RequestValidationTest::testDetectsInvalidSignature() - Code Metrics - bip70/bip70-php - Measure and Improve Code Quality continuously with Scrutinizer

testDetectsInvalidSignature() A
last analyzed 2018-06-28 17:24 UTC

↳ Parent: RequestValidationTest

Complexity

Conditions	1
Paths	1

Size

Total Lines

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
dl	0
loc	18
rs	9.6666
c	0
b	0
f	0
cc	1
nc	1
nop	0

<?php

declare(strict_types=1);

namespace Bip70\Test\X509;

use Bip70\Exception\X509Exception;
use Bip70\Protobuf\Proto\PaymentRequest;
use Bip70\Protobuf\Proto\X509Certificates;
use Bip70\X509\Exception\InvalidCertificateChainException;
use Bip70\X509\Exception\InvalidX509Signature;
use Bip70\X509\PKIType;
use Bip70\X509\QualifiedCertificate;
use Bip70\X509\RequestValidation;
use PHPUnit\Framework\TestCase;
use Sop\CryptoEncoding\PEM;
use X509\Certificate\Certificate;
use X509\Certificate\CertificateBundle;

class RequestValidationTest extends TestCase
{
    public function testValidateX509DetailsRequiresSignatureType()
    {
        $request = new PaymentRequest();
        $request->setPkiType(PKIType::NONE);

        $validator = new RequestValidation();

        $this->expectException(X509Exception::class);
        $this->expectExceptionMessage("Cannot verify a request without a signature. You should check before calling verify.");

        $validator->verifyX509Details($request);
    }

    public function testValidateX509SignatureRequiresSignatureType()
    {
        $request = new PaymentRequest();
        $request->setPkiType(PKIType::NONE);

        $validator = new RequestValidation();
        $certificate = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));

        $this->expectException(X509Exception::class);
        $this->expectExceptionMessage("Unknown signature scheme");

        $validator->validateX509Signature($certificate, $request);
    }

    public function testValidateCertificateChainRequiresCertificates()
    {
        $x509 = new X509Certificates();
        $validator = new RequestValidation();

        $this->expectException(InvalidCertificateChainException::class);
        $this->expectExceptionMessage("No certificates in bundle");

        $validator->validateCertificateChain($x509);
    }

    public function testSelfSignedChainValidationFails()
    {
        $cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
        $x509Certs = new X509Certificates();
        $x509Certs->addCertificate($cert->toDER());

        $validator = new RequestValidation();

        $this->expectException(\RuntimeException::class);
        $this->expectExceptionMessage("No certification paths");

        $validator->validateCertificateChain($x509Certs);
    }

    public function testSelfSignedChainValidationSucceedsIfInStore()
    {
        $cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
        $trustStore = new CertificateBundle($cert);
        $x509Certs = new X509Certificates();
        $x509Certs->addCertificate($cert->toDER());

        $validator = new RequestValidation(null, $trustStore);

        $result = $validator->validateCertificateChain($x509Certs);
        $this->assertInstanceOf(QualifiedCertificate::class, $result);
    }

    public function testDetectsInvalidSignature()
    {
        $cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
        $x509 = new X509Certificates();
        $x509->addCertificate($cert);

        $request = new PaymentRequest();
        $request->setPkiType(PKIType::X509_SHA1);
        $request->setPkiData($x509->serialize());
        $request->setSignature("invalid signature");
        $request->setSerializedPaymentDetails("serialized details aren't checked");

        $validator = new RequestValidation();

        $this->expectException(InvalidX509Signature::class);

        $validator->validateX509Signature($cert, $request);
    }
}


1			<?php
2
3			declare(strict_types=1);
4
5			namespace Bip70\Test\X509;
6
7			use Bip70\Exception\X509Exception;
8			use Bip70\Protobuf\Proto\PaymentRequest;
9			use Bip70\Protobuf\Proto\X509Certificates;
10			use Bip70\X509\Exception\InvalidCertificateChainException;
11			use Bip70\X509\Exception\InvalidX509Signature;
12			use Bip70\X509\PKIType;
13			use Bip70\X509\QualifiedCertificate;
14			use Bip70\X509\RequestValidation;
15			use PHPUnit\Framework\TestCase;
16			use Sop\CryptoEncoding\PEM;
17			use X509\Certificate\Certificate;
18			use X509\Certificate\CertificateBundle;
19
20			class RequestValidationTest extends TestCase
21			{
22			public function testValidateX509DetailsRequiresSignatureType()
23			{
24			$request = new PaymentRequest();
25			$request->setPkiType(PKIType::NONE);
26
27			$validator = new RequestValidation();
28
29			$this->expectException(X509Exception::class);
30			$this->expectExceptionMessage("Cannot verify a request without a signature. You should check before calling verify.");
31
32			$validator->verifyX509Details($request);
33			}
34
35			public function testValidateX509SignatureRequiresSignatureType()
36			{
37			$request = new PaymentRequest();
38			$request->setPkiType(PKIType::NONE);
39
40			$validator = new RequestValidation();
41			$certificate = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
42
43			$this->expectException(X509Exception::class);
44			$this->expectExceptionMessage("Unknown signature scheme");
45
46			$validator->validateX509Signature($certificate, $request);
47			}
48
49			public function testValidateCertificateChainRequiresCertificates()
50			{
51			$x509 = new X509Certificates();
52			$validator = new RequestValidation();
53
54			$this->expectException(InvalidCertificateChainException::class);
55			$this->expectExceptionMessage("No certificates in bundle");
56
57			$validator->validateCertificateChain($x509);
58			}
59
60			public function testSelfSignedChainValidationFails()
61			{
62			$cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
63			$x509Certs = new X509Certificates();
64			$x509Certs->addCertificate($cert->toDER());
65
66			$validator = new RequestValidation();
67
68			$this->expectException(\RuntimeException::class);
69			$this->expectExceptionMessage("No certification paths");
70
71			$validator->validateCertificateChain($x509Certs);
72			}
73
74			public function testSelfSignedChainValidationSucceedsIfInStore()
75			{
76			$cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
77			$trustStore = new CertificateBundle($cert);
78			$x509Certs = new X509Certificates();
79			$x509Certs->addCertificate($cert->toDER());
80
81			$validator = new RequestValidation(null, $trustStore);
82
83			$result = $validator->validateCertificateChain($x509Certs);
84			$this->assertInstanceOf(QualifiedCertificate::class, $result);
85			}
86
87			public function testDetectsInvalidSignature()
88			{
89			$cert = Certificate::fromPEM(PEM::fromFile(__DIR__ . "/../../data/selfsigned.cert.pem"));
90			$x509 = new X509Certificates();
91			$x509->addCertificate($cert);
92
93			$request = new PaymentRequest();
94			$request->setPkiType(PKIType::X509_SHA1);
95			$request->setPkiData($x509->serialize());
96			$request->setSignature("invalid signature");
97			$request->setSerializedPaymentDetails("serialized details aren't checked");
98
99			$validator = new RequestValidation();
100
101			$this->expectException(InvalidX509Signature::class);
102
103			$validator->validateX509Signature($cert, $request);
104			}
105			}
106

bip70 / bip70-php

testDetectsInvalidSignature() A last analyzed 2018-06-28 17:24 UTC

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like

testDetectsInvalidSignature() A
last analyzed 2018-06-28 17:24 UTC