Encryptor::signature() - Code Metrics - Inspection of "Add files" - mingyoung/dingtalk - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Push — master ( 6d6f78...8010b8 )

by mingyoung

created 2019-04-05 16:25 UTC

Encryptor::signature() A

↳ Parent: Encryptor

Complexity

Conditions	1
Paths	1

Size

Total Lines	6
Code Lines	3

Duplication

Lines	0
Ratio	0 %

Importance

Changes

Metric	Value
cc	1
eloc	3
nc	1
nop	0
dl	0
loc	6
rs	10
c	0
b	0
f	0

<?php

/*
 * This file is part of the mingyoung/dingtalk.
 *
 * (c) 张铭阳 <[email protected]>
 *
 * This source file is subject to the MIT license that is bundled
 * with this source code in the file LICENSE.
 */

namespace EasyDingTalk\Kernel\Encryption;

use function EasyDingTalk\str_random;

class Encryptor
{
    /**
     * @var string
     */
    protected $key;

    /**
     * @var string
     */
    protected $token;

    /**
     * @var string
     */
    protected $aesKey;

    /**
     * @var int
     */
    protected $blockSize = 32;

    /**
     * Encryptor Constructor.
     *
     * @param string $key
     * @param string $token
     * @param string $aesKey
     */
    public function __construct($key, $token, $aesKey)
    {
        $this->key = $key;
        $this->token = $token;
        $this->aesKey = base64_decode($aesKey.'=', true);
    }

    /**
     * Encrypt the data.
     *
     * @param string $data
     * @param string $nonce
     * @param int    $timestamp
     *
     * @return string
     */
    public function encrypt($data, $nonce = null, $timestamp = null)
    {
        $string = str_random().pack('N', strlen($data)).$data.$this->key;

        $result = base64_encode(
            openssl_encrypt($this->pkcs7Pad($string), 'AES-256-CBC', $this->aesKey, OPENSSL_NO_PADDING, substr($this->aesKey, 0, 16))
        );

        !is_null($nonce) || $nonce = uniqid();
        !is_null($timestamp) || $timestamp = time();

        return json_encode([
            'msg_signature' => $this->signature($this->token, $nonce, $timestamp, $result),
            'encrypt' => $result,
            'timeStamp' => $timestamp,
            'nonce' => $nonce,
        ]);
    }

    /**
     * Decrypt the data.
     *
     * @param string $data
     * @param string $signature
     * @param string $nonce
     * @param int    $timestamp
     *
     * @return string
     */
    public function decrypt($data, $signature, $nonce, $timestamp)
    {
        if ($signature !== $this->signature($this->token, $nonce, $timestamp, $data)) {
            throw new \RuntimeException('Invalid Signature.');
        }

        $decrypted = openssl_decrypt(
            base64_decode($data, true), 'AES-256-CBC', $this->aesKey, OPENSSL_NO_PADDING, substr($this->aesKey, 0, 16),
        );

        $result = $this->pkcs7Unpad($decrypted);

        $data = substr($result, 16, strlen($result));

        $contentLen = unpack('N', substr($data, 0, 4))[1];

        if (substr($data, $contentLen + 4) !== $this->key) {
            throw new \RuntimeException('Invalid CorpId.');
        }

        return substr($data, 4, $contentLen);
    }

    /**
     * Get SHA1.
     *
     * @return string
     */
    public function signature()
    {
        $array = func_get_args();
        sort($array, SORT_STRING);

        return sha1(implode($array));
    }

    /**
     * PKCS#7 pad.
     *
     * @param string $text
     *
     * @return string
     */
    public function pkcs7Pad(string $text)
    {
        $padding = $this->blockSize - (strlen($text) % $this->blockSize);
        $pattern = chr($padding);

        return $text.str_repeat($pattern, $padding);
    }

    /**
     * PKCS#7 unpad.
     *
     * @param string $text
     *
     * @return string
     */
    public function pkcs7Unpad(string $text)
    {
        $pad = ord(substr($text, -1));
        if ($pad < 1 || $pad > $this->blockSize) {
            $pad = 0;
        }

        return substr($text, 0, (strlen($text) - $pad));
    }
}


1			<?php
2
3			/*
4			* This file is part of the mingyoung/dingtalk.
5			*
6			* (c) 张铭阳 <[email protected]>
7			*
8			* This source file is subject to the MIT license that is bundled
9			* with this source code in the file LICENSE.
10			*/
11
12			namespace EasyDingTalk\Kernel\Encryption;
13
14			use function EasyDingTalk\str_random;
15
16			class Encryptor
17			{
18			/**
19			* @var string
20			*/
21			protected $key;
22
23			/**
24			* @var string
25			*/
26			protected $token;
27
28			/**
29			* @var string
30			*/
31			protected $aesKey;
32
33			/**
34			* @var int
35			*/
36			protected $blockSize = 32;
37
38			/**
39			* Encryptor Constructor.
40			*
41			* @param string $key
42			* @param string $token
43			* @param string $aesKey
44			*/
45			public function __construct($key, $token, $aesKey)
46			{
47			$this->key = $key;
48			$this->token = $token;
49			$this->aesKey = base64_decode($aesKey.'=', true);
50			}
51
52			/**
53			* Encrypt the data.
54			*
55			* @param string $data
56			* @param string $nonce
57			* @param int $timestamp
58			*
59			* @return string
60			*/
61			public function encrypt($data, $nonce = null, $timestamp = null)
62			{
63			$string = str_random().pack('N', strlen($data)).$data.$this->key;
64
65			$result = base64_encode(
66			openssl_encrypt($this->pkcs7Pad($string), 'AES-256-CBC', $this->aesKey, OPENSSL_NO_PADDING, substr($this->aesKey, 0, 16))
67			);
68
69			!is_null($nonce) \|\| $nonce = uniqid();
70			!is_null($timestamp) \|\| $timestamp = time();
71
72			return json_encode([
73			'msg_signature' => $this->signature($this->token, $nonce, $timestamp, $result),
74			'encrypt' => $result,
75			'timeStamp' => $timestamp,
76			'nonce' => $nonce,
77			]);
78			}
79
80			/**
81			* Decrypt the data.
82			*
83			* @param string $data
84			* @param string $signature
85			* @param string $nonce
86			* @param int $timestamp
87			*
88			* @return string
89			*/
90			public function decrypt($data, $signature, $nonce, $timestamp)
91			{
92			if ($signature !== $this->signature($this->token, $nonce, $timestamp, $data)) {
93			throw new \RuntimeException('Invalid Signature.');
94			}
95
96			$decrypted = openssl_decrypt(
97			base64_decode($data, true), 'AES-256-CBC', $this->aesKey, OPENSSL_NO_PADDING, substr($this->aesKey, 0, 16),
98			);
99
100			$result = $this->pkcs7Unpad($decrypted);
101
102			$data = substr($result, 16, strlen($result));
103
104			$contentLen = unpack('N', substr($data, 0, 4))[1];
105
106			if (substr($data, $contentLen + 4) !== $this->key) {
107			throw new \RuntimeException('Invalid CorpId.');
108			}
109
110			return substr($data, 4, $contentLen);
111			}
112
113			/**
114			* Get SHA1.
115			*
116			* @return string
117			*/
118			public function signature()
119			{
120			$array = func_get_args();
121			sort($array, SORT_STRING);
122
123			return sha1(implode($array));
124			}
125
126			/**
127			* PKCS#7 pad.
128			*
129			* @param string $text
130			*
131			* @return string
132			*/
133			public function pkcs7Pad(string $text)
134			{
135			$padding = $this->blockSize - (strlen($text) % $this->blockSize);
136			$pattern = chr($padding);
137
138			return $text.str_repeat($pattern, $padding);
139			}
140
141			/**
142			* PKCS#7 unpad.
143			*
144			* @param string $text
145			*
146			* @return string
147			*/
148			public function pkcs7Unpad(string $text)
149			{
150			$pad = ord(substr($text, -1));
151			if ($pad < 1 \|\| $pad > $this->blockSize) {
152			$pad = 0;
153			}
154
155			return substr($text, 0, (strlen($text) - $pad));
156			}
157			}
158

mingyoung / dingtalk

Push — master ( 6d6f78...8010b8 )

Encryptor::signature() A

Complexity

Size

Duplication

Importance

Duplication Side-by-Side

Filter issues like