accept utf8 passwords for decrypting workbooks, #144

2024-03-22 13:11:17 +08:00 · 2017-04-12 19:21:21 -04:00 · 2017-04-12 19:21:21 -04:00 · 5b9304960c
commit 5b9304960c
parent e465151dec
4 changed files with 26 additions and 13 deletions
--- a/source/detail/crypto/xlsx_crypto.cpp
+++ b/source/detail/crypto/xlsx_crypto.cpp
@ -22,6 +22,7 @@
 // @author: see AUTHORS file

 #include <array>
+#include <codecvt>

 #include <detail/crypto/aes.hpp>
 #include <detail/crypto/base64.hpp>
@ -160,7 +161,7 @@ std::vector<std::uint8_t> file(POLE::Storage &storage, const std::string &name)

 std::vector<std::uint8_t> decrypt_xlsx_standard(
    const std::vector<std::uint8_t> &encryption_info,
-    const std::string &password,
+    const std::u16string &password,
    const std::vector<std::uint8_t> &encrypted_package)
 {
    std::size_t offset = 0;
@ -296,7 +297,7 @@ std::vector<std::uint8_t> decrypt_xlsx_standard(
    return decrypted;
 }

-encryption_info generate_encryption_info(const std::string &password)
+encryption_info generate_encryption_info(const std::u16string &password)
 {
    encryption_info result;
    result.agile.key_data.salt_value.assign(password.begin(), password.end());
@ -363,7 +364,7 @@ std::vector<std::uint8_t> write_agile_encryption_info(const std::string &passwor

 std::vector<std::uint8_t> decrypt_xlsx_agile(
    const std::vector<std::uint8_t> &encryption_info,
-    const std::string &password,
+    const std::u16string &password,
    const std::vector<std::uint8_t> &encrypted_package)
 {
    using xlnt::detail::decode_base64;
@ -458,9 +459,8 @@ std::vector<std::uint8_t> decrypt_xlsx_agile(

    // H_0 = H(salt + password)
    auto salt_plus_password = result.key_encryptor.salt_value;
-    std::vector<std::uint16_t> password_wide(password.begin(), password.end());

-    std::for_each(password_wide.begin(), password_wide.end(), [&salt_plus_password](std::uint16_t c) {
+    std::for_each(password.begin(), password.end(), [&salt_plus_password](std::uint16_t c) {
        salt_plus_password.insert(salt_plus_password.end(), reinterpret_cast<char *>(&c),
            reinterpret_cast<char *>(&c) + sizeof(std::uint16_t));
    });
@ -553,7 +553,7 @@ std::vector<std::uint8_t> decrypt_xlsx_agile(

 std::vector<std::uint8_t> decrypt_xlsx(
    const std::vector<std::uint8_t> &bytes,
-    const std::string &password)
+    const std::u16string &password)
 {
    if (bytes.empty())
    {
@ -618,7 +618,7 @@ std::vector<std::uint8_t> decrypt_xlsx(

 std::vector<std::uint8_t> encrypt_xlsx(
    const std::vector<std::uint8_t> &bytes,
-    const std::string &password)
+    const std::u16string &password)
 {
    if (bytes.empty())
    {
@ -630,6 +630,17 @@ std::vector<std::uint8_t> encrypt_xlsx(
    return {};
 }

+std::u16string utf8_to_utf16(const std::string &utf8_string)
+{
+	// use std::int16_t instead of char16_t because of a bug in MSVC
+	// error LNK2001: unresolved external symbol std::codecvt::id
+	// https://connect.microsoft.com/VisualStudio/Feedback/Details/1403302
+	auto converted = std::wstring_convert<std::codecvt_utf8_utf16<std::int16_t>, 
+		std::int16_t>{}.from_bytes(utf8_string);
+
+	return std::u16string(converted.begin(), converted.end());
+}
+
 } // namespace

 namespace xml {
@ -702,7 +713,7 @@ namespace detail {

 std::vector<std::uint8_t> XLNT_API decrypt_xlsx(const std::vector<std::uint8_t> &data, const std::string &password)
 {
-    return ::decrypt_xlsx(data, password);
+    return ::decrypt_xlsx(data, utf8_to_utf16(password));
 }

 void xlsx_consumer::read(std::istream &source, const std::string &password)
@ -724,7 +735,7 @@ void xlsx_producer::write(std::ostream &destination, const std::string &password
        write(decrypted_stream);
    }

-    const auto encrypted = encrypt_xlsx(decrypted, password);
+    const auto encrypted = encrypt_xlsx(decrypted, utf8_to_utf16(password));
    vector_istreambuf encrypted_buffer(encrypted);

    destination << &encrypted_buffer;
--- a/source/workbook/tests/test_consume_xlsx.hpp
+++ b/source/workbook/tests/test_consume_xlsx.hpp
@ -28,7 +28,7 @@ public:
    {
        xlnt::workbook wb;
        const auto path = path_helper::data_directory("6_encrypted_libre.xlsx");
-        TS_ASSERT_THROWS_NOTHING(wb.load(path, "secret"));
+        TS_ASSERT_THROWS_NOTHING(wb.load(path, u8"пароль"));
    }

    void test_decrypt_standard()
--- a/source/workbook/tests/test_round_trip.hpp
+++ b/source/workbook/tests/test_round_trip.hpp
@ -1,4 +1,4 @@
-#pragma once
+#pragma once

 #include <fstream>
 #include <iostream>
@ -78,8 +78,10 @@ public:
        for (const auto file : files)
        {
            auto path = path_helper::data_directory(file + ".xlsx");
-            TS_ASSERT(round_trip_matches_rw(path, file
-                == "7_encrypted_standard" ? "password" : "secret"));
+            auto password = std::string(file == "7_encrypted_standard" ? "password"
+                : file == "6_encrypted_libre" ? u8"пароль"
+                : "secret");
+            TS_ASSERT(round_trip_matches_rw(path, password));
        }
 	}
 };
--- a/tests/data/6_encrypted_libre.xlsx
+++ b/tests/data/6_encrypted_libre.xlsx