diff options
| author | Jay Berkenbilt <ejb@ql.org> | 2022-01-23 19:11:46 +0100 |
|---|---|---|
| committer | Jay Berkenbilt <ejb@ql.org> | 2022-01-30 19:11:03 +0100 |
| commit | fcdbc8a102ca258d105ebd2f41bbf17b29c817fd (patch) | |
| tree | 520877ee0bbcb61781b9b4209a074c9180e348a6 /libqpdf/QPDFJob.cc | |
| parent | c4e56fa5f40188ddf4f75d316e57143c10ed51fa (diff) | |
| download | qpdf-fcdbc8a102ca258d105ebd2f41bbf17b29c817fd.tar.zst | |
Move doFinalChecks to QPDFJob::checkConfiguration
Diffstat (limited to 'libqpdf/QPDFJob.cc')
| -rw-r--r-- | libqpdf/QPDFJob.cc | 87 |
1 files changed, 87 insertions, 0 deletions
diff --git a/libqpdf/QPDFJob.cc b/libqpdf/QPDFJob.cc index 0c772efb..396d2efb 100644 --- a/libqpdf/QPDFJob.cc +++ b/libqpdf/QPDFJob.cc @@ -530,6 +530,93 @@ QPDFJob::createsOutput() const return ((o.outfilename != nullptr) || o.replace_input); } +void +QPDFJob::checkConfiguration() +{ + auto usage = [](char const* msg){ + throw std::runtime_error(msg); + }; + + QPDFJob& o = *this; // QXXXQ + // QXXXQ messages are CLI-centric + if (o.replace_input) + { + if (o.outfilename) + { + usage("--replace-input may not be used when" + " an output file is specified"); + } + else if (o.split_pages) + { + usage("--split-pages may not be used with --replace-input"); + } + } + if (o.infilename == 0) + { + usage("an input file name is required"); + } + else if (o.require_outfile && (o.outfilename == 0) && (! o.replace_input)) + { + usage("an output file name is required; use - for standard output"); + } + else if ((! o.require_outfile) && + ((o.outfilename != 0) || o.replace_input)) + { + usage("no output file may be given for this option"); + } + if (o.check_requires_password && o.check_is_encrypted) + { + usage("--requires-password and --is-encrypted may not be given" + " together"); + } + + if (o.encrypt && (! o.allow_insecure) && + (o.owner_password.empty() && + (! o.user_password.empty()) && + (o.keylen == 256))) + { + // Note that empty owner passwords for R < 5 are copied from + // the user password, so this lack of security is not an issue + // for those files. Also we are consider only the ability to + // open the file without a password to be insecure. We are not + // concerned about whether the viewer enforces security + // settings when the user and owner password match. + usage("A PDF with a non-empty user password and an empty owner" + " password encrypted with a 256-bit key is insecure as it" + " can be opened without a password. If you really want to" + " do this, you must also give the --allow-insecure option" + " before the -- that follows --encrypt."); + } + + if (o.require_outfile && o.outfilename && + (strcmp(o.outfilename.get(), "-") == 0)) + { + if (o.split_pages) + { + usage("--split-pages may not be used when" + " writing to standard output"); + } + if (o.verbose) + { + usage("--verbose may not be used when" + " writing to standard output"); + } + if (o.progress) + { + usage("--progress may not be used when" + " writing to standard output"); + } + } + + if ((! o.split_pages) && + QUtil::same_file(o.infilename.get(), o.outfilename.get())) + { + QTC::TC("qpdf", "qpdf same file error"); + usage("input file and output file are the same;" + " use --replace-input to intentionally overwrite the input file"); + } +} + bool QPDFJob::suppressWarnings() { |