search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
Stop leaking all ScPostIt instances.
[LibreOffice.git] / sc / source / core / data / tabprotection.cxx
blobbce8aca3399f9dcde9e627190d06fc58349d115d
1 /* -*- Mode: C++; tab-width: 4; indent-tabs-mode: nil; c-basic-offset: 4 -*- */
2 /*
3 * This file is part of the LibreOffice project.
4 *
5 * This Source Code Form is subject to the terms of the Mozilla Public
6 * License, v. 2.0. If a copy of the MPL was not distributed with this
7 * file, You can obtain one at http://mozilla.org/MPL/2.0/.
8 *
9 * This file incorporates work covered by the following license notice:
10 *
11 * Licensed to the Apache Software Foundation (ASF) under one or more
12 * contributor license agreements. See the NOTICE file distributed
13 * with this work for additional information regarding copyright
14 * ownership. The ASF licenses this file to you under the Apache
15 * License, Version 2.0 (the "License"); you may not use this file
16 * except in compliance with the License. You may obtain a copy of
17 * the License at http://www.apache.org/licenses/LICENSE-2.0 .
18 */
19
20 #include "tabprotection.hxx"
21 #include "svl/PasswordHelper.hxx"
22 #include <comphelper/docpasswordhelper.hxx>
23 #include "document.hxx"
24
25 #include <vector>
26
27 #define DEBUG_TAB_PROTECTION 0
28
29 #define URI_SHA1 "http://www.w3.org/2000/09/xmldsig#sha1"
30 #define URI_XLS_LEGACY "http://docs.oasis-open.org/office/ns/table/legacy-hash-excel"
31
32 using namespace ::com::sun::star;
33 using ::com::sun::star::uno::Sequence;
34 using ::std::vector;
35
36 // ============================================================================
37
38 bool ScPassHashHelper::needsPassHashRegen(const ScDocument& rDoc, ScPasswordHash eHash1, ScPasswordHash eHash2)
39 {
40 if (rDoc.IsDocProtected())
41 {
42 const ScDocProtection* p = rDoc.GetDocProtection();
43 if (!p->isPasswordEmpty() && !p->hasPasswordHash(eHash1, eHash2))
44 return true;
45 }
46
47 SCTAB nTabCount = rDoc.GetTableCount();
48 for (SCTAB i = 0; i < nTabCount; ++i)
49 {
50 const ScTableProtection* p = rDoc.GetTabProtection(i);
51 if (!p || !p->isProtected())
52 // Sheet not protected. Skip it.
53 continue;
54
55 if (!p->isPasswordEmpty() && !p->hasPasswordHash(eHash1, eHash2))
56 return true;
57 }
58
59 return false;
60 }
61
62 OUString ScPassHashHelper::getHashURI(ScPasswordHash eHash)
63 {
64 switch (eHash)
65 {
66 case PASSHASH_SHA1:
67 return OUString(URI_SHA1);
68 case PASSHASH_XL:
69 return OUString(URI_XLS_LEGACY);
70 case PASSHASH_UNSPECIFIED:
71 default:
72 ;
73 }
74 return OUString();
75 }
76
77 ScPasswordHash ScPassHashHelper::getHashTypeFromURI(const OUString& rURI)
78 {
79 if ( rURI == URI_SHA1 )
80 return PASSHASH_SHA1;
81 else if ( rURI == URI_XLS_LEGACY )
82 return PASSHASH_XL;
83 return PASSHASH_UNSPECIFIED;
84 }
85
86 // ============================================================================
87
88 ScPassHashProtectable::~ScPassHashProtectable()
89 {
90 }
91
92 // ============================================================================
93
94 class ScTableProtectionImpl
95 {
96 public:
97 static Sequence<sal_Int8> hashPassword(const OUString& aPassText, ScPasswordHash eHash = PASSHASH_SHA1);
98 static Sequence<sal_Int8> hashPassword(const Sequence<sal_Int8>& rPassHash, ScPasswordHash eHash = PASSHASH_SHA1);
99
100 explicit ScTableProtectionImpl(SCSIZE nOptSize);
101 explicit ScTableProtectionImpl(const ScTableProtectionImpl& r);
102
103 bool isProtected() const;
104 bool isProtectedWithPass() const;
105 void setProtected(bool bProtected);
106
107 bool isPasswordEmpty() const;
108 bool hasPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2 = PASSHASH_UNSPECIFIED) const;
109 void setPassword(const OUString& aPassText);
110 ::com::sun::star::uno::Sequence<sal_Int8> getPasswordHash(
111 ScPasswordHash eHash, ScPasswordHash eHash2 = PASSHASH_UNSPECIFIED) const;
112 void setPasswordHash(
113 const ::com::sun::star::uno::Sequence<sal_Int8>& aPassword,
114 ScPasswordHash eHash = PASSHASH_SHA1, ScPasswordHash eHash2 = PASSHASH_UNSPECIFIED);
115 bool verifyPassword(const OUString& aPassText) const;
116
117 bool isOptionEnabled(SCSIZE nOptId) const;
118 void setOption(SCSIZE nOptId, bool bEnabled);
119
120 private:
121 OUString maPassText;
122 ::com::sun::star::uno::Sequence<sal_Int8> maPassHash;
123 ::std::vector<bool> maOptions;
124 bool mbEmptyPass;
125 bool mbProtected;
126 ScPasswordHash meHash1;
127 ScPasswordHash meHash2;
128 };
129
130 Sequence<sal_Int8> ScTableProtectionImpl::hashPassword(const OUString& aPassText, ScPasswordHash eHash)
131 {
132 Sequence<sal_Int8> aHash;
133 switch (eHash)
134 {
135 case PASSHASH_XL:
136 aHash = ::comphelper::DocPasswordHelper::GetXLHashAsSequence( aPassText, RTL_TEXTENCODING_UTF8 );
137 break;
138 case PASSHASH_SHA1:
139 SvPasswordHelper::GetHashPassword(aHash, aPassText);
140 break;
141 default:
142 ;
143 }
144 return aHash;
145 }
146
147 Sequence<sal_Int8> ScTableProtectionImpl::hashPassword(
148 const Sequence<sal_Int8>& rPassHash, ScPasswordHash eHash)
149 {
150 if (!rPassHash.getLength() || eHash == PASSHASH_UNSPECIFIED)
151 return rPassHash;
152
153 // TODO: Right now, we only support double-hash by SHA1.
154 if (eHash == PASSHASH_SHA1)
155 {
156 vector<sal_Char> aChars;
157 sal_Int32 n = rPassHash.getLength();
158 aChars.reserve(n);
159 for (sal_Int32 i = 0; i < n; ++i)
160 aChars.push_back(static_cast<sal_Char>(rPassHash[i]));
161
162 Sequence<sal_Int8> aNewHash;
163 SvPasswordHelper::GetHashPassword(aNewHash, &aChars[0], aChars.size());
164 return aNewHash;
165 }
166
167 return rPassHash;
168 }
169
170 ScTableProtectionImpl::ScTableProtectionImpl(SCSIZE nOptSize) :
171 maOptions(nOptSize),
172 mbEmptyPass(true),
173 mbProtected(false),
174 meHash1(PASSHASH_SHA1),
175 meHash2(PASSHASH_UNSPECIFIED)
176 {
177 }
178
179 ScTableProtectionImpl::ScTableProtectionImpl(const ScTableProtectionImpl& r) :
180 maPassText(r.maPassText),
181 maPassHash(r.maPassHash),
182 maOptions(r.maOptions),
183 mbEmptyPass(r.mbEmptyPass),
184 mbProtected(r.mbProtected),
185 meHash1(r.meHash1),
186 meHash2(r.meHash2)
187 {
188 }
189
190 bool ScTableProtectionImpl::isProtected() const
191 {
192 return mbProtected;
193 }
194
195 bool ScTableProtectionImpl::isProtectedWithPass() const
196 {
197 if (!mbProtected)
198 return false;
199
200 return !maPassText.isEmpty() || maPassHash.getLength();
201 }
202
203 void ScTableProtectionImpl::setProtected(bool bProtected)
204 {
205 mbProtected = bProtected;
206 // We need to keep the old password even when the protection is off. So,
207 // don't erase the password data here.
208 }
209
210 void ScTableProtectionImpl::setPassword(const OUString& aPassText)
211 {
212 // We can't hash it here because we don't know whether this document will
213 // get saved to Excel or ODF, depending on which we will need to use a
214 // different hashing algorithm. One alternative is to hash it using all
215 // hash algorithms that we support, and store them all.
216
217 maPassText = aPassText;
218 mbEmptyPass = aPassText.isEmpty();
219 if (mbEmptyPass)
220 {
221 maPassHash = Sequence<sal_Int8>();
222 }
223 }
224
225 bool ScTableProtectionImpl::isPasswordEmpty() const
226 {
227 return mbEmptyPass;
228 }
229
230 bool ScTableProtectionImpl::hasPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2) const
231 {
232 if (mbEmptyPass)
233 return true;
234
235 if (!maPassText.isEmpty())
236 return true;
237
238 if (meHash1 == eHash)
239 {
240 if (meHash2 == PASSHASH_UNSPECIFIED)
241 // single hash.
242 return true;
243
244 return meHash2 == eHash2;
245 }
246
247 return false;
248 }
249
250 Sequence<sal_Int8> ScTableProtectionImpl::getPasswordHash(
251 ScPasswordHash eHash, ScPasswordHash eHash2) const
252 {
253 Sequence<sal_Int8> aPassHash;
254
255 if (mbEmptyPass)
256 // Flaged as empty.
257 return aPassHash;
258
259 if (!maPassText.isEmpty())
260 {
261 // Cleartext password exists. Hash it.
262 aPassHash = hashPassword(maPassText, eHash);
263 if (eHash2 != PASSHASH_UNSPECIFIED)
264 // Double-hash it.
265 aPassHash = hashPassword(aPassHash, eHash2);
266
267 return aPassHash;
268 }
269 else
270 {
271 // No clear text password. Check if we have a hash value of the right hash type.
272 if (meHash1 == eHash)
273 {
274 aPassHash = maPassHash;
275
276 if (meHash2 == eHash2)
277 // Matching double-hash requested.
278 return aPassHash;
279 else if (meHash2 == PASSHASH_UNSPECIFIED)
280 // primary hashing type match. Double hash it by the requested
281 // double-hash type.
282 return hashPassword(aPassHash, eHash2);
283 }
284 }
285
286 // failed.
287 return Sequence<sal_Int8>();
288 }
289
290 void ScTableProtectionImpl::setPasswordHash(
291 const uno::Sequence<sal_Int8>& aPassword, ScPasswordHash eHash, ScPasswordHash eHash2)
292 {
293 sal_Int32 nLen = aPassword.getLength();
294 mbEmptyPass = nLen <= 0 ? true : false;
295 meHash1 = eHash;
296 meHash2 = eHash2;
297 maPassHash = aPassword;
298
299 #if DEBUG_TAB_PROTECTION
300 for (sal_Int32 i = 0; i < nLen; ++i)
301 printf("%2.2X ", static_cast<sal_uInt8>(aPassword[i]));
302 printf("\n");
303 #endif
304 }
305
306 bool ScTableProtectionImpl::verifyPassword(const OUString& aPassText) const
307 {
308 #if DEBUG_TAB_PROTECTION
309 fprintf(stdout, "ScTableProtectionImpl::verifyPassword: input = '%s'\n",
310 OUStringToOString(OUString(aPassText), RTL_TEXTENCODING_UTF8).getStr());
311 #endif
312
313 if (mbEmptyPass)
314 return aPassText.isEmpty();
315
316 if (!maPassText.isEmpty())
317 // Clear text password exists, and this one takes precedence.
318 return aPassText == maPassText;
319
320 Sequence<sal_Int8> aHash = hashPassword(aPassText, meHash1);
321 aHash = hashPassword(aHash, meHash2);
322
323 #if DEBUG_TAB_PROTECTION
324 fprintf(stdout, "ScTableProtectionImpl::verifyPassword: hash = ");
325 for (sal_Int32 i = 0; i < aHash.getLength(); ++i)
326 printf("%2.2X ", static_cast<sal_uInt8>(aHash[i]));
327 printf("\n");
328 #endif
329
330 return aHash == maPassHash;
331 }
332
333 bool ScTableProtectionImpl::isOptionEnabled(SCSIZE nOptId) const
334 {
335 if ( maOptions.size() <= static_cast<size_t>(nOptId) )
336 {
337 OSL_FAIL("ScTableProtectionImpl::isOptionEnabled: wrong size");
338 return false;
339 }
340
341 return maOptions[nOptId];
342 }
343
344 void ScTableProtectionImpl::setOption(SCSIZE nOptId, bool bEnabled)
345 {
346 if ( maOptions.size() <= static_cast<size_t>(nOptId) )
347 {
348 OSL_FAIL("ScTableProtectionImpl::setOption: wrong size");
349 return;
350 }
351
352 maOptions[nOptId] = bEnabled;
353 }
354
355 // ============================================================================
356
357 ScDocProtection::ScDocProtection() :
358 mpImpl(new ScTableProtectionImpl(static_cast<SCSIZE>(ScDocProtection::NONE)))
359 {
360 }
361
362 ScDocProtection::ScDocProtection(const ScDocProtection& r) :
363 ScPassHashProtectable(),
364 mpImpl(new ScTableProtectionImpl(*r.mpImpl))
365 {
366 }
367
368 ScDocProtection::~ScDocProtection()
369 {
370 }
371
372 bool ScDocProtection::isProtected() const
373 {
374 return mpImpl->isProtected();
375 }
376
377 bool ScDocProtection::isProtectedWithPass() const
378 {
379 return mpImpl->isProtectedWithPass();
380 }
381
382 void ScDocProtection::setProtected(bool bProtected)
383 {
384 mpImpl->setProtected(bProtected);
385
386 // Currently Calc doesn't support document protection options. So, let's
387 // assume that when the document is protected, its structure is protected.
388 // We need to do this for Excel export.
389 mpImpl->setOption(ScDocProtection::STRUCTURE, bProtected);
390 }
391
392 bool ScDocProtection::isPasswordEmpty() const
393 {
394 return mpImpl->isPasswordEmpty();
395 }
396
397 bool ScDocProtection::hasPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2) const
398 {
399 return mpImpl->hasPasswordHash(eHash, eHash2);
400 }
401
402 void ScDocProtection::setPassword(const OUString& aPassText)
403 {
404 mpImpl->setPassword(aPassText);
405 }
406
407 uno::Sequence<sal_Int8> ScDocProtection::getPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2) const
408 {
409 return mpImpl->getPasswordHash(eHash, eHash2);
410 }
411
412 void ScDocProtection::setPasswordHash(
413 const uno::Sequence<sal_Int8>& aPassword, ScPasswordHash eHash, ScPasswordHash eHash2)
414 {
415 mpImpl->setPasswordHash(aPassword, eHash, eHash2);
416 }
417
418 bool ScDocProtection::verifyPassword(const OUString& aPassText) const
419 {
420 return mpImpl->verifyPassword(aPassText);
421 }
422
423 bool ScDocProtection::isOptionEnabled(Option eOption) const
424 {
425 return mpImpl->isOptionEnabled(eOption);
426 }
427
428 void ScDocProtection::setOption(Option eOption, bool bEnabled)
429 {
430 mpImpl->setOption(eOption, bEnabled);
431 }
432
433 // ============================================================================
434
435 ScTableProtection::ScTableProtection() :
436 mpImpl(new ScTableProtectionImpl(static_cast<SCSIZE>(ScTableProtection::NONE)))
437 {
438 // Set default values for the options.
439 mpImpl->setOption(SELECT_LOCKED_CELLS, true);
440 mpImpl->setOption(SELECT_UNLOCKED_CELLS, true);
441 }
442
443 ScTableProtection::ScTableProtection(const ScTableProtection& r) :
444 ScPassHashProtectable(),
445 mpImpl(new ScTableProtectionImpl(*r.mpImpl))
446 {
447 }
448
449 ScTableProtection::~ScTableProtection()
450 {
451 }
452
453 bool ScTableProtection::isProtected() const
454 {
455 return mpImpl->isProtected();
456 }
457
458 bool ScTableProtection::isProtectedWithPass() const
459 {
460 return mpImpl->isProtectedWithPass();
461 }
462
463 void ScTableProtection::setProtected(bool bProtected)
464 {
465 mpImpl->setProtected(bProtected);
466 }
467
468 bool ScTableProtection::isPasswordEmpty() const
469 {
470 return mpImpl->isPasswordEmpty();
471 }
472
473 bool ScTableProtection::hasPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2) const
474 {
475 return mpImpl->hasPasswordHash(eHash, eHash2);
476 }
477
478 void ScTableProtection::setPassword(const OUString& aPassText)
479 {
480 mpImpl->setPassword(aPassText);
481 }
482
483 Sequence<sal_Int8> ScTableProtection::getPasswordHash(ScPasswordHash eHash, ScPasswordHash eHash2) const
484 {
485 return mpImpl->getPasswordHash(eHash, eHash2);
486 }
487
488 void ScTableProtection::setPasswordHash(
489 const uno::Sequence<sal_Int8>& aPassword, ScPasswordHash eHash, ScPasswordHash eHash2)
490 {
491 mpImpl->setPasswordHash(aPassword, eHash, eHash2);
492 }
493
494 bool ScTableProtection::verifyPassword(const OUString& aPassText) const
495 {
496 return mpImpl->verifyPassword(aPassText);
497 }
498
499 bool ScTableProtection::isOptionEnabled(Option eOption) const
500 {
501 return mpImpl->isOptionEnabled(eOption);
502 }
503
504 void ScTableProtection::setOption(Option eOption, bool bEnabled)
505 {
506 mpImpl->setOption(eOption, bEnabled);
507 }
508 /* vim:set shiftwidth=4 softtabstop=4 expandtab: */
FREE OFFICE SUITE