NanoXLSX/NanoXLSX.Core/LegacyPassword_8cs_source.html

/*

 * NanoXLSX is a small .NET library to generate and read XLSX (Microsoft Excel 2007 or newer) files in an easy and native way

 * Copyright Raphael Stoeckli © 2025

 * This library is licensed under the MIT License.

 * You find a copy of the license in project folder or on: http://opensource.org/licenses/MIT

 */


using System;

using System.Collections.Generic;

using System.Runtime.InteropServices;

using System.Security;

using NanoXLSX.Interfaces;

using NanoXLSX.Utils;


namespace NanoXLSX

{


    public class LegacyPassword : IPassword

    {


        public enum PasswordType

        {

            WorkbookProtection,

            WorksheetProtection

        }


        private SecureString password;


        public PasswordType Type { get; set; }


        public string PasswordHash { get; set; }


        public LegacyPassword(PasswordType type)

        {

            this.Type = type;

            this.PasswordHash = null;

        }


        public string GetPassword()

        {

            if (password != null && password.Length > 0)

            {

                return GetPasswordOfSecureString(password);

            }

            return null;

        }


        public void SetPassword(string plainText)

        {

            if (string.IsNullOrEmpty(plainText))

            {

                UnsetPassword();

                return;

            }

            else

            {

                password = GetSecureString(plainText);

                PasswordHash = GenerateLegacyPasswordHash(plainText);

            }

        }


        public void UnsetPassword()

        {

            if (password != null)

            {

                password.Clear();

            }

            PasswordHash = null;

        }


        public bool PasswordIsSet()

        {

            return !string.IsNullOrEmpty(PasswordHash);

        }


        public void CopyFrom(IPassword passwordInstance)

        {

            this.PasswordHash = passwordInstance.PasswordHash;

            this.password = GetSecureString(passwordInstance.GetPassword());

            if (this.GetType() == passwordInstance.GetType())

            {

                this.Type = ((LegacyPassword)passwordInstance).Type;

            }

        }


        public static string GenerateLegacyPasswordHash(string password)

        {

            if (string.IsNullOrEmpty(password)) { return string.Empty; }

            int passwordLength = password.Length;

            int passwordHash = 0;

            char character;

            for (int i = passwordLength; i > 0; i--)

            {

                character = password[i - 1];

                passwordHash = ((passwordHash >> 14) & 0x01) | ((passwordHash << 1) & 0x7fff);

                passwordHash ^= character;

            }

            passwordHash = ((passwordHash >> 14) & 0x01) | ((passwordHash << 1) & 0x7fff);

            passwordHash ^= (0x8000 | ('N' << 8) | 'K');

            passwordHash ^= passwordLength;

            return passwordHash.ToString("X", ParserUtils.InvariantCulture);

        }


        private static SecureString GetSecureString(string plaintextPassword)

        {

            char[] chars;

            if (string.IsNullOrEmpty(plaintextPassword))

            {

#pragma warning disable CA1825 // Suppress: 0-length array allocation (suggestion is not .Net 5.0 compatible)

                chars = new char[0];

#pragma warning restore CA1825 // Suppress: 0-length array allocation

            }

            else

            {

                chars = plaintextPassword.ToCharArray();

            }

            SecureString str = new SecureString();

            foreach (char c in chars)

            {

                str.AppendChar(c);

            }

            return str;

        }


        private static string GetPasswordOfSecureString(SecureString secureString)

        {

            IntPtr unmanagedString = IntPtr.Zero;

            try

            {

                unmanagedString = Marshal.SecureStringToGlobalAllocUnicode(secureString);

                return Marshal.PtrToStringUni(unmanagedString);

            }

            finally

            {

                Marshal.ZeroFreeGlobalAllocUnicode(unmanagedString);

            }

        }


        public override bool Equals(object obj)

        {

            LegacyPassword pwd = (LegacyPassword)obj;

            return obj is LegacyPassword password &&

                   Comparators.CompareSecureStrings(this.password, password.password) &&

                   Type == password.Type &&

                   PasswordHash == password.PasswordHash;

        }


        public override int GetHashCode()

        {

            // The actual password is not considered since its hash is sufficient

            unchecked

            {

                var hashCode = 1034998357;

                hashCode = hashCode * -1521134295 + Type.GetHashCode();

                hashCode = hashCode * -1521134295 + EqualityComparer<string>.Default.GetHashCode(PasswordHash);

                hashCode = hashCode * -1521134295 + PasswordIsSet().GetHashCode();

                return hashCode;

            }

        }


    }


}

NanoXLSX.LegacyPassword.GetHashCode
override int GetHashCode()
Gets the hash code of the password instance. Note that this is not the actual password hash.
Definition LegacyPassword.cs:213

NanoXLSX.LegacyPassword.GetPassword
string GetPassword()
Gets the pain text password.
Definition LegacyPassword.cs:64

NanoXLSX.LegacyPassword.Equals
override bool Equals(object obj)
Returns whether two instances are the same.
Definition LegacyPassword.cs:200

NanoXLSX.LegacyPassword.UnsetPassword
void UnsetPassword()
Removes the password form the current instance.
Definition LegacyPassword.cs:94

NanoXLSX.LegacyPassword.Type
PasswordType Type
Current target type of the password instance.
Definition LegacyPassword.cs:42

NanoXLSX.LegacyPassword.SetPassword
void SetPassword(string plainText)
Sets the current password and calculates the hash.
Definition LegacyPassword.cs:77

NanoXLSX.LegacyPassword.LegacyPassword
LegacyPassword(PasswordType type)
Default constructor with parameter.
Definition LegacyPassword.cs:54

NanoXLSX.LegacyPassword.CopyFrom
void CopyFrom(IPassword passwordInstance)
Copes all data from another class instance.
Definition LegacyPassword.cs:116

NanoXLSX.LegacyPassword.PasswordHash
string PasswordHash
Gets or sets the hashed password.
Definition LegacyPassword.cs:48

NanoXLSX.LegacyPassword.GenerateLegacyPasswordHash
static string GenerateLegacyPasswordHash(string password)
Method to generate a legacy (Excel internal) password hash, to protect workbooks or worksheets This m...
Definition LegacyPassword.cs:132

NanoXLSX.LegacyPassword.PasswordType
PasswordType
Target type of the password.
Definition LegacyPassword.cs:26

NanoXLSX.LegacyPassword.PasswordType.WorksheetProtection
@ WorksheetProtection
Password is used to protect a worksheet.
Definition LegacyPassword.cs:34

NanoXLSX.LegacyPassword.PasswordType.WorkbookProtection
@ WorkbookProtection
Password is used to protect a workbook.
Definition LegacyPassword.cs:30

NanoXLSX.LegacyPassword.PasswordIsSet
bool PasswordIsSet()
Gets whether a password was set.
Definition LegacyPassword.cs:107

NanoXLSX.Utils.Comparators
Class providing general comparator methods.
Definition Comparators.cs:11

NanoXLSX.Utils.Comparators.CompareSecureStrings
static bool CompareSecureStrings(SecureString value1, SecureString value2)
Compares whether the content of two SecureString instances are equal. The comparison method tries to ...
Definition Comparators.cs:24

NanoXLSX.Utils.ParserUtils
Class providing static methods to parse string values to specific types or to print object as languag...
Definition ParserUtils.cs:19

NanoXLSX.Utils.ParserUtils.InvariantCulture
static readonly CultureInfo InvariantCulture
Constant for number conversion. The invariant culture (represents mostly the US numbering scheme) ens...
Definition ParserUtils.cs:33

NanoXLSX.Interfaces.IPassword
Interface to represent a protection password, either for workbooks or worksheets. The implementations...
Definition IPassword.cs:14

NanoXLSX.Interfaces.IPassword.PasswordHash
string PasswordHash
Gets or sets the password hash.
Definition IPassword.cs:18

NanoXLSX.Interfaces.IPassword.GetPassword
string GetPassword()
Gets the password as plain text.

NanoXLSX.Interfaces
Definition IColor.cs:9

NanoXLSX.Utils
Definition Comparators.cs:6

NanoXLSX
Definition Address.cs:11