AESKWAlgorithm - Code Metrics - Inspection of "Change requirements to PHP 7.2" - sop/jwx - Measure and Improve Code Quality continuously with Scrutinizer

Passed

Branch — php72 (880eb0)

by Joni

created 2019-05-13 10:47 UTC

AESKWAlgorithm A

↳ Parent: Project

Complexity

Total Complexity

Size/Duplication

Total Lines	118
Duplicated Lines	0 %

Test Coverage

Coverage

100%

Importance

Changes

Metric	Value
wmc	9
eloc	25
dl	0
loc	118
ccs	24
cts	24
cp	1
rs	10
c	0
b	0
f	0

6 Methods

Rating	Name	Size	Complexity
A	__construct()	7	2
A	_decryptKey()	3	1
A	_encryptKey()	3	1
A	_kw()	6	2
A	headerParameters()	4	1
A	fromJWK()	9	2

<?php

declare(strict_types = 1);

namespace Sop\JWX\JWE\KeyAlgorithm;

use Sop\AESKW\AESKeyWrapAlgorithm;
use Sop\JWX\JWA\JWA;
use Sop\JWX\JWE\KeyAlgorithm\Feature\RandomCEK;
use Sop\JWX\JWE\KeyManagementAlgorithm;
use Sop\JWX\JWK\JWK;
use Sop\JWX\JWK\Symmetric\SymmetricKeyJWK;
use Sop\JWX\JWT\Header\Header;
use Sop\JWX\JWT\Parameter\AlgorithmParameter;

/**
 * Base class for algorithms implementing AES key wrap.
 *
 * @see https://tools.ietf.org/html/rfc7518#section-4.4
 */
abstract class AESKWAlgorithm extends KeyManagementAlgorithm
{
    use RandomCEK;

    /**
     * Mapping from algorithm name to class name.
     *
     * @internal
     *
     * @var array
     */
    const MAP_ALGO_TO_CLASS = [
        JWA::ALGO_A128KW => A128KWAlgorithm::class,
        JWA::ALGO_A192KW => A192KWAlgorithm::class,
        JWA::ALGO_A256KW => A256KWAlgorithm::class,
    ];

    /**
     * Key encryption key.
     *
     * @var string
     */
    protected $_kek;

    /**
     * Key wrapping algorithm.
     *
     * Lazily initialized.
     *
     * @var null|AESKeyWrapAlgorithm
     */
    protected $_kw;

    /**
     * Constructor.
     *
     * @param string $kek Key encryption key
     */
    public function __construct(string $kek)
    {
        if (strlen($kek) !== $this->_kekSize()) {
            throw new \LengthException(
                'Key encryption key must be ' . $this->_kekSize() . ' bytes.');
        }
        $this->_kek = $kek;
    }

    /**
     * Initialize from JWK.
     *
     * @param JWK    $jwk
     * @param Header $header
     *
     * @throws \UnexpectedValueException
     *
     * @return self
     */
    public static function fromJWK(JWK $jwk, Header $header): KeyManagementAlgorithm
    {
        $jwk = SymmetricKeyJWK::fromJWK($jwk);
        $alg = JWA::deriveAlgorithmName($header, $jwk);
        if (!array_key_exists($alg, self::MAP_ALGO_TO_CLASS)) {
            throw new \UnexpectedValueException("Unsupported algorithm '{$alg}'.");
        }
        $cls = self::MAP_ALGO_TO_CLASS[$alg];
        return new $cls($jwk->key());
    }

    /**
     * {@inheritdoc}
     */
    public function headerParameters(): array
    {
        return array_merge(parent::headerParameters(),
            [AlgorithmParameter::fromAlgorithm($this)]);
    }

    /**
     * Get the size of the key encryption key in bytes.
     *
     * @return int
     */
    abstract protected function _kekSize(): int;

    /**
     * Get key wrapping algorithm instance.
     *
     * @return AESKeyWrapAlgorithm
     */
    abstract protected function _AESKWAlgo(): AESKeyWrapAlgorithm;

    /**
     * Get key wrapping algorithm.
     *
     * @return AESKeyWrapAlgorithm
     */
    protected function _kw(): AESKeyWrapAlgorithm
    {
        if (!isset($this->_kw)) {
            $this->_kw = $this->_AESKWAlgo();
        }
        return $this->_kw;

    }

    /**
     * {@inheritdoc}
     */
    protected function _encryptKey(string $key, Header &$header): string
    {
        return $this->_kw()->wrap($key, $this->_kek);
    }

    /**
     * {@inheritdoc}
     */
    protected function _decryptKey(string $ciphertext, Header $header): string
    {
        return $this->_kw()->unwrap($ciphertext, $this->_kek);
    }
}


1		<?php
2
3		declare(strict_types = 1);
4
5		namespace Sop\JWX\JWE\KeyAlgorithm;
6
7		use Sop\AESKW\AESKeyWrapAlgorithm;
8		use Sop\JWX\JWA\JWA;
9		use Sop\JWX\JWE\KeyAlgorithm\Feature\RandomCEK;
10		use Sop\JWX\JWE\KeyManagementAlgorithm;
11		use Sop\JWX\JWK\JWK;
12		use Sop\JWX\JWK\Symmetric\SymmetricKeyJWK;
13		use Sop\JWX\JWT\Header\Header;
14		use Sop\JWX\JWT\Parameter\AlgorithmParameter;
15
16		/**
17		* Base class for algorithms implementing AES key wrap.
18		*
19		* @see https://tools.ietf.org/html/rfc7518#section-4.4
20		*/
21		abstract class AESKWAlgorithm extends KeyManagementAlgorithm
22		{
23		use RandomCEK;
24
25		/**
26		* Mapping from algorithm name to class name.
27		*
28		* @internal
29		*
30		* @var array
31		*/
32		const MAP_ALGO_TO_CLASS = [
33		JWA::ALGO_A128KW => A128KWAlgorithm::class,
34		JWA::ALGO_A192KW => A192KWAlgorithm::class,
35		JWA::ALGO_A256KW => A256KWAlgorithm::class,
36		];
37
38		/**
39		* Key encryption key.
40		*
41		* @var string
42		*/
43		protected $_kek;
44
45		/**
46		* Key wrapping algorithm.
47		*
48		* Lazily initialized.
49		*
50		* @var null\|AESKeyWrapAlgorithm
51		*/
52		protected $_kw;
53
54		/**
55		* Constructor.
56		*
57		* @param string $kek Key encryption key
58		*/
59	24	public function __construct(string $kek)
60		{
61	24	if (strlen($kek) !== $this->_kekSize()) {
62	1	throw new \LengthException(
63	1	'Key encryption key must be ' . $this->_kekSize() . ' bytes.');
64		}
65	23	$this->_kek = $kek;
66	23	}
67
68		/**
69		* Initialize from JWK.
70		*
71		* @param JWK $jwk
72		* @param Header $header
73		*
74		* @throws \UnexpectedValueException
75		*
76		* @return self
77		*/
78	9	public static function fromJWK(JWK $jwk, Header $header): KeyManagementAlgorithm
79		{
80	9	$jwk = SymmetricKeyJWK::fromJWK($jwk);
81	9	$alg = JWA::deriveAlgorithmName($header, $jwk);
82	8	if (!array_key_exists($alg, self::MAP_ALGO_TO_CLASS)) {
83	1	throw new \UnexpectedValueException("Unsupported algorithm '{$alg}'.");
84		}
85	7	$cls = self::MAP_ALGO_TO_CLASS[$alg];
86	7	return new $cls($jwk->key());
87		}
88
89		/**
90		* {@inheritdoc}
91		*/
92	3	public function headerParameters(): array
93		{
94	3	return array_merge(parent::headerParameters(),
95	3	[AlgorithmParameter::fromAlgorithm($this)]);
96		}
97
98		/**
99		* Get the size of the key encryption key in bytes.
100		*
101		* @return int
102		*/
103		abstract protected function _kekSize(): int;
104
105		/**
106		* Get key wrapping algorithm instance.
107		*
108		* @return AESKeyWrapAlgorithm
109		*/
110		abstract protected function _AESKWAlgo(): AESKeyWrapAlgorithm;
111
112		/**
113		* Get key wrapping algorithm.
114		*
115		* @return AESKeyWrapAlgorithm
116		*/
117	24	protected function _kw(): AESKeyWrapAlgorithm
118		{
119	24	if (!isset($this->_kw)) {
120	20	$this->_kw = $this->_AESKWAlgo();
121		}
122	24	return $this->_kw;
		1 ignored issue – show Bug Best Practice introduced 2019-05-13 10:53 UTC by Report Bug Copy Issue Report The expression `return $this->_kw` could return the type `null` which is incompatible with the type-hinted return `Sop\AESKW\AESKeyWrapAlgorithm`. Consider adding an additional type-check to rule them out. Loading history...
123		}
124
125		/**
126		* {@inheritdoc}
127		*/
128	18	protected function _encryptKey(string $key, Header &$header): string
129		{
130	18	return $this->_kw()->wrap($key, $this->_kek);
131		}
132
133		/**
134		* {@inheritdoc}
135		*/
136	15	protected function _decryptKey(string $ciphertext, Header $header): string
137		{
138	15	return $this->_kw()->unwrap($ciphertext, $this->_kek);
139		}
140		}
141

sop / jwx

GitHub Access Token became invalid

Branch — php72 (880eb0)

AESKWAlgorithm A

Complexity

Size/Duplication

Test Coverage

Importance

6 Methods

Duplication Side-by-Side

Filter issues like