Clientbase
/
PHPWord
mirror of https://github.com/basemaster/PHPWord.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

enable password setting in word

This commit is contained in:
Maria Haubner 2017-03-10 13:28:32 +01:00
parent 6da9d8a0bf
commit 05387fac09
2 changed files with 244 additions and 8 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

224
src/PhpWord/Metadata/Protection.php
View File

@ -22,18 +22,77 @@ namespace PhpOffice\PhpWord\Metadata;
*
* @since 0.12.0
* @link http://www.datypic.com/sc/ooxml/t-w_CT_DocProtect.html
* @todo Password!
*/
class Protection
{
static $algorithmMapping = [
1 => 'md2',
2 => 'md4',
3 => 'md5',
4 => 'sha1',
5 => '', // 'mac' -> not possible with hash()
6 => 'ripemd',
7 => 'ripemd160',
8 => '',
9 => '', //'hmac' -> not possible with hash()
10 => '',
11 => '',
12 => 'sha256',
13 => 'sha384',
14 => 'sha512',
];
static $initialCodeArray = [
0xE1F0,
0x1D0F,
0xCC9C,
0x84C0,
0x110C,
0x0E10,
0xF1CE,
0x313E,
0x1872,
0xE139,
0xD40F,
0x84F9,
0x280C,
0xA96A,
0x4EC3
];
static $encryptionMatrix =
[
[0xAEFC, 0x4DD9, 0x9BB2, 0x2745, 0x4E8A, 0x9D14, 0x2A09],
[0x7B61, 0xF6C2, 0xFDA5, 0xEB6B, 0xC6F7, 0x9DCF, 0x2BBF],
[0x4563, 0x8AC6, 0x05AD, 0x0B5A, 0x16B4, 0x2D68, 0x5AD0],
[0x0375, 0x06EA, 0x0DD4, 0x1BA8, 0x3750, 0x6EA0, 0xDD40],
[0xD849, 0xA0B3, 0x5147, 0xA28E, 0x553D, 0xAA7A, 0x44D5],
[0x6F45, 0xDE8A, 0xAD35, 0x4A4B, 0x9496, 0x390D, 0x721A],
[0xEB23, 0xC667, 0x9CEF, 0x29FF, 0x53FE, 0xA7FC, 0x5FD9],
[0x47D3, 0x8FA6, 0x0F6D, 0x1EDA, 0x3DB4, 0x7B68, 0xF6D0],
[0xB861, 0x60E3, 0xC1C6, 0x93AD, 0x377B, 0x6EF6, 0xDDEC],
[0x45A0, 0x8B40, 0x06A1, 0x0D42, 0x1A84, 0x3508, 0x6A10],
[0xAA51, 0x4483, 0x8906, 0x022D, 0x045A, 0x08B4, 0x1168],
[0x76B4, 0xED68, 0xCAF1, 0x85C3, 0x1BA7, 0x374E, 0x6E9C],
[0x3730, 0x6E60, 0xDCC0, 0xA9A1, 0x4363, 0x86C6, 0x1DAD],
[0x3331, 0x6662, 0xCCC4, 0x89A9, 0x0373, 0x06E6, 0x0DCC],
[0x1021, 0x2042, 0x4084, 0x8108, 0x1231, 0x2462, 0x48C4]
];
/**
* Editing restriction readOnly|comments|trackedChanges|forms
* Editing restriction none|readOnly|comments|trackedChanges|forms
*
* @var string
* @link http://www.datypic.com/sc/ooxml/a-w_edit-1.html
*/
private $editing;
private $password;
private $spinCount = 100000;
private $algorithmSid = 4;
private $salt;
/**
* Create a new instance
*
@ -66,4 +125,165 @@ class Protection
return $this;
}
public function getPassword()
{
return $this->password;
}
public function setPassword($password)
{
$this->password = $this->getPasswordHash($password);
return $this;
}
public function getSpinCount()
{
return $this->spinCount;
}
public function setSpinCount($spinCount)
{
$this->spinCount = $spinCount;
return $this;
}
public function getAlgorithmSid()
{
return $this->algorithmSid;
}
public function setAlgorithmSid($algorithmSid)
{
$this->algorithmSid = $algorithmSid;
return $this;
}
public function setSalt($salt)
{
$this->salt = $salt;
}
public function getSalt()
{
return $this->salt;
}
private function getAlgorithm()
{
$algorithm = self::$algorithmMapping[$this->algorithmSid];
if ($algorithm == '') {
$algorithm = 'sha1';
}
return $algorithm;
}
private function getPasswordHash($password)
{
if (empty($password)) {
return '';
}
$passwordMaxLength = 15;
// Truncate the password to $passwordMaxLength characters
$password = mb_substr($password, 0, min($passwordMaxLength, mb_strlen($password)));
$byteChars = [];
echo "password: '{$password}'(".mb_strlen($password).")";
$pass_utf8 = mb_convert_encoding($password, 'UCS-2LE', 'UTF-8');
for ($i = 0; $i < mb_strlen($password); $i++) {
$byteChars[$i] = ord(substr($pass_utf8, $i*2, 1));
if ($byteChars[$i] == 0) {
echo "hi!$i";
$byteChars[$i] = ord(substr($pass_utf8, $i*2+1, 1));
}
}
// Compute the high-order word
$highOrderWord = self::$initialCodeArray[sizeof($byteChars) - 1];
for ($i = 0; $i < sizeof($byteChars); $i++) {
$tmp = $passwordMaxLength - sizeof($byteChars) + $i;
$matrixRow = self::$encryptionMatrix[$tmp];
for ($intBit = 0; $intBit < 7; $intBit++) {
if (($byteChars[$i] & (0x0001 << $intBit)) != 0) {
$highOrderWord = ($highOrderWord ^ $matrixRow[$intBit]);
}
}
}
// Compute low-order word
$lowOrderWord = 0;
for ($i = sizeof($byteChars) - 1; $i >= 0; $i--) {
$lowOrderWord = (((($lowOrderWord >> 14) & 0x0001) | (($lowOrderWord << 1) & 0x7FFF)) ^ $byteChars[$i]);
}
$lowOrderWord = (((($lowOrderWord >> 14) & 0x0001) | (($lowOrderWord << 1) & 0x7FFF)) ^ sizeof($byteChars) ^ 0xCE4B);
$combinedKey = $this->int32(($highOrderWord << 16) + $lowOrderWord);
$generatedKey = [
0 => (($combinedKey & 0x000000FF) >> 0),
1 => (($combinedKey & 0x0000FF00) >> 8),
2 => (($combinedKey & 0x00FF0000) >> 16),
3 => (($combinedKey & 0xFF000000) >> 24),
];
$tmpStr = '';
for ($i = 0; $i < 4; $i++) {
$tmpStr .= strtoupper(dechex($generatedKey[$i]));
}
$generatedKey = [];
$tmpStr = mb_convert_encoding($tmpStr, 'UCS-2LE', 'UTF-8');
for ($i = 0; $i < strlen($tmpStr); $i++) {
$generatedKey[] = ord(substr($tmpStr, $i, 1));
}
$salt = unpack('C*', base64_decode($this->getSalt()));
$algorithm = $this->getAlgorithm();
$tmpArray1 = $generatedKey;
$tmpArray2 = $salt;
$generatedKey = array_merge($tmpArray2, $tmpArray1);
$generatedKey = $this->hashByteArray($algorithm, $generatedKey);
for ($i = 0; $i < $this->getSpinCount(); $i++) {
$iterator = [
0 => (($i & 0x000000FF) >> 0),
1 => (($i & 0x0000FF00) >> 8),
2 => (($i & 0x00FF0000) >> 16),
3 => (($i & 0xFF000000) >> 24),
];
$generatedKey = array_merge($generatedKey, $iterator);
$generatedKey = $this->hashByteArray($algorithm, $generatedKey);
}
$hash = implode(array_map("chr", $generatedKey));
return base64_encode($hash);
}
private function int32($value)
{
$value = ($value & 0xFFFFFFFF);
if ($value & 0x80000000) {
$value = -((~$value & 0xFFFFFFFF) + 1);
}
return $value;
}
private function hashByteArray($algorithm, $array)
{
$string = implode(array_map("chr", $array));
$string = hash($algorithm, $string, true);
return unpack('C*', $string);
}
}

28
src/PhpWord/Writer/Word2007/Part/Settings.php
View File

@ -152,12 +152,28 @@ class Settings extends AbstractPart
{
$protection = $this->getParentWriter()->getPhpWord()->getProtection();
if ($protection->getEditing() !== null) {
$this->settings['w:documentProtection'] = array(
'@attributes' => array(
'w:enforcement' => 1,
'w:edit' => $protection->getEditing(),
)
);
if (empty($protection->getPassword())) {
$this->settings['w:documentProtection'] = array(
'@attributes' => array(
'w:enforcement' => 1,
'w:edit' => $protection->getEditing(),
)
);
} else {
$this->settings['w:documentProtection'] = array(
'@attributes' => array(
'w:enforcement' => 1,
'w:edit' => $protection->getEditing(),
'w:cryptProviderType' => 'rsaFull',
'w:cryptAlgorithmClass' => 'hash',
'w:cryptAlgorithmType' => 'typeAny',
'w:cryptAlgorithmSid' => $protection->getAlgorithmSid(),
'w:cryptSpinCount' => $protection->getSpinCount(),
'w:hash' => $protection->getPassword(),
'w:salt' => $protection->getSalt(),
)
);
}
}
}