Rodrigo Tobar bb48a67f84 LibPDF: Reset encryption key on failed user password attempt ...

When an attempt is made to provide the user password to a
SecurityHandler a user gets back a boolean result indicating success or
failure on the attempt. However, the SecurityHandler is left in a state
where it thinks it has a user password, regardless of the outcome of the
attempt. This confuses the rest of the system, which continues as if the
provided password is correct, resulting in garbled content.

This commit fixes the situation by resetting the internal fields holding
the encryption key (which is used to determine whether a user password
has been successfully provided) in case of a failed attempt.

2022-12-20 10:28:58 +01:00

15 KiB

Raw Blame History

View Raw