pdftract/crates/pdftract-core/Cargo.toml
jedarden c3f549f2fe feat(pdftract-2okbq): implement TH-10 cache poisoning protection
Add HMAC-SHA-256 integrity verification to cache entries to mitigate
TH-10 (local-FS attacker cache poisoning). Each cache entry is now signed
with an 8-byte HMAC signature computed over the fingerprint,
extraction options hash, and compressed blob.

- Add CacheIntegrityFail diagnostic code (Warning severity)
- Add cache/integrity.rs module with key generation and HMAC verification
- Update cache Writer to prepend HMAC signature to entries
- Update cache Reader to verify HMAC before decompression
- Add comprehensive security tests in tests/security/TH-10-cache-poison.rs
- Add hmac = "0.12" dependency

Acceptance criteria PASS:
- All 10 TH-10 tests pass (forgery detection, key compromise, HMAC input format)
- Cache init produces 0600 key file
- Forgery with wrong HMAC triggers integrity failure and cache miss
- Key compromise scenario documented

Note: Pre-existing cache multi_process tests fail due to format change;
this is expected and will be addressed in follow-up.

Closes: pdftract-2okbq

Co-Authored-By: Claude Code <noreply@anthropic.com>
2026-05-26 21:09:54 -04:00

94 lines
3 KiB
TOML

[package]
name = "pdftract-core"
version.workspace = true
edition.workspace = true
rust-version.workspace = true
license.workspace = true
repository.workspace = true
publish = true
[dependencies]
anyhow = { workspace = true }
base64 = { workspace = true }
hex = "0.4"
image = { version = "0.25", optional = true }
imageproc = { version = "0.26", optional = true }
url = { version = "2.5", optional = true }
leptonica-plumbing = { version = "1.4", optional = true }
pdfium-render = { version = "0.9", optional = true }
tesseract = { version = "0.15", optional = true }
indexmap = "2.2"
flate2 = { workspace = true }
lzw = { workspace = true }
memmap2 = "0.9"
regex = "1.10"
secrecy = { workspace = true }
serde = { version = "1.0", features = ["derive"], optional = true }
serde_json = { version = "1.0", optional = true }
schemars = { version = "1.2", features = ["derive"], optional = true }
sha2 = "0.10"
thiserror = { workspace = true }
memchr = { workspace = true }
unicode-normalization = { workspace = true }
ttf-parser = "0.24"
owned_ttf_parser = "0.21"
zstd = "0.13"
rayon = "1.10"
phf = "0.11"
rand = "0.8"
tempfile = "3.10"
tracing = { workspace = true }
dashmap = "6.1"
smallvec = "1.13"
encoding_rs = "0.8"
quick-xml = { version = "0.36", optional = true }
serde_yaml = { version = "0.9", optional = true }
chrono = "0.4"
aes = { version = "0.8", optional = true }
rc4 = { version = "0.1", optional = true }
md-5 = { version = "0.10", optional = true }
cbc = { version = "0.1", optional = true, features = ["std"] }
cipher = { version = "0.4", optional = true, features = ["block-padding"] }
digest = { version = "0.10", optional = true }
hmac = "0.12"
[features]
default = ["serde", "decrypt"]
serde = ["dep:serde", "dep:serde_json", "dep:schemars"]
schemars = ["dep:schemars", "serde"]
receipts = [] # Enable visual citation receipts (SVG clip generation)
ocr = ["dep:image", "dep:imageproc", "dep:leptonica-plumbing", "dep:quick-xml"] # Enable OCR path (image compositing + preprocessing + HOCR parsing)
full-render = ["dep:pdfium-render", "ocr"] # Enable PDFium-based rendering (requires ocr)
remote = ["dep:url"] # Enable remote HTTP source (Phase 1.8)
profiles = ["dep:serde_yaml"] # Enable extraction profiles (Phase 7.10)
decrypt = ["dep:aes", "dep:rc4", "dep:md-5", "dep:cbc", "dep:cipher", "dep:digest"] # Enable PDF decryption (RC4/AES-128/AES-256)
proptest = []
fuzzing = [] # Enable cfg(fuzzing) for fuzz harnesses
shape-db = [] # Enable glyph shape database (Level 4 encoding fallback)
cjk = [] # Enable CJK text extraction via predefined CMap registry (~1.2 MB binary size increase)
[dev-dependencies]
chrono = "0.4"
criterion = "0.5"
proptest = "1.4"
quick-xml = "0.36"
regex = "1.10"
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
tempfile = "3.10"
filetime = "0.2"
libc = "0.2"
[[bench]]
name = "table_detection"
harness = false
[[bench]]
name = "wordlist"
harness = false
[build-dependencies]
phf_codegen = "0.11"
serde = { version = "1.0", features = ["derive"] }
serde_json = "1.0"
sha2 = "0.10"