| /* ==================================================================== |
| Licensed to the Apache Software Foundation (ASF) under one or more |
| contributor license agreements. See the NOTICE file distributed with |
| this work for additional information regarding copyright ownership. |
| The ASF licenses this file to You under the Apache License, Version 2.0 |
| (the "License"); you may not use this file except in compliance with |
| the License. You may obtain a copy of the License at |
| |
| http://www.apache.org/licenses/LICENSE-2.0 |
| |
| Unless required by applicable law or agreed to in writing, software |
| distributed under the License is distributed on an "AS IS" BASIS, |
| WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. |
| See the License for the specific language governing permissions and |
| limitations under the License. |
| ==================================================================== */ |
| |
| package org.apache.poi.poifs.crypt.tests; |
| |
| import static org.apache.poi.POIDataSamples.getDocumentInstance; |
| import static org.apache.poi.POIDataSamples.getSlideShowInstance; |
| import static org.apache.poi.POIDataSamples.getSpreadSheetInstance; |
| import static org.junit.jupiter.api.Assertions.assertDoesNotThrow; |
| import static org.junit.jupiter.api.Assertions.assertEquals; |
| import static org.junit.jupiter.api.Assertions.assertNotNull; |
| import static org.junit.jupiter.api.Assertions.assertNull; |
| import static org.junit.jupiter.api.Assertions.assertTrue; |
| |
| import java.io.ByteArrayInputStream; |
| import java.io.ByteArrayOutputStream; |
| import java.io.File; |
| import java.io.FileInputStream; |
| import java.io.FileNotFoundException; |
| import java.io.IOException; |
| import java.nio.charset.StandardCharsets; |
| import java.util.stream.Stream; |
| |
| import org.apache.poi.hssf.model.WorkbookRecordList; |
| import org.apache.poi.hssf.record.FilePassRecord; |
| |
| import org.apache.poi.POIDataSamples; |
| import org.apache.poi.POIDocument; |
| import org.apache.poi.extractor.ExtractorFactory; |
| import org.apache.poi.extractor.POITextExtractor; |
| import org.apache.poi.hssf.record.Record; |
| import org.apache.poi.hssf.record.crypto.Biff8EncryptionKey; |
| import org.apache.poi.hssf.usermodel.HSSFWorkbook; |
| import org.apache.poi.poifs.crypt.EncryptionInfo; |
| import org.apache.poi.poifs.crypt.EncryptionMode; |
| import org.apache.poi.poifs.crypt.binaryrc4.BinaryRC4EncryptionHeader; |
| import org.apache.poi.poifs.crypt.cryptoapi.CryptoAPIEncryptionHeader; |
| import org.apache.poi.poifs.storage.RawDataUtil; |
| import org.junit.jupiter.api.Test; |
| import org.junit.jupiter.params.ParameterizedTest; |
| import org.junit.jupiter.params.provider.Arguments; |
| import org.junit.jupiter.params.provider.MethodSource; |
| |
| class TestHxxFEncryption { |
| public static Stream<Arguments> data() throws IOException { |
| final String base64 = |
| "H4sIAAAAAAAAAF1Uu24bMRDs/RULVwkgCUhSpHaZwkDgpHJH8fZ0G/Nx4ZI6y13yG/mRfIb9R5mlZFlIpdPtcnZmdnjPf57/vvx6+f3h6obuv3"+ |
| "ylbY5bEiVHe1fEpUp5pOgkrK0iabehm7FyoZi1ks8xcvHiQu8h5bLnorTlnUvkJ/YPOHKsLVInAqCs91KakuaxLq4w3g00SgCo9Xou1UnCmSBe"+ |
| "MhpRY6qHmXVFteQfQJ5yUaaOw4qXwgPVjPGAqhNH5bBHAfTmwqqoSkLdFT/J3nC0eZBRk7yiu5s7yoU+r+9l3tDtm5A3jgt6AQxNOY2ya+U4sK"+ |
| "XZ+YczbpfSVVuzFOuunKraqIVD2ND3yVXauT3TNthR/O3IJAM7gzTOGeIcXZvj14ahotW8wSognlMu0Yyp/Fi7O6s+CK6haUUjtPCji7MVcgqH"+ |
| "jh+42tqeqPDMroJ/lBAE4AZbJbJu6Fu35ej42Tw9mYeTwVXoBKJiPeFV94q2rZJAyNEPo/qOdWYLBpq3B2JX8GDZeJ14mZf3tOQWBmpd9yQ7kI"+ |
| "DCY/jmkj1oGOicFy62r9vutC5uJsVEMFgmAXXfYcC6BRBKNHCybALFJolnrDcPXNLl+K60Vctt09YZT7YgbeOICGJ/ZgC2JztOnm1JhX3eJXni"+ |
| "U5Bqhezzlu334vD/Ajr3yDGXw5G9IZ6aLmLfQafY42N3J7cjj1LaXOHihSrcC5ThmuYIB5FX5AU8tKlnNG9Dn1EnsdD4KcnPhsSNPRiXtz461b"+ |
| "VZw8Pm6vn0afh4fvr0D5P/+cMuBAAA"; |
| final String x = new String(RawDataUtil.decompress(base64), StandardCharsets.UTF_8); |
| |
| return Stream.of( |
| // binary rc4 |
| Arguments.of( getDocumentInstance(), "password_tika_binaryrc4.doc", "tika", "This is an encrypted Word 2007 File." ), |
| // cryptoapi |
| Arguments.of( getDocumentInstance(), "password_password_cryptoapi.doc", "password", "This is a test" ), |
| // binary rc4 |
| Arguments.of( getSpreadSheetInstance(), "password.xls", "password", x ), |
| // cryptoapi |
| Arguments.of( getSpreadSheetInstance(), "35897-type4.xls", "freedom", "Sheet1\nhello there!" ), |
| // cryptoapi (PPT only supports cryptoapi...) |
| Arguments.of( getSlideShowInstance(), "cryptoapi-proc2356.ppt", "crypto", "Dominic Salemno" ) |
| ); |
| } |
| |
| @ParameterizedTest |
| @MethodSource("data") |
| void extract(POIDataSamples sampleDir, String file, String password, String expected) throws IOException { |
| File f = sampleDir.getFile(file); |
| Biff8EncryptionKey.setCurrentUserPassword(password); |
| try (POITextExtractor te = ExtractorFactory.createExtractor(f)) { |
| String actual = te.getText().trim(); |
| assertEquals(expected, actual); |
| } finally { |
| Biff8EncryptionKey.setCurrentUserPassword(null); |
| } |
| } |
| |
| @ParameterizedTest |
| @MethodSource("data") |
| void changePassword(POIDataSamples sampleDir, String file, String password, String expected) throws IOException { |
| newPassword("test", sampleDir, file, password, expected); |
| } |
| |
| @ParameterizedTest |
| @MethodSource("data") |
| void removePassword(POIDataSamples sampleDir, String file, String password, String expected) throws IOException { |
| newPassword(null, sampleDir, file, password, expected); |
| } |
| |
| private void newPassword(String newPass, POIDataSamples sampleDir, String file, String password, String expected) throws IOException { |
| File f = sampleDir.getFile(file); |
| Biff8EncryptionKey.setCurrentUserPassword(password); |
| try (POITextExtractor te1 = ExtractorFactory.createExtractor(f)) { |
| Biff8EncryptionKey.setCurrentUserPassword(newPass); |
| ByteArrayOutputStream bos = new ByteArrayOutputStream(); |
| try (POIDocument doc = (POIDocument) te1.getDocument()) { |
| doc.write(bos); |
| } |
| ByteArrayInputStream bis = new ByteArrayInputStream(bos.toByteArray()); |
| try (POITextExtractor te2 = ExtractorFactory.createExtractor(bis)) { |
| String actual = te2.getText().trim(); |
| assertEquals(expected, actual); |
| } |
| } finally { |
| Biff8EncryptionKey.setCurrentUserPassword(null); |
| } |
| } |
| |
| /** changing the encryption mode and key size in poor mans style - see comments below */ |
| @ParameterizedTest |
| @MethodSource("data") |
| void changeEncryption(POIDataSamples sampleDir, String file, String password, String expected) throws IOException { |
| File f = sampleDir.getFile(file); |
| ByteArrayOutputStream bos = new ByteArrayOutputStream(); |
| Biff8EncryptionKey.setCurrentUserPassword(password); |
| try (POITextExtractor te1 = ExtractorFactory.createExtractor(f)) { |
| // first remove encryption |
| Biff8EncryptionKey.setCurrentUserPassword(null); |
| try (POIDocument doc = (POIDocument) te1.getDocument()) { |
| doc.write(bos); |
| } |
| // then use default setting, which is cryptoapi |
| String newPass = "newPass"; |
| try (POITextExtractor te2 = ExtractorFactory.createExtractor(new ByteArrayInputStream(bos.toByteArray()))) { |
| Biff8EncryptionKey.setCurrentUserPassword(newPass); |
| try (POIDocument doc = (POIDocument) te2.getDocument()) { |
| bos.reset(); |
| doc.write(bos); |
| } |
| } |
| // and finally update cryptoapi setting |
| try (POITextExtractor te3 = ExtractorFactory.createExtractor(new ByteArrayInputStream(bos.toByteArray())); |
| POIDocument doc = (POIDocument) te3.getDocument()) { |
| // need to cache data (i.e. read all data) before changing the key size |
| Class<?> clazz = doc.getClass(); |
| if ("HSLFSlideShow".equals(clazz.getSimpleName())) { |
| assertDoesNotThrow(() -> clazz.getDeclaredMethod("getPictureData").invoke(doc), |
| "either scratchpad jar is included and this should work or the clazz should be != HSLFSlideShowImpl"); |
| doc.getDocumentSummaryInformation(); |
| } |
| EncryptionInfo ei = doc.getEncryptionInfo(); |
| assertNotNull(ei); |
| assertTrue(ei.getHeader() instanceof CryptoAPIEncryptionHeader); |
| assertEquals(0x28, ei.getHeader().getKeySize()); |
| ei.getHeader().setKeySize(0x78); |
| bos.reset(); |
| doc.write(bos); |
| } |
| // check the setting |
| try (POITextExtractor te4 = ExtractorFactory.createExtractor(new ByteArrayInputStream(bos.toByteArray())); |
| POIDocument doc = (POIDocument) te4.getDocument()) { |
| EncryptionInfo ei = doc.getEncryptionInfo(); |
| assertNotNull(ei); |
| assertTrue(ei.getHeader() instanceof CryptoAPIEncryptionHeader); |
| assertEquals(0x78, ei.getHeader().getKeySize()); |
| } |
| } finally { |
| Biff8EncryptionKey.setCurrentUserPassword(null); |
| } |
| } |
| |
| @Test |
| public void changeEncryptionMode() throws IOException { |
| ByteArrayOutputStream bos = new ByteArrayOutputStream(10_000); |
| |
| try (HSSFWorkbook wb = new HSSFWorkbook()) { |
| wb.createSheet().createRow(1).createCell(1).setCellValue("Test"); |
| Biff8EncryptionKey.setCurrentUserPassword("test1"); |
| wb.write(bos); |
| } |
| |
| try (HSSFWorkbook wb = new HSSFWorkbook(new ByteArrayInputStream(bos.toByteArray()))) { |
| assertEquals(EncryptionMode.cryptoAPI, wb.getEncryptionMode()); |
| wb.setEncryptionMode(EncryptionMode.binaryRC4); |
| Biff8EncryptionKey.setCurrentUserPassword("test2"); |
| bos.reset(); |
| wb.write(bos); |
| } |
| |
| try (HSSFWorkbook wb = new HSSFWorkbook(new ByteArrayInputStream(bos.toByteArray()))) { |
| assertEquals(EncryptionMode.binaryRC4, wb.getEncryptionMode()); |
| wb.setEncryptionMode(null); |
| bos.reset(); |
| wb.write(bos); |
| } |
| |
| assertNull(Biff8EncryptionKey.getCurrentUserPassword()); |
| |
| try (HSSFWorkbook wb = new HSSFWorkbook(new ByteArrayInputStream(bos.toByteArray()))) { |
| assertNull(wb.getEncryptionMode()); |
| wb.setEncryptionMode(null); |
| assertEquals("Test", wb.getSheetAt(0).getRow(1).getCell(1).getStringCellValue()); |
| } |
| } |
| } |