Cryptobase - Code Metrics - Inspection of "Merge pull request #3 from mmeyer2k/2.0.0" - mmeyer2k/dcrypt - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 9455de...3ae3f3 )

by Michael

created 2016-02-22 18:14 UTC

Cryptobase A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	87
Duplicated Lines	0 %

Coupling/Cohesion

Components	0
Dependencies	2

Test Coverage

Coverage

100%

Importance

Changes	6
Bugs	1	Features	0

Metric	Value
wmc	7
c	6
b	1
f	0
lcom	0
cbo	2
dl	0
loc	87
ccs	16
cts	16
cp	1
rs	10

4 Methods

Rating	Name	Size	Complexity
A	checksum()	9	1
A	hashNormalize()	10	2
A	key()	16	2
A	checksumVerify()	7	2

<?php

/**
 * Cryptobase.php
 * 
 * PHP version 5
 * 
 * @category Dcrypt
 * @package  Dcrypt
 * @author   Michael Meyer (mmeyer2k) <[email protected]>
 * @license  http://opensource.org/licenses/MIT The MIT License (MIT)
 * @link     https://github.com/mmeyer2k/dcrypt
 */

namespace Dcrypt;

/**
 * Provides functionality common to Dcrypt's block ciphers.
 * 
 * @category Dcrypt
 * @package  Dcrypt
 * @author   Michael Meyer (mmeyer2k) <[email protected]>
 * @license  http://opensource.org/licenses/MIT The MIT License (MIT)
 * @link     https://github.com/mmeyer2k/dcrypt
 * @link     https://apigen.ci/github/mmeyer2k/dcrypt/namespace-Dcrypt.html
 */
class Cryptobase
{

    /**
     * Create a message authentication checksum.
     * 
     * @param string $cyphertext Cyphertext that needs a check sum.
     * @param string $iv         Initialization vector.
     * @param string $key        HMAC key
     * @param string $cipher     Mcrypt cipher
     * @param string $mode       Mcrypt mode
     * @param string $algo       Hashing algorithm to use for internal operations
     * 
     * @return string
     */
    protected static function checksum($cyphertext, $iv, $key, $cipher = 'rijndael-128', $mode = 'cbc', $algo = 'sha256')
    {
        // Prevent potentially large string concat by hmac-ing the cyphertext
        // by itself...
        $sum = \hash_hmac($algo, $cyphertext, $key, true);

        // ... then hash other elements with previous hmac and return
        return \hash_hmac($algo, $sum . $iv . $mode . $cipher, $key, true);
    }

    /**
     * This will normalize a hash to a certain length by extending it if
     * too short and truncating it if too long. This ensures that any
     * hash algo will work with any combination of other settings. However,
     * it is probably best to make sure that the keysize and algo size
     * are identical so that the input hash passes through unchanged.
     * 
     * @param string $hash Hash to be normalized
     * @param int    $size Size of the desired output hash, in bytes
     * @param string $algo Hashing algorithm to use for internal operations
     * 
     * @return string
     */
    private static function hashNormalize($hash, $size, $algo)
    {
        // Extend hash if too short
        while (Str::strlen($hash) < $size) {
            $hash .= \hash($algo, $hash, true);
        }

        // Truncate to specified number of bytes (if needed) and return
        return Str::substr($hash, 0, $size);
    }

    /**
     * Transform password into key and perform iterative HMAC (if specified)
     * 
     * @param string $password Encryption key
     * @param string $iv       Initialization vector
     * @param int    $cost     Number of HMAC iterations to perform on key
     * @param string $cipher   Mcrypt cipher
     * @param string $mode     Mcrypt block mode
     * @param string $algo     Hashing algorithm to use for internal operations
     * 
     * @return string
     */
    protected static function key($password, $iv, $cost, $cipher = 'rijndael-128', $mode = 'cbc', $algo = 'sha256')
    {
        // This if statement allows the usage of the Openssl library without
        // the need to have the mcrypt plugin installed at all.
        if ($cipher === 'rijndael-128') {
            $keysize = 32;
        } else {
            $keysize = \mcrypt_get_key_size($cipher, $mode);
        }

        // Perform key derivation
        $key = Hash::ihmac($iv . $cipher . $mode, $password, $cost, $algo);

        // Return hash normalized to key length
        return self::hashNormalize($key, $keysize, $algo);
    }

    protected static function checksumVerify($calculated, $supplied)
    {
        if (!Str::equal($calculated, $supplied)) {
            $e = 'Decryption can not proceed due to invalid cyphertext checksum.';
            throw new \InvalidArgumentException($e);
        }
    }

}


1		<?php
2
3		/**
4		* Cryptobase.php
5		*
6		* PHP version 5
7		*
8		* @category Dcrypt
9		* @package Dcrypt
10		* @author Michael Meyer (mmeyer2k) <[email protected]>
11		* @license http://opensource.org/licenses/MIT The MIT License (MIT)
12		* @link https://github.com/mmeyer2k/dcrypt
13		*/
14
15		namespace Dcrypt;
16
17		/**
18		* Provides functionality common to Dcrypt's block ciphers.
19		*
20		* @category Dcrypt
21		* @package Dcrypt
22		* @author Michael Meyer (mmeyer2k) <[email protected]>
23		* @license http://opensource.org/licenses/MIT The MIT License (MIT)
24		* @link https://github.com/mmeyer2k/dcrypt
25		* @link https://apigen.ci/github/mmeyer2k/dcrypt/namespace-Dcrypt.html
26		*/
27		class Cryptobase
28		{
29
30		/**
31		* Create a message authentication checksum.
32		*
33		* @param string $cyphertext Cyphertext that needs a check sum.
34		* @param string $iv Initialization vector.
35		* @param string $key HMAC key
36		* @param string $cipher Mcrypt cipher
37		* @param string $mode Mcrypt mode
38		* @param string $algo Hashing algorithm to use for internal operations
39		*
40		* @return string
41		*/
42	8	protected static function checksum($cyphertext, $iv, $key, $cipher = 'rijndael-128', $mode = 'cbc', $algo = 'sha256')
43		{
44		// Prevent potentially large string concat by hmac-ing the cyphertext
45		// by itself...
46	8	$sum = \hash_hmac($algo, $cyphertext, $key, true);
47
48		// ... then hash other elements with previous hmac and return
49	8	return \hash_hmac($algo, $sum . $iv . $mode . $cipher, $key, true);
50		}
51
52		/**
53		* This will normalize a hash to a certain length by extending it if
54		* too short and truncating it if too long. This ensures that any
55		* hash algo will work with any combination of other settings. However,
56		* it is probably best to make sure that the keysize and algo size
57		* are identical so that the input hash passes through unchanged.
58		*
59		* @param string $hash Hash to be normalized
60		* @param int $size Size of the desired output hash, in bytes
61		* @param string $algo Hashing algorithm to use for internal operations
62		*
63		* @return string
64		*/
65	8	private static function hashNormalize($hash, $size, $algo)
66		{
67		// Extend hash if too short
68	8	while (Str::strlen($hash) < $size) {
69	1	$hash .= \hash($algo, $hash, true);
70	1	}
71
72		// Truncate to specified number of bytes (if needed) and return
73	8	return Str::substr($hash, 0, $size);
74		}
75
76		/**
77		* Transform password into key and perform iterative HMAC (if specified)
78		*
79		* @param string $password Encryption key
80		* @param string $iv Initialization vector
81		* @param int $cost Number of HMAC iterations to perform on key
82		* @param string $cipher Mcrypt cipher
83	10	* @param string $mode Mcrypt block mode
84		* @param string $algo Hashing algorithm to use for internal operations
85	10	*
86		* @return string
87		*/
88		protected static function key($password, $iv, $cost, $cipher = 'rijndael-128', $mode = 'cbc', $algo = 'sha256')
89		{
90		// This if statement allows the usage of the Openssl library without
91		// the need to have the mcrypt plugin installed at all.
92		if ($cipher === 'rijndael-128') {
93		$keysize = 32;
94		} else {
95		$keysize = \mcrypt_get_key_size($cipher, $mode);
96		}
97
98		// Perform key derivation
99		$key = Hash::ihmac($iv . $cipher . $mode, $password, $cost, $algo);
100	8
101		// Return hash normalized to key length
102		return self::hashNormalize($key, $keysize, $algo);
103		}
104	8
105	8	protected static function checksumVerify($calculated, $supplied)
106	8	{
107	1	if (!Str::equal($calculated, $supplied)) {
108		$e = 'Decryption can not proceed due to invalid cyphertext checksum.';
109		throw new \InvalidArgumentException($e);
110		}
111	8	}
112
113		}
114

mmeyer2k / dcrypt

Push — master ( 9455de...3ae3f3 )

Cryptobase A

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

4 Methods

Duplication Side-by-Side

Filter issues like