[PDFBOX-2963] Remove Bouncy Castle Provider Reference - ASF JIRA

XML

Word

Printable

JSON

Details

Type: Improvement
Status: Closed
Priority: Major
Resolution: Fixed
Affects Version/s: 1.8.9, 1.8.10, 2.0.0
Fix Version/s: 2.0.7, 3.0.0 PDFBox
Component/s: Crypto, PDModel
Labels:
None

Description

PDFBox Versions 1.8.X and 2.0.X add Bouncy Castle as a security provider explicitly (Hard coded)

Referencing bouncy castle explicitly ties PDF box to a specific provider implementation.

Instead of referencing BouncyCastleProvider explicitly provide an option to select another provider or alternatively allow a way to override the default.

Version 1.8.X:
https://github.com/apache/pdfbox/blob/1.8.10/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/encryption/SecurityHandlersManager.java

public static SecurityHandlersManager getInstance()
    {
        if(instance == null)
        {
            instance = new SecurityHandlersManager();
            Security.addProvider(new BouncyCastleProvider());
        }
        return instance;
    }

Version 2.0.0:

https://github.com/apache/pdfbox/blob/trunk/pdfbox/src/main/java/org/apache/pdfbox/pdmodel/encryption/SecurityHandlerFactory.java

   static
    {
        Security.addProvider(new BouncyCastleProvider());
    }

Attachments

Issue Links

is duplicated by

PDFBOX-3311 Make SecurityHandlerFactory uses a genenic provider

Closed

is related to

PDFBOX-3831 v2.0.6 still has hardcoded reference to BouncyCastleProvider

Closed

PDFBOX-3614 Directly use the BouncyCastleProvider rather than installing it

Closed

Activity

People

Assignee:: Andreas Lehmkühler

Reporter:: Johnny Minty

Votes:: 2 Vote for this issue

Watchers:: 6 Start watching this issue

Dates

Created:: 08/Sep/15 04:55

Updated:: 21/Jul/17 04:40

Resolved:: 16/Jun/17 09:26