diff options
| author | Tomaž Vajngerl <quikee@gmail.com> | 2013-08-24 22:40:54 +0200 |
|---|---|---|
| committer | Tomaž Vajngerl <quikee@gmail.com> | 2013-08-24 22:53:04 +0200 |
| commit | 4323c66840e4c7dcacda0e33d33d7e67fdb08f09 (patch) | |
| tree | 5359bfda1a78e99f8fa2f8543b918e0f847ae230 /oox/source/crypto/DocumentDecryption.cxx | |
| parent | 4d688beb2b2183ced387270e051dc25ee340fb4b (diff) | |
fdo#35422 Support to open encrypted Office 2010 and 2013 formats
Additionally encryption and decryption has been refactored.
2 engines have been added: AgileEngine and Standard2007Engine,
which contain core functions for encryption and decryption.
Standard2007Engine refers to encryption and decryption as used
in Office 2007 and AgileEngine refers to encryption and decryption
as used in Office 2010 and 2013. AgileEngine does not yet support
encryption.
Change-Id: Ica1d4d5a109fb204012b92a0c39325fe0b99b793
Diffstat (limited to 'oox/source/crypto/DocumentDecryption.cxx')
| -rw-r--r-- | oox/source/crypto/DocumentDecryption.cxx | 400 |
1 files changed, 400 insertions, 0 deletions
diff --git a/oox/source/crypto/DocumentDecryption.cxx b/oox/source/crypto/DocumentDecryption.cxx new file mode 100644 index 000000000000..64281981ab29 --- /dev/null +++ b/oox/source/crypto/DocumentDecryption.cxx @@ -0,0 +1,400 @@ +/* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */ +/* + * This file is part of the LibreOffice project. + * + * This Source Code Form is subject to the terms of the Mozilla Public + * License, v. 2.0. If a copy of the MPL was not distributed with this + * file, You can obtain one at http://mozilla.org/MPL/2.0/. + * + */ + +#include "oox/crypto/DocumentDecryption.hxx" + +#include <comphelper/sequenceashashmap.hxx> +#include <sax/tools/converter.hxx> +#include <cppuhelper/implbase1.hxx> + +#include <com/sun/star/io/XSeekable.hpp> +#include <com/sun/star/xml/sax/XFastParser.hpp> +#include <com/sun/star/xml/sax/XFastTokenHandler.hpp> +#include <com/sun/star/xml/sax/FastToken.hpp> + +namespace oox { +namespace core { + +using namespace css::beans; +using namespace css::io; +using namespace css::lang; +using namespace css::uno; +using namespace css::xml::sax; +using namespace css::xml; + +using namespace std; + +using ::comphelper::SequenceAsHashMap; +using ::sax::Converter; + +namespace { + +vector<sal_uInt8> convertToVector(Sequence<sal_Int8>& input) +{ + const sal_uInt8* inputArray = reinterpret_cast<const sal_uInt8*>( input.getConstArray() ); + return vector<sal_uInt8>(inputArray, inputArray + input.getLength()); +} + +class AgileTokenHandler : public cppu::WeakImplHelper1< XFastTokenHandler > +{ +public: + virtual sal_Int32 SAL_CALL getToken( const OUString& /*nIdentifier*/ ) throw (RuntimeException) + { + return FastToken::DONTKNOW; + } + + virtual sal_Int32 SAL_CALL getTokenFromUTF8( const Sequence< sal_Int8 >& /*nIdentifier*/ ) throw (RuntimeException) + { + return FastToken::DONTKNOW; + } + + virtual OUString SAL_CALL getIdentifier( sal_Int32 /*nToken*/ ) throw (RuntimeException) + { + return OUString(); + } + + virtual Sequence<sal_Int8> SAL_CALL getUTF8Identifier(sal_Int32 /*nToken*/) throw (RuntimeException) + { + return Sequence<sal_Int8>(); + } +}; + +class AgileDocumentHandler : public ::cppu::WeakImplHelper1< XFastDocumentHandler > +{ +public: + AgileDocumentHandler(AgileEncryptionInfo& rInfo) : + mInfo(rInfo) + {} + + AgileEncryptionInfo& mInfo; + void startDocument() {} + void endDocument() {} + void SAL_CALL setDocumentLocator( const Reference< XLocator >& /*xLocator*/ ) {} + void startFastElement( sal_Int32 /*Element*/, const Reference< XFastAttributeList >& /*Attribs*/ ) {} + + void startUnknownElement( const OUString& /*aNamespace*/, const OUString& aName, const Reference< XFastAttributeList >& aAttributeList ) + { + if(aName == "keyData") + { + Sequence<Attribute> aAttributes(aAttributeList->getUnknownAttributes()); + + for (int i=0; i<aAttributes.getLength(); i++) + { + if (aAttributes[i].Name == "saltValue") + { + Sequence<sal_Int8> keyDataSalt; + Converter::decodeBase64(keyDataSalt, aAttributes[i].Value); + mInfo.keyDataSalt = convertToVector(keyDataSalt); + } + } + } + else if(aName == "encryptedKey") + { + Sequence<Attribute> aAttributes(aAttributeList->getUnknownAttributes()); + for (int i=0; i<aAttributes.getLength(); i++) + { + if (aAttributes[i].Name == "spinCount") + { + Converter::convertNumber(mInfo.spinCount, aAttributes[i].Value); + } + else if (aAttributes[i].Name == "saltSize") + { + Converter::convertNumber(mInfo.saltSize, aAttributes[i].Value); + } + else if (aAttributes[i].Name == "blockSize") + { + Converter::convertNumber(mInfo.blockSize, aAttributes[i].Value); + } + else if (aAttributes[i].Name == "keyBits") + { + Converter::convertNumber(mInfo.keyBits, aAttributes[i].Value); + } + else if (aAttributes[i].Name == "hashSize") + { + Converter::convertNumber(mInfo.hashSize, aAttributes[i].Value); + } + else if (aAttributes[i].Name == "cipherAlgorithm") + { + mInfo.cipherAlgorithm = aAttributes[i].Value; + } + else if (aAttributes[i].Name == "cipherChaining") + { + mInfo.cipherChaining = aAttributes[i].Value; + } + else if (aAttributes[i].Name == "hashAlgorithm") + { + mInfo.hashAlgorithm = aAttributes[i].Value; + } + else if (aAttributes[i].Name == "saltValue") + { + Sequence<sal_Int8> saltValue; + Converter::decodeBase64(saltValue, aAttributes[i].Value); + mInfo.saltValue = convertToVector(saltValue); + } + else if (aAttributes[i].Name == "encryptedVerifierHashInput") + { + Sequence<sal_Int8> encryptedVerifierHashInput; + Converter::decodeBase64(encryptedVerifierHashInput, aAttributes[i].Value); + mInfo.encryptedVerifierHashInput = convertToVector(encryptedVerifierHashInput); + } + else if (aAttributes[i].Name == "encryptedVerifierHashValue") + { + Sequence<sal_Int8> encryptedVerifierHashValue; + Converter::decodeBase64(encryptedVerifierHashValue, aAttributes[i].Value); + mInfo.encryptedVerifierHashValue = convertToVector(encryptedVerifierHashValue); + } + else if (aAttributes[i].Name == "encryptedKeyValue") + { + Sequence<sal_Int8> encryptedKeyValue; + Converter::decodeBase64(encryptedKeyValue, aAttributes[i].Value); + mInfo.encryptedKeyValue = convertToVector(encryptedKeyValue); + } + } + } + } + + void endFastElement( sal_Int32 /*aElement*/ ) {} + void endUnknownElement( const OUString& /*aNamespace*/, const OUString& /*aName*/ ) {} + + Reference< XFastContextHandler > createFastChildContext( sal_Int32 /*aElement*/, const Reference< XFastAttributeList >& /*aAttribs*/ ) + { + return NULL; + } + + Reference< XFastContextHandler > createUnknownChildContext( const OUString& /*aNamespace*/, const OUString& /*aName*/, const Reference< XFastAttributeList >& /*aAttribs*/ ) + { + return this; + } + + void characters( const OUString& /*aChars*/ ) {} +}; + +} // namespace + +DocumentDecryption::DocumentDecryption(oox::ole::OleStorage& rOleStorage, Reference<XComponentContext> xContext) : + mxContext(xContext), + mrOleStorage(rOleStorage), + mCryptoType(UNKNOWN) +{} + +bool DocumentDecryption::checkEncryptionData(const Sequence<NamedValue>& rEncryptionData) +{ + SequenceAsHashMap aHashData( rEncryptionData ); + OUString type = aHashData.getUnpackedValueOrDefault( "CryptoType", OUString("Unknown") ); + if (type == "Standard") + { + Sequence<sal_Int8> aKeySeq = aHashData.getUnpackedValueOrDefault( "AES128EncryptionKey", Sequence<sal_Int8>() ); + Sequence<sal_Int8> aVerifierSeq = aHashData.getUnpackedValueOrDefault( "AES128EncryptionVerifier", Sequence<sal_Int8>() ); + Sequence<sal_Int8> aHashSeq = aHashData.getUnpackedValueOrDefault( "AES128EncryptionVerifierHash", Sequence<sal_Int8>() ); + + vector<sal_uInt8> key = convertToVector(aKeySeq); + vector<sal_uInt8> verifier = convertToVector(aVerifierSeq); + vector<sal_uInt8> hash = convertToVector(aHashSeq); + + return Standard2007Engine::checkEncryptionData( key, key.size(), verifier, verifier.size(), hash, hash.size() ); + } + return type == "Agile"; +} + +bool DocumentDecryption::generateEncryptionKey(const OUString& rPassword) +{ + if (mEngine.get()) + return mEngine->generateEncryptionKey(rPassword); + return false; +} + +bool DocumentDecryption::readAgileEncryptionInfo(Reference< XInputStream >& xInputStream) +{ + AgileEngine* engine = new AgileEngine(); + mEngine.reset(engine); + AgileEncryptionInfo& info = engine->getInfo(); + + Reference<XMultiComponentFactory> xFactory( mxContext->getServiceManager(), UNO_SET_THROW ); + Reference<XFastDocumentHandler> xFastDocumentHandler( new AgileDocumentHandler(info) ); + Reference<XFastTokenHandler> xFastTokenHandler ( new AgileTokenHandler ); + + Reference<XFastParser> xParser; + xParser.set( xFactory->createInstanceWithContext( "com.sun.star.xml.sax.FastParser", mxContext ), UNO_QUERY_THROW ); + + if (!xParser.is()) + return false; + + xParser->setFastDocumentHandler( xFastDocumentHandler ); + xParser->setTokenHandler( xFastTokenHandler ); + + InputSource aInputSource; + aInputSource.aInputStream = xInputStream; + xParser->parseStream( aInputSource ); + + // CHECK info data + if (2 > info.blockSize || info.blockSize > 4096) + return false; + + if (0 > info.spinCount || info.spinCount > 10000000) + return false; + + if (1 > info.saltSize|| info.saltSize > 65536) // Check + return false; + + // AES 128 CBC with SHA1 + if (info.keyBits == 128 && + info.cipherAlgorithm == "AES" && + info.cipherChaining == "ChainingModeCBC" && + info.hashAlgorithm == "SHA1" && + info.hashSize == 20) + { + return true; + } + + // AES 256 CBC with SHA512 + if (info.keyBits == 256 && + info.cipherAlgorithm == "AES" && + info.cipherChaining == "ChainingModeCBC" && + info.hashAlgorithm == "SHA512" && + info.hashSize == 64 ) + { + return true; + } + + return false; +} + +bool DocumentDecryption::readStandard2007EncryptionInfo(BinaryInputStream& rStream) +{ + Standard2007Engine* engine = new Standard2007Engine(); + mEngine.reset(engine); + StandardEncryptionInfo& info = engine->getInfo(); + + + rStream >> info.header.flags; + if( getFlag( info.header.flags, ENCRYPTINFO_EXTERNAL ) ) + return false; + + sal_uInt32 nHeaderSize; + rStream >> nHeaderSize; + + sal_uInt32 actualHeaderSize = sizeof(info.header); + + if( (nHeaderSize < actualHeaderSize) ) + return false; + + rStream >> info.header; + rStream.skip( nHeaderSize - actualHeaderSize ); + rStream >> info.verifier; + + if( info.verifier.saltSize != 16 ) + return false; + + // check flags and algorithm IDs, required are AES128 and SHA-1 + if( !getFlag( info.header.flags , ENCRYPTINFO_CRYPTOAPI ) ) + return false; + + if( !getFlag( info.header.flags, ENCRYPTINFO_AES ) ) + return false; + + // algorithm ID 0 defaults to AES128 too, if ENCRYPTINFO_AES flag is set + if( info.header.algId != 0 && info.header.algId != ENCRYPT_ALGO_AES128 ) + return false; + + // hash algorithm ID 0 defaults to SHA-1 too + if( info.header.algIdHash != 0 && info.header.algIdHash != ENCRYPT_HASH_SHA1 ) + return false; + + if( info.verifier.encryptedVerifierHashSize != 20 ) + return false; + + return !rStream.isEof(); +} + +bool DocumentDecryption::readEncryptionInfo() +{ + if( !mrOleStorage.isStorage() ) + return false; + + Reference< XInputStream > xEncryptionInfo( mrOleStorage.openInputStream( "EncryptionInfo" ), UNO_SET_THROW ); + + bool bResult = false; + + BinaryXInputStream aBinaryInputStream( xEncryptionInfo, true ); + + sal_uInt32 aVersion; + aBinaryInputStream >> aVersion; + + switch (aVersion) + { + case VERSION_INFO_2007_FORMAT: + mCryptoType = STANDARD_2007; // Set encryption info format + bResult = readStandard2007EncryptionInfo( aBinaryInputStream ); + break; + case VERSION_INFO_AGILE: + mCryptoType = AGILE; // Set encryption info format + aBinaryInputStream.skip(4); + bResult = readAgileEncryptionInfo( xEncryptionInfo ); + break; + default: + break; + } + + return bResult; +} + +Sequence<NamedValue> DocumentDecryption::createEncryptionData() +{ + Sequence<NamedValue> aResult; + + vector<sal_uInt8>& key = mEngine->getKey(); + + if (key.size() > 0) + { + SequenceAsHashMap aEncryptionData; + if (mCryptoType == AGILE) + { + aEncryptionData["CryptoType"] <<= OUString("Agile"); + aEncryptionData["AES128EncryptionKey"] <<= Sequence< sal_Int8 >( reinterpret_cast< const sal_Int8* >( &key[0] ), key.size() ); + aResult = aEncryptionData.getAsConstNamedValueList(); + } + else if (mCryptoType == STANDARD_2007) + { + aEncryptionData["CryptoType"] <<= OUString("Standard"); + aEncryptionData["AES128EncryptionKey"] <<= Sequence< sal_Int8 >( reinterpret_cast< const sal_Int8* >( &key[0] ), key.size() ); + aResult = aEncryptionData.getAsConstNamedValueList(); + } + } + + return aResult; +} + +bool DocumentDecryption::decrypt(Reference<XStream> xDocumentStream) +{ + bool aResult = false; + + if( !mrOleStorage.isStorage() ) + return false; + + // open the required input streams in the encrypted package + Reference< XInputStream > xEncryptedPackage( mrOleStorage.openInputStream( "EncryptedPackage" ), UNO_SET_THROW ); + + // create temporary file for unencrypted package + Reference< XOutputStream > xDecryptedPackage( xDocumentStream->getOutputStream(), UNO_SET_THROW ); + BinaryXOutputStream aDecryptedPackage( xDecryptedPackage, true ); + BinaryXInputStream aEncryptedPackage( xEncryptedPackage, true ); + + aResult = mEngine->decrypt(aEncryptedPackage, aDecryptedPackage); + + xDecryptedPackage->flush(); + aDecryptedPackage.seekToStart(); + + return aResult; +} + +} // namespace core +} // namespace oox + +/* vim:set shiftwidth=4 softtabstop=4 expandtab: */ |