public class CryptoAPIDecryptor extends Decryptor implements java.lang.Cloneable
DEFAULT_PASSWORD, DEFAULT_POIFS_ENTRY, encryptionInfo
Modifier | Constructor and Description |
---|---|
protected |
CryptoAPIDecryptor() |
Modifier and Type | Method and Description |
---|---|
CryptoAPIDecryptor |
clone() |
protected static javax.crypto.SecretKey |
generateSecretKey(java.lang.String password,
EncryptionVerifier ver) |
ChunkedCipherInputStream |
getDataStream(DirectoryNode dir)
Return a stream with decrypted data.
|
ChunkedCipherInputStream |
getDataStream(java.io.InputStream stream,
int size,
int initialPos)
Wraps a stream for decryption
|
long |
getLength()
Returns the length of the encrypted data that can be safely read with
Decryptor.getDataStream(org.apache.poi.poifs.filesystem.DirectoryNode) . |
POIFSFileSystem |
getSummaryEntries(DirectoryNode root,
java.lang.String encryptedStream)
Decrypt the Document-/SummaryInformation and other optionally streams.
|
javax.crypto.Cipher |
initCipherForBlock(javax.crypto.Cipher cipher,
int block)
Initializes a cipher object for a given block index for encryption
|
protected static javax.crypto.Cipher |
initCipherForBlock(javax.crypto.Cipher cipher,
int block,
EncryptionInfo encryptionInfo,
javax.crypto.SecretKey skey,
int encryptMode) |
void |
setChunkSize(int chunkSize)
Sets the chunk size of the data stream.
|
boolean |
verifyPassword(java.lang.String password) |
getBlockSizeInBytes, getDataStream, getEncryptionInfo, getInstance, getIntegrityHmacKey, getIntegrityHmacValue, getKeySizeInBytes, getSecretKey, getVerifier, setEncryptionInfo, setIntegrityHmacKey, setIntegrityHmacValue, setSecretKey, setVerifier
public boolean verifyPassword(java.lang.String password)
verifyPassword
in class Decryptor
public javax.crypto.Cipher initCipherForBlock(javax.crypto.Cipher cipher, int block) throws java.security.GeneralSecurityException
Decryptor
initCipherForBlock
in class Decryptor
cipher
- may be null, otherwise the given instance is reset to the new block indexblock
- the block index, e.g. the persist/slide id (hslf)java.security.GeneralSecurityException
- if the cipher can't be initializedprotected static javax.crypto.Cipher initCipherForBlock(javax.crypto.Cipher cipher, int block, EncryptionInfo encryptionInfo, javax.crypto.SecretKey skey, int encryptMode) throws java.security.GeneralSecurityException
java.security.GeneralSecurityException
protected static javax.crypto.SecretKey generateSecretKey(java.lang.String password, EncryptionVerifier ver)
public ChunkedCipherInputStream getDataStream(DirectoryNode dir) throws java.io.IOException, java.security.GeneralSecurityException
Decryptor
Use Decryptor.getLength()
to get the size of that data that can be safely read from the stream.
Just reading to the end of the input stream is not sufficient because there are
normally padding bytes that must be discarded
getDataStream
in class Decryptor
dir
- the node to read fromjava.io.IOException
java.security.GeneralSecurityException
public ChunkedCipherInputStream getDataStream(java.io.InputStream stream, int size, int initialPos) throws java.io.IOException, java.security.GeneralSecurityException
Decryptor
As we are handling streams and don't know the total length beforehand, it's the callers duty to care for the length of the entries.
getDataStream
in class Decryptor
stream
- the stream to be wrappedinitialPos
- initial/current byte position within the streamjava.io.IOException
java.security.GeneralSecurityException
public POIFSFileSystem getSummaryEntries(DirectoryNode root, java.lang.String encryptedStream) throws java.io.IOException, java.security.GeneralSecurityException
Summary entries are only encrypted within cryptoapi encrypted files. Binary RC4 encrypted files use non-encrypted/default property sets
root
- root directory node of the OLE file containing the encrypted propertiesencryptedStream
- name of the encrypted stream -
"encryption" for HSSF/HWPF, "encryptedStream" (or encryptedSummary?) for HSLFjava.io.IOException
java.security.GeneralSecurityException
public long getLength()
Decryptor
Decryptor.getDataStream(org.apache.poi.poifs.filesystem.DirectoryNode)
.
Just reading to the end of the input stream is not sufficient because there are
normally padding bytes that must be discarded
The length variable is initialized in Decryptor.getDataStream(org.apache.poi.poifs.filesystem.DirectoryNode)
,
an attempt to call getLength() prior to getDataStream() will result in IllegalStateException.
getLength
in class Decryptor
getDataStream(DirectoryNode)
public void setChunkSize(int chunkSize)
Decryptor
setChunkSize
in class Decryptor
chunkSize
- the chunk size, i.e. the block size with the same encryption keypublic CryptoAPIDecryptor clone() throws java.lang.CloneNotSupportedException
Copyright 2018 The Apache Software Foundation or its licensors, as applicable.