OpenSSLSignatureAlgorithm - Code Metrics - Inspection of "Remove abstract constructor" - sop/jwx - Measure and Improve Code Quality continuously with Scrutinizer

Completed

Push — master ( 74ce6a...af33f1 )

by Joni

created 2016-06-14 07:45 UTC

OpenSSLSignatureAlgorithm A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	73
Duplicated Lines	9.59 %

Coupling/Cohesion

Components	1
Dependencies	3

Test Coverage

Coverage

100%

Importance

Changes	1
Bugs	0	Features	1

Metric	Value
wmc	10
c	1
b	0
f	1
lcom	1
cbo	3
dl	7
loc	73
ccs	28
cts	28
cp	1
rs	10

4 Methods

Rating	Name	Duplication	Size	Complexity
	_mdMethod()	0	1	?
A	computeSignature()	0	21	4
A	validateSignature()	0	14	4
A	_getLastOpenSSLError()	7	7	2

How to fix Duplicated Code

<?php

namespace JWX\JWS\Algorithm;

use JWX\JWK\Feature\AsymmetricPrivateKey;
use JWX\JWK\Feature\AsymmetricPublicKey;
use JWX\JWS\SignatureAlgorithm;


/**
 * Base class for algorithms employing asymmetric signature computation
 * using OpenSSL extension.
 */
abstract class OpenSSLSignatureAlgorithm implements SignatureAlgorithm
{
	/**
	 * Public key.
	 *
	 * @var AsymmetricPublicKey $_publicKey
	 */
	protected $_publicKey;
	
	/**
	 * Private key.
	 *
	 * @var AsymmetricPrivateKey|null $_privateKey
	 */
	protected $_privateKey;
	
	/**
	 * Get the message digest method name supported by OpenSSL.
	 *
	 * @return string
	 */
	abstract protected function _mdMethod();
	
	public function computeSignature($data) {
		/**
		 * NOTE: OpenSSL uses PKCS #1 v1.5 padding by default, so no explicit
		 * padding is required by sign and verify operations.
		 */
		if (!isset($this->_privateKey)) {
			throw new \LogicException("Private key not set.");
		}
		$key = openssl_pkey_get_private($this->_privateKey->toPEM()->string());
		if (!$key) {
			throw new \RuntimeException(
				"openssl_pkey_get_private() failed: " .
					 $this->_getLastOpenSSLError());
		}
		$result = @openssl_sign($data, $signature, $key, $this->_mdMethod());
		if (!$result) {
			throw new \RuntimeException(
				"openssl_sign() failed: " . $this->_getLastOpenSSLError());
		}
		return $signature;
	}
	
	public function validateSignature($data, $signature) {
		$key = openssl_pkey_get_public($this->_publicKey->toPEM()->string());
		if (!$key) {
			throw new \RuntimeException(
				"openssl_pkey_get_public() failed: " .
					 $this->_getLastOpenSSLError());
		}
		$result = @openssl_verify($data, $signature, $key, $this->_mdMethod());
		if (false === $result || -1 == $result) {
			throw new \RuntimeException(
				"openssl_verify() failed: " . $this->_getLastOpenSSLError());
		}
		return $result == 1;
	}
	
	/**
	 * Get the last OpenSSL error message.
	 *
	 * @return string|null
	 */
	protected function _getLastOpenSSLError() {

		$msg = null;
		while (false !== ($err = openssl_error_string())) {
			$msg = $err;
		}
		return $msg;
	}
}


1			<?php
2
3			namespace JWX\JWS\Algorithm;
4
5			use JWX\JWK\Feature\AsymmetricPrivateKey;
6			use JWX\JWK\Feature\AsymmetricPublicKey;
7			use JWX\JWS\SignatureAlgorithm;
8
9
10			/**
11			* Base class for algorithms employing asymmetric signature computation
12			* using OpenSSL extension.
13			*/
14			abstract class OpenSSLSignatureAlgorithm implements SignatureAlgorithm
15			{
16			/**
17			* Public key.
18			*
19			* @var AsymmetricPublicKey $_publicKey
20			*/
21			protected $_publicKey;
22
23			/**
24			* Private key.
25			*
26			* @var AsymmetricPrivateKey\|null $_privateKey
27			*/
28			protected $_privateKey;
29
30			/**
31			* Get the message digest method name supported by OpenSSL.
32			*
33			* @return string
34			*/
35			abstract protected function _mdMethod();
36
37	12		public function computeSignature($data) {
38			/**
39			* NOTE: OpenSSL uses PKCS #1 v1.5 padding by default, so no explicit
40			* padding is required by sign and verify operations.
41			*/
42	12		if (!isset($this->_privateKey)) {
43	1		throw new \LogicException("Private key not set.");
44			}
45	11		$key = openssl_pkey_get_private($this->_privateKey->toPEM()->string());
46	11		if (!$key) {
47	1		throw new \RuntimeException(
48			"openssl_pkey_get_private() failed: " .
49	1		$this->_getLastOpenSSLError());
50			}
51	10		$result = @openssl_sign($data, $signature, $key, $this->_mdMethod());
52	10		if (!$result) {
53	1		throw new \RuntimeException(
54	1		"openssl_sign() failed: " . $this->_getLastOpenSSLError());
55			}
56	9		return $signature;
57			}
58
59	10		public function validateSignature($data, $signature) {
60	10		$key = openssl_pkey_get_public($this->_publicKey->toPEM()->string());
61	10		if (!$key) {
62	1		throw new \RuntimeException(
63			"openssl_pkey_get_public() failed: " .
64	1		$this->_getLastOpenSSLError());
65			}
66	9		$result = @openssl_verify($data, $signature, $key, $this->_mdMethod());
67	9		if (false === $result \|\| -1 == $result) {
68	1		throw new \RuntimeException(
69	1		"openssl_verify() failed: " . $this->_getLastOpenSSLError());
70			}
71	8		return $result == 1;
72			}
73
74			/**
75			* Get the last OpenSSL error message.
76			*
77			* @return string\|null
78			*/
79	4	View Code Duplication	protected function _getLastOpenSSLError() {
			0 ignored issues – show Duplication introduced 2016-06-14 07:50 UTC by Report Bug Copy Issue Report This method seems to be duplicated in your project. Duplicated code is one of the most pungent code smells. If you need to duplicate the same code in three or more different places, we strongly encourage you to look into extracting the code into a single class or operation. You can also find more detailed suggestions in the “Code” section of your repository. Loading history...
80	4		$msg = null;
81	4		while (false !== ($err = openssl_error_string())) {
82	4		$msg = $err;
83	4		}
84	4		return $msg;
85			}
86			}
87

sop / jwx

GitHub Access Token became invalid

Push — master ( 74ce6a...af33f1 )

OpenSSLSignatureAlgorithm A

Complexity

Size/Duplication

Coupling/Cohesion

Test Coverage

Importance

4 Methods

How to fix Duplicated Code

Duplicated Code

Duplication Side-by-Side

Filter issues like