (tooManyBadTokens()) { |
514 | 0 | return {QPDFObject::create<QPDF_Null>()}; |
515 | 0 | } |
516 | 0 | addNull(); |
517 | 4.20M | } |
518 | 4.20M | } |
519 | 130k | } |
520 | | |
521 | | void |
522 | | QPDFParser::add(std::shared_ptr<QPDFObject>&& obj) |
523 | 3.28M | { |
524 | 3.28M | if (frame->state != st_dictionary_value) { |
525 | | // If state is st_dictionary_key then there is a missing key. Push onto olist for |
526 | | // processing once the tt_dict_close token has been found. |
527 | 2.64M | frame->olist.emplace_back(std::move(obj)); |
528 | 2.64M | } else { |
529 | 634k | if (auto res = frame->dict.insert_or_assign(frame->key, std::move(obj)); !res.second) { |
530 | 30.8k | warnDuplicateKey(); |
531 | 30.8k | } |
532 | 634k | frame->state = st_dictionary_key; |
533 | 634k | } |
534 | 3.28M | } |
535 | | |
536 | | void |
537 | | QPDFParser::addNull() |
538 | 253k | { |
539 | 253k | const static ObjectPtr null_obj = QPDFObject::create<QPDF_Null>(); |
540 | | |
541 | 253k | if (frame->state != st_dictionary_value) { |
542 | | // If state is st_dictionary_key then there is a missing key. Push onto olist for |
543 | | // processing once the tt_dict_close token has been found. |
544 | 224k | frame->olist.emplace_back(null_obj); |
545 | 224k | } else { |
546 | 28.9k | if (auto res = frame->dict.insert_or_assign(frame->key, null_obj); !res.second) { |
547 | 2.58k | warnDuplicateKey(); |
548 | 2.58k | } |
549 | 28.9k | frame->state = st_dictionary_key; |
550 | 28.9k | } |
551 | 253k | ++frame->null_count; |
552 | 253k | } |
553 | | |
554 | | void |
555 | | QPDFParser::addInt(int count) |
556 | 733k | { |
557 | 733k | auto obj = QPDFObject::create<QPDF_Integer>(int_buffer[count % 2]); |
558 | 733k | obj->setDescription(context, description, last_offset_buffer[count % 2]); |
559 | 733k | add(std::move(obj)); |
560 | 733k | } |
561 | | |
562 | | template <typename T, typename... Args> |
563 | | void |
564 | | QPDFParser::addScalar(Args&&... args) |
565 | 2.21M | { |
566 | 2.21M | if ((bad_count || sanity_checks) && |
567 | 2.21M | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { |
568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is |
569 | | // encountered. |
570 | 101k | max_bad_count = 0; |
571 | 101k | return; |
572 | 101k | } |
573 | 2.11M | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); |
574 | 2.11M | obj->setDescription(context, description, input.getLastOffset()); |
575 | 2.11M | add(std::move(obj)); |
576 | 2.11M | } void QPDFParser::addScalar<QPDF_Bool, bool>(bool&&) Line | Count | Source | 565 | 9.95k | { | 566 | 9.95k | if ((bad_count || sanity_checks) && | 567 | 9.95k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 569 | | // encountered. | 570 | 213 | max_bad_count = 0; | 571 | 213 | return; | 572 | 213 | } | 573 | 9.74k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 574 | 9.74k | obj->setDescription(context, description, input.getLastOffset()); | 575 | 9.74k | add(std::move(obj)); | 576 | 9.74k | } |
Unexecuted instantiation: void QPDFParser::addScalar<QPDF_Integer, long long>(long long&&) void QPDFParser::addScalar<QPDF_Real, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 565 | 59.7k | { | 566 | 59.7k | if ((bad_count || sanity_checks) && | 567 | 59.7k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 569 | | // encountered. | 570 | 246 | max_bad_count = 0; | 571 | 246 | return; | 572 | 246 | } | 573 | 59.5k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 574 | 59.5k | obj->setDescription(context, description, input.getLastOffset()); | 575 | 59.5k | add(std::move(obj)); | 576 | 59.5k | } |
void QPDFParser::addScalar<QPDF_Name, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 565 | 2.06M | { | 566 | 2.06M | if ((bad_count || sanity_checks) && | 567 | 2.06M | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 569 | | // encountered. | 570 | 100k | max_bad_count = 0; | 571 | 100k | return; | 572 | 100k | } | 573 | 1.96M | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 574 | 1.96M | obj->setDescription(context, description, input.getLastOffset()); | 575 | 1.96M | add(std::move(obj)); | 576 | 1.96M | } |
Unexecuted instantiation: void QPDFParser::addScalar<QPDF_Operator, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) void QPDFParser::addScalar<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 565 | 68.1k | { | 566 | 68.1k | if ((bad_count || sanity_checks) && | 567 | 68.1k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 569 | | // encountered. | 570 | 234 | max_bad_count = 0; | 571 | 234 | return; | 572 | 234 | } | 573 | 67.8k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 574 | 67.8k | obj->setDescription(context, description, input.getLastOffset()); | 575 | 67.8k | add(std::move(obj)); | 576 | 67.8k | } |
void QPDFParser::addScalar<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&) Line | Count | Source | 565 | 11.9k | { | 566 | 11.9k | if ((bad_count || sanity_checks) && | 567 | 11.9k | (frame->olist.size() > 5'000 || frame->dict.size() > 5'000)) { | 568 | | // Stop adding scalars. We are going to abort when the close token or a bad token is | 569 | | // encountered. | 570 | 200 | max_bad_count = 0; | 571 | 200 | return; | 572 | 200 | } | 573 | 11.7k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 574 | 11.7k | obj->setDescription(context, description, input.getLastOffset()); | 575 | 11.7k | add(std::move(obj)); | 576 | 11.7k | } |
|
577 | | |
578 | | template <typename T, typename... Args> |
579 | | QPDFObjectHandle |
580 | | QPDFParser::withDescription(Args&&... args) |
581 | 34.8k | { |
582 | 34.8k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); |
583 | 34.8k | obj->setDescription(context, description, start); |
584 | 34.8k | return {obj}; |
585 | 34.8k | } QPDFObjectHandle QPDFParser::withDescription<QPDF_Bool, bool>(bool&&) Line | Count | Source | 581 | 659 | { | 582 | 659 | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 659 | obj->setDescription(context, description, start); | 584 | 659 | return {obj}; | 585 | 659 | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Integer, long long>(long long&&) Line | Count | Source | 581 | 10.2k | { | 582 | 10.2k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 10.2k | obj->setDescription(context, description, start); | 584 | 10.2k | return {obj}; | 585 | 10.2k | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Real, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 581 | 893 | { | 582 | 893 | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 893 | obj->setDescription(context, description, start); | 584 | 893 | return {obj}; | 585 | 893 | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_Name, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 581 | 14.3k | { | 582 | 14.3k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 14.3k | obj->setDescription(context, description, start); | 584 | 14.3k | return {obj}; | 585 | 14.3k | } |
Unexecuted instantiation: QPDFObjectHandle QPDFParser::withDescription<QPDF_Operator, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) QPDFObjectHandle QPDFParser::withDescription<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> > const&) Line | Count | Source | 581 | 8.57k | { | 582 | 8.57k | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 8.57k | obj->setDescription(context, description, start); | 584 | 8.57k | return {obj}; | 585 | 8.57k | } |
QPDFObjectHandle QPDFParser::withDescription<QPDF_String, std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&>(std::__1::basic_string<char, std::__1::char_traits<char>, std::__1::allocator<char> >&) Line | Count | Source | 581 | 110 | { | 582 | 110 | auto obj = QPDFObject::create<T>(std::forward<Args>(args)...); | 583 | 110 | obj->setDescription(context, description, start); | 584 | 110 | return {obj}; | 585 | 110 | } |
|
586 | | |
587 | | void |
588 | | QPDFParser::setDescription(ObjectPtr& obj, qpdf_offset_t parsed_offset) |
589 | 271k | { |
590 | 271k | if (obj) { |
591 | 271k | obj->setDescription(context, description, parsed_offset); |
592 | 271k | } |
593 | 271k | } |
594 | | |
595 | | void |
596 | | QPDFParser::fixMissingKeys() |
597 | 3.36k | { |
598 | 3.36k | std::set<std::string> names; |
599 | 13.5k | for (auto& obj: frame->olist) { |
600 | 13.5k | if (obj.getObj()->getTypeCode() == ::ot_name) { |
601 | 353 | names.insert(obj.getObj()->getStringValue()); |
602 | 353 | } |
603 | 13.5k | } |
604 | 3.36k | int next_fake_key = 1; |
605 | 13.4k | for (auto const& item: frame->olist) { |
606 | 13.4k | while (true) { |
607 | 13.4k | const std::string key = "/QPDFFake" + std::to_string(next_fake_key++); |
608 | 13.4k | const bool found_fake = !frame->dict.contains(key) && !names.contains(key); |
609 | 13.4k | QTC::TC("qpdf", "QPDFParser found fake", (found_fake ? 0 : 1)); |
610 | 13.4k | if (found_fake) { |
611 | 13.4k | warn( |
612 | 13.4k | frame->offset, |
613 | 13.4k | "expected dictionary key but found non-name object; inserting key " + key); |
614 | 13.4k | frame->dict[key] = item; |
615 | 13.4k | break; |
616 | 13.4k | } |
617 | 13.4k | } |
618 | 13.4k | } |
619 | 3.36k | } |
620 | | |
621 | | bool |
622 | | QPDFParser::tooManyBadTokens() |
623 | 213k | { |
624 | 213k | if (frame->olist.size() > 5'000 || frame->dict.size() > 5'000) { |
625 | 315 | if (bad_count) { |
626 | 229 | warn( |
627 | 229 | "encountered errors while parsing an array or dictionary with more than 5000 " |
628 | 229 | "elements; giving up on reading object"); |
629 | 229 | return true; |
630 | 229 | } |
631 | 86 | warn( |
632 | 86 | "encountered an array or dictionary with more than 5000 elements during xref recovery; " |
633 | 86 | "giving up on reading object"); |
634 | 86 | } |
635 | 213k | if (max_bad_count && --max_bad_count > 0 && good_count > 4) { |
636 | 77.3k | good_count = 0; |
637 | 77.3k | bad_count = 1; |
638 | 77.3k | return false; |
639 | 77.3k | } |
640 | 136k | if (++bad_count > 5 || |
641 | 136k | (frame->state != st_array && QIntC::to_size(max_bad_count) < frame->olist.size())) { |
642 | | // Give up after 5 errors in close proximity or if the number of missing dictionary keys |
643 | | // exceeds the remaining number of allowable total errors. |
644 | 5.11k | warn("too many errors; giving up on reading object"); |
645 | 5.11k | return true; |
646 | 5.11k | } |
647 | 131k | good_count = 0; |
648 | 131k | return false; |
649 | 136k | } |
650 | | |
651 | | void |
652 | | QPDFParser::warn(QPDFExc const& e) const |
653 | 356k | { |
654 | | // If parsing on behalf of a QPDF object and want to give a warning, we can warn through the |
655 | | // object. If parsing for some other reason, such as an explicit creation of an object from a |
656 | | // string, then just throw the exception. |
657 | 356k | if (context) { |
658 | 356k | context->warn(e); |
659 | 356k | } else { |
660 | 0 | throw e; |
661 | 0 | } |
662 | 356k | } |
663 | | |
664 | | void |
665 | | QPDFParser::warnDuplicateKey() |
666 | 33.4k | { |
667 | 33.4k | QTC::TC("qpdf", "QPDFParser duplicate dict key"); |
668 | 33.4k | warn( |
669 | 33.4k | frame->offset, |
670 | 33.4k | "dictionary has duplicated key " + frame->key + "; last occurrence overrides earlier ones"); |
671 | 33.4k | } |
672 | | |
673 | | void |
674 | | QPDFParser::warn(qpdf_offset_t offset, std::string const& msg) const |
675 | 356k | { |
676 | 356k | if (stream_id) { |
677 | 16.4k | std::string descr = "object "s + std::to_string(obj_id) + " 0"; |
678 | 16.4k | std::string name = context->getFilename() + " object stream " + std::to_string(stream_id); |
679 | 16.4k | warn(QPDFExc(qpdf_e_damaged_pdf, name, descr, offset, msg)); |
680 | 339k | } else { |
681 | 339k | warn(QPDFExc(qpdf_e_damaged_pdf, input.getName(), object_description, offset, msg)); |
682 | 339k | } |
683 | 356k | } |
684 | | |
685 | | void |
686 | | QPDFParser::warn(std::string const& msg) const |
687 | 254k | { |
688 | 254k | warn(input.getLastOffset(), msg); |
689 | 254k | } |