AttestationObjectLoader::load() - Code Metrics - Inspection of "Unit tests" - Spomky-Labs/u2f-php - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Pull Request — master (#29)

by Florent

created 2018-11-16 22:33 UTC

AttestationObjectLoader::load() A

↳ Parent: AttestationObjectLoader

Complexity

Conditions	4
Paths	5

Size

Total Lines	45
Code Lines	35

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	4
eloc	35
nc	5
nop	1
dl	0
loc	45
rs	9.36
c	0
b	0
f	0

<?php

declare(strict_types=1);

/*
 * The MIT License (MIT)
 *
 * Copyright (c) 2014-2018 Spomky-Labs
 *
 * This software may be modified and distributed under the terms
 * of the MIT license.  See the LICENSE file for details.
 */

namespace U2FAuthentication\Fido2\AttestationStatement;

use Base64Url\Base64Url;
use CBOR\Decoder;
use CBOR\MapObject;
use CBOR\StringStream;
use U2FAuthentication\Fido2\AttestedCredentialData;
use U2FAuthentication\Fido2\AuthenticatorData;

class AttestationObjectLoader
{
    private const FLAG_AT = 0b01000000;
    private const FLAG_ED = 0b10000000;

    private $decoder;

    public function __construct(Decoder $decoder)
    {
        $this->decoder = $decoder;
    }

    public function load(string $data): AttestationObject
    {
        $decodedData = Base64Url::decode($data);
        $stream = new StringStream($decodedData);
        $attestationObject = $this->decoder->decode($stream)->getNormalizedData();
        $authData = $attestationObject['authData'];

        $authDataStream = new StringStream($authData);
        $rp_id_hash = $authDataStream->read(32);
        $flags = $authDataStream->read(1);
        $signCount = $authDataStream->read(4);
        $signCount = unpack('N', $signCount)[1];

        if (\ord($flags) & self::FLAG_AT) {
            $aaguid = $authDataStream->read(16);
            $credentialLength = $authDataStream->read(2);
            $credentialLength = unpack('n', $credentialLength)[1];
            $credentialId = $authDataStream->read($credentialLength);
            $credentialPublicKey = $this->decoder->decode($authDataStream);
            if (!$credentialPublicKey instanceof MapObject) {
                throw new \InvalidArgumentException('The data does not contain a valid credential public key.');
            }
            $attestedCredentialData = new AttestedCredentialData($aaguid, $credentialId, (string) $credentialPublicKey);
        } else {
            $attestedCredentialData = null;
        }

        if (\ord($flags) & self::FLAG_ED) {
            $extension = $this->decoder->decode($authDataStream);
        } else {
            $extension = null;
        }
        $authenticatorData = new AuthenticatorData(
            $authData,
            $rp_id_hash,
            $flags,
            $signCount,
            $attestedCredentialData,
            $extension
        );

        return new AttestationObject(
            $data,
            new AttestationStatement($attestationObject['fmt'], $attestationObject['attStmt']),
            $authenticatorData
        );
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			/*
6			* The MIT License (MIT)
7			*
8			* Copyright (c) 2014-2018 Spomky-Labs
9			*
10			* This software may be modified and distributed under the terms
11			* of the MIT license. See the LICENSE file for details.
12			*/
13
14			namespace U2FAuthentication\Fido2\AttestationStatement;
15
16			use Base64Url\Base64Url;
17			use CBOR\Decoder;
18			use CBOR\MapObject;
19			use CBOR\StringStream;
20			use U2FAuthentication\Fido2\AttestedCredentialData;
21			use U2FAuthentication\Fido2\AuthenticatorData;
22
23			class AttestationObjectLoader
24			{
25			private const FLAG_AT = 0b01000000;
26			private const FLAG_ED = 0b10000000;
27
28			private $decoder;
29
30			public function __construct(Decoder $decoder)
31			{
32			$this->decoder = $decoder;
33			}
34
35			public function load(string $data): AttestationObject
36			{
37			$decodedData = Base64Url::decode($data);
38			$stream = new StringStream($decodedData);
39			$attestationObject = $this->decoder->decode($stream)->getNormalizedData();
40			$authData = $attestationObject['authData'];
41
42			$authDataStream = new StringStream($authData);
43			$rp_id_hash = $authDataStream->read(32);
44			$flags = $authDataStream->read(1);
45			$signCount = $authDataStream->read(4);
46			$signCount = unpack('N', $signCount)[1];
47
48			if (\ord($flags) & self::FLAG_AT) {
49			$aaguid = $authDataStream->read(16);
50			$credentialLength = $authDataStream->read(2);
51			$credentialLength = unpack('n', $credentialLength)[1];
52			$credentialId = $authDataStream->read($credentialLength);
53			$credentialPublicKey = $this->decoder->decode($authDataStream);
54			if (!$credentialPublicKey instanceof MapObject) {
55			throw new \InvalidArgumentException('The data does not contain a valid credential public key.');
56			}
57			$attestedCredentialData = new AttestedCredentialData($aaguid, $credentialId, (string) $credentialPublicKey);
58			} else {
59			$attestedCredentialData = null;
60			}
61
62			if (\ord($flags) & self::FLAG_ED) {
63			$extension = $this->decoder->decode($authDataStream);
64			} else {
65			$extension = null;
66			}
67			$authenticatorData = new AuthenticatorData(
68			$authData,
69			$rp_id_hash,
70			$flags,
71			$signCount,
72			$attestedCredentialData,
73			$extension
74			);
75
76			return new AttestationObject(
77			$data,
78			new AttestationStatement($attestationObject['fmt'], $attestationObject['attStmt']),
79			$authenticatorData
80			);
81			}
82			}
83

Spomky-Labs / u2f-php

Pull Request — master (#29)

AttestationObjectLoader::load() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like