将签名哈希集成到原始 PDF

【问题标题】:Integrate Signed Hash into original PDF将签名哈希集成到原始 PDF
【发布时间】:2020-07-09 11:20:39
【问题描述】:

我在原始 PDF 中集成了签名哈希,但签名的有效性仍然存在错误。据说签名后pdf已更改。

以下步骤:我计算哈希值,然后将其发送给签名,最后得到哈希符号,然后继续在原始 pdf 中进行集成

package com.example.hashdocument;

import com.itextpdf.text.DocumentException;
import com.itextpdf.text.Rectangle;
import com.itextpdf.text.pdf.*;
import com.itextpdf.text.pdf.security.*;
import com.lexpersona.commons.utils.ProcessLauncher;
import java.io.*;
import java.security.GeneralSecurityException;
import java.security.MessageDigest;
import java.util.*;


public class Test2 {

    private static final String SRC = "B:/Hash-et-Reconstitution/tmp/Doc_test.pdf";
    private static final String DST = "B:/Hash-et-Reconstitution/tmp/Doc_test_DST.pdf";
    private static final String HASH = "B:/Hash-et-Reconstitution/tmp/Doc_test_hashed.hash";
    
    private static final String PATH_BAT = "C:/Repo_LP7/lpcommand.bat";
    private static final String PIN = "123456";
    private static final String CERTIFICATE = "C:/lp7command/tools/certificate.p12";
    private static final String SIGNED_HASH = "B:/Hash-et-Reconstitution/tmp/doc_signed.hash";
    
    private static byte[] readFileToByteArray(File file){
        FileInputStream fis = null;
        byte[] bArray = new byte[(int) file.length()];
        try{
          fis = new FileInputStream(file);
          fis.read(bArray);
          fis.close();                   
        }catch(IOException ioExp){
          ioExp.printStackTrace();
        }
        return bArray;
      }
    public static File bytesToFile(byte[] fileByte,String pathFile)  {
        File file = new File(pathFile);
        try {
            OutputStream os = new FileOutputStream(file);
            os.write(fileByte);
            os.close();
        } catch (Exception e) {
            e.printStackTrace();
        }
        return file;
    }
    public static byte[] signDocument() throws IOException {
        
        
        ProcessLauncher p = new ProcessLauncher(System.out, System.err);
        int exec;
        exec = p.exec("cmd.exe /c "+PATH_BAT+" <nul "+ SIGNED_HASH +" "+ PIN+" "
                + HASH+" "+CERTIFICATE, null, null);

        byte[] signedHash = readFileToByteArray(new File(SIGNED_HASH));
        
        return signedHash;
    }
     
    
    public static void main(String[] args) throws IOException, GeneralSecurityException, DocumentException {
        
        PdfSignatureAppearance appearance = null;
        ByteArrayOutputStream  os = null;
        String hash_document = "";
        
        InputStream data = null;
        int contentEstimated = 8192;

        PdfReader reader = new PdfReader(SRC);

        reader.unethicalreading = true;
        reader.setAppendable(true);

        int pdfPagenumber = 1;

        pdfPagenumber = reader.getNumberOfPages(); // Sign on last page

        os = new ByteArrayOutputStream ();
        PdfStamper stamper = PdfStamper.createSignature(reader, os, '\0', null, true);

        Calendar cal = Calendar.getInstance();        
        appearance = stamper.getSignatureAppearance();        
        appearance.setSignDate(cal);
        //appearance.setAcro6Layers(false);
        appearance.setReason("Signature de contrat");
        appearance.setLocation("MAROC");              
        appearance.setImage(null);
        appearance.setCertificationLevel(PdfSignatureAppearance.CERTIFIED_NO_CHANGES_ALLOWED);

        Rectangle rect = new Rectangle(300, 300, 20, 20);        
        appearance.setVisibleSignature(rect, pdfPagenumber, null);

        HashMap<PdfName, Integer> exc = new HashMap<PdfName, Integer>();
        exc.put(PdfName.CONTENTS, new Integer(contentEstimated * 2 + 2));
        PdfSignature dic = new PdfSignature(PdfName.ADOBE_PPKLITE, PdfName.ADBE_PKCS7_DETACHED);
        dic.setReason(appearance.getReason()); 
        dic.setLocation(appearance.getLocation());
        dic.setContact(appearance.getContact());
        dic.setDate(new PdfDate(appearance.getSignDate()));
        appearance.setCryptoDictionary(dic);

        appearance.preClose(exc);

        data = appearance.getRangeStream();    

        MessageDigest messageDigest;
        String provider = null;
        String hashAlgorithm = DigestAlgorithms.SHA256;
        if (provider == null){
            messageDigest = MessageDigest.getInstance(hashAlgorithm);
        }else {
            messageDigest = MessageDigest.getInstance(hashAlgorithm,provider);
        }


        int read = 0;
        byte[] buff = new byte[contentEstimated];

        while ((read = data.read(buff, 0, contentEstimated)) > 0)
        {
            messageDigest.update(buff,0,read);                      
        }
        byte[] hashDigest = messageDigest.digest();

        byte[] documentHash = org.bouncycastle.util.encoders.Hex.encode(hashDigest);

        //eSign Start        
        hash_document = new String(documentHash, "UTF-8");        
        System.out.println("Document Hash :"+hash_document);
        

        
        PrintStream out = new PrintStream(new FileOutputStream(HASH));
        out.print(hash_document);
        
        
        byte[] hashdocumentByte = signDocument();
        
        //////////////////// ADD SIGNED BYTES/HASH TO PDF DOCUMENT.      
        int contentEstimated2 = 8192;
        byte[] paddedSig = new byte[contentEstimated2];
        byte[] signedDocByte = hashdocumentByte;
        
        System.arraycopy(signedDocByte, 0, paddedSig, 0, signedDocByte.length);
        
        PdfDictionary dic2 = new PdfDictionary();
        dic2.put(PdfName.CONTENTS, new PdfString(paddedSig).setHexWriting(true));

        appearance.close(dic2);
        
        try(OutputStream outputStream = new FileOutputStream(DST)) {
            os.writeTo(outputStream);
        }

        os.close(); 
        
    }
}

【问题讨论】:

  • 请分享一份您签名的 PDF 文件以供分析。
  • 这是签名文件:drive.google.com/file/d/1bYlc1NAbIQMcoj252rOnTfNS0ZC8BQG1/…
  • 稍微检查了 PDF 我认为 CMS 签名容器本身是可以的,它只是签署了一个与文档的签名字节范围的散列不同的散列。您共享的文档是否还有System.out.println("Document Hash :"+hash_document); 的输出?或者您能否使用您的代码创建另一个签名文档并共享程序输出?
  • 感谢您的帮助。这里是签署哈希:文件哈希:79793c58489eb94a17c365445622b7f7945972a5a0bc4c93b6444bedffa5a5bb这是签约函数的输出符号前:哈希标志:79793c58489eb94a17c365445622b7f7945972a5a0bc4c93b6444bedffa5a5bb最后是这样的签名文档:drive.google.com/file/d/1bYlc1NAbIQMcoj252rOnTfNS0ZC8BQG1/… SPAN>
  • 您的输出79793c58489eb94a17c365445622b7f7945972a5a0bc4c93b6444bedffa5a5bb 是正确的。但是您的签名容器会签名A8BCBC6F9619ECB950864BFDF41D1B5B7CD33D035AF95570C426CF4B0405949B。因此,问题不在于您显示的代码,而显然在signDocument() 中,它似乎没有对您计算的哈希值进行签名。

标签: hash itext digital-signature


【解决方案1】:

你对这段代码有什么看法:首先我计算哈希并发送到服务器 A 进行签名

    PdfReader reader = new PdfReader(SRC);
    FileOutputStream os = new FileOutputStream(TEMP);
    PdfStamper stamper = PdfStamper.createSignature(reader, os, '\0');
    PdfSignatureAppearance appearance = stamper.getSignatureAppearance();
    appearance.setVisibleSignature(new Rectangle(36, 748, 144, 780), 1, "sig");
    //appearance.setCertificate(chain[0]);
    ExternalSignatureContainer external = new 
    ExternalBlankSignatureContainer(PdfName.ADOBE_PPKLITE, PdfName.ADBE_PKCS7_DETACHED);
    MakeSignature.signExternalContainer(appearance, external, 8192);

    InputStream inp = appearance.getRangeStream();  

    BouncyCastleDigest digest = new BouncyCastleDigest();


     byte[] hash = DigestAlgorithms.digest(inp, digest.getMessageDigest("SHA256"));
     System.out.println("hash to sign : "+ hash);
     bytesToFile(hash, HASH);
     byte[] hashdocumentByte = TEST.signed_hash(hash);
     
     PdfReader reader2 = new PdfReader(TEMP);
    FileOutputStream os2 = new FileOutputStream(DEST);
    ExternalSignatureContainer external2 = new 
    MyExternalSignatureContainer(hashdocumentByte,null);
    MakeSignature.signDeferred(reader2, "sig", os2, external2);

在我签署哈希的服务器 B 中:

        BouncyCastleProvider providerBC = new BouncyCastleProvider();
        Security.addProvider(providerBC);

        // we load our private key from the key store
        KeyStore ks = KeyStore.getInstance(KeyStore.getDefaultType());
        ks.load(new FileInputStream(CERTIFICATE), PIN);
        String alias = (String)ks.aliases().nextElement();
        Certificate[] chain = ks.getCertificateChain(alias);
        PrivateKey pk = (PrivateKey) ks.getKey(alias, PIN);
        
        
     PrivateKeySignature signature = new PrivateKeySignature(pk, "SHA256", null);
       BouncyCastleDigest digest = new BouncyCastleDigest();
        Calendar cal = Calendar.getInstance();
        String hashAlgorithm = signature.getHashAlgorithm();
        System.out.println(hashAlgorithm);
        PdfPKCS7 sgn = new PdfPKCS7(null, chain, "SHA256", null, digest, false);

        byte[] sh = sgn.getAuthenticatedAttributeBytes(hash, null, null, CryptoStandard.CMS);
        byte[] extSignature = signature.sign(sh);

        System.out.println(signature.getEncryptionAlgorithm());
        sgn.setExternalDigest(extSignature, null, signature.getEncryptionAlgorithm());
        return sgn.getEncodedPKCS7(hash, null, null, null, CryptoStandard.CMS);

【讨论】:

  • 你能描述一下“MyExternalSignatureContainer”类吗
【解决方案2】:

您的 signDocument 方法显然不接受预先计算的哈希值,但似乎计算您提供给它的数据的哈希值,在您的情况下是您已经计算的哈希值的(小写)十六进制表示。

在您的第一个示例文档中,您有这些值(所有哈希都是 SHA256 哈希):

  • 要签名的字节范围的哈希:

    91A9F5EBC4F2ECEC819898824E00ECD9194C3E85E4410A3EFCF5193ED7739119

  • "91a9f5ebc4f2ecec819898824e00ecd9194c3e85e4410a3efcf5193ed7739119".getBytes() 的哈希:

    2F37FE82F4F71770C2B33FB8787DE29627D7319EE77C6B5C48152F6E420A3242

  • 嵌入签名容器签名的哈希值:

    2F37FE82F4F71770C2B33FB8787DE29627D7319EE77C6B5C48152F6E420A3242

在您的第一个示例文档中,您有这些值(所有哈希也是 SHA256 哈希):

  • 要签名的字节范围的哈希:

    79793C58489EB94A17C365445622B7F7945972A5A0BC4C93B6444BEDFFA5A5BB

  • "79793c58489eb94a17c365445622b7f7945972a5a0bc4c93b6444bedffa5a5bb".getBytes() 的哈希:

    A8BCBC6F9619ECB950864BFDF41D1B5B7CD33D035AF95570C426CF4B0405949B

  • 嵌入签名容器签名的哈希值:

    A8BCBC6F9619ECB950864BFDF41D1B5B7CD33D035AF95570C426CF4B0405949B

因此,您必须更正您的 signDocument 方法以正确解释数据,或者您必须给它一个包含要消化的整个范围流的字节数组。

【讨论】:

  • 很遗憾我无法修改signDocument函数,否则我该怎么做呢?原因,当我在将签名散列集成到原始 PDF 之前检查签名散列时,我找到了作为输入传递的真实散列
  • 事实上,对于签名,我使用了一个名为 LP7 的编辑器中的工具。所以我用输入调用一个 jar 文件并返回签名文件。我不知道后台到底发生了什么
  • 好吧,我不知道 LP7,用谷歌搜索它我只找到了一个转盘......
  • 我刚才看到你调用的命令是一个批处理文件,C:/Repo_LP7/lpcommand.bat,所以你可以看看,大概了解更多...
  • lpcomland.bat 它只是调用一个 lp7comman.jar,jar 获取输入文件并签名。我的问题我看不到后台发生了什么
猜你喜欢
  • 2020-11-23
  • 2017-09-04
  • 1970-01-01
  • 1970-01-01
  • 1970-01-01
  • 1970-01-01
  • 1970-01-01
  • 2012-08-17
  • 2017-04-25
相关资源
最近更新 更多
热门标签
Java Python linux javascript Mysql C# Docker 算法 前端 SpringBoot Redis Vue spring 设计模式 .net core .net kubernetes c++ 数据库 数据结构 大数据 js 机器学习 微服务 Android Go 程序员 面试 JVM ASP.net core 云原生 人工智能 后端 PHP git CSS golang k8s Nginx Django mybatis 深度学习 多线程 React 架构 devops 爬虫 云计算 Spring Boot LeetCode