2024-01-09 20:56:20 +08:00
|
|
|
// Copyright 2016 - 2024 The excelize Authors. All rights reserved. Use of
|
2020-09-06 18:06:59 +08:00
|
|
|
// this source code is governed by a BSD-style license that can be found in
|
|
|
|
// the LICENSE file.
|
|
|
|
//
|
2022-02-17 00:09:11 +08:00
|
|
|
// Package excelize providing a set of functions that allow you to write to and
|
|
|
|
// read from XLAM / XLSM / XLSX / XLTM / XLTX files. Supports reading and
|
|
|
|
// writing spreadsheet documents generated by Microsoft Excel™ 2007 and later.
|
|
|
|
// Supports complex components by high compatibility, and provided streaming
|
|
|
|
// API for generating or reading data from a worksheet with huge amounts of
|
2023-01-02 11:47:31 +08:00
|
|
|
// data. This library needs Go version 1.16 or later.
|
2020-09-06 18:06:59 +08:00
|
|
|
|
|
|
|
package excelize
|
|
|
|
|
|
|
|
import (
|
2023-04-19 00:05:59 +08:00
|
|
|
"bytes"
|
|
|
|
"encoding/binary"
|
2022-10-13 00:02:53 +08:00
|
|
|
"os"
|
2020-09-06 18:06:59 +08:00
|
|
|
"path/filepath"
|
2022-05-29 19:37:10 +08:00
|
|
|
"strings"
|
2020-09-06 18:06:59 +08:00
|
|
|
"testing"
|
|
|
|
|
2023-04-19 00:05:59 +08:00
|
|
|
"github.com/richardlehane/mscfb"
|
2020-09-06 18:06:59 +08:00
|
|
|
"github.com/stretchr/testify/assert"
|
|
|
|
)
|
|
|
|
|
|
|
|
func TestEncrypt(t *testing.T) {
|
2022-05-29 19:37:10 +08:00
|
|
|
// Test decrypt spreadsheet with incorrect password
|
2022-05-20 20:46:29 +08:00
|
|
|
_, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "passwd"})
|
|
|
|
assert.EqualError(t, err, ErrWorkbookPassword.Error())
|
2022-05-29 19:37:10 +08:00
|
|
|
// Test decrypt spreadsheet with password
|
2020-09-06 18:06:59 +08:00
|
|
|
f, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "password"})
|
|
|
|
assert.NoError(t, err)
|
2022-05-29 19:37:10 +08:00
|
|
|
cell, err := f.GetCellValue("Sheet1", "A1")
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Equal(t, "SECRET", cell)
|
|
|
|
assert.NoError(t, f.Close())
|
2022-05-31 11:05:10 +08:00
|
|
|
// Test decrypt spreadsheet with unsupported encrypt mechanism
|
2022-10-13 00:02:53 +08:00
|
|
|
raw, err := os.ReadFile(filepath.Join("test", "encryptAES.xlsx"))
|
2022-05-31 11:05:10 +08:00
|
|
|
assert.NoError(t, err)
|
|
|
|
raw[2050] = 3
|
|
|
|
_, err = Decrypt(raw, &Options{Password: "password"})
|
|
|
|
assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())
|
|
|
|
|
2022-05-29 19:37:10 +08:00
|
|
|
// Test encrypt spreadsheet with invalid password
|
|
|
|
assert.EqualError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: strings.Repeat("*", MaxFieldLength+1)}), ErrPasswordLengthInvalid.Error())
|
|
|
|
// Test encrypt spreadsheet with new password
|
|
|
|
assert.NoError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"}))
|
|
|
|
assert.NoError(t, f.Close())
|
|
|
|
f, err = OpenFile(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"})
|
|
|
|
assert.NoError(t, err)
|
|
|
|
cell, err = f.GetCellValue("Sheet1", "A1")
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Equal(t, "SECRET", cell)
|
2022-09-08 22:20:21 +08:00
|
|
|
// Test remove password by save workbook with options
|
|
|
|
assert.NoError(t, f.Save(Options{Password: ""}))
|
2021-09-18 23:20:24 +08:00
|
|
|
assert.NoError(t, f.Close())
|
2023-04-19 00:05:59 +08:00
|
|
|
|
|
|
|
doc, err := mscfb.New(bytes.NewReader(raw))
|
|
|
|
assert.NoError(t, err)
|
|
|
|
encryptionInfoBuf, encryptedPackageBuf := extractPart(doc)
|
|
|
|
binary.LittleEndian.PutUint64(encryptionInfoBuf[20:32], uint64(0))
|
|
|
|
_, err = standardDecrypt(encryptionInfoBuf, encryptedPackageBuf, &Options{Password: "password"})
|
|
|
|
assert.NoError(t, err)
|
|
|
|
_, err = decrypt(nil, nil, nil)
|
|
|
|
assert.EqualError(t, err, "crypto/aes: invalid key size 0")
|
|
|
|
_, err = agileDecrypt(encryptionInfoBuf, MacintoshCyrillicCharset, &Options{Password: "password"})
|
|
|
|
assert.EqualError(t, err, "XML syntax error on line 1: invalid character entity &0 (no semicolon)")
|
|
|
|
_, err = convertPasswdToKey("password", nil, Encryption{
|
|
|
|
KeyEncryptors: KeyEncryptors{KeyEncryptor: []KeyEncryptor{
|
|
|
|
{EncryptedKey: EncryptedKey{KeyData: KeyData{SaltValue: "=="}}},
|
|
|
|
}},
|
|
|
|
})
|
|
|
|
assert.EqualError(t, err, "illegal base64 data at input byte 0")
|
|
|
|
_, err = createIV([]byte{0}, Encryption{KeyData: KeyData{SaltValue: "=="}})
|
|
|
|
assert.EqualError(t, err, "illegal base64 data at input byte 0")
|
2020-09-06 18:06:59 +08:00
|
|
|
}
|
2020-10-12 00:05:27 +08:00
|
|
|
|
|
|
|
func TestEncryptionMechanism(t *testing.T) {
|
|
|
|
mechanism, err := encryptionMechanism([]byte{3, 0, 3, 0})
|
|
|
|
assert.Equal(t, mechanism, "extensible")
|
2022-01-08 10:32:13 +08:00
|
|
|
assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())
|
2020-10-12 00:05:27 +08:00
|
|
|
_, err = encryptionMechanism([]byte{})
|
2021-12-07 00:26:53 +08:00
|
|
|
assert.EqualError(t, err, ErrUnknownEncryptMechanism.Error())
|
2020-10-12 00:05:27 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestHashing(t *testing.T) {
|
2022-03-24 00:19:30 +08:00
|
|
|
assert.Equal(t, hashing("unsupportedHashAlgorithm", []byte{}), []byte(nil))
|
2022-01-08 10:32:13 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
func TestGenISOPasswdHash(t *testing.T) {
|
|
|
|
for hashAlgorithm, expected := range map[string][]string{
|
|
|
|
"MD4": {"2lZQZUubVHLm/t6KsuHX4w==", "TTHjJdU70B/6Zq83XGhHVA=="},
|
|
|
|
"MD5": {"HWbqyd4dKKCjk1fEhk2kuQ==", "8ADyorkumWCayIukRhlVKQ=="},
|
|
|
|
"SHA-1": {"XErQIV3Ol+nhXkyCxrLTEQm+mSc=", "I3nDtyf59ASaNX1l6KpFnA=="},
|
|
|
|
"SHA-256": {"7oqMFyfED+mPrzRIBQ+KpKT4SClMHEPOZldliP15xAA=", "ru1R/w3P3Jna2Qo+EE8QiA=="},
|
|
|
|
"SHA-384": {"nMODLlxsC8vr0btcq0kp/jksg5FaI3az5Sjo1yZk+/x4bFzsuIvpDKUhJGAk/fzo", "Zjq9/jHlgOY6MzFDSlVNZg=="},
|
|
|
|
"SHA-512": {"YZ6jrGOFQgVKK3rDK/0SHGGgxEmFJglQIIRamZc2PkxVtUBp54fQn96+jVXEOqo6dtCSanqksXGcm/h3KaiR4Q==", "p5s/bybHBPtusI7EydTIrg=="},
|
|
|
|
} {
|
|
|
|
hashValue, saltValue, err := genISOPasswdHash("password", hashAlgorithm, expected[1], int(sheetProtectionSpinCount))
|
|
|
|
assert.NoError(t, err)
|
|
|
|
assert.Equal(t, expected[0], hashValue)
|
|
|
|
assert.Equal(t, expected[1], saltValue)
|
|
|
|
}
|
2020-10-12 00:05:27 +08:00
|
|
|
}
|