RSACrypt - Code Metrics - Spomky-Labs/jose - Measure and Improve Code Quality continuously with Scrutinizer

RSACrypt B
last analyzed 2017-10-05 20:43 UTC

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	343
Duplicated Lines	0 %

Coupling/Cohesion

Components	1
Dependencies	3

Importance

Changes

Metric	Value
wmc	41
lcom	1
cbo	3
dl	0
loc	343
rs	8.2769
c	0
b	0
f	0

14 Methods

Rating	Name	Size	Complexity
A	encrypt()	11	3
A	decrypt()	11	3
B	encryptWithRSA15()	24	3
B	decryptWithRSA15()	26	6
A	encryptWithRSAOAEP()	16	3
A	decryptWithRSAOAEP()	16	3
A	convertIntegerToOctetString()	9	2
A	convertOctetStringToInteger()	4	1
B	exponentiate()	19	5
A	getRSAEP()	8	3
A	getRSADP()	8	3
A	getMGF1()	11	2
A	encryptRSAESOAEP()	19	1
B	getRSAESOAEP()	24	3

How to fix Complexity

<?php

declare(strict_types=1);

/*
 * The MIT License (MIT)
 *
 * Copyright (c) 2014-2017 Spomky-Labs
 *
 * This software may be modified and distributed under the terms
 * of the MIT license.  See the LICENSE file for details.
 */

namespace Jose\Component\Encryption\Util;

use Jose\Component\Core\Util\BigInteger;
use Jose\Component\Core\Util\Hash;
use Jose\Component\Core\Util\RSAKey;

/**
 * Class RSACrypt.
 */
final class RSACrypt
{
    /**
     * Optimal Asymmetric Encryption Padding (OAEP).
     */
    public const ENCRYPTION_OAEP = 1;

    /**
     * Use PKCS#1 padding.
     */
    public const ENCRYPTION_PKCS1 = 2;

    /**
     * @param RSAKey      $key
     * @param string      $data
     * @param int         $mode
     * @param null|string $hash
     *
     * @return string
     */
    public static function encrypt(RSAKey $key, string $data, int $mode, ?string $hash = null): string
    {
        switch ($mode) {
            case self::ENCRYPTION_OAEP:
                return self::encryptWithRSAOAEP($key, $data, $hash);
            case self::ENCRYPTION_PKCS1:
                return self::encryptWithRSA15($key, $data);
            default:
                throw new \InvalidArgumentException('Unsupported mode.');
        }
    }

    /**
     * @param RSAKey      $key
     * @param string      $plaintext
     * @param int         $mode
     * @param null|string $hash
     *
     * @return string
     */
    public static function decrypt(RSAKey $key, string $plaintext, int $mode, ?string $hash = null): string
    {
        switch ($mode) {
            case self::ENCRYPTION_OAEP:
                return self::decryptWithRSAOAEP($key, $plaintext, $hash);
            case self::ENCRYPTION_PKCS1:
                return self::decryptWithRSA15($key, $plaintext);
            default:
                throw new \InvalidArgumentException('Unsupported mode.');
        }
    }

    /**
     * @param RSAKey $key
     * @param string $data
     *
     * @return string
     */
    public static function encryptWithRSA15(RSAKey $key, string $data): string
    {
        $mLen = mb_strlen($data, '8bit');

        if ($mLen > $key->getModulusLength() - 11) {
            throw new \InvalidArgumentException('Message too long');
        }

        $psLen = $key->getModulusLength() - $mLen - 3;
        $ps = '';
        while (mb_strlen($ps, '8bit') !== $psLen) {
            $temp = random_bytes($psLen - mb_strlen($ps, '8bit'));
            $temp = str_replace("\x00", '', $temp);
            $ps .= $temp;
        }
        $type = 2;
        $data = chr(0).chr($type).$ps.chr(0).$data;

        $data = BigInteger::createFromBinaryString($data);
        $c = self::getRSAEP($key, $data);
        $c = self::convertIntegerToOctetString($c, $key->getModulusLength());

        return $c;
    }

    /**
     * @param RSAKey $key
     * @param string $c
     *
     * @return string
     */
    public static function decryptWithRSA15(RSAKey $key, string $c): string
    {
        if (mb_strlen($c, '8bit') !== $key->getModulusLength()) {
            throw new \InvalidArgumentException('Unable to decrypt');
        }

        $c = BigInteger::createFromBinaryString($c);
        $m = self::getRSADP($key, $c);
        $em = self::convertIntegerToOctetString($m, $key->getModulusLength());
        if ($em === false) {
            throw new \InvalidArgumentException('Unable to decrypt');
        }

        if (ord($em[0]) != 0 || ord($em[1]) > 2) {
            throw new \InvalidArgumentException('Unable to decrypt');
        }

        $ps = mb_substr($em, 2, mb_strpos($em, chr(0), 2, '8bit') - 2, '8bit');
        $m = mb_substr($em, mb_strlen($ps, '8bit') + 3, null, '8bit');

        if (mb_strlen($ps, '8bit') < 8) {
            throw new \InvalidArgumentException('Unable to decrypt');
        }

        return $m;
    }

    /**
     * Encryption.
     *
     * @param RSAKey $key
     * @param string $plaintext
     * @param string $hash_algorithm
     *
     * @return string
     */
    public static function encryptWithRSAOAEP(RSAKey $key, string $plaintext, string $hash_algorithm): string
    {
        /** @var Hash $hash */
        $hash = Hash::$hash_algorithm();
        $length = $key->getModulusLength() - 2 * $hash->getLength() - 2;
        if (0 >= $length) {
            throw new \RuntimeException();
        }
        $plaintext = str_split($plaintext, $length);
        $ciphertext = '';
        foreach ($plaintext as $m) {
            $ciphertext .= self::encryptRSAESOAEP($key, $m, $hash);
        }

        return $ciphertext;
    }

    /**
     * Decryption.
     *
     * @param RSAKey $key
     * @param string $ciphertext
     * @param string $hash_algorithm
     *
     * @return string
     */
    public static function decryptWithRSAOAEP(RSAKey $key, string $ciphertext, string $hash_algorithm): string
    {
        if (0 >= $key->getModulusLength()) {
            throw new \RuntimeException();
        }
        $hash = Hash::$hash_algorithm();
        $ciphertext = str_split($ciphertext, $key->getModulusLength());
        $ciphertext[count($ciphertext) - 1] = str_pad($ciphertext[count($ciphertext) - 1], $key->getModulusLength(), chr(0), STR_PAD_LEFT);
        $plaintext = '';
        foreach ($ciphertext as $c) {
            $temp = self::getRSAESOAEP($key, $c, $hash);
            $plaintext .= $temp;
        }

        return $plaintext;
    }

    /**
     * @param BigInteger $x
     * @param int        $xLen
     *
     * @return string
     */
    private static function convertIntegerToOctetString(BigInteger $x, int $xLen): string
    {
        $x = $x->toBytes();
        if (mb_strlen($x, '8bit') > $xLen) {
            throw new \RuntimeException('Invalid length.');
        }

        return str_pad($x, $xLen, chr(0), STR_PAD_LEFT);
    }

    /**
     * Octet-String-to-Integer primitive.
     *
     * @param string $x
     *
     * @return BigInteger
     */
    private static function convertOctetStringToInteger(string $x): BigInteger
    {
        return BigInteger::createFromBinaryString($x);
    }

    /**
     * Exponentiate with or without Chinese Remainder Theorem.
     * Operation with primes 'p' and 'q' is appox. 2x faster.
     *
     * @param RSAKey     $key
     * @param BigInteger $c
     *
     * @return BigInteger
     */
    private static function exponentiate(RSAKey $key, BigInteger $c): BigInteger
    {
        if ($key->isPublic() || empty($key->getPrimes()) || empty($key->getExponents()) || null === $key->getCoefficient()) {
            return $c->modPow($key->getExponent(), $key->getModulus());
        }

        $p = $key->getPrimes()[0];
        $q = $key->getPrimes()[1];
        $dP = $key->getExponents()[0];
        $dQ = $key->getExponents()[1];
        $qInv = $key->getCoefficient();

        $m1 = $c->modPow($dP, $p);
        $m2 = $c->modPow($dQ, $q);
        $h = $qInv->multiply($m1->subtract($m2)->add($p))->mod($p);
        $m = $m2->add($h->multiply($q));

        return $m;
    }

    /**
     * RSA EP.
     *
     * @param RSAKey     $key
     * @param BigInteger $m
     *
     * @return BigInteger
     */
    private static function getRSAEP(RSAKey $key, BigInteger $m): BigInteger
    {
        if ($m->compare(BigInteger::createFromDecimal(0)) < 0 || $m->compare($key->getModulus()) > 0) {
            throw new \RuntimeException();
        }

        return self::exponentiate($key, $m);
    }

    /**
     * RSA DP.
     *
     * @param RSAKey     $key
     * @param BigInteger $c
     *
     * @return BigInteger
     */
    private static function getRSADP(RSAKey $key, BigInteger $c): BigInteger
    {
        if ($c->compare(BigInteger::createFromDecimal(0)) < 0 || $c->compare($key->getModulus()) > 0) {
            throw new \RuntimeException();
        }

        return self::exponentiate($key, $c);
    }

    /**
     * MGF1.
     *
     * @param string $mgfSeed
     * @param int    $maskLen
     * @param Hash   $mgfHash
     *
     * @return string
     */
    private static function getMGF1(string $mgfSeed, int $maskLen, Hash $mgfHash): string
    {
        $t = '';
        $count = ceil($maskLen / $mgfHash->getLength());
        for ($i = 0; $i < $count; ++$i) {
            $c = pack('N', $i);
            $t .= $mgfHash->hash($mgfSeed.$c);
        }

        return mb_substr($t, 0, $maskLen, '8bit');
    }

    /**
     * RSAES-OAEP-ENCRYPT.
     *
     * @param RSAKey $key
     * @param string $m
     * @param Hash   $hash
     *
     * @return string
     */
    private static function encryptRSAESOAEP(RSAKey $key, string $m, Hash $hash): string
    {
        $mLen = mb_strlen($m, '8bit');
        $lHash = $hash->hash('');
        $ps = str_repeat(chr(0), $key->getModulusLength() - $mLen - 2 * $hash->getLength() - 2);
        $db = $lHash.$ps.chr(1).$m;
        $seed = random_bytes($hash->getLength());
        $dbMask = self::getMGF1($seed, $key->getModulusLength() - $hash->getLength() - 1, $hash/*MGF*/);
        $maskedDB = strval($db ^ $dbMask);
        $seedMask = self::getMGF1($maskedDB, $hash->getLength(), $hash/*MGF*/);
        $maskedSeed = $seed ^ $seedMask;
        $em = chr(0).$maskedSeed.$maskedDB;

        $m = self::convertOctetStringToInteger($em);
        $c = self::getRSAEP($key, $m);
        $c = self::convertIntegerToOctetString($c, $key->getModulusLength());

        return $c;
    }

    /**
     * RSAES-OAEP-DECRYPT.
     *
     * @param RSAKey $key
     * @param string $c
     * @param Hash   $hash
     *
     * @return string
     */
    private static function getRSAESOAEP(RSAKey $key, string $c, Hash $hash): string
    {
        $c = self::convertOctetStringToInteger($c);
        $m = self::getRSADP($key, $c);
        $em = self::convertIntegerToOctetString($m, $key->getModulusLength());
        $lHash = $hash->hash('');
        $maskedSeed = mb_substr($em, 1, $hash->getLength(), '8bit');
        $maskedDB = mb_substr($em, $hash->getLength() + 1, null, '8bit');
        $seedMask = self::getMGF1($maskedDB, $hash->getLength(), $hash/*MGF*/);
        $seed = strval($maskedSeed ^ $seedMask);
        $dbMask = self::getMGF1($seed, $key->getModulusLength() - $hash->getLength() - 1, $hash/*MGF*/);
        $db = $maskedDB ^ $dbMask;
        $lHash2 = mb_substr($db, 0, $hash->getLength(), '8bit');
        $m = mb_substr($db, $hash->getLength(), null, '8bit');
        if (!hash_equals($lHash, $lHash2)) {
            throw new \RuntimeException();
        }
        $m = ltrim($m, chr(0));
        if (1 !== ord($m[0])) {
            throw new \RuntimeException();
        }

        return mb_substr($m, 1, null, '8bit');
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* The MIT License (MIT)
7			*
8			* Copyright (c) 2014-2017 Spomky-Labs
9			*
10			* This software may be modified and distributed under the terms
11			* of the MIT license. See the LICENSE file for details.
12			*/
13
14			namespace Jose\Component\Encryption\Util;
15
16			use Jose\Component\Core\Util\BigInteger;
17			use Jose\Component\Core\Util\Hash;
18			use Jose\Component\Core\Util\RSAKey;
19
20			/**
21			* Class RSACrypt.
22			*/
23			final class RSACrypt
24			{
25			/**
26			* Optimal Asymmetric Encryption Padding (OAEP).
27			*/
28			public const ENCRYPTION_OAEP = 1;
29
30			/**
31			* Use PKCS#1 padding.
32			*/
33			public const ENCRYPTION_PKCS1 = 2;
34
35			/**
36			* @param RSAKey $key
37			* @param string $data
38			* @param int $mode
39			* @param null\|string $hash
40			*
41			* @return string
42			*/
43			public static function encrypt(RSAKey $key, string $data, int $mode, ?string $hash = null): string
44			{
45			switch ($mode) {
46			case self::ENCRYPTION_OAEP:
47			return self::encryptWithRSAOAEP($key, $data, $hash);
48			case self::ENCRYPTION_PKCS1:
49			return self::encryptWithRSA15($key, $data);
50			default:
51			throw new \InvalidArgumentException('Unsupported mode.');
52			}
53			}
54
55			/**
56			* @param RSAKey $key
57			* @param string $plaintext
58			* @param int $mode
59			* @param null\|string $hash
60			*
61			* @return string
62			*/
63			public static function decrypt(RSAKey $key, string $plaintext, int $mode, ?string $hash = null): string
64			{
65			switch ($mode) {
66			case self::ENCRYPTION_OAEP:
67			return self::decryptWithRSAOAEP($key, $plaintext, $hash);
68			case self::ENCRYPTION_PKCS1:
69			return self::decryptWithRSA15($key, $plaintext);
70			default:
71			throw new \InvalidArgumentException('Unsupported mode.');
72			}
73			}
74
75			/**
76			* @param RSAKey $key
77			* @param string $data
78			*
79			* @return string
80			*/
81			public static function encryptWithRSA15(RSAKey $key, string $data): string
82			{
83			$mLen = mb_strlen($data, '8bit');
84
85			if ($mLen > $key->getModulusLength() - 11) {
86			throw new \InvalidArgumentException('Message too long');
87			}
88
89			$psLen = $key->getModulusLength() - $mLen - 3;
90			$ps = '';
91			while (mb_strlen($ps, '8bit') !== $psLen) {
92			$temp = random_bytes($psLen - mb_strlen($ps, '8bit'));
93			$temp = str_replace("\x00", '', $temp);
94			$ps .= $temp;
95			}
96			$type = 2;
97			$data = chr(0).chr($type).$ps.chr(0).$data;
98
99			$data = BigInteger::createFromBinaryString($data);
100			$c = self::getRSAEP($key, $data);
101			$c = self::convertIntegerToOctetString($c, $key->getModulusLength());
102
103			return $c;
104			}
105
106			/**
107			* @param RSAKey $key
108			* @param string $c
109			*
110			* @return string
111			*/
112			public static function decryptWithRSA15(RSAKey $key, string $c): string
113			{
114			if (mb_strlen($c, '8bit') !== $key->getModulusLength()) {
115			throw new \InvalidArgumentException('Unable to decrypt');
116			}
117
118			$c = BigInteger::createFromBinaryString($c);
119			$m = self::getRSADP($key, $c);
120			$em = self::convertIntegerToOctetString($m, $key->getModulusLength());
121			if ($em === false) {
122			throw new \InvalidArgumentException('Unable to decrypt');
123			}
124
125			if (ord($em[0]) != 0 \|\| ord($em[1]) > 2) {
126			throw new \InvalidArgumentException('Unable to decrypt');
127			}
128
129			$ps = mb_substr($em, 2, mb_strpos($em, chr(0), 2, '8bit') - 2, '8bit');
130			$m = mb_substr($em, mb_strlen($ps, '8bit') + 3, null, '8bit');
131
132			if (mb_strlen($ps, '8bit') < 8) {
133			throw new \InvalidArgumentException('Unable to decrypt');
134			}
135
136			return $m;
137			}
138
139			/**
140			* Encryption.
141			*
142			* @param RSAKey $key
143			* @param string $plaintext
144			* @param string $hash_algorithm
145			*
146			* @return string
147			*/
148			public static function encryptWithRSAOAEP(RSAKey $key, string $plaintext, string $hash_algorithm): string
149			{
150			/** @var Hash $hash */
151			$hash = Hash::$hash_algorithm();
152			$length = $key->getModulusLength() - 2 * $hash->getLength() - 2;
153			if (0 >= $length) {
154			throw new \RuntimeException();
155			}
156			$plaintext = str_split($plaintext, $length);
157			$ciphertext = '';
158			foreach ($plaintext as $m) {
159			$ciphertext .= self::encryptRSAESOAEP($key, $m, $hash);
160			}
161
162			return $ciphertext;
163			}
164
165			/**
166			* Decryption.
167			*
168			* @param RSAKey $key
169			* @param string $ciphertext
170			* @param string $hash_algorithm
171			*
172			* @return string
173			*/
174			public static function decryptWithRSAOAEP(RSAKey $key, string $ciphertext, string $hash_algorithm): string
175			{
176			if (0 >= $key->getModulusLength()) {
177			throw new \RuntimeException();
178			}
179			$hash = Hash::$hash_algorithm();
180			$ciphertext = str_split($ciphertext, $key->getModulusLength());
181			$ciphertext[count($ciphertext) - 1] = str_pad($ciphertext[count($ciphertext) - 1], $key->getModulusLength(), chr(0), STR_PAD_LEFT);
182			$plaintext = '';
183			foreach ($ciphertext as $c) {
184			$temp = self::getRSAESOAEP($key, $c, $hash);
185			$plaintext .= $temp;
186			}
187
188			return $plaintext;
189			}
190
191			/**
192			* @param BigInteger $x
193			* @param int $xLen
194			*
195			* @return string
196			*/
197			private static function convertIntegerToOctetString(BigInteger $x, int $xLen): string
198			{
199			$x = $x->toBytes();
200			if (mb_strlen($x, '8bit') > $xLen) {
201			throw new \RuntimeException('Invalid length.');
202			}
203
204			return str_pad($x, $xLen, chr(0), STR_PAD_LEFT);
205			}
206
207			/**
208			* Octet-String-to-Integer primitive.
209			*
210			* @param string $x
211			*
212			* @return BigInteger
213			*/
214			private static function convertOctetStringToInteger(string $x): BigInteger
215			{
216			return BigInteger::createFromBinaryString($x);
217			}
218
219			/**
220			* Exponentiate with or without Chinese Remainder Theorem.
221			* Operation with primes 'p' and 'q' is appox. 2x faster.
222			*
223			* @param RSAKey $key
224			* @param BigInteger $c
225			*
226			* @return BigInteger
227			*/
228			private static function exponentiate(RSAKey $key, BigInteger $c): BigInteger
229			{
230			if ($key->isPublic() \|\| empty($key->getPrimes()) \|\| empty($key->getExponents()) \|\| null === $key->getCoefficient()) {
231			return $c->modPow($key->getExponent(), $key->getModulus());
232			}
233
234			$p = $key->getPrimes()[0];
235			$q = $key->getPrimes()[1];
236			$dP = $key->getExponents()[0];
237			$dQ = $key->getExponents()[1];
238			$qInv = $key->getCoefficient();
239
240			$m1 = $c->modPow($dP, $p);
241			$m2 = $c->modPow($dQ, $q);
242			$h = $qInv->multiply($m1->subtract($m2)->add($p))->mod($p);
243			$m = $m2->add($h->multiply($q));
244
245			return $m;
246			}
247
248			/**
249			* RSA EP.
250			*
251			* @param RSAKey $key
252			* @param BigInteger $m
253			*
254			* @return BigInteger
255			*/
256			private static function getRSAEP(RSAKey $key, BigInteger $m): BigInteger
257			{
258			if ($m->compare(BigInteger::createFromDecimal(0)) < 0 \|\| $m->compare($key->getModulus()) > 0) {
259			throw new \RuntimeException();
260			}
261
262			return self::exponentiate($key, $m);
263			}
264
265			/**
266			* RSA DP.
267			*
268			* @param RSAKey $key
269			* @param BigInteger $c
270			*
271			* @return BigInteger
272			*/
273			private static function getRSADP(RSAKey $key, BigInteger $c): BigInteger
274			{
275			if ($c->compare(BigInteger::createFromDecimal(0)) < 0 \|\| $c->compare($key->getModulus()) > 0) {
276			throw new \RuntimeException();
277			}
278
279			return self::exponentiate($key, $c);
280			}
281
282			/**
283			* MGF1.
284			*
285			* @param string $mgfSeed
286			* @param int $maskLen
287			* @param Hash $mgfHash
288			*
289			* @return string
290			*/
291			private static function getMGF1(string $mgfSeed, int $maskLen, Hash $mgfHash): string
292			{
293			$t = '';
294			$count = ceil($maskLen / $mgfHash->getLength());
295			for ($i = 0; $i < $count; ++$i) {
296			$c = pack('N', $i);
297			$t .= $mgfHash->hash($mgfSeed.$c);
298			}
299
300			return mb_substr($t, 0, $maskLen, '8bit');
301			}
302
303			/**
304			* RSAES-OAEP-ENCRYPT.
305			*
306			* @param RSAKey $key
307			* @param string $m
308			* @param Hash $hash
309			*
310			* @return string
311			*/
312			private static function encryptRSAESOAEP(RSAKey $key, string $m, Hash $hash): string
313			{
314			$mLen = mb_strlen($m, '8bit');
315			$lHash = $hash->hash('');
316			$ps = str_repeat(chr(0), $key->getModulusLength() - $mLen - 2 * $hash->getLength() - 2);
317			$db = $lHash.$ps.chr(1).$m;
318			$seed = random_bytes($hash->getLength());
319			$dbMask = self::getMGF1($seed, $key->getModulusLength() - $hash->getLength() - 1, $hash/MGF/);
320			$maskedDB = strval($db ^ $dbMask);
321			$seedMask = self::getMGF1($maskedDB, $hash->getLength(), $hash/MGF/);
322			$maskedSeed = $seed ^ $seedMask;
323			$em = chr(0).$maskedSeed.$maskedDB;
324
325			$m = self::convertOctetStringToInteger($em);
326			$c = self::getRSAEP($key, $m);
327			$c = self::convertIntegerToOctetString($c, $key->getModulusLength());
328
329			return $c;
330			}
331
332			/**
333			* RSAES-OAEP-DECRYPT.
334			*
335			* @param RSAKey $key
336			* @param string $c
337			* @param Hash $hash
338			*
339			* @return string
340			*/
341			private static function getRSAESOAEP(RSAKey $key, string $c, Hash $hash): string
342			{
343			$c = self::convertOctetStringToInteger($c);
344			$m = self::getRSADP($key, $c);
345			$em = self::convertIntegerToOctetString($m, $key->getModulusLength());
346			$lHash = $hash->hash('');
347			$maskedSeed = mb_substr($em, 1, $hash->getLength(), '8bit');
348			$maskedDB = mb_substr($em, $hash->getLength() + 1, null, '8bit');
349			$seedMask = self::getMGF1($maskedDB, $hash->getLength(), $hash/MGF/);
350			$seed = strval($maskedSeed ^ $seedMask);
351			$dbMask = self::getMGF1($seed, $key->getModulusLength() - $hash->getLength() - 1, $hash/MGF/);
352			$db = $maskedDB ^ $dbMask;
353			$lHash2 = mb_substr($db, 0, $hash->getLength(), '8bit');
354			$m = mb_substr($db, $hash->getLength(), null, '8bit');
355			if (!hash_equals($lHash, $lHash2)) {
356			throw new \RuntimeException();
357			}
358			$m = ltrim($m, chr(0));
359			if (1 !== ord($m[0])) {
360			throw new \RuntimeException();
361			}
362
363			return mb_substr($m, 1, null, '8bit');
364			}
365			}
366

Spomky-Labs / jose

RSACrypt B last analyzed 2017-10-05 20:43 UTC

Complexity

Size/Duplication

Coupling/Cohesion

Importance

14 Methods

How to fix Complexity

Complex Class

Duplication Side-by-Side

Filter issues like

RSACrypt B
last analyzed 2017-10-05 20:43 UTC