excelize/crypt_test.go

// Copyright 2016 - 2023 The excelize Authors. All rights reserved. Use of
// this source code is governed by a BSD-style license that can be found in
// the LICENSE file.
//
// Package excelize providing a set of functions that allow you to write to and
// read from XLAM / XLSM / XLSX / XLTM / XLTX files. Supports reading and
// writing spreadsheet documents generated by Microsoft Excel™ 2007 and later.
// Supports complex components by high compatibility, and provided streaming
// API for generating or reading data from a worksheet with huge amounts of
// data. This library needs Go version 1.16 or later.

package excelize

import (
	"os"
	"path/filepath"
	"strings"
	"testing"

	"github.com/stretchr/testify/assert"
)

func TestEncrypt(t *testing.T) {
	// Test decrypt spreadsheet with incorrect password
	_, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "passwd"})
	assert.EqualError(t, err, ErrWorkbookPassword.Error())
	// Test decrypt spreadsheet with password
	f, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "password"})
	assert.NoError(t, err)
	cell, err := f.GetCellValue("Sheet1", "A1")
	assert.NoError(t, err)
	assert.Equal(t, "SECRET", cell)
	assert.NoError(t, f.Close())
	// Test decrypt spreadsheet with unsupported encrypt mechanism
	raw, err := os.ReadFile(filepath.Join("test", "encryptAES.xlsx"))
	assert.NoError(t, err)
	raw[2050] = 3
	_, err = Decrypt(raw, &Options{Password: "password"})
	assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())

	// Test encrypt spreadsheet with invalid password
	assert.EqualError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: strings.Repeat("*", MaxFieldLength+1)}), ErrPasswordLengthInvalid.Error())
	// Test encrypt spreadsheet with new password
	assert.NoError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"}))
	assert.NoError(t, f.Close())
	f, err = OpenFile(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"})
	assert.NoError(t, err)
	cell, err = f.GetCellValue("Sheet1", "A1")
	assert.NoError(t, err)
	assert.Equal(t, "SECRET", cell)
	// Test remove password by save workbook with options
	assert.NoError(t, f.Save(Options{Password: ""}))
	assert.NoError(t, f.Close())
}

func TestEncryptionMechanism(t *testing.T) {
	mechanism, err := encryptionMechanism([]byte{3, 0, 3, 0})
	assert.Equal(t, mechanism, "extensible")
	assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())
	_, err = encryptionMechanism([]byte{})
	assert.EqualError(t, err, ErrUnknownEncryptMechanism.Error())
}

func TestHashing(t *testing.T) {
	assert.Equal(t, hashing("unsupportedHashAlgorithm", []byte{}), []byte(nil))
}

func TestGenISOPasswdHash(t *testing.T) {
	for hashAlgorithm, expected := range map[string][]string{
		"MD4":     {"2lZQZUubVHLm/t6KsuHX4w==", "TTHjJdU70B/6Zq83XGhHVA=="},
		"MD5":     {"HWbqyd4dKKCjk1fEhk2kuQ==", "8ADyorkumWCayIukRhlVKQ=="},
		"SHA-1":   {"XErQIV3Ol+nhXkyCxrLTEQm+mSc=", "I3nDtyf59ASaNX1l6KpFnA=="},
		"SHA-256": {"7oqMFyfED+mPrzRIBQ+KpKT4SClMHEPOZldliP15xAA=", "ru1R/w3P3Jna2Qo+EE8QiA=="},
		"SHA-384": {"nMODLlxsC8vr0btcq0kp/jksg5FaI3az5Sjo1yZk+/x4bFzsuIvpDKUhJGAk/fzo", "Zjq9/jHlgOY6MzFDSlVNZg=="},
		"SHA-512": {"YZ6jrGOFQgVKK3rDK/0SHGGgxEmFJglQIIRamZc2PkxVtUBp54fQn96+jVXEOqo6dtCSanqksXGcm/h3KaiR4Q==", "p5s/bybHBPtusI7EydTIrg=="},
	} {
		hashValue, saltValue, err := genISOPasswdHash("password", hashAlgorithm, expected[1], int(sheetProtectionSpinCount))
		assert.NoError(t, err)
		assert.Equal(t, expected[0], hashValue)
		assert.Equal(t, expected[1], saltValue)
	}
}
This fixed worksheet protection issue - Update example code in the documentation - Update unit tests - Rename `PictureOptions` to `GraphicOptions` - Adjust partial options fields data types for the `PictureOptions` and `Shape` structure - Update dependencies module 2023-01-02 11:47:31 +08:00			`// Copyright 2016 - 2023 The excelize Authors. All rights reserved. Use of`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00			`// this source code is governed by a BSD-style license that can be found in`
			`// the LICENSE file.`
			`//`
This closes #1148, resolve limitations when adding VBA project to the workbook Added two exported functions `SetWorkbookPrOptions` and `GetWorkbookPrOptions` to support setting and getting the code name property of the workbook Re-order fields of the workbook properties group to improve the compatibility Go Modules dependencies upgrade Put workbook related operating in new `workbook.go` source code Library introduction docs block updated 2022-02-17 00:09:11 +08:00			`// Package excelize providing a set of functions that allow you to write to and`
			`// read from XLAM / XLSM / XLSX / XLTM / XLTX files. Supports reading and`
			`// writing spreadsheet documents generated by Microsoft Excel™ 2007 and later.`
			`// Supports complex components by high compatibility, and provided streaming`
			`// API for generating or reading data from a worksheet with huge amounts of`
This fixed worksheet protection issue - Update example code in the documentation - Update unit tests - Rename `PictureOptions` to `GraphicOptions` - Adjust partial options fields data types for the `PictureOptions` and `Shape` structure - Update dependencies module 2023-01-02 11:47:31 +08:00			`// data. This library needs Go version 1.16 or later.`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00
			`package excelize`

			`import (`
Go 1.16 and later required, migration of deprecation package `ioutil` - Improving performance for stream writer `SetRow` function, reduces memory usage over and speedup about 19% - Update dependencies module - Update GitHub workflow 2022-10-13 00:02:53 +08:00			`"os"`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00			`"path/filepath"`
This initialized support for encryption workbook by password, ref #199 - Remove exported variable `ErrEncrypt` 2022-05-29 19:37:10 +08:00			`"strings"`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00			`"testing"`

			`"github.com/stretchr/testify/assert"`
			`)`

			`func TestEncrypt(t *testing.T) {`
This initialized support for encryption workbook by password, ref #199 - Remove exported variable `ErrEncrypt` 2022-05-29 19:37:10 +08:00			`// Test decrypt spreadsheet with incorrect password`
make workbook open filed exception message clear - New exported constant `ErrWorkbookPassword` - Rename exported constant `ErrWorkbookExt` to `ErrWorkbookFileFormat` 2022-05-20 20:46:29 +08:00			`_, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "passwd"})`
			`assert.EqualError(t, err, ErrWorkbookPassword.Error())`
This initialized support for encryption workbook by password, ref #199 - Remove exported variable `ErrEncrypt` 2022-05-29 19:37:10 +08:00			`// Test decrypt spreadsheet with password`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00			`f, err := OpenFile(filepath.Join("test", "encryptSHA1.xlsx"), Options{Password: "password"})`
			`assert.NoError(t, err)`
This initialized support for encryption workbook by password, ref #199 - Remove exported variable `ErrEncrypt` 2022-05-29 19:37:10 +08:00			`cell, err := f.GetCellValue("Sheet1", "A1")`
			`assert.NoError(t, err)`
			`assert.Equal(t, "SECRET", cell)`
			`assert.NoError(t, f.Close())`
This update docs and tests for workbook encryption 2022-05-31 11:05:10 +08:00			`// Test decrypt spreadsheet with unsupported encrypt mechanism`
Go 1.16 and later required, migration of deprecation package `ioutil` - Improving performance for stream writer `SetRow` function, reduces memory usage over and speedup about 19% - Update dependencies module - Update GitHub workflow 2022-10-13 00:02:53 +08:00			`raw, err := os.ReadFile(filepath.Join("test", "encryptAES.xlsx"))`
This update docs and tests for workbook encryption 2022-05-31 11:05:10 +08:00			`assert.NoError(t, err)`
			`raw[2050] = 3`
			`_, err = Decrypt(raw, &Options{Password: "password"})`
			`assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())`

This initialized support for encryption workbook by password, ref #199 - Remove exported variable `ErrEncrypt` 2022-05-29 19:37:10 +08:00			`// Test encrypt spreadsheet with invalid password`
			`assert.EqualError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: strings.Repeat("*", MaxFieldLength+1)}), ErrPasswordLengthInvalid.Error())`
			`// Test encrypt spreadsheet with new password`
			`assert.NoError(t, f.SaveAs(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"}))`
			`assert.NoError(t, f.Close())`
			`f, err = OpenFile(filepath.Join("test", "Encryption.xlsx"), Options{Password: "passwd"})`
			`assert.NoError(t, err)`
			`cell, err = f.GetCellValue("Sheet1", "A1")`
			`assert.NoError(t, err)`
			`assert.Equal(t, "SECRET", cell)`
This closes #744, the `Save`, `Write` and `WriteTo` function accept saving options 2022-09-08 22:20:21 +08:00			`// Test remove password by save workbook with options`
			`assert.NoError(t, f.Save(Options{Password: ""}))`
This closes #833, closes #845, and closes #1022, breaking changes - Close spreadsheet and row's iterator required - New options `WorksheetUnzipMemLimit` have been added - Improve streaming reading performance, memory usage decrease about 93.7% 2021-09-18 23:20:24 +08:00			`assert.NoError(t, f.Close())`
init ECMA-376 agile encryption support 2020-09-06 18:06:59 +08:00			`}`
- Resolve #711, update docs for the GetSheetIndex - Update unit test 2020-10-12 00:05:27 +08:00
			`func TestEncryptionMechanism(t *testing.T) {`
			`mechanism, err := encryptionMechanism([]byte{3, 0, 3, 0})`
			`assert.Equal(t, mechanism, "extensible")`
feat: implement SHA-512 algorithm to ProtectSheet (#1115) 2022-01-08 10:32:13 +08:00			`assert.EqualError(t, err, ErrUnsupportedEncryptMechanism.Error())`
- Resolve #711, update docs for the GetSheetIndex - Update unit test 2020-10-12 00:05:27 +08:00			`_, err = encryptionMechanism([]byte{})`
Export 7 errors so users can act differently on different type of errors 2021-12-07 00:26:53 +08:00			`assert.EqualError(t, err, ErrUnknownEncryptMechanism.Error())`
- Resolve #711, update docs for the GetSheetIndex - Update unit test 2020-10-12 00:05:27 +08:00			`}`

			`func TestHashing(t *testing.T) {`
Format code, update documentation and remove exported variable `XMLHeaderByte` 2022-03-24 00:19:30 +08:00			`assert.Equal(t, hashing("unsupportedHashAlgorithm", []byte{}), []byte(nil))`
feat: implement SHA-512 algorithm to ProtectSheet (#1115) 2022-01-08 10:32:13 +08:00			`}`

			`func TestGenISOPasswdHash(t *testing.T) {`
			`for hashAlgorithm, expected := range map[string][]string{`
			`"MD4": {"2lZQZUubVHLm/t6KsuHX4w==", "TTHjJdU70B/6Zq83XGhHVA=="},`
			`"MD5": {"HWbqyd4dKKCjk1fEhk2kuQ==", "8ADyorkumWCayIukRhlVKQ=="},`
			`"SHA-1": {"XErQIV3Ol+nhXkyCxrLTEQm+mSc=", "I3nDtyf59ASaNX1l6KpFnA=="},`
			`"SHA-256": {"7oqMFyfED+mPrzRIBQ+KpKT4SClMHEPOZldliP15xAA=", "ru1R/w3P3Jna2Qo+EE8QiA=="},`
			`"SHA-384": {"nMODLlxsC8vr0btcq0kp/jksg5FaI3az5Sjo1yZk+/x4bFzsuIvpDKUhJGAk/fzo", "Zjq9/jHlgOY6MzFDSlVNZg=="},`
			`"SHA-512": {"YZ6jrGOFQgVKK3rDK/0SHGGgxEmFJglQIIRamZc2PkxVtUBp54fQn96+jVXEOqo6dtCSanqksXGcm/h3KaiR4Q==", "p5s/bybHBPtusI7EydTIrg=="},`
			`} {`
			`hashValue, saltValue, err := genISOPasswdHash("password", hashAlgorithm, expected[1], int(sheetProtectionSpinCount))`
			`assert.NoError(t, err)`
			`assert.Equal(t, expected[0], hashValue)`
			`assert.Equal(t, expected[1], saltValue)`
			`}`
- Resolve #711, update docs for the GetSheetIndex - Update unit test 2020-10-12 00:05:27 +08:00			`}`