Inspection of "PHP7 support" - sop/x509 - Measure and Improve Code Quality continuously with Scrutinizer

Test Failed

Pull Request — master (#1)

by thomas

created 2017-11-03 11:13 UTC

Status

Indentation +81 added lines, -81 removed lines patch added patch discarded remove patch

@@ -16,94 +16,94 @@
 block discarded – undo
  */
 class ExtensionRequestValue extends AttributeValue
 {
-    const OID = "1.2.840.113549.1.9.14";
+	const OID = "1.2.840.113549.1.9.14";
     
-    /**
-     * Extensions.
-     *
-     * @var Extensions $_extensions
-     */
-    protected $_extensions;
+	/**
+	 * Extensions.
+	 *
+	 * @var Extensions $_extensions
+	 */
+	protected $_extensions;
     
-    /**
-     * Constructor.
-     *
-     * @param Extensions $extensions
-     */
-    public function __construct(Extensions $extensions)
-    {
-        $this->_extensions = $extensions;
-        $this->_oid = self::OID;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param Extensions $extensions
+	 */
+	public function __construct(Extensions $extensions)
+	{
+		$this->_extensions = $extensions;
+		$this->_oid = self::OID;
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::fromASN1()
-     * @param UnspecifiedType $el
-     * @return self
-     */
-    public static function fromASN1(UnspecifiedType $el)
-    {
-        return new self(Extensions::fromASN1($el->asSequence()));
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::fromASN1()
+	 * @param UnspecifiedType $el
+	 * @return self
+	 */
+	public static function fromASN1(UnspecifiedType $el)
+	{
+		return new self(Extensions::fromASN1($el->asSequence()));
+	}
     
-    /**
-     * Get requested extensions.
-     *
-     * @return Extensions
-     */
-    public function extensions(): Extensions
-    {
-        return $this->_extensions;
-    }
+	/**
+	 * Get requested extensions.
+	 *
+	 * @return Extensions
+	 */
+	public function extensions(): Extensions
+	{
+		return $this->_extensions;
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::toASN1()
-     * @return \ASN1\Type\Constructed\Sequence
-     */
-    public function toASN1(): \ASN1\Type\Constructed\Sequence
-    {
-        return $this->_extensions->toASN1();
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::toASN1()
+	 * @return \ASN1\Type\Constructed\Sequence
+	 */
+	public function toASN1(): \ASN1\Type\Constructed\Sequence
+	{
+		return $this->_extensions->toASN1();
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::stringValue()
-     * @return string
-     */
-    public function stringValue(): string
-    {
-        return "#" . bin2hex($this->toASN1()->toDER());
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::stringValue()
+	 * @return string
+	 */
+	public function stringValue(): string
+	{
+		return "#" . bin2hex($this->toASN1()->toDER());
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::equalityMatchingRule()
-     * @return BinaryMatch
-     */
-    public function equalityMatchingRule(): BinaryMatch
-    {
-        return new BinaryMatch();
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::equalityMatchingRule()
+	 * @return BinaryMatch
+	 */
+	public function equalityMatchingRule(): BinaryMatch
+	{
+		return new BinaryMatch();
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::rfc2253String()
-     * @return string
-     */
-    public function rfc2253String(): string
-    {
-        return $this->stringValue();
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::rfc2253String()
+	 * @return string
+	 */
+	public function rfc2253String(): string
+	{
+		return $this->stringValue();
+	}
     
-    /**
-     *
-     * @see \X501\ASN1\AttributeValue\AttributeValue::_transcodedString()
-     * @return string
-     */
-    protected function _transcodedString(): string
-    {
-        return $this->stringValue();
-    }
+	/**
+	 *
+	 * @see \X501\ASN1\AttributeValue\AttributeValue::_transcodedString()
+	 * @return string
+	 */
+	protected function _transcodedString(): string
+	{
+		return $this->stringValue();
+	}
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationRequest\Attribute;
 

Please login to merge, or discard this patch.

lib/X509/CertificationRequest/CertificationRequestInfo.php 1 patch

Indentation +200 added lines, -200 removed lines patch added patch discarded remove patch

@@ -22,204 +22,204 @@
 block discarded – undo
  */
 class CertificationRequestInfo
 {
-    const VERSION_1 = 0;
-    
-    /**
-     * Version.
-     *
-     * @var int
-     */
-    protected $_version;
-    
-    /**
-     * Subject.
-     *
-     * @var Name $_subject
-     */
-    protected $_subject;
-    
-    /**
-     * Public key info.
-     *
-     * @var PublicKeyInfo $_subjectPKInfo
-     */
-    protected $_subjectPKInfo;
-    
-    /**
-     * Attributes.
-     *
-     * @var Attributes|null $_attributes
-     */
-    protected $_attributes;
-    
-    /**
-     * Constructor.
-     *
-     * @param Name $subject Subject
-     * @param PublicKeyInfo $pkinfo Public key info
-     */
-    public function __construct(Name $subject, PublicKeyInfo $pkinfo)
-    {
-        $this->_version = self::VERSION_1;
-        $this->_subject = $subject;
-        $this->_subjectPKInfo = $pkinfo;
-    }
-    
-    /**
-     * Initialize from ASN.1.
-     *
-     * @param Sequence $seq
-     * @throws \UnexpectedValueException
-     * @return self
-     */
-    public static function fromASN1(Sequence $seq)
-    {
-        $version = $seq->at(0)
-            ->asInteger()
-            ->number();
-        if ($version != self::VERSION_1) {
-            throw new \UnexpectedValueException(
-                "Version $version not supported.");
-        }
-        $subject = Name::fromASN1($seq->at(1)->asSequence());
-        $pkinfo = PublicKeyInfo::fromASN1($seq->at(2)->asSequence());
-        $obj = new self($subject, $pkinfo);
-        if ($seq->hasTagged(0)) {
-            $obj->_attributes = Attributes::fromASN1(
-                $seq->getTagged(0)
-                    ->asImplicit(Element::TYPE_SET)
-                    ->asSet());
-        }
-        return $obj;
-    }
-    
-    /**
-     * Get version.
-     *
-     * @return int
-     */
-    public function version(): int
-    {
-        return $this->_version;
-    }
-    
-    /**
-     * Get self with subject.
-     *
-     * @param Name $subject
-     * @return self
-     */
-    public function withSubject(Name $subject)
-    {
-        $obj = clone $this;
-        $obj->_subject = $subject;
-        return $obj;
-    }
-    
-    /**
-     * Get subject.
-     *
-     * @return Name
-     */
-    public function subject(): Name
-    {
-        return $this->_subject;
-    }
-    
-    /**
-     * Get subject public key info.
-     *
-     * @return PublicKeyInfo
-     */
-    public function subjectPKInfo(): PublicKeyInfo
-    {
-        return $this->_subjectPKInfo;
-    }
-    
-    /**
-     * Whether certification request info has attributes.
-     *
-     * @return bool
-     */
-    public function hasAttributes(): bool
-    {
-        return isset($this->_attributes);
-    }
-    
-    /**
-     * Get attributes.
-     *
-     * @throws \LogicException
-     * @return Attributes
-     */
-    public function attributes(): Attributes
-    {
-        if (!$this->hasAttributes()) {
-            throw new \LogicException("No attributes.");
-        }
-        return $this->_attributes;
-    }
-    
-    /**
-     * Get instance of self with attributes.
-     *
-     * @param Attributes $attribs
-     */
-    public function withAttributes(Attributes $attribs)
-    {
-        $obj = clone $this;
-        $obj->_attributes = $attribs;
-        return $obj;
-    }
-    
-    /**
-     * Get self with extension request attribute.
-     *
-     * @param Extensions $extensions Extensions to request
-     * @return self
-     */
-    public function withExtensionRequest(Extensions $extensions)
-    {
-        $obj = clone $this;
-        if (!isset($obj->_attributes)) {
-            $obj->_attributes = new Attributes();
-        }
-        $obj->_attributes = $obj->_attributes->withUnique(
-            Attribute::fromAttributeValues(
-                new ExtensionRequestValue($extensions)));
-        return $obj;
-    }
-    
-    /**
-     * Generate ASN.1 structure.
-     *
-     * @return Sequence
-     */
-    public function toASN1(): Sequence
-    {
-        $elements = array(new Integer($this->_version),
-            $this->_subject->toASN1(), $this->_subjectPKInfo->toASN1());
-        if (isset($this->_attributes)) {
-            $elements[] = new ImplicitlyTaggedType(0,
-                $this->_attributes->toASN1());
-        }
-        return new Sequence(...$elements);
-    }
-    
-    /**
-     * Create signed CertificationRequest.
-     *
-     * @param SignatureAlgorithmIdentifier $algo Algorithm used for signing
-     * @param PrivateKeyInfo $privkey_info Private key used for signing
-     * @param Crypto|null $crypto Crypto engine, use default if not set
-     * @return CertificationRequest
-     */
-    public function sign(SignatureAlgorithmIdentifier $algo,
-        PrivateKeyInfo $privkey_info, Crypto $crypto = null)
-    {
-        $crypto = $crypto ?: Crypto::getDefault();
-        $data = $this->toASN1()->toDER();
-        $signature = $crypto->sign($data, $privkey_info, $algo);
-        return new CertificationRequest($this, $algo, $signature);
-    }
+	const VERSION_1 = 0;
+    
+	/**
+	 * Version.
+	 *
+	 * @var int
+	 */
+	protected $_version;
+    
+	/**
+	 * Subject.
+	 *
+	 * @var Name $_subject
+	 */
+	protected $_subject;
+    
+	/**
+	 * Public key info.
+	 *
+	 * @var PublicKeyInfo $_subjectPKInfo
+	 */
+	protected $_subjectPKInfo;
+    
+	/**
+	 * Attributes.
+	 *
+	 * @var Attributes|null $_attributes
+	 */
+	protected $_attributes;
+    
+	/**
+	 * Constructor.
+	 *
+	 * @param Name $subject Subject
+	 * @param PublicKeyInfo $pkinfo Public key info
+	 */
+	public function __construct(Name $subject, PublicKeyInfo $pkinfo)
+	{
+		$this->_version = self::VERSION_1;
+		$this->_subject = $subject;
+		$this->_subjectPKInfo = $pkinfo;
+	}
+    
+	/**
+	 * Initialize from ASN.1.
+	 *
+	 * @param Sequence $seq
+	 * @throws \UnexpectedValueException
+	 * @return self
+	 */
+	public static function fromASN1(Sequence $seq)
+	{
+		$version = $seq->at(0)
+			->asInteger()
+			->number();
+		if ($version != self::VERSION_1) {
+			throw new \UnexpectedValueException(
+				"Version $version not supported.");
+		}
+		$subject = Name::fromASN1($seq->at(1)->asSequence());
+		$pkinfo = PublicKeyInfo::fromASN1($seq->at(2)->asSequence());
+		$obj = new self($subject, $pkinfo);
+		if ($seq->hasTagged(0)) {
+			$obj->_attributes = Attributes::fromASN1(
+				$seq->getTagged(0)
+					->asImplicit(Element::TYPE_SET)
+					->asSet());
+		}
+		return $obj;
+	}
+    
+	/**
+	 * Get version.
+	 *
+	 * @return int
+	 */
+	public function version(): int
+	{
+		return $this->_version;
+	}
+    
+	/**
+	 * Get self with subject.
+	 *
+	 * @param Name $subject
+	 * @return self
+	 */
+	public function withSubject(Name $subject)
+	{
+		$obj = clone $this;
+		$obj->_subject = $subject;
+		return $obj;
+	}
+    
+	/**
+	 * Get subject.
+	 *
+	 * @return Name
+	 */
+	public function subject(): Name
+	{
+		return $this->_subject;
+	}
+    
+	/**
+	 * Get subject public key info.
+	 *
+	 * @return PublicKeyInfo
+	 */
+	public function subjectPKInfo(): PublicKeyInfo
+	{
+		return $this->_subjectPKInfo;
+	}
+    
+	/**
+	 * Whether certification request info has attributes.
+	 *
+	 * @return bool
+	 */
+	public function hasAttributes(): bool
+	{
+		return isset($this->_attributes);
+	}
+    
+	/**
+	 * Get attributes.
+	 *
+	 * @throws \LogicException
+	 * @return Attributes
+	 */
+	public function attributes(): Attributes
+	{
+		if (!$this->hasAttributes()) {
+			throw new \LogicException("No attributes.");
+		}
+		return $this->_attributes;
+	}
+    
+	/**
+	 * Get instance of self with attributes.
+	 *
+	 * @param Attributes $attribs
+	 */
+	public function withAttributes(Attributes $attribs)
+	{
+		$obj = clone $this;
+		$obj->_attributes = $attribs;
+		return $obj;
+	}
+    
+	/**
+	 * Get self with extension request attribute.
+	 *
+	 * @param Extensions $extensions Extensions to request
+	 * @return self
+	 */
+	public function withExtensionRequest(Extensions $extensions)
+	{
+		$obj = clone $this;
+		if (!isset($obj->_attributes)) {
+			$obj->_attributes = new Attributes();
+		}
+		$obj->_attributes = $obj->_attributes->withUnique(
+			Attribute::fromAttributeValues(
+				new ExtensionRequestValue($extensions)));
+		return $obj;
+	}
+    
+	/**
+	 * Generate ASN.1 structure.
+	 *
+	 * @return Sequence
+	 */
+	public function toASN1(): Sequence
+	{
+		$elements = array(new Integer($this->_version),
+			$this->_subject->toASN1(), $this->_subjectPKInfo->toASN1());
+		if (isset($this->_attributes)) {
+			$elements[] = new ImplicitlyTaggedType(0,
+				$this->_attributes->toASN1());
+		}
+		return new Sequence(...$elements);
+	}
+    
+	/**
+	 * Create signed CertificationRequest.
+	 *
+	 * @param SignatureAlgorithmIdentifier $algo Algorithm used for signing
+	 * @param PrivateKeyInfo $privkey_info Private key used for signing
+	 * @param Crypto|null $crypto Crypto engine, use default if not set
+	 * @return CertificationRequest
+	 */
+	public function sign(SignatureAlgorithmIdentifier $algo,
+		PrivateKeyInfo $privkey_info, Crypto $crypto = null)
+	{
+		$crypto = $crypto ?: Crypto::getDefault();
+		$data = $this->toASN1()->toDER();
+		$signature = $crypto->sign($data, $privkey_info, $algo);
+		return new CertificationRequest($this, $algo, $signature);
+	}
 }

Please login to merge, or discard this patch.

lib/X509/CertificationPath/Exception/PathBuildingException.php 1 patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\Exception;
 

Please login to merge, or discard this patch.

lib/X509/CertificationPath/Exception/PathValidationException.php 1 patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\Exception;
 

Please login to merge, or discard this patch.

lib/X509/CertificationPath/Policy/PolicyNode.php 2 patches

Indentation +238 added lines, -238 removed lines patch added patch discarded remove patch

@@ -13,265 +13,265 @@
 block discarded – undo
  */
 class PolicyNode implements \IteratorAggregate, \Countable
 {
-    /**
-     * Policy OID.
-     *
-     * @var string
-     */
-    protected $_validPolicy;
+	/**
+	 * Policy OID.
+	 *
+	 * @var string
+	 */
+	protected $_validPolicy;
     
-    /**
-     * List of qualifiers.
-     *
-     * @var \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
-     */
-    protected $_qualifiers;
+	/**
+	 * List of qualifiers.
+	 *
+	 * @var \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
+	 */
+	protected $_qualifiers;
     
-    /**
-     * List of expected policy OIDs.
-     *
-     * @var string[]
-     */
-    protected $_expectedPolicies;
+	/**
+	 * List of expected policy OIDs.
+	 *
+	 * @var string[]
+	 */
+	protected $_expectedPolicies;
     
-    /**
-     * List of child nodes.
-     *
-     * @var PolicyNode[]
-     */
-    protected $_children;
+	/**
+	 * List of child nodes.
+	 *
+	 * @var PolicyNode[]
+	 */
+	protected $_children;
     
-    /**
-     * Reference to the parent node.
-     *
-     * @var PolicyNode|null
-     */
-    protected $_parent;
+	/**
+	 * Reference to the parent node.
+	 *
+	 * @var PolicyNode|null
+	 */
+	protected $_parent;
     
-    /**
-     * Constructor.
-     *
-     * @param string $valid_policy Policy OID
-     * @param \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[] $qualifiers
-     * @param string[] $expected_policies
-     */
-    public function __construct(string $valid_policy, array $qualifiers,
-        array $expected_policies)
-    {
-        $this->_validPolicy = $valid_policy;
-        $this->_qualifiers = $qualifiers;
-        $this->_expectedPolicies = $expected_policies;
-        $this->_children = array();
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param string $valid_policy Policy OID
+	 * @param \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[] $qualifiers
+	 * @param string[] $expected_policies
+	 */
+	public function __construct(string $valid_policy, array $qualifiers,
+		array $expected_policies)
+	{
+		$this->_validPolicy = $valid_policy;
+		$this->_qualifiers = $qualifiers;
+		$this->_expectedPolicies = $expected_policies;
+		$this->_children = array();
+	}
     
-    /**
-     * Create initial node for the policy tree.
-     *
-     * @return self
-     */
-    public static function anyPolicyNode()
-    {
-        return new self(PolicyInformation::OID_ANY_POLICY, array(),
-            array(PolicyInformation::OID_ANY_POLICY));
-    }
+	/**
+	 * Create initial node for the policy tree.
+	 *
+	 * @return self
+	 */
+	public static function anyPolicyNode()
+	{
+		return new self(PolicyInformation::OID_ANY_POLICY, array(),
+			array(PolicyInformation::OID_ANY_POLICY));
+	}
     
-    /**
-     * Get the valid policy OID.
-     *
-     * @return string
-     */
-    public function validPolicy(): string
-    {
-        return $this->_validPolicy;
-    }
+	/**
+	 * Get the valid policy OID.
+	 *
+	 * @return string
+	 */
+	public function validPolicy(): string
+	{
+		return $this->_validPolicy;
+	}
     
-    /**
-     * Check whether node has anyPolicy as a valid policy.
-     *
-     * @return boolean
-     */
-    public function isAnyPolicy(): bool
-    {
-        return PolicyInformation::OID_ANY_POLICY == $this->_validPolicy;
-    }
+	/**
+	 * Check whether node has anyPolicy as a valid policy.
+	 *
+	 * @return boolean
+	 */
+	public function isAnyPolicy(): bool
+	{
+		return PolicyInformation::OID_ANY_POLICY == $this->_validPolicy;
+	}
     
-    /**
-     * Get the qualifier set.
-     *
-     * @return \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
-     */
-    public function qualifiers(): array
-    {
-        return $this->_qualifiers;
-    }
+	/**
+	 * Get the qualifier set.
+	 *
+	 * @return \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
+	 */
+	public function qualifiers(): array
+	{
+		return $this->_qualifiers;
+	}
     
-    /**
-     * Check whether node has OID as an expected policy.
-     *
-     * @param string $oid
-     * @return boolean
-     */
-    public function hasExpectedPolicy($oid): bool
-    {
-        return in_array($oid, $this->_expectedPolicies);
-    }
+	/**
+	 * Check whether node has OID as an expected policy.
+	 *
+	 * @param string $oid
+	 * @return boolean
+	 */
+	public function hasExpectedPolicy($oid): bool
+	{
+		return in_array($oid, $this->_expectedPolicies);
+	}
     
-    /**
-     * Get the expected policy set.
-     *
-     * @return string[]
-     */
-    public function expectedPolicies(): array
-    {
-        return $this->_expectedPolicies;
-    }
+	/**
+	 * Get the expected policy set.
+	 *
+	 * @return string[]
+	 */
+	public function expectedPolicies(): array
+	{
+		return $this->_expectedPolicies;
+	}
     
-    /**
-     * Set expected policies.
-     *
-     * @param string ...$oids Policy OIDs
-     */
-    public function setExpectedPolicies(...$oids)
-    {
-        $this->_expectedPolicies = $oids;
-    }
+	/**
+	 * Set expected policies.
+	 *
+	 * @param string ...$oids Policy OIDs
+	 */
+	public function setExpectedPolicies(...$oids)
+	{
+		$this->_expectedPolicies = $oids;
+	}
     
-    /**
-     * Check whether node has a child node with given valid policy OID.
-     *
-     * @param string $oid
-     * @return boolean
-     */
-    public function hasChildWithValidPolicy($oid): bool
-    {
-        foreach ($this->_children as $node) {
-            if ($node->validPolicy() == $oid) {
-                return true;
-            }
-        }
-        return false;
-    }
+	/**
+	 * Check whether node has a child node with given valid policy OID.
+	 *
+	 * @param string $oid
+	 * @return boolean
+	 */
+	public function hasChildWithValidPolicy($oid): bool
+	{
+		foreach ($this->_children as $node) {
+			if ($node->validPolicy() == $oid) {
+				return true;
+			}
+		}
+		return false;
+	}
     
-    /**
-     * Add child node.
-     *
-     * @param PolicyNode $node
-     * @return self
-     */
-    public function addChild(PolicyNode $node)
-    {
-        $id = spl_object_hash($node);
-        $node->_parent = $this;
-        $this->_children[$id] = $node;
-        return $this;
-    }
+	/**
+	 * Add child node.
+	 *
+	 * @param PolicyNode $node
+	 * @return self
+	 */
+	public function addChild(PolicyNode $node)
+	{
+		$id = spl_object_hash($node);
+		$node->_parent = $this;
+		$this->_children[$id] = $node;
+		return $this;
+	}
     
-    /**
-     * Get the child nodes.
-     *
-     * @return PolicyNode[]
-     */
-    public function children(): array
-    {
-        return array_values($this->_children);
-    }
+	/**
+	 * Get the child nodes.
+	 *
+	 * @return PolicyNode[]
+	 */
+	public function children(): array
+	{
+		return array_values($this->_children);
+	}
     
-    /**
-     * Remove this node from the tree.
-     *
-     * @return self The removed node
-     */
-    public function remove()
-    {
-        if ($this->_parent) {
-            $id = spl_object_hash($this);
-            unset($this->_parent->_children[$id]);
-            unset($this->_parent);
-        }
-        return $this;
-    }
+	/**
+	 * Remove this node from the tree.
+	 *
+	 * @return self The removed node
+	 */
+	public function remove()
+	{
+		if ($this->_parent) {
+			$id = spl_object_hash($this);
+			unset($this->_parent->_children[$id]);
+			unset($this->_parent);
+		}
+		return $this;
+	}
     
-    /**
-     * Check whether node has a parent.
-     *
-     * @return bool
-     */
-    public function hasParent(): bool
-    {
-        return isset($this->_parent);
-    }
+	/**
+	 * Check whether node has a parent.
+	 *
+	 * @return bool
+	 */
+	public function hasParent(): bool
+	{
+		return isset($this->_parent);
+	}
     
-    /**
-     * Get the parent node.
-     *
-     * @return PolicyNode|null
-     */
-    public function parent()
-    {
-        return $this->_parent;
-    }
+	/**
+	 * Get the parent node.
+	 *
+	 * @return PolicyNode|null
+	 */
+	public function parent()
+	{
+		return $this->_parent;
+	}
     
-    /**
-     * Get chain of parent nodes from this node's parent to the root node.
-     *
-     * @return PolicyNode[]
-     */
-    public function parents(): array
-    {
-        if (!$this->_parent) {
-            return array();
-        }
-        $nodes = $this->_parent->parents();
-        $nodes[] = $this->_parent;
-        return array_reverse($nodes);
-    }
+	/**
+	 * Get chain of parent nodes from this node's parent to the root node.
+	 *
+	 * @return PolicyNode[]
+	 */
+	public function parents(): array
+	{
+		if (!$this->_parent) {
+			return array();
+		}
+		$nodes = $this->_parent->parents();
+		$nodes[] = $this->_parent;
+		return array_reverse($nodes);
+	}
     
-    /**
-     * Walk tree from this node, applying a callback for each node.
-     *
-     * Nodes are traversed depth-first and callback shall be applied post-order.
-     *
-     * @param callable $fn
-     */
-    public function walkNodes(callable $fn)
-    {
-        foreach ($this->_children as $node) {
-            $node->walkNodes($fn);
-        }
-        $fn($this);
-    }
+	/**
+	 * Walk tree from this node, applying a callback for each node.
+	 *
+	 * Nodes are traversed depth-first and callback shall be applied post-order.
+	 *
+	 * @param callable $fn
+	 */
+	public function walkNodes(callable $fn)
+	{
+		foreach ($this->_children as $node) {
+			$node->walkNodes($fn);
+		}
+		$fn($this);
+	}
     
-    /**
-     * Get the total number of nodes in a tree.
-     *
-     * @return int
-     */
-    public function nodeCount(): int
-    {
-        $c = 1;
-        foreach ($this->_children as $child) {
-            $c += $child->nodeCount();
-        }
-        return $c;
-    }
+	/**
+	 * Get the total number of nodes in a tree.
+	 *
+	 * @return int
+	 */
+	public function nodeCount(): int
+	{
+		$c = 1;
+		foreach ($this->_children as $child) {
+			$c += $child->nodeCount();
+		}
+		return $c;
+	}
     
-    /**
-     * Get the number of child nodes.
-     *
-     * @see \Countable::count()
-     */
-    public function count(): int
-    {
-        return count($this->_children);
-    }
+	/**
+	 * Get the number of child nodes.
+	 *
+	 * @see \Countable::count()
+	 */
+	public function count(): int
+	{
+		return count($this->_children);
+	}
     
-    /**
-     * Get iterator for the child nodes.
-     *
-     * @see \IteratorAggregate::getIterator()
-     */
-    public function getIterator(): \ArrayIterator
-    {
-        return new \ArrayIterator($this->_children);
-    }
+	/**
+	 * Get iterator for the child nodes.
+	 *
+	 * @see \IteratorAggregate::getIterator()
+	 */
+	public function getIterator(): \ArrayIterator
+	{
+		return new \ArrayIterator($this->_children);
+	}
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\Policy;
 

Please login to merge, or discard this patch.

lib/X509/CertificationPath/Policy/PolicyTree.php 2 patches

Indentation +393 added lines, -393 removed lines patch added patch discarded remove patch

@@ -10,411 +10,411 @@
 block discarded – undo
 
 class PolicyTree
 {
-    /**
-     * Root node at depth zero.
-     *
-     * @var PolicyNode|null
-     */
-    protected $_root;
+	/**
+	 * Root node at depth zero.
+	 *
+	 * @var PolicyNode|null
+	 */
+	protected $_root;
     
-    /**
-     * Constructor.
-     *
-     * @param PolicyNode $root Initial root node
-     */
-    public function __construct(PolicyNode $root)
-    {
-        $this->_root = $root;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param PolicyNode $root Initial root node
+	 */
+	public function __construct(PolicyNode $root)
+	{
+		$this->_root = $root;
+	}
     
-    /**
-     * Process policy information from the certificate.
-     *
-     * Certificate policies extension must be present.
-     *
-     * @param ValidatorState $state
-     * @param Certificate $cert
-     * @return ValidatorState
-     */
-    public function processPolicies(ValidatorState $state, Certificate $cert): ValidatorState
-    {
-        $policies = $cert->tbsCertificate()
-            ->extensions()
-            ->certificatePolicies();
-        $tree = clone $this;
-        // (d.1) for each policy P not equal to anyPolicy
-        foreach ($policies as $policy) {
-            if ($policy->isAnyPolicy()) {
-                $tree->_processAnyPolicy($policy, $cert, $state);
-            } else {
-                $tree->_processPolicy($policy, $state);
-            }
-        }
-        // if whole tree is pruned
-        if (!$tree->_pruneTree($state->index() - 1)) {
-            return $state->withoutValidPolicyTree();
-        }
-        return $state->withValidPolicyTree($tree);
-    }
+	/**
+	 * Process policy information from the certificate.
+	 *
+	 * Certificate policies extension must be present.
+	 *
+	 * @param ValidatorState $state
+	 * @param Certificate $cert
+	 * @return ValidatorState
+	 */
+	public function processPolicies(ValidatorState $state, Certificate $cert): ValidatorState
+	{
+		$policies = $cert->tbsCertificate()
+			->extensions()
+			->certificatePolicies();
+		$tree = clone $this;
+		// (d.1) for each policy P not equal to anyPolicy
+		foreach ($policies as $policy) {
+			if ($policy->isAnyPolicy()) {
+				$tree->_processAnyPolicy($policy, $cert, $state);
+			} else {
+				$tree->_processPolicy($policy, $state);
+			}
+		}
+		// if whole tree is pruned
+		if (!$tree->_pruneTree($state->index() - 1)) {
+			return $state->withoutValidPolicyTree();
+		}
+		return $state->withValidPolicyTree($tree);
+	}
     
-    /**
-     * Process policy mappings from the certificate.
-     *
-     * @param ValidatorState $state
-     * @param Certificate $cert
-     * @return ValidatorState
-     */
-    public function processMappings(ValidatorState $state, Certificate $cert): ValidatorState
-    {
-        $tree = clone $this;
-        if ($state->policyMapping() > 0) {
-            $tree->_applyMappings($cert, $state);
-        } else if ($state->policyMapping() == 0) {
-            $tree->_deleteMappings($cert, $state);
-        }
-        // if whole tree is pruned
-        if (!$tree->_root) {
-            return $state->withoutValidPolicyTree();
-        }
-        return $state->withValidPolicyTree($tree);
-    }
+	/**
+	 * Process policy mappings from the certificate.
+	 *
+	 * @param ValidatorState $state
+	 * @param Certificate $cert
+	 * @return ValidatorState
+	 */
+	public function processMappings(ValidatorState $state, Certificate $cert): ValidatorState
+	{
+		$tree = clone $this;
+		if ($state->policyMapping() > 0) {
+			$tree->_applyMappings($cert, $state);
+		} else if ($state->policyMapping() == 0) {
+			$tree->_deleteMappings($cert, $state);
+		}
+		// if whole tree is pruned
+		if (!$tree->_root) {
+			return $state->withoutValidPolicyTree();
+		}
+		return $state->withValidPolicyTree($tree);
+	}
     
-    /**
-     * Calculate policy intersection as specified in Wrap-Up Procedure 6.1.5.g.
-     *
-     * @param ValidatorState $state
-     * @param array $policies
-     * @return ValidatorState
-     */
-    public function calculateIntersection(ValidatorState $state, array $policies): ValidatorState
-    {
-        $tree = clone $this;
-        $valid_policy_node_set = $tree->_validPolicyNodeSet();
-        // 2. If the valid_policy of any node in the valid_policy_node_set
-        // is not in the user-initial-policy-set and is not anyPolicy,
-        // delete this node and all its children.
-        $valid_policy_node_set = array_filter($valid_policy_node_set,
-            function (PolicyNode $node) use ($policies) {
-                if ($node->isAnyPolicy()) {
-                    return true;
-                }
-                if (in_array($node->validPolicy(), $policies)) {
-                    return true;
-                }
-                $node->remove();
-                return false;
-            });
-        // array of valid policy OIDs
-        $valid_policy_set = array_map(
-            function (PolicyNode $node) {
-                return $node->validPolicy();
-            }, $valid_policy_node_set);
-        // 3. If the valid_policy_tree includes a node of depth n with
-        // the valid_policy anyPolicy and the user-initial-policy-set 
-        // is not any-policy
-        foreach ($tree->_nodesAtDepth($state->index()) as $node) {
-            if ($node->hasParent() && $node->isAnyPolicy()) {
-                // a. Set P-Q to the qualifier_set in the node of depth n
-                // with valid_policy anyPolicy.
-                $pq = $node->qualifiers();
-                // b. For each P-OID in the user-initial-policy-set that is not
-                // the valid_policy of a node in the valid_policy_node_set,
-                // create a child node whose parent is the node of depth n-1
-                // with the valid_policy anyPolicy.
-                $poids = array_diff($policies, $valid_policy_set);
-                foreach ($tree->_nodesAtDepth($state->index() - 1) as $parent) {
-                    if ($parent->isAnyPolicy()) {
-                        // Set the values in the child node as follows: 
-                        // set the valid_policy to P-OID, set the qualifier_set
-                        // to P-Q, and set the expected_policy_set to {P-OID}.
-                        foreach ($poids as $poid) {
-                            $parent->addChild(
-                                new PolicyNode($poid, $pq, array($poid)));
-                        }
-                        break;
-                    }
-                }
-                // c. Delete the node of depth n with the
-                // valid_policy anyPolicy.
-                $node->remove();
-            }
-        }
-        // 4. If there is a node in the valid_policy_tree of depth n-1 or less
-        // without any child nodes, delete that node. Repeat this step until
-        // there are no nodes of depth n-1 or less without children.
-        if (!$tree->_pruneTree($state->index() - 1)) {
-            return $state->withoutValidPolicyTree();
-        }
-        return $state->withValidPolicyTree($tree);
-    }
+	/**
+	 * Calculate policy intersection as specified in Wrap-Up Procedure 6.1.5.g.
+	 *
+	 * @param ValidatorState $state
+	 * @param array $policies
+	 * @return ValidatorState
+	 */
+	public function calculateIntersection(ValidatorState $state, array $policies): ValidatorState
+	{
+		$tree = clone $this;
+		$valid_policy_node_set = $tree->_validPolicyNodeSet();
+		// 2. If the valid_policy of any node in the valid_policy_node_set
+		// is not in the user-initial-policy-set and is not anyPolicy,
+		// delete this node and all its children.
+		$valid_policy_node_set = array_filter($valid_policy_node_set,
+			function (PolicyNode $node) use ($policies) {
+				if ($node->isAnyPolicy()) {
+					return true;
+				}
+				if (in_array($node->validPolicy(), $policies)) {
+					return true;
+				}
+				$node->remove();
+				return false;
+			});
+		// array of valid policy OIDs
+		$valid_policy_set = array_map(
+			function (PolicyNode $node) {
+				return $node->validPolicy();
+			}, $valid_policy_node_set);
+		// 3. If the valid_policy_tree includes a node of depth n with
+		// the valid_policy anyPolicy and the user-initial-policy-set 
+		// is not any-policy
+		foreach ($tree->_nodesAtDepth($state->index()) as $node) {
+			if ($node->hasParent() && $node->isAnyPolicy()) {
+				// a. Set P-Q to the qualifier_set in the node of depth n
+				// with valid_policy anyPolicy.
+				$pq = $node->qualifiers();
+				// b. For each P-OID in the user-initial-policy-set that is not
+				// the valid_policy of a node in the valid_policy_node_set,
+				// create a child node whose parent is the node of depth n-1
+				// with the valid_policy anyPolicy.
+				$poids = array_diff($policies, $valid_policy_set);
+				foreach ($tree->_nodesAtDepth($state->index() - 1) as $parent) {
+					if ($parent->isAnyPolicy()) {
+						// Set the values in the child node as follows: 
+						// set the valid_policy to P-OID, set the qualifier_set
+						// to P-Q, and set the expected_policy_set to {P-OID}.
+						foreach ($poids as $poid) {
+							$parent->addChild(
+								new PolicyNode($poid, $pq, array($poid)));
+						}
+						break;
+					}
+				}
+				// c. Delete the node of depth n with the
+				// valid_policy anyPolicy.
+				$node->remove();
+			}
+		}
+		// 4. If there is a node in the valid_policy_tree of depth n-1 or less
+		// without any child nodes, delete that node. Repeat this step until
+		// there are no nodes of depth n-1 or less without children.
+		if (!$tree->_pruneTree($state->index() - 1)) {
+			return $state->withoutValidPolicyTree();
+		}
+		return $state->withValidPolicyTree($tree);
+	}
     
-    /**
-     * Get policies at given policy tree depth.
-     *
-     * @param int $i Depth in range 1..n
-     * @return PolicyInformation[]
-     */
-    public function policiesAtDepth($i): array
-    {
-        $policies = array();
-        foreach ($this->_nodesAtDepth($i) as $node) {
-            $policies[] = new PolicyInformation($node->validPolicy(),
-                ...$node->qualifiers());
-        }
-        return $policies;
-    }
+	/**
+	 * Get policies at given policy tree depth.
+	 *
+	 * @param int $i Depth in range 1..n
+	 * @return PolicyInformation[]
+	 */
+	public function policiesAtDepth($i): array
+	{
+		$policies = array();
+		foreach ($this->_nodesAtDepth($i) as $node) {
+			$policies[] = new PolicyInformation($node->validPolicy(),
+				...$node->qualifiers());
+		}
+		return $policies;
+	}
     
-    /**
-     * Process single policy information.
-     *
-     * @param PolicyInformation $policy
-     * @param ValidatorState $state
-     */
-    protected function _processPolicy(PolicyInformation $policy,
-        ValidatorState $state)
-    {
-        $p_oid = $policy->oid();
-        $i = $state->index();
-        $match_count = 0;
-        // (d.1.i) for each node of depth i-1 in the valid_policy_tree...
-        foreach ($this->_nodesAtDepth($i - 1) as $node) {
-            // ...where P-OID is in the expected_policy_set
-            if ($node->hasExpectedPolicy($p_oid)) {
-                $node->addChild(
-                    new PolicyNode($p_oid, $policy->qualifiers(), array($p_oid)));
-                ++$match_count;
-            }
-        }
-        // (d.1.ii) if there was no match in step (i)...
-        if (!$match_count) {
-            // ...and the valid_policy_tree includes a node of depth i-1 with
-            // the valid_policy anyPolicy
-            foreach ($this->_nodesAtDepth($i - 1) as $node) {
-                if ($node->isAnyPolicy()) {
-                    $node->addChild(
-                        new PolicyNode($p_oid, $policy->qualifiers(),
-                            array($p_oid)));
-                }
-            }
-        }
-    }
+	/**
+	 * Process single policy information.
+	 *
+	 * @param PolicyInformation $policy
+	 * @param ValidatorState $state
+	 */
+	protected function _processPolicy(PolicyInformation $policy,
+		ValidatorState $state)
+	{
+		$p_oid = $policy->oid();
+		$i = $state->index();
+		$match_count = 0;
+		// (d.1.i) for each node of depth i-1 in the valid_policy_tree...
+		foreach ($this->_nodesAtDepth($i - 1) as $node) {
+			// ...where P-OID is in the expected_policy_set
+			if ($node->hasExpectedPolicy($p_oid)) {
+				$node->addChild(
+					new PolicyNode($p_oid, $policy->qualifiers(), array($p_oid)));
+				++$match_count;
+			}
+		}
+		// (d.1.ii) if there was no match in step (i)...
+		if (!$match_count) {
+			// ...and the valid_policy_tree includes a node of depth i-1 with
+			// the valid_policy anyPolicy
+			foreach ($this->_nodesAtDepth($i - 1) as $node) {
+				if ($node->isAnyPolicy()) {
+					$node->addChild(
+						new PolicyNode($p_oid, $policy->qualifiers(),
+							array($p_oid)));
+				}
+			}
+		}
+	}
     
-    /**
-     * Process anyPolicy policy information.
-     *
-     * @param PolicyInformation $policy
-     * @param Certificate $cert
-     * @param ValidatorState $state
-     */
-    protected function _processAnyPolicy(PolicyInformation $policy,
-        Certificate $cert, ValidatorState $state)
-    {
-        $i = $state->index();
-        // if (a) inhibit_anyPolicy is greater than 0 or
-        // (b) i<n and the certificate is self-issued
-        if (!($state->inhibitAnyPolicy() > 0 ||
-             ($i < $state->pathLength() && $cert->isSelfIssued()))) {
-            return;
-        }
-        // for each node in the valid_policy_tree of depth i-1
-        foreach ($this->_nodesAtDepth($i - 1) as $node) {
-            // for each value in the expected_policy_set
-            foreach ($node->expectedPolicies() as $p_oid) {
-                // that does not appear in a child node
-                if (!$node->hasChildWithValidPolicy($p_oid)) {
-                    $node->addChild(
-                        new PolicyNode($p_oid, $policy->qualifiers(),
-                            array($p_oid)));
-                }
-            }
-        }
-    }
+	/**
+	 * Process anyPolicy policy information.
+	 *
+	 * @param PolicyInformation $policy
+	 * @param Certificate $cert
+	 * @param ValidatorState $state
+	 */
+	protected function _processAnyPolicy(PolicyInformation $policy,
+		Certificate $cert, ValidatorState $state)
+	{
+		$i = $state->index();
+		// if (a) inhibit_anyPolicy is greater than 0 or
+		// (b) i<n and the certificate is self-issued
+		if (!($state->inhibitAnyPolicy() > 0 ||
+			 ($i < $state->pathLength() && $cert->isSelfIssued()))) {
+			return;
+		}
+		// for each node in the valid_policy_tree of depth i-1
+		foreach ($this->_nodesAtDepth($i - 1) as $node) {
+			// for each value in the expected_policy_set
+			foreach ($node->expectedPolicies() as $p_oid) {
+				// that does not appear in a child node
+				if (!$node->hasChildWithValidPolicy($p_oid)) {
+					$node->addChild(
+						new PolicyNode($p_oid, $policy->qualifiers(),
+							array($p_oid)));
+				}
+			}
+		}
+	}
     
-    /**
-     * Apply policy mappings to the policy tree.
-     *
-     * @param Certificate $cert
-     * @param ValidatorState $state
-     */
-    protected function _applyMappings(Certificate $cert, ValidatorState $state)
-    {
-        $policy_mappings = $cert->tbsCertificate()
-            ->extensions()
-            ->policyMappings();
-        // (6.1.4. b.1.) for each node in the valid_policy_tree of depth i...
-        foreach ($policy_mappings->flattenedMappings() as $idp => $sdps) {
-            $match_count = 0;
-            foreach ($this->_nodesAtDepth($state->index()) as $node) {
-                // ...where ID-P is the valid_policy
-                if ($node->validPolicy() == $idp) {
-                    // set expected_policy_set to the set of subjectDomainPolicy
-                    // values that are specified as equivalent to ID-P by
-                    // the policy mappings extension
-                    $node->setExpectedPolicies(...$sdps);
-                    ++$match_count;
-                }
-            }
-            // if no node of depth i in the valid_policy_tree has
-            // a valid_policy of ID-P...
-            if (!$match_count) {
-                $this->_applyAnyPolicyMapping($cert, $state, $idp, $sdps);
-            }
-        }
-    }
+	/**
+	 * Apply policy mappings to the policy tree.
+	 *
+	 * @param Certificate $cert
+	 * @param ValidatorState $state
+	 */
+	protected function _applyMappings(Certificate $cert, ValidatorState $state)
+	{
+		$policy_mappings = $cert->tbsCertificate()
+			->extensions()
+			->policyMappings();
+		// (6.1.4. b.1.) for each node in the valid_policy_tree of depth i...
+		foreach ($policy_mappings->flattenedMappings() as $idp => $sdps) {
+			$match_count = 0;
+			foreach ($this->_nodesAtDepth($state->index()) as $node) {
+				// ...where ID-P is the valid_policy
+				if ($node->validPolicy() == $idp) {
+					// set expected_policy_set to the set of subjectDomainPolicy
+					// values that are specified as equivalent to ID-P by
+					// the policy mappings extension
+					$node->setExpectedPolicies(...$sdps);
+					++$match_count;
+				}
+			}
+			// if no node of depth i in the valid_policy_tree has
+			// a valid_policy of ID-P...
+			if (!$match_count) {
+				$this->_applyAnyPolicyMapping($cert, $state, $idp, $sdps);
+			}
+		}
+	}
     
-    /**
-     * Apply anyPolicy mapping to the policy tree as specified in 6.1.4 (b)(1).
-     *
-     * @param Certificate $cert
-     * @param ValidatorState $state
-     * @param string $idp OID of the issuer domain policy
-     * @param array $sdps Array of subject domain policy OIDs
-     */
-    protected function _applyAnyPolicyMapping(Certificate $cert,
-        ValidatorState $state, $idp, array $sdps)
-    {
-        // (6.1.4. b.1.) ...but there is a node of depth i with
-        // a valid_policy of anyPolicy
-        foreach ($this->_nodesAtDepth($state->index()) as $node) {
-            if ($node->isAnyPolicy()) {
-                // then generate a child node of the node of depth i-1
-                // that has a valid_policy of anyPolicy as follows...
-                foreach ($this->_nodesAtDepth($state->index() - 1) as $node) {
-                    if ($node->isAnyPolicy()) {
-                        // try to fetch qualifiers of anyPolicy certificate policy
-                        $qualifiers = array();
-                        try {
-                            $qualifiers = $cert->tbsCertificate()
-                                ->extensions()
-                                ->certificatePolicies()
-                                ->anyPolicy()
-                                ->qualifiers();
-                        } catch (\LogicException $e) {
-                            // if there's no policies or no qualifiers
-                        }
-                        $node->addChild(
-                            new PolicyNode($idp, $qualifiers, $sdps));
-                        // bail after first anyPolicy has been processed
-                        break;
-                    }
-                }
-                // bail after first anyPolicy has been processed
-                break;
-            }
-        }
-    }
+	/**
+	 * Apply anyPolicy mapping to the policy tree as specified in 6.1.4 (b)(1).
+	 *
+	 * @param Certificate $cert
+	 * @param ValidatorState $state
+	 * @param string $idp OID of the issuer domain policy
+	 * @param array $sdps Array of subject domain policy OIDs
+	 */
+	protected function _applyAnyPolicyMapping(Certificate $cert,
+		ValidatorState $state, $idp, array $sdps)
+	{
+		// (6.1.4. b.1.) ...but there is a node of depth i with
+		// a valid_policy of anyPolicy
+		foreach ($this->_nodesAtDepth($state->index()) as $node) {
+			if ($node->isAnyPolicy()) {
+				// then generate a child node of the node of depth i-1
+				// that has a valid_policy of anyPolicy as follows...
+				foreach ($this->_nodesAtDepth($state->index() - 1) as $node) {
+					if ($node->isAnyPolicy()) {
+						// try to fetch qualifiers of anyPolicy certificate policy
+						$qualifiers = array();
+						try {
+							$qualifiers = $cert->tbsCertificate()
+								->extensions()
+								->certificatePolicies()
+								->anyPolicy()
+								->qualifiers();
+						} catch (\LogicException $e) {
+							// if there's no policies or no qualifiers
+						}
+						$node->addChild(
+							new PolicyNode($idp, $qualifiers, $sdps));
+						// bail after first anyPolicy has been processed
+						break;
+					}
+				}
+				// bail after first anyPolicy has been processed
+				break;
+			}
+		}
+	}
     
-    /**
-     * Delete nodes as specified in 6.1.4 (b)(2).
-     *
-     * @param Certificate $cert
-     * @param ValidatorState $state
-     */
-    protected function _deleteMappings(Certificate $cert, ValidatorState $state)
-    {
-        $idps = $cert->tbsCertificate()
-            ->extensions()
-            ->policyMappings()
-            ->issuerDomainPolicies();
-        // delete each node of depth i in the valid_policy_tree
-        // where ID-P is the valid_policy
-        foreach ($this->_nodesAtDepth($state->index()) as $node) {
-            if (in_array($node->validPolicy(), $idps)) {
-                $node->remove();
-            }
-        }
-        $this->_pruneTree($state->index() - 1);
-    }
+	/**
+	 * Delete nodes as specified in 6.1.4 (b)(2).
+	 *
+	 * @param Certificate $cert
+	 * @param ValidatorState $state
+	 */
+	protected function _deleteMappings(Certificate $cert, ValidatorState $state)
+	{
+		$idps = $cert->tbsCertificate()
+			->extensions()
+			->policyMappings()
+			->issuerDomainPolicies();
+		// delete each node of depth i in the valid_policy_tree
+		// where ID-P is the valid_policy
+		foreach ($this->_nodesAtDepth($state->index()) as $node) {
+			if (in_array($node->validPolicy(), $idps)) {
+				$node->remove();
+			}
+		}
+		$this->_pruneTree($state->index() - 1);
+	}
     
-    /**
-     * Prune tree starting from given depth.
-     *
-     * @param int $depth
-     * @return int The number of nodes left in a tree
-     */
-    protected function _pruneTree($depth)
-    {
-        for ($i = $depth; $i > 0; --$i) {
-            foreach ($this->_nodesAtDepth($i) as $node) {
-                if (!count($node)) {
-                    $node->remove();
-                }
-            }
-        }
-        // if root has no children left
-        if (!count($this->_root)) {
-            $this->_root = null;
-            return 0;
-        }
-        return $this->_root->nodeCount();
-    }
+	/**
+	 * Prune tree starting from given depth.
+	 *
+	 * @param int $depth
+	 * @return int The number of nodes left in a tree
+	 */
+	protected function _pruneTree($depth)
+	{
+		for ($i = $depth; $i > 0; --$i) {
+			foreach ($this->_nodesAtDepth($i) as $node) {
+				if (!count($node)) {
+					$node->remove();
+				}
+			}
+		}
+		// if root has no children left
+		if (!count($this->_root)) {
+			$this->_root = null;
+			return 0;
+		}
+		return $this->_root->nodeCount();
+	}
     
-    /**
-     * Get all nodes at given depth.
-     *
-     * @param int $i
-     * @return PolicyNode[]
-     */
-    protected function _nodesAtDepth($i): array
-    {
-        if (!$this->_root) {
-            return array();
-        }
-        $depth = 0;
-        $nodes = array($this->_root);
-        while ($depth < $i) {
-            $nodes = self::_gatherChildren(...$nodes);
-            if (!count($nodes)) {
-                break;
-            }
-            ++$depth;
-        }
-        return $nodes;
-    }
+	/**
+	 * Get all nodes at given depth.
+	 *
+	 * @param int $i
+	 * @return PolicyNode[]
+	 */
+	protected function _nodesAtDepth($i): array
+	{
+		if (!$this->_root) {
+			return array();
+		}
+		$depth = 0;
+		$nodes = array($this->_root);
+		while ($depth < $i) {
+			$nodes = self::_gatherChildren(...$nodes);
+			if (!count($nodes)) {
+				break;
+			}
+			++$depth;
+		}
+		return $nodes;
+	}
     
-    /**
-     * Get the valid policy node set as specified in spec 6.1.5.(g)(iii)1.
-     *
-     * @return PolicyNode[]
-     */
-    protected function _validPolicyNodeSet(): array
-    {
-        // 1. Determine the set of policy nodes whose parent nodes have
-        // a valid_policy of anyPolicy. This is the valid_policy_node_set.
-        $set = array();
-        if (!$this->_root) {
-            return $set;
-        }
-        // for each node in a tree
-        $this->_root->walkNodes(
-            function (PolicyNode $node) use (&$set) {
-                $parents = $node->parents();
-                // node has parents
-                if (count($parents)) {
-                    // check that each ancestor is an anyPolicy node
-                    foreach ($parents as $ancestor) {
-                        if (!$ancestor->isAnyPolicy()) {
-                            return;
-                        }
-                    }
-                    $set[] = $node;
-                }
-            });
-        return $set;
-    }
+	/**
+	 * Get the valid policy node set as specified in spec 6.1.5.(g)(iii)1.
+	 *
+	 * @return PolicyNode[]
+	 */
+	protected function _validPolicyNodeSet(): array
+	{
+		// 1. Determine the set of policy nodes whose parent nodes have
+		// a valid_policy of anyPolicy. This is the valid_policy_node_set.
+		$set = array();
+		if (!$this->_root) {
+			return $set;
+		}
+		// for each node in a tree
+		$this->_root->walkNodes(
+			function (PolicyNode $node) use (&$set) {
+				$parents = $node->parents();
+				// node has parents
+				if (count($parents)) {
+					// check that each ancestor is an anyPolicy node
+					foreach ($parents as $ancestor) {
+						if (!$ancestor->isAnyPolicy()) {
+							return;
+						}
+					}
+					$set[] = $node;
+				}
+			});
+		return $set;
+	}
     
-    /**
-     * Gather all children of given nodes to a flattened array.
-     *
-     * @param PolicyNode ...$nodes
-     * @return PolicyNode[]
-     */
-    private static function _gatherChildren(PolicyNode ...$nodes): array
-    {
-        $children = array();
-        foreach ($nodes as $node) {
-            $children = array_merge($children, $node->children());
-        }
-        return $children;
-    }
+	/**
+	 * Gather all children of given nodes to a flattened array.
+	 *
+	 * @param PolicyNode ...$nodes
+	 * @return PolicyNode[]
+	 */
+	private static function _gatherChildren(PolicyNode ...$nodes): array
+	{
+		$children = array();
+		foreach ($nodes as $node) {
+			$children = array_merge($children, $node->children());
+		}
+		return $children;
+	}
 }

Please login to merge, or discard this patch.

Spacing +4 added lines, -4 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@  discard block
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\Policy;
 
@@ -94,7 +94,7 @@  discard block
 block discarded – undo
         // is not in the user-initial-policy-set and is not anyPolicy,
         // delete this node and all its children.
         $valid_policy_node_set = array_filter($valid_policy_node_set,
-            function (PolicyNode $node) use ($policies) {
+            function(PolicyNode $node) use ($policies) {
                 if ($node->isAnyPolicy()) {
                     return true;
                 }
@@ -106,7 +106,7 @@  discard block
 block discarded – undo
             });
         // array of valid policy OIDs
         $valid_policy_set = array_map(
-            function (PolicyNode $node) {
+            function(PolicyNode $node) {
                 return $node->validPolicy();
             }, $valid_policy_node_set);
         // 3. If the valid_policy_tree includes a node of depth n with
@@ -387,7 +387,7 @@  discard block
 block discarded – undo
         }
         // for each node in a tree
         $this->_root->walkNodes(
-            function (PolicyNode $node) use (&$set) {
+            function(PolicyNode $node) use (&$set) {
                 $parents = $node->parents();
                 // node has parents
                 if (count($parents)) {

Please login to merge, or discard this patch.

lib/X509/CertificationPath/CertificationPath.php 2 patches

Indentation +156 added lines, -156 removed lines patch added patch discarded remove patch

@@ -23,172 +23,172 @@
 block discarded – undo
  */
 class CertificationPath implements \Countable, \IteratorAggregate
 {
-    /**
-     * Certification path.
-     *
-     * @var Certificate[] $_certificates
-     */
-    protected $_certificates;
+	/**
+	 * Certification path.
+	 *
+	 * @var Certificate[] $_certificates
+	 */
+	protected $_certificates;
     
-    /**
-     * Constructor.
-     *
-     * @param Certificate ...$certificates Certificates from the trust anchor
-     *        to the target end-entity certificate
-     */
-    public function __construct(Certificate ...$certificates)
-    {
-        $this->_certificates = $certificates;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param Certificate ...$certificates Certificates from the trust anchor
+	 *        to the target end-entity certificate
+	 */
+	public function __construct(Certificate ...$certificates)
+	{
+		$this->_certificates = $certificates;
+	}
     
-    /**
-     * Initialize from a certificate chain.
-     *
-     * @param CertificateChain $chain
-     * @return self
-     */
-    public static function fromCertificateChain(CertificateChain $chain)
-    {
-        return new self(...array_reverse($chain->certificates(), false));
-    }
+	/**
+	 * Initialize from a certificate chain.
+	 *
+	 * @param CertificateChain $chain
+	 * @return self
+	 */
+	public static function fromCertificateChain(CertificateChain $chain)
+	{
+		return new self(...array_reverse($chain->certificates(), false));
+	}
     
-    /**
-     * Build certification path to given target.
-     *
-     * @param Certificate $target Target end-entity certificate
-     * @param CertificateBundle $trust_anchors List of trust anchors
-     * @param CertificateBundle|null $intermediate Optional intermediate
-     *        certificates
-     * @return self
-     */
-    public static function toTarget(Certificate $target,
-        CertificateBundle $trust_anchors, CertificateBundle $intermediate = null)
-    {
-        $builder = new CertificationPathBuilder($trust_anchors);
-        return $builder->shortestPathToTarget($target, $intermediate);
-    }
+	/**
+	 * Build certification path to given target.
+	 *
+	 * @param Certificate $target Target end-entity certificate
+	 * @param CertificateBundle $trust_anchors List of trust anchors
+	 * @param CertificateBundle|null $intermediate Optional intermediate
+	 *        certificates
+	 * @return self
+	 */
+	public static function toTarget(Certificate $target,
+		CertificateBundle $trust_anchors, CertificateBundle $intermediate = null)
+	{
+		$builder = new CertificationPathBuilder($trust_anchors);
+		return $builder->shortestPathToTarget($target, $intermediate);
+	}
     
-    /**
-     * Build certification path from given trust anchor to target certificate,
-     * using intermediate certificates from given bundle.
-     *
-     * @param Certificate $trust_anchor Trust anchor certificate
-     * @param Certificate $target Target end-entity certificate
-     * @param CertificateBundle|null $intermediate Optional intermediate
-     *        certificates
-     * @return self
-     */
-    public static function fromTrustAnchorToTarget(Certificate $trust_anchor,
-        Certificate $target, CertificateBundle $intermediate = null)
-    {
-        return self::toTarget($target, new CertificateBundle($trust_anchor),
-            $intermediate);
-    }
+	/**
+	 * Build certification path from given trust anchor to target certificate,
+	 * using intermediate certificates from given bundle.
+	 *
+	 * @param Certificate $trust_anchor Trust anchor certificate
+	 * @param Certificate $target Target end-entity certificate
+	 * @param CertificateBundle|null $intermediate Optional intermediate
+	 *        certificates
+	 * @return self
+	 */
+	public static function fromTrustAnchorToTarget(Certificate $trust_anchor,
+		Certificate $target, CertificateBundle $intermediate = null)
+	{
+		return self::toTarget($target, new CertificateBundle($trust_anchor),
+			$intermediate);
+	}
     
-    /**
-     * Get certificates.
-     *
-     * @return Certificate[]
-     */
-    public function certificates(): array
-    {
-        return $this->_certificates;
-    }
+	/**
+	 * Get certificates.
+	 *
+	 * @return Certificate[]
+	 */
+	public function certificates(): array
+	{
+		return $this->_certificates;
+	}
     
-    /**
-     * Get the trust anchor certificate from the path.
-     *
-     * @throws \LogicException If path is empty
-     * @return Certificate
-     */
-    public function trustAnchorCertificate(): Certificate
-    {
-        if (!count($this->_certificates)) {
-            throw new \LogicException("No certificates.");
-        }
-        return $this->_certificates[0];
-    }
+	/**
+	 * Get the trust anchor certificate from the path.
+	 *
+	 * @throws \LogicException If path is empty
+	 * @return Certificate
+	 */
+	public function trustAnchorCertificate(): Certificate
+	{
+		if (!count($this->_certificates)) {
+			throw new \LogicException("No certificates.");
+		}
+		return $this->_certificates[0];
+	}
     
-    /**
-     * Get the end-entity certificate from the path.
-     *
-     * @throws \LogicException If path is empty
-     * @return Certificate
-     */
-    public function endEntityCertificate(): Certificate
-    {
-        if (!count($this->_certificates)) {
-            throw new \LogicException("No certificates.");
-        }
-        return $this->_certificates[count($this->_certificates) - 1];
-    }
+	/**
+	 * Get the end-entity certificate from the path.
+	 *
+	 * @throws \LogicException If path is empty
+	 * @return Certificate
+	 */
+	public function endEntityCertificate(): Certificate
+	{
+		if (!count($this->_certificates)) {
+			throw new \LogicException("No certificates.");
+		}
+		return $this->_certificates[count($this->_certificates) - 1];
+	}
     
-    /**
-     * Get certification path as a certificate chain.
-     *
-     * @return CertificateChain
-     */
-    public function certificateChain(): CertificateChain
-    {
-        return new CertificateChain(
-            ...array_reverse($this->_certificates, false));
-    }
+	/**
+	 * Get certification path as a certificate chain.
+	 *
+	 * @return CertificateChain
+	 */
+	public function certificateChain(): CertificateChain
+	{
+		return new CertificateChain(
+			...array_reverse($this->_certificates, false));
+	}
     
-    /**
-     * Check whether certification path starts with one ore more given
-     * certificates in parameter order.
-     *
-     * @param Certificate ...$certs Certificates
-     * @return true
-     */
-    public function startsWith(Certificate ...$certs)
-    {
-        $n = count($certs);
-        if ($n > count($this->_certificates)) {
-            return false;
-        }
-        for ($i = 0; $i < $n; ++$i) {
-            if (!$certs[$i]->equals($this->_certificates[$i])) {
-                return false;
-            }
-        }
-        return true;
-    }
+	/**
+	 * Check whether certification path starts with one ore more given
+	 * certificates in parameter order.
+	 *
+	 * @param Certificate ...$certs Certificates
+	 * @return true
+	 */
+	public function startsWith(Certificate ...$certs)
+	{
+		$n = count($certs);
+		if ($n > count($this->_certificates)) {
+			return false;
+		}
+		for ($i = 0; $i < $n; ++$i) {
+			if (!$certs[$i]->equals($this->_certificates[$i])) {
+				return false;
+			}
+		}
+		return true;
+	}
     
-    /**
-     * Validate certification path.
-     *
-     * @param PathValidationConfig $config
-     * @param Crypto|null $crypto Crypto engine, use default if not set
-     * @throws Exception\PathValidationException
-     * @return PathValidation\PathValidationResult
-     */
-    public function validate(PathValidationConfig $config,
-         Crypto $crypto = null): PathValidation\PathValidationResult
-    {
-        $crypto = $crypto ?: Crypto::getDefault();
-        $validator = new PathValidator($crypto, $config, ...$this->_certificates);
-        return $validator->validate();
-    }
+	/**
+	 * Validate certification path.
+	 *
+	 * @param PathValidationConfig $config
+	 * @param Crypto|null $crypto Crypto engine, use default if not set
+	 * @throws Exception\PathValidationException
+	 * @return PathValidation\PathValidationResult
+	 */
+	public function validate(PathValidationConfig $config,
+		 Crypto $crypto = null): PathValidation\PathValidationResult
+	{
+		$crypto = $crypto ?: Crypto::getDefault();
+		$validator = new PathValidator($crypto, $config, ...$this->_certificates);
+		return $validator->validate();
+	}
     
-    /**
-     *
-     * @see \Countable::count()
-     * @return int
-     */
-    public function count(): int
-    {
-        return count($this->_certificates);
-    }
+	/**
+	 *
+	 * @see \Countable::count()
+	 * @return int
+	 */
+	public function count(): int
+	{
+		return count($this->_certificates);
+	}
     
-    /**
-     * Get iterator for certificates.
-     *
-     * @see \IteratorAggregate::getIterator()
-     * @return \ArrayIterator
-     */
-    public function getIterator(): \ArrayIterator
-    {
-        return new \ArrayIterator($this->_certificates);
-    }
+	/**
+	 * Get iterator for certificates.
+	 *
+	 * @see \IteratorAggregate::getIterator()
+	 * @return \ArrayIterator
+	 */
+	public function getIterator(): \ArrayIterator
+	{
+		return new \ArrayIterator($this->_certificates);
+	}
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath;
 

Please login to merge, or discard this patch.

lib/X509/CertificationPath/PathValidation/ValidatorState.php 2 patches

Indentation +480 added lines, -480 removed lines patch added patch discarded remove patch

@@ -20,484 +20,484 @@
 block discarded – undo
  */
 class ValidatorState
 {
-    /**
-     * Length of the certification path (n).
-     *
-     * @var int $_pathLength
-     */
-    protected $_pathLength;
-    
-    /**
-     * Current index in the certification path in the range of 1..n (i).
-     *
-     * @var int $_index
-     */
-    protected $_index;
-    
-    /**
-     * Valid policy tree (valid_policy_tree).
-     *
-     * A tree of certificate policies with their optional qualifiers.
-     * Each of the leaves of the tree represents a valid policy at this stage in
-     * the certification path validation.
-     * Once the tree is set to NULL, policy processing ceases.
-     *
-     * @var PolicyTree|null $_validPolicyTree
-     */
-    protected $_validPolicyTree;
-    
-    /**
-     * Permitted subtrees (permitted_subtrees).
-     *
-     * A set of root names for each name type defining a set of subtrees within
-     * which all subject names in subsequent certificates in the certification
-     * path must fall.
-     *
-     * @var mixed $_permittedSubtrees
-     */
-    protected $_permittedSubtrees;
-    
-    /**
-     * Excluded subtrees (excluded_subtrees).
-     *
-     * A set of root names for each name type defining a set of subtrees within
-     * which no subject name in subsequent certificates in the certification
-     * path may fall.
-     *
-     * @var mixed $_excludedSubtrees
-     */
-    protected $_excludedSubtrees;
-    
-    /**
-     * Explicit policy (explicit_policy).
-     *
-     * An integer that indicates if a non-NULL valid_policy_tree is required.
-     *
-     * @var int $_explicitPolicy
-     */
-    protected $_explicitPolicy;
-    
-    /**
-     * Inhibit anyPolicy (inhibit_anyPolicy).
-     *
-     * An integer that indicates whether the anyPolicy policy identifier is
-     * considered a match.
-     *
-     * @var int $_inhibitAnyPolicy
-     */
-    protected $_inhibitAnyPolicy;
-    
-    /**
-     * Policy mapping (policy_mapping).
-     *
-     * An integer that indicates if policy mapping is permitted.
-     *
-     * @var int $_policyMapping
-     */
-    protected $_policyMapping;
-    
-    /**
-     * Working public key algorithm (working_public_key_algorithm).
-     *
-     * The digital signature algorithm used to verify the signature of a
-     * certificate.
-     *
-     * @var AlgorithmIdentifierType $_workingPublicKeyAlgorithm
-     */
-    protected $_workingPublicKeyAlgorithm;
-    
-    /**
-     * Working public key (working_public_key).
-     *
-     * The public key used to verify the signature of a certificate.
-     *
-     * @var PublicKeyInfo $_workingPublicKey
-     */
-    protected $_workingPublicKey;
-    
-    /**
-     * Working public key parameters (working_public_key_parameters).
-     *
-     * Parameters associated with the current public key that may be required to
-     * verify a signature.
-     *
-     * @var Element|null $_workingPublicKeyParameters
-     */
-    protected $_workingPublicKeyParameters;
-    
-    /**
-     * Working issuer name (working_issuer_name).
-     *
-     * The issuer distinguished name expected in the next certificate in the
-     * chain.
-     *
-     * @var Name $_workingIssuerName
-     */
-    protected $_workingIssuerName;
-    
-    /**
-     * Maximum certification path length (max_path_length).
-     *
-     * @var int $_maxPathLength
-     */
-    protected $_maxPathLength;
-    
-    /**
-     * Constructor.
-     */
-    protected function __construct()
-    {
-    }
-    
-    /**
-     * Initialize variables according to RFC 5280 6.1.2.
-     *
-     * @link https://tools.ietf.org/html/rfc5280#section-6.1.2
-     * @param PathValidationConfig $config
-     * @param Certificate $trust_anchor Trust anchor certificate
-     * @param int $n Number of certificates in the certification path
-     * @return self
-     */
-    public static function initialize(PathValidationConfig $config,
-        Certificate $trust_anchor, $n)
-    {
-        $state = new self();
-        $state->_pathLength = $n;
-        $state->_index = 1;
-        $state->_validPolicyTree = new PolicyTree(PolicyNode::anyPolicyNode());
-        $state->_permittedSubtrees = null;
-        $state->_excludedSubtrees = null;
-        $state->_explicitPolicy = $config->explicitPolicy() ? 0 : $n + 1;
-        $state->_inhibitAnyPolicy = $config->anyPolicyInhibit() ? 0 : $n + 1;
-        $state->_policyMapping = $config->policyMappingInhibit() ? 0 : $n + 1;
-        $state->_workingPublicKeyAlgorithm = $trust_anchor->signatureAlgorithm();
-        $tbsCert = $trust_anchor->tbsCertificate();
-        $state->_workingPublicKey = $tbsCert->subjectPublicKeyInfo();
-        $state->_workingPublicKeyParameters = self::getAlgorithmParameters(
-            $state->_workingPublicKey->algorithmIdentifier());
-        $state->_workingIssuerName = $tbsCert->issuer();
-        $state->_maxPathLength = $config->maxLength();
-        return $state;
-    }
-    
-    /**
-     * Get self with current certification path index set.
-     *
-     * @param int $index
-     * @return self
-     */
-    public function withIndex($index)
-    {
-        $state = clone $this;
-        $state->_index = $index;
-        return $state;
-    }
-    
-    /**
-     * Get self with valid_policy_tree.
-     *
-     * @param PolicyTree $policy_tree
-     * @return self
-     */
-    public function withValidPolicyTree(PolicyTree $policy_tree)
-    {
-        $state = clone $this;
-        $state->_validPolicyTree = $policy_tree;
-        return $state;
-    }
-    
-    /**
-     * Get self with valid_policy_tree set to null.
-     *
-     * @return self
-     */
-    public function withoutValidPolicyTree()
-    {
-        $state = clone $this;
-        $state->_validPolicyTree = null;
-        return $state;
-    }
-    
-    /**
-     * Get self with explicit_policy.
-     *
-     * @param int $num
-     * @return self
-     */
-    public function withExplicitPolicy($num)
-    {
-        $state = clone $this;
-        $state->_explicitPolicy = $num;
-        return $state;
-    }
-    
-    /**
-     * Get self with inhibit_anyPolicy.
-     *
-     * @param int $num
-     * @return self
-     */
-    public function withInhibitAnyPolicy($num)
-    {
-        $state = clone $this;
-        $state->_inhibitAnyPolicy = $num;
-        return $state;
-    }
-    
-    /**
-     * Get self with policy_mapping.
-     *
-     * @param int $num
-     * @return self
-     */
-    public function withPolicyMapping($num)
-    {
-        $state = clone $this;
-        $state->_policyMapping = $num;
-        return $state;
-    }
-    
-    /**
-     * Get self with working_public_key_algorithm.
-     *
-     * @param AlgorithmIdentifierType $algo
-     * @return self
-     */
-    public function withWorkingPublicKeyAlgorithm(AlgorithmIdentifierType $algo)
-    {
-        $state = clone $this;
-        $state->_workingPublicKeyAlgorithm = $algo;
-        return $state;
-    }
-    
-    /**
-     * Get self with working_public_key.
-     *
-     * @param PublicKeyInfo $pubkey_info
-     * @return self
-     */
-    public function withWorkingPublicKey(PublicKeyInfo $pubkey_info)
-    {
-        $state = clone $this;
-        $state->_workingPublicKey = $pubkey_info;
-        return $state;
-    }
-    
-    /**
-     * Get self with working_public_key_parameters.
-     *
-     * @param Element|null $params
-     * @return self
-     */
-    public function withWorkingPublicKeyParameters(Element $params = null)
-    {
-        $state = clone $this;
-        $state->_workingPublicKeyParameters = $params;
-        return $state;
-    }
-    
-    /**
-     * Get self with working_issuer_name.
-     *
-     * @param Name $issuer
-     * @return self
-     */
-    public function withWorkingIssuerName(Name $issuer)
-    {
-        $state = clone $this;
-        $state->_workingIssuerName = $issuer;
-        return $state;
-    }
-    
-    /**
-     * Get self with max_path_length.
-     *
-     * @param int $length
-     * @return self
-     */
-    public function withMaxPathLength($length)
-    {
-        $state = clone $this;
-        $state->_maxPathLength = $length;
-        return $state;
-    }
-    
-    /**
-     * Get the certification path length (n).
-     *
-     * @return int
-     */
-    public function pathLength(): int
-    {
-        return $this->_pathLength;
-    }
-    
-    /**
-     * Get the current index in certification path in the range of 1..n.
-     *
-     * @return int
-     */
-    public function index(): int
-    {
-        return $this->_index;
-    }
-    
-    /**
-     * Check whether valid_policy_tree is present.
-     *
-     * @return bool
-     */
-    public function hasValidPolicyTree(): bool
-    {
-        return isset($this->_validPolicyTree);
-    }
-    
-    /**
-     * Get valid_policy_tree.
-     *
-     * @throws \LogicException
-     * @return PolicyTree
-     */
-    public function validPolicyTree(): PolicyTree
-    {
-        if (!$this->hasValidPolicyTree()) {
-            throw new \LogicException("valid_policy_tree not set.");
-        }
-        return $this->_validPolicyTree;
-    }
-    
-    /**
-     * Get permitted_subtrees.
-     *
-     * @return mixed
-     */
-    public function permittedSubtrees()
-    {
-        return $this->_permittedSubtrees;
-    }
-    
-    /**
-     * Get excluded_subtrees.
-     *
-     * @return mixed
-     */
-    public function excludedSubtrees()
-    {
-        return $this->_excludedSubtrees;
-    }
-    
-    /**
-     * Get explicit_policy.
-     *
-     * @return int
-     */
-    public function explicitPolicy()
-    {
-        return $this->_explicitPolicy;
-    }
-    
-    /**
-     * Get inhibit_anyPolicy.
-     *
-     * @return int
-     */
-    public function inhibitAnyPolicy(): int
-    {
-        return $this->_inhibitAnyPolicy;
-    }
-    
-    /**
-     * Get policy_mapping.
-     *
-     * @return int
-     */
-    public function policyMapping(): int
-    {
-        return $this->_policyMapping;
-    }
-    
-    /**
-     * Get working_public_key_algorithm.
-     *
-     * @return AlgorithmIdentifierType
-     */
-    public function workingPublicKeyAlgorithm(): AlgorithmIdentifierType
-    {
-        return $this->_workingPublicKeyAlgorithm;
-    }
-    
-    /**
-     * Get working_public_key.
-     *
-     * @return PublicKeyInfo
-     */
-    public function workingPublicKey(): PublicKeyInfo
-    {
-        return $this->_workingPublicKey;
-    }
-    
-    /**
-     * Get working_public_key_parameters.
-     *
-     * @return Element|null
-     */
-    public function workingPublicKeyParameters()
-    {
-        return $this->_workingPublicKeyParameters;
-    }
-    
-    /**
-     * Get working_issuer_name.
-     *
-     * @return Name
-     */
-    public function workingIssuerName(): Name
-    {
-        return $this->_workingIssuerName;
-    }
-    
-    /**
-     * Get maximum certification path length.
-     *
-     * @return int
-     */
-    public function maxPathLength(): int
-    {
-        return $this->_maxPathLength;
-    }
-    
-    /**
-     * Check whether processing the final certificate of the certification path.
-     *
-     * @return bool
-     */
-    public function isFinal(): bool
-    {
-        return $this->_index == $this->_pathLength;
-    }
-    
-    /**
-     * Get the path validation result.
-     *
-     * @param Certificate[] $certificates Certificates in a certification path
-     * @return PathValidationResult
-     */
-    public function getResult(array $certificates): PathValidationResult
-    {
-        return new PathValidationResult($certificates, $this->_validPolicyTree,
-            $this->_workingPublicKey, $this->_workingPublicKeyAlgorithm,
-            $this->_workingPublicKeyParameters);
-    }
-    
-    /**
-     * Get ASN.1 parameters from algorithm identifier.
-     *
-     * @param AlgorithmIdentifierType $algo
-     * @return Element|null ASN.1 element or null if parameters are omitted
-     */
-    public static function getAlgorithmParameters(AlgorithmIdentifierType $algo)
-    {
-        $seq = $algo->toASN1();
-        return $seq->has(1) ? $seq->at(1)->asElement() : null;
-    }
+	/**
+	 * Length of the certification path (n).
+	 *
+	 * @var int $_pathLength
+	 */
+	protected $_pathLength;
+    
+	/**
+	 * Current index in the certification path in the range of 1..n (i).
+	 *
+	 * @var int $_index
+	 */
+	protected $_index;
+    
+	/**
+	 * Valid policy tree (valid_policy_tree).
+	 *
+	 * A tree of certificate policies with their optional qualifiers.
+	 * Each of the leaves of the tree represents a valid policy at this stage in
+	 * the certification path validation.
+	 * Once the tree is set to NULL, policy processing ceases.
+	 *
+	 * @var PolicyTree|null $_validPolicyTree
+	 */
+	protected $_validPolicyTree;
+    
+	/**
+	 * Permitted subtrees (permitted_subtrees).
+	 *
+	 * A set of root names for each name type defining a set of subtrees within
+	 * which all subject names in subsequent certificates in the certification
+	 * path must fall.
+	 *
+	 * @var mixed $_permittedSubtrees
+	 */
+	protected $_permittedSubtrees;
+    
+	/**
+	 * Excluded subtrees (excluded_subtrees).
+	 *
+	 * A set of root names for each name type defining a set of subtrees within
+	 * which no subject name in subsequent certificates in the certification
+	 * path may fall.
+	 *
+	 * @var mixed $_excludedSubtrees
+	 */
+	protected $_excludedSubtrees;
+    
+	/**
+	 * Explicit policy (explicit_policy).
+	 *
+	 * An integer that indicates if a non-NULL valid_policy_tree is required.
+	 *
+	 * @var int $_explicitPolicy
+	 */
+	protected $_explicitPolicy;
+    
+	/**
+	 * Inhibit anyPolicy (inhibit_anyPolicy).
+	 *
+	 * An integer that indicates whether the anyPolicy policy identifier is
+	 * considered a match.
+	 *
+	 * @var int $_inhibitAnyPolicy
+	 */
+	protected $_inhibitAnyPolicy;
+    
+	/**
+	 * Policy mapping (policy_mapping).
+	 *
+	 * An integer that indicates if policy mapping is permitted.
+	 *
+	 * @var int $_policyMapping
+	 */
+	protected $_policyMapping;
+    
+	/**
+	 * Working public key algorithm (working_public_key_algorithm).
+	 *
+	 * The digital signature algorithm used to verify the signature of a
+	 * certificate.
+	 *
+	 * @var AlgorithmIdentifierType $_workingPublicKeyAlgorithm
+	 */
+	protected $_workingPublicKeyAlgorithm;
+    
+	/**
+	 * Working public key (working_public_key).
+	 *
+	 * The public key used to verify the signature of a certificate.
+	 *
+	 * @var PublicKeyInfo $_workingPublicKey
+	 */
+	protected $_workingPublicKey;
+    
+	/**
+	 * Working public key parameters (working_public_key_parameters).
+	 *
+	 * Parameters associated with the current public key that may be required to
+	 * verify a signature.
+	 *
+	 * @var Element|null $_workingPublicKeyParameters
+	 */
+	protected $_workingPublicKeyParameters;
+    
+	/**
+	 * Working issuer name (working_issuer_name).
+	 *
+	 * The issuer distinguished name expected in the next certificate in the
+	 * chain.
+	 *
+	 * @var Name $_workingIssuerName
+	 */
+	protected $_workingIssuerName;
+    
+	/**
+	 * Maximum certification path length (max_path_length).
+	 *
+	 * @var int $_maxPathLength
+	 */
+	protected $_maxPathLength;
+    
+	/**
+	 * Constructor.
+	 */
+	protected function __construct()
+	{
+	}
+    
+	/**
+	 * Initialize variables according to RFC 5280 6.1.2.
+	 *
+	 * @link https://tools.ietf.org/html/rfc5280#section-6.1.2
+	 * @param PathValidationConfig $config
+	 * @param Certificate $trust_anchor Trust anchor certificate
+	 * @param int $n Number of certificates in the certification path
+	 * @return self
+	 */
+	public static function initialize(PathValidationConfig $config,
+		Certificate $trust_anchor, $n)
+	{
+		$state = new self();
+		$state->_pathLength = $n;
+		$state->_index = 1;
+		$state->_validPolicyTree = new PolicyTree(PolicyNode::anyPolicyNode());
+		$state->_permittedSubtrees = null;
+		$state->_excludedSubtrees = null;
+		$state->_explicitPolicy = $config->explicitPolicy() ? 0 : $n + 1;
+		$state->_inhibitAnyPolicy = $config->anyPolicyInhibit() ? 0 : $n + 1;
+		$state->_policyMapping = $config->policyMappingInhibit() ? 0 : $n + 1;
+		$state->_workingPublicKeyAlgorithm = $trust_anchor->signatureAlgorithm();
+		$tbsCert = $trust_anchor->tbsCertificate();
+		$state->_workingPublicKey = $tbsCert->subjectPublicKeyInfo();
+		$state->_workingPublicKeyParameters = self::getAlgorithmParameters(
+			$state->_workingPublicKey->algorithmIdentifier());
+		$state->_workingIssuerName = $tbsCert->issuer();
+		$state->_maxPathLength = $config->maxLength();
+		return $state;
+	}
+    
+	/**
+	 * Get self with current certification path index set.
+	 *
+	 * @param int $index
+	 * @return self
+	 */
+	public function withIndex($index)
+	{
+		$state = clone $this;
+		$state->_index = $index;
+		return $state;
+	}
+    
+	/**
+	 * Get self with valid_policy_tree.
+	 *
+	 * @param PolicyTree $policy_tree
+	 * @return self
+	 */
+	public function withValidPolicyTree(PolicyTree $policy_tree)
+	{
+		$state = clone $this;
+		$state->_validPolicyTree = $policy_tree;
+		return $state;
+	}
+    
+	/**
+	 * Get self with valid_policy_tree set to null.
+	 *
+	 * @return self
+	 */
+	public function withoutValidPolicyTree()
+	{
+		$state = clone $this;
+		$state->_validPolicyTree = null;
+		return $state;
+	}
+    
+	/**
+	 * Get self with explicit_policy.
+	 *
+	 * @param int $num
+	 * @return self
+	 */
+	public function withExplicitPolicy($num)
+	{
+		$state = clone $this;
+		$state->_explicitPolicy = $num;
+		return $state;
+	}
+    
+	/**
+	 * Get self with inhibit_anyPolicy.
+	 *
+	 * @param int $num
+	 * @return self
+	 */
+	public function withInhibitAnyPolicy($num)
+	{
+		$state = clone $this;
+		$state->_inhibitAnyPolicy = $num;
+		return $state;
+	}
+    
+	/**
+	 * Get self with policy_mapping.
+	 *
+	 * @param int $num
+	 * @return self
+	 */
+	public function withPolicyMapping($num)
+	{
+		$state = clone $this;
+		$state->_policyMapping = $num;
+		return $state;
+	}
+    
+	/**
+	 * Get self with working_public_key_algorithm.
+	 *
+	 * @param AlgorithmIdentifierType $algo
+	 * @return self
+	 */
+	public function withWorkingPublicKeyAlgorithm(AlgorithmIdentifierType $algo)
+	{
+		$state = clone $this;
+		$state->_workingPublicKeyAlgorithm = $algo;
+		return $state;
+	}
+    
+	/**
+	 * Get self with working_public_key.
+	 *
+	 * @param PublicKeyInfo $pubkey_info
+	 * @return self
+	 */
+	public function withWorkingPublicKey(PublicKeyInfo $pubkey_info)
+	{
+		$state = clone $this;
+		$state->_workingPublicKey = $pubkey_info;
+		return $state;
+	}
+    
+	/**
+	 * Get self with working_public_key_parameters.
+	 *
+	 * @param Element|null $params
+	 * @return self
+	 */
+	public function withWorkingPublicKeyParameters(Element $params = null)
+	{
+		$state = clone $this;
+		$state->_workingPublicKeyParameters = $params;
+		return $state;
+	}
+    
+	/**
+	 * Get self with working_issuer_name.
+	 *
+	 * @param Name $issuer
+	 * @return self
+	 */
+	public function withWorkingIssuerName(Name $issuer)
+	{
+		$state = clone $this;
+		$state->_workingIssuerName = $issuer;
+		return $state;
+	}
+    
+	/**
+	 * Get self with max_path_length.
+	 *
+	 * @param int $length
+	 * @return self
+	 */
+	public function withMaxPathLength($length)
+	{
+		$state = clone $this;
+		$state->_maxPathLength = $length;
+		return $state;
+	}
+    
+	/**
+	 * Get the certification path length (n).
+	 *
+	 * @return int
+	 */
+	public function pathLength(): int
+	{
+		return $this->_pathLength;
+	}
+    
+	/**
+	 * Get the current index in certification path in the range of 1..n.
+	 *
+	 * @return int
+	 */
+	public function index(): int
+	{
+		return $this->_index;
+	}
+    
+	/**
+	 * Check whether valid_policy_tree is present.
+	 *
+	 * @return bool
+	 */
+	public function hasValidPolicyTree(): bool
+	{
+		return isset($this->_validPolicyTree);
+	}
+    
+	/**
+	 * Get valid_policy_tree.
+	 *
+	 * @throws \LogicException
+	 * @return PolicyTree
+	 */
+	public function validPolicyTree(): PolicyTree
+	{
+		if (!$this->hasValidPolicyTree()) {
+			throw new \LogicException("valid_policy_tree not set.");
+		}
+		return $this->_validPolicyTree;
+	}
+    
+	/**
+	 * Get permitted_subtrees.
+	 *
+	 * @return mixed
+	 */
+	public function permittedSubtrees()
+	{
+		return $this->_permittedSubtrees;
+	}
+    
+	/**
+	 * Get excluded_subtrees.
+	 *
+	 * @return mixed
+	 */
+	public function excludedSubtrees()
+	{
+		return $this->_excludedSubtrees;
+	}
+    
+	/**
+	 * Get explicit_policy.
+	 *
+	 * @return int
+	 */
+	public function explicitPolicy()
+	{
+		return $this->_explicitPolicy;
+	}
+    
+	/**
+	 * Get inhibit_anyPolicy.
+	 *
+	 * @return int
+	 */
+	public function inhibitAnyPolicy(): int
+	{
+		return $this->_inhibitAnyPolicy;
+	}
+    
+	/**
+	 * Get policy_mapping.
+	 *
+	 * @return int
+	 */
+	public function policyMapping(): int
+	{
+		return $this->_policyMapping;
+	}
+    
+	/**
+	 * Get working_public_key_algorithm.
+	 *
+	 * @return AlgorithmIdentifierType
+	 */
+	public function workingPublicKeyAlgorithm(): AlgorithmIdentifierType
+	{
+		return $this->_workingPublicKeyAlgorithm;
+	}
+    
+	/**
+	 * Get working_public_key.
+	 *
+	 * @return PublicKeyInfo
+	 */
+	public function workingPublicKey(): PublicKeyInfo
+	{
+		return $this->_workingPublicKey;
+	}
+    
+	/**
+	 * Get working_public_key_parameters.
+	 *
+	 * @return Element|null
+	 */
+	public function workingPublicKeyParameters()
+	{
+		return $this->_workingPublicKeyParameters;
+	}
+    
+	/**
+	 * Get working_issuer_name.
+	 *
+	 * @return Name
+	 */
+	public function workingIssuerName(): Name
+	{
+		return $this->_workingIssuerName;
+	}
+    
+	/**
+	 * Get maximum certification path length.
+	 *
+	 * @return int
+	 */
+	public function maxPathLength(): int
+	{
+		return $this->_maxPathLength;
+	}
+    
+	/**
+	 * Check whether processing the final certificate of the certification path.
+	 *
+	 * @return bool
+	 */
+	public function isFinal(): bool
+	{
+		return $this->_index == $this->_pathLength;
+	}
+    
+	/**
+	 * Get the path validation result.
+	 *
+	 * @param Certificate[] $certificates Certificates in a certification path
+	 * @return PathValidationResult
+	 */
+	public function getResult(array $certificates): PathValidationResult
+	{
+		return new PathValidationResult($certificates, $this->_validPolicyTree,
+			$this->_workingPublicKey, $this->_workingPublicKeyAlgorithm,
+			$this->_workingPublicKeyParameters);
+	}
+    
+	/**
+	 * Get ASN.1 parameters from algorithm identifier.
+	 *
+	 * @param AlgorithmIdentifierType $algo
+	 * @return Element|null ASN.1 element or null if parameters are omitted
+	 */
+	public static function getAlgorithmParameters(AlgorithmIdentifierType $algo)
+	{
+		$seq = $algo->toASN1();
+		return $seq->has(1) ? $seq->at(1)->asElement() : null;
+	}
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\PathValidation;
 

Please login to merge, or discard this patch.

lib/X509/CertificationPath/PathValidation/PathValidationResult.php 2 patches

Indentation +74 added lines, -74 removed lines patch added patch discarded remove patch

@@ -16,85 +16,85 @@
 block discarded – undo
  */
 class PathValidationResult
 {
-    /**
-     * Certificates in a certification path.
-     *
-     * @var \X509\Certificate\Certificate[] $_certificates
-     */
-    protected $_certificates;
+	/**
+	 * Certificates in a certification path.
+	 *
+	 * @var \X509\Certificate\Certificate[] $_certificates
+	 */
+	protected $_certificates;
     
-    /**
-     * Valid policy tree.
-     *
-     * @var \X509\CertificationPath\Policy\PolicyTree|null $_policyTree
-     */
-    protected $_policyTree;
+	/**
+	 * Valid policy tree.
+	 *
+	 * @var \X509\CertificationPath\Policy\PolicyTree|null $_policyTree
+	 */
+	protected $_policyTree;
     
-    /**
-     * End-entity certificate's public key.
-     *
-     * @var PublicKeyInfo
-     */
-    protected $_publicKeyInfo;
+	/**
+	 * End-entity certificate's public key.
+	 *
+	 * @var PublicKeyInfo
+	 */
+	protected $_publicKeyInfo;
     
-    /**
-     * Public key algorithm.
-     *
-     * @var AlgorithmIdentifierType
-     */
-    protected $_publicKeyAlgo;
+	/**
+	 * Public key algorithm.
+	 *
+	 * @var AlgorithmIdentifierType
+	 */
+	protected $_publicKeyAlgo;
     
-    /**
-     * Public key parameters.
-     *
-     * @var Element|null $_publicKeyParameters
-     */
-    protected $_publicKeyParameters;
+	/**
+	 * Public key parameters.
+	 *
+	 * @var Element|null $_publicKeyParameters
+	 */
+	protected $_publicKeyParameters;
     
-    /**
-     * Constructor.
-     *
-     * @param \X509\Certificate\Certificate[] $certificates Certificates in a
-     *        certification path
-     * @param \X509\CertificationPath\Policy\PolicyTree|null $policy_tree Valid
-     *        policy tree
-     * @param PublicKeyInfo $pubkey_info Public key of the end-entity
-     *        certificate
-     * @param AlgorithmIdentifierType $algo Public key algorithm of the
-     *        end-entity certificate
-     * @param Element|null $params Algorithm parameters
-     */
-    public function __construct(array $certificates, $policy_tree,
-        PublicKeyInfo $pubkey_info, AlgorithmIdentifierType $algo,
-        Element $params = null)
-    {
-        $this->_certificates = array_values($certificates);
-        $this->_policyTree = $policy_tree;
-        $this->_publicKeyInfo = $pubkey_info;
-        $this->_publicKeyAlgo = $algo;
-        $this->_publicKeyParameters = $params;
-    }
+	/**
+	 * Constructor.
+	 *
+	 * @param \X509\Certificate\Certificate[] $certificates Certificates in a
+	 *        certification path
+	 * @param \X509\CertificationPath\Policy\PolicyTree|null $policy_tree Valid
+	 *        policy tree
+	 * @param PublicKeyInfo $pubkey_info Public key of the end-entity
+	 *        certificate
+	 * @param AlgorithmIdentifierType $algo Public key algorithm of the
+	 *        end-entity certificate
+	 * @param Element|null $params Algorithm parameters
+	 */
+	public function __construct(array $certificates, $policy_tree,
+		PublicKeyInfo $pubkey_info, AlgorithmIdentifierType $algo,
+		Element $params = null)
+	{
+		$this->_certificates = array_values($certificates);
+		$this->_policyTree = $policy_tree;
+		$this->_publicKeyInfo = $pubkey_info;
+		$this->_publicKeyAlgo = $algo;
+		$this->_publicKeyParameters = $params;
+	}
     
-    /**
-     * Get end-entity certificate.
-     *
-     * @return \X509\Certificate\Certificate
-     */
-    public function certificate(): Certificate
-    {
-        return $this->_certificates[count($this->_certificates) - 1];
-    }
+	/**
+	 * Get end-entity certificate.
+	 *
+	 * @return \X509\Certificate\Certificate
+	 */
+	public function certificate(): Certificate
+	{
+		return $this->_certificates[count($this->_certificates) - 1];
+	}
     
-    /**
-     * Get certificate policies of the end-entity certificate.
-     *
-     * @return \X509\Certificate\Extension\CertificatePolicy\PolicyInformation[]
-     */
-    public function policies(): array
-    {
-        if (!$this->_policyTree) {
-            return array();
-        }
-        return $this->_policyTree->policiesAtDepth(count($this->_certificates));
-    }
+	/**
+	 * Get certificate policies of the end-entity certificate.
+	 *
+	 * @return \X509\Certificate\Extension\CertificatePolicy\PolicyInformation[]
+	 */
+	public function policies(): array
+	{
+		if (!$this->_policyTree) {
+			return array();
+		}
+		return $this->_policyTree->policiesAtDepth(count($this->_certificates));
+	}
 }

Please login to merge, or discard this patch.

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

@@ -1,6 +1,6 @@
 block discarded – undo
 <?php
 
-declare(strict_types=1);
+declare(strict_types = 1);
 
 namespace X509\CertificationPath\PathValidation;
 

Please login to merge, or discard this patch.

GitHub Access Token became invalid

Pull Request — master (#1)

Status

Category

Indentation +81 added lines, -81 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +200 added lines, -200 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +238 added lines, -238 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +393 added lines, -393 removed lines patch added patch discarded remove patch

Spacing +4 added lines, -4 removed lines patch added patch discarded remove patch

Indentation +156 added lines, -156 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +480 added lines, -480 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +74 added lines, -74 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

		@@ -16,94 +16,94 @@
		block discarded – undo
16	16	*/
17	17	class ExtensionRequestValue extends AttributeValue
18	18	{
19		- const OID = "1.2.840.113549.1.9.14";
	19	+ const OID = "1.2.840.113549.1.9.14";
20	20
21		- /**
22		- * Extensions.
23		- *
24		- * @var Extensions $_extensions
25		- */
26		- protected $_extensions;
	21	+ /**
	22	+ * Extensions.
	23	+ *
	24	+ * @var Extensions $_extensions
	25	+ */
	26	+ protected $_extensions;
27	27
28		- /**
29		- * Constructor.
30		- *
31		- * @param Extensions $extensions
32		- */
33		- public function __construct(Extensions $extensions)
34		- {
35		- $this->_extensions = $extensions;
36		- $this->_oid = self::OID;
37		- }
	28	+ /**
	29	+ * Constructor.
	30	+ *
	31	+ * @param Extensions $extensions
	32	+ */
	33	+ public function __construct(Extensions $extensions)
	34	+ {
	35	+ $this->_extensions = $extensions;
	36	+ $this->_oid = self::OID;
	37	+ }
38	38
39		- /**
40		- *
41		- * @see \X501\ASN1\AttributeValue\AttributeValue::fromASN1()
42		- * @param UnspecifiedType $el
43		- * @return self
44		- */
45		- public static function fromASN1(UnspecifiedType $el)
46		- {
47		- return new self(Extensions::fromASN1($el->asSequence()));
48		- }
	39	+ /**
	40	+ *
	41	+ * @see \X501\ASN1\AttributeValue\AttributeValue::fromASN1()
	42	+ * @param UnspecifiedType $el
	43	+ * @return self
	44	+ */
	45	+ public static function fromASN1(UnspecifiedType $el)
	46	+ {
	47	+ return new self(Extensions::fromASN1($el->asSequence()));
	48	+ }
49	49
50		- /**
51		- * Get requested extensions.
52		- *
53		- * @return Extensions
54		- */
55		- public function extensions(): Extensions
56		- {
57		- return $this->_extensions;
58		- }
	50	+ /**
	51	+ * Get requested extensions.
	52	+ *
	53	+ * @return Extensions
	54	+ */
	55	+ public function extensions(): Extensions
	56	+ {
	57	+ return $this->_extensions;
	58	+ }
59	59
60		- /**
61		- *
62		- * @see \X501\ASN1\AttributeValue\AttributeValue::toASN1()
63		- * @return \ASN1\Type\Constructed\Sequence
64		- */
65		- public function toASN1(): \ASN1\Type\Constructed\Sequence
66		- {
67		- return $this->_extensions->toASN1();
68		- }
	60	+ /**
	61	+ *
	62	+ * @see \X501\ASN1\AttributeValue\AttributeValue::toASN1()
	63	+ * @return \ASN1\Type\Constructed\Sequence
	64	+ */
	65	+ public function toASN1(): \ASN1\Type\Constructed\Sequence
	66	+ {
	67	+ return $this->_extensions->toASN1();
	68	+ }
69	69
70		- /**
71		- *
72		- * @see \X501\ASN1\AttributeValue\AttributeValue::stringValue()
73		- * @return string
74		- */
75		- public function stringValue(): string
76		- {
77		- return "#" . bin2hex($this->toASN1()->toDER());
78		- }
	70	+ /**
	71	+ *
	72	+ * @see \X501\ASN1\AttributeValue\AttributeValue::stringValue()
	73	+ * @return string
	74	+ */
	75	+ public function stringValue(): string
	76	+ {
	77	+ return "#" . bin2hex($this->toASN1()->toDER());
	78	+ }
79	79
80		- /**
81		- *
82		- * @see \X501\ASN1\AttributeValue\AttributeValue::equalityMatchingRule()
83		- * @return BinaryMatch
84		- */
85		- public function equalityMatchingRule(): BinaryMatch
86		- {
87		- return new BinaryMatch();
88		- }
	80	+ /**
	81	+ *
	82	+ * @see \X501\ASN1\AttributeValue\AttributeValue::equalityMatchingRule()
	83	+ * @return BinaryMatch
	84	+ */
	85	+ public function equalityMatchingRule(): BinaryMatch
	86	+ {
	87	+ return new BinaryMatch();
	88	+ }
89	89
90		- /**
91		- *
92		- * @see \X501\ASN1\AttributeValue\AttributeValue::rfc2253String()
93		- * @return string
94		- */
95		- public function rfc2253String(): string
96		- {
97		- return $this->stringValue();
98		- }
	90	+ /**
	91	+ *
	92	+ * @see \X501\ASN1\AttributeValue\AttributeValue::rfc2253String()
	93	+ * @return string
	94	+ */
	95	+ public function rfc2253String(): string
	96	+ {
	97	+ return $this->stringValue();
	98	+ }
99	99
100		- /**
101		- *
102		- * @see \X501\ASN1\AttributeValue\AttributeValue::_transcodedString()
103		- * @return string
104		- */
105		- protected function _transcodedString(): string
106		- {
107		- return $this->stringValue();
108		- }
	100	+ /**
	101	+ *
	102	+ * @see \X501\ASN1\AttributeValue\AttributeValue::_transcodedString()
	103	+ * @return string
	104	+ */
	105	+ protected function _transcodedString(): string
	106	+ {
	107	+ return $this->stringValue();
	108	+ }
109	109	}

		@@ -1,6 +1,6 @@
		block discarded – undo
1	1	<?php
2	2
3		-declare(strict_types=1);
	3	+declare(strict_types = 1);
4	4
5	5	namespace X509\CertificationRequest\Attribute;
6	6

		@@ -22,204 +22,204 @@
		block discarded – undo
22	22	*/
23	23	class CertificationRequestInfo
24	24	{
25		- const VERSION_1 = 0;
26		-
27		- /**
28		- * Version.
29		- *
30		- * @var int
31		- */
32		- protected $_version;
33		-
34		- /**
35		- * Subject.
36		- *
37		- * @var Name $_subject
38		- */
39		- protected $_subject;
40		-
41		- /**
42		- * Public key info.
43		- *
44		- * @var PublicKeyInfo $_subjectPKInfo
45		- */
46		- protected $_subjectPKInfo;
47		-
48		- /**
49		- * Attributes.
50		- *
51		- * @var Attributes\|null $_attributes
52		- */
53		- protected $_attributes;
54		-
55		- /**
56		- * Constructor.
57		- *
58		- * @param Name $subject Subject
59		- * @param PublicKeyInfo $pkinfo Public key info
60		- */
61		- public function __construct(Name $subject, PublicKeyInfo $pkinfo)
62		- {
63		- $this->_version = self::VERSION_1;
64		- $this->_subject = $subject;
65		- $this->_subjectPKInfo = $pkinfo;
66		- }
67		-
68		- /**
69		- * Initialize from ASN.1.
70		- *
71		- * @param Sequence $seq
72		- * @throws \UnexpectedValueException
73		- * @return self
74		- */
75		- public static function fromASN1(Sequence $seq)
76		- {
77		- $version = $seq->at(0)
78		- ->asInteger()
79		- ->number();
80		- if ($version != self::VERSION_1) {
81		- throw new \UnexpectedValueException(
82		- "Version $version not supported.");
83		- }
84		- $subject = Name::fromASN1($seq->at(1)->asSequence());
85		- $pkinfo = PublicKeyInfo::fromASN1($seq->at(2)->asSequence());
86		- $obj = new self($subject, $pkinfo);
87		- if ($seq->hasTagged(0)) {
88		- $obj->_attributes = Attributes::fromASN1(
89		- $seq->getTagged(0)
90		- ->asImplicit(Element::TYPE_SET)
91		- ->asSet());
92		- }
93		- return $obj;
94		- }
95		-
96		- /**
97		- * Get version.
98		- *
99		- * @return int
100		- */
101		- public function version(): int
102		- {
103		- return $this->_version;
104		- }
105		-
106		- /**
107		- * Get self with subject.
108		- *
109		- * @param Name $subject
110		- * @return self
111		- */
112		- public function withSubject(Name $subject)
113		- {
114		- $obj = clone $this;
115		- $obj->_subject = $subject;
116		- return $obj;
117		- }
118		-
119		- /**
120		- * Get subject.
121		- *
122		- * @return Name
123		- */
124		- public function subject(): Name
125		- {
126		- return $this->_subject;
127		- }
128		-
129		- /**
130		- * Get subject public key info.
131		- *
132		- * @return PublicKeyInfo
133		- */
134		- public function subjectPKInfo(): PublicKeyInfo
135		- {
136		- return $this->_subjectPKInfo;
137		- }
138		-
139		- /**
140		- * Whether certification request info has attributes.
141		- *
142		- * @return bool
143		- */
144		- public function hasAttributes(): bool
145		- {
146		- return isset($this->_attributes);
147		- }
148		-
149		- /**
150		- * Get attributes.
151		- *
152		- * @throws \LogicException
153		- * @return Attributes
154		- */
155		- public function attributes(): Attributes
156		- {
157		- if (!$this->hasAttributes()) {
158		- throw new \LogicException("No attributes.");
159		- }
160		- return $this->_attributes;
161		- }
162		-
163		- /**
164		- * Get instance of self with attributes.
165		- *
166		- * @param Attributes $attribs
167		- */
168		- public function withAttributes(Attributes $attribs)
169		- {
170		- $obj = clone $this;
171		- $obj->_attributes = $attribs;
172		- return $obj;
173		- }
174		-
175		- /**
176		- * Get self with extension request attribute.
177		- *
178		- * @param Extensions $extensions Extensions to request
179		- * @return self
180		- */
181		- public function withExtensionRequest(Extensions $extensions)
182		- {
183		- $obj = clone $this;
184		- if (!isset($obj->_attributes)) {
185		- $obj->_attributes = new Attributes();
186		- }
187		- $obj->_attributes = $obj->_attributes->withUnique(
188		- Attribute::fromAttributeValues(
189		- new ExtensionRequestValue($extensions)));
190		- return $obj;
191		- }
192		-
193		- /**
194		- * Generate ASN.1 structure.
195		- *
196		- * @return Sequence
197		- */
198		- public function toASN1(): Sequence
199		- {
200		- $elements = array(new Integer($this->_version),
201		- $this->_subject->toASN1(), $this->_subjectPKInfo->toASN1());
202		- if (isset($this->_attributes)) {
203		- $elements[] = new ImplicitlyTaggedType(0,
204		- $this->_attributes->toASN1());
205		- }
206		- return new Sequence(...$elements);
207		- }
208		-
209		- /**
210		- * Create signed CertificationRequest.
211		- *
212		- * @param SignatureAlgorithmIdentifier $algo Algorithm used for signing
213		- * @param PrivateKeyInfo $privkey_info Private key used for signing
214		- * @param Crypto\|null $crypto Crypto engine, use default if not set
215		- * @return CertificationRequest
216		- */
217		- public function sign(SignatureAlgorithmIdentifier $algo,
218		- PrivateKeyInfo $privkey_info, Crypto $crypto = null)
219		- {
220		- $crypto = $crypto ?: Crypto::getDefault();
221		- $data = $this->toASN1()->toDER();
222		- $signature = $crypto->sign($data, $privkey_info, $algo);
223		- return new CertificationRequest($this, $algo, $signature);
224		- }
	25	+ const VERSION_1 = 0;
	26	+
	27	+ /**
	28	+ * Version.
	29	+ *
	30	+ * @var int
	31	+ */
	32	+ protected $_version;
	33	+
	34	+ /**
	35	+ * Subject.
	36	+ *
	37	+ * @var Name $_subject
	38	+ */
	39	+ protected $_subject;
	40	+
	41	+ /**
	42	+ * Public key info.
	43	+ *
	44	+ * @var PublicKeyInfo $_subjectPKInfo
	45	+ */
	46	+ protected $_subjectPKInfo;
	47	+
	48	+ /**
	49	+ * Attributes.
	50	+ *
	51	+ * @var Attributes\|null $_attributes
	52	+ */
	53	+ protected $_attributes;
	54	+
	55	+ /**
	56	+ * Constructor.
	57	+ *
	58	+ * @param Name $subject Subject
	59	+ * @param PublicKeyInfo $pkinfo Public key info
	60	+ */
	61	+ public function __construct(Name $subject, PublicKeyInfo $pkinfo)
	62	+ {
	63	+ $this->_version = self::VERSION_1;
	64	+ $this->_subject = $subject;
	65	+ $this->_subjectPKInfo = $pkinfo;
	66	+ }
	67	+
	68	+ /**
	69	+ * Initialize from ASN.1.
	70	+ *
	71	+ * @param Sequence $seq
	72	+ * @throws \UnexpectedValueException
	73	+ * @return self
	74	+ */
	75	+ public static function fromASN1(Sequence $seq)
	76	+ {
	77	+ $version = $seq->at(0)
	78	+ ->asInteger()
	79	+ ->number();
	80	+ if ($version != self::VERSION_1) {
	81	+ throw new \UnexpectedValueException(
	82	+ "Version $version not supported.");
	83	+ }
	84	+ $subject = Name::fromASN1($seq->at(1)->asSequence());
	85	+ $pkinfo = PublicKeyInfo::fromASN1($seq->at(2)->asSequence());
	86	+ $obj = new self($subject, $pkinfo);
	87	+ if ($seq->hasTagged(0)) {
	88	+ $obj->_attributes = Attributes::fromASN1(
	89	+ $seq->getTagged(0)
	90	+ ->asImplicit(Element::TYPE_SET)
	91	+ ->asSet());
	92	+ }
	93	+ return $obj;
	94	+ }
	95	+
	96	+ /**
	97	+ * Get version.
	98	+ *
	99	+ * @return int
	100	+ */
	101	+ public function version(): int
	102	+ {
	103	+ return $this->_version;
	104	+ }
	105	+
	106	+ /**
	107	+ * Get self with subject.
	108	+ *
	109	+ * @param Name $subject
	110	+ * @return self
	111	+ */
	112	+ public function withSubject(Name $subject)
	113	+ {
	114	+ $obj = clone $this;
	115	+ $obj->_subject = $subject;
	116	+ return $obj;
	117	+ }
	118	+
	119	+ /**
	120	+ * Get subject.
	121	+ *
	122	+ * @return Name
	123	+ */
	124	+ public function subject(): Name
	125	+ {
	126	+ return $this->_subject;
	127	+ }
	128	+
	129	+ /**
	130	+ * Get subject public key info.
	131	+ *
	132	+ * @return PublicKeyInfo
	133	+ */
	134	+ public function subjectPKInfo(): PublicKeyInfo
	135	+ {
	136	+ return $this->_subjectPKInfo;
	137	+ }
	138	+
	139	+ /**
	140	+ * Whether certification request info has attributes.
	141	+ *
	142	+ * @return bool
	143	+ */
	144	+ public function hasAttributes(): bool
	145	+ {
	146	+ return isset($this->_attributes);
	147	+ }
	148	+
	149	+ /**
	150	+ * Get attributes.
	151	+ *
	152	+ * @throws \LogicException
	153	+ * @return Attributes
	154	+ */
	155	+ public function attributes(): Attributes
	156	+ {
	157	+ if (!$this->hasAttributes()) {
	158	+ throw new \LogicException("No attributes.");
	159	+ }
	160	+ return $this->_attributes;
	161	+ }
	162	+
	163	+ /**
	164	+ * Get instance of self with attributes.
	165	+ *
	166	+ * @param Attributes $attribs
	167	+ */
	168	+ public function withAttributes(Attributes $attribs)
	169	+ {
	170	+ $obj = clone $this;
	171	+ $obj->_attributes = $attribs;
	172	+ return $obj;
	173	+ }
	174	+
	175	+ /**
	176	+ * Get self with extension request attribute.
	177	+ *
	178	+ * @param Extensions $extensions Extensions to request
	179	+ * @return self
	180	+ */
	181	+ public function withExtensionRequest(Extensions $extensions)
	182	+ {
	183	+ $obj = clone $this;
	184	+ if (!isset($obj->_attributes)) {
	185	+ $obj->_attributes = new Attributes();
	186	+ }
	187	+ $obj->_attributes = $obj->_attributes->withUnique(
	188	+ Attribute::fromAttributeValues(
	189	+ new ExtensionRequestValue($extensions)));
	190	+ return $obj;
	191	+ }
	192	+
	193	+ /**
	194	+ * Generate ASN.1 structure.
	195	+ *
	196	+ * @return Sequence
	197	+ */
	198	+ public function toASN1(): Sequence
	199	+ {
	200	+ $elements = array(new Integer($this->_version),
	201	+ $this->_subject->toASN1(), $this->_subjectPKInfo->toASN1());
	202	+ if (isset($this->_attributes)) {
	203	+ $elements[] = new ImplicitlyTaggedType(0,
	204	+ $this->_attributes->toASN1());
	205	+ }
	206	+ return new Sequence(...$elements);
	207	+ }
	208	+
	209	+ /**
	210	+ * Create signed CertificationRequest.
	211	+ *
	212	+ * @param SignatureAlgorithmIdentifier $algo Algorithm used for signing
	213	+ * @param PrivateKeyInfo $privkey_info Private key used for signing
	214	+ * @param Crypto\|null $crypto Crypto engine, use default if not set
	215	+ * @return CertificationRequest
	216	+ */
	217	+ public function sign(SignatureAlgorithmIdentifier $algo,
	218	+ PrivateKeyInfo $privkey_info, Crypto $crypto = null)
	219	+ {
	220	+ $crypto = $crypto ?: Crypto::getDefault();
	221	+ $data = $this->toASN1()->toDER();
	222	+ $signature = $crypto->sign($data, $privkey_info, $algo);
	223	+ return new CertificationRequest($this, $algo, $signature);
	224	+ }
225	225	}

		@@ -13,265 +13,265 @@
		block discarded – undo
13	13	*/
14	14	class PolicyNode implements \IteratorAggregate, \Countable
15	15	{
16		- /**
17		- * Policy OID.
18		- *
19		- * @var string
20		- */
21		- protected $_validPolicy;
	16	+ /**
	17	+ * Policy OID.
	18	+ *
	19	+ * @var string
	20	+ */
	21	+ protected $_validPolicy;
22	22
23		- /**
24		- * List of qualifiers.
25		- *
26		- * @var \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
27		- */
28		- protected $_qualifiers;
	23	+ /**
	24	+ * List of qualifiers.
	25	+ *
	26	+ * @var \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
	27	+ */
	28	+ protected $_qualifiers;
29	29
30		- /**
31		- * List of expected policy OIDs.
32		- *
33		- * @var string[]
34		- */
35		- protected $_expectedPolicies;
	30	+ /**
	31	+ * List of expected policy OIDs.
	32	+ *
	33	+ * @var string[]
	34	+ */
	35	+ protected $_expectedPolicies;
36	36
37		- /**
38		- * List of child nodes.
39		- *
40		- * @var PolicyNode[]
41		- */
42		- protected $_children;
	37	+ /**
	38	+ * List of child nodes.
	39	+ *
	40	+ * @var PolicyNode[]
	41	+ */
	42	+ protected $_children;
43	43
44		- /**
45		- * Reference to the parent node.
46		- *
47		- * @var PolicyNode\|null
48		- */
49		- protected $_parent;
	44	+ /**
	45	+ * Reference to the parent node.
	46	+ *
	47	+ * @var PolicyNode\|null
	48	+ */
	49	+ protected $_parent;
50	50
51		- /**
52		- * Constructor.
53		- *
54		- * @param string $valid_policy Policy OID
55		- * @param \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[] $qualifiers
56		- * @param string[] $expected_policies
57		- */
58		- public function __construct(string $valid_policy, array $qualifiers,
59		- array $expected_policies)
60		- {
61		- $this->_validPolicy = $valid_policy;
62		- $this->_qualifiers = $qualifiers;
63		- $this->_expectedPolicies = $expected_policies;
64		- $this->_children = array();
65		- }
	51	+ /**
	52	+ * Constructor.
	53	+ *
	54	+ * @param string $valid_policy Policy OID
	55	+ * @param \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[] $qualifiers
	56	+ * @param string[] $expected_policies
	57	+ */
	58	+ public function __construct(string $valid_policy, array $qualifiers,
	59	+ array $expected_policies)
	60	+ {
	61	+ $this->_validPolicy = $valid_policy;
	62	+ $this->_qualifiers = $qualifiers;
	63	+ $this->_expectedPolicies = $expected_policies;
	64	+ $this->_children = array();
	65	+ }
66	66
67		- /**
68		- * Create initial node for the policy tree.
69		- *
70		- * @return self
71		- */
72		- public static function anyPolicyNode()
73		- {
74		- return new self(PolicyInformation::OID_ANY_POLICY, array(),
75		- array(PolicyInformation::OID_ANY_POLICY));
76		- }
	67	+ /**
	68	+ * Create initial node for the policy tree.
	69	+ *
	70	+ * @return self
	71	+ */
	72	+ public static function anyPolicyNode()
	73	+ {
	74	+ return new self(PolicyInformation::OID_ANY_POLICY, array(),
	75	+ array(PolicyInformation::OID_ANY_POLICY));
	76	+ }
77	77
78		- /**
79		- * Get the valid policy OID.
80		- *
81		- * @return string
82		- */
83		- public function validPolicy(): string
84		- {
85		- return $this->_validPolicy;
86		- }
	78	+ /**
	79	+ * Get the valid policy OID.
	80	+ *
	81	+ * @return string
	82	+ */
	83	+ public function validPolicy(): string
	84	+ {
	85	+ return $this->_validPolicy;
	86	+ }
87	87
88		- /**
89		- * Check whether node has anyPolicy as a valid policy.
90		- *
91		- * @return boolean
92		- */
93		- public function isAnyPolicy(): bool
94		- {
95		- return PolicyInformation::OID_ANY_POLICY == $this->_validPolicy;
96		- }
	88	+ /**
	89	+ * Check whether node has anyPolicy as a valid policy.
	90	+ *
	91	+ * @return boolean
	92	+ */
	93	+ public function isAnyPolicy(): bool
	94	+ {
	95	+ return PolicyInformation::OID_ANY_POLICY == $this->_validPolicy;
	96	+ }
97	97
98		- /**
99		- * Get the qualifier set.
100		- *
101		- * @return \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
102		- */
103		- public function qualifiers(): array
104		- {
105		- return $this->_qualifiers;
106		- }
	98	+ /**
	99	+ * Get the qualifier set.
	100	+ *
	101	+ * @return \X509\Certificate\Extension\CertificatePolicy\PolicyQualifierInfo[]
	102	+ */
	103	+ public function qualifiers(): array
	104	+ {
	105	+ return $this->_qualifiers;
	106	+ }
107	107
108		- /**
109		- * Check whether node has OID as an expected policy.
110		- *
111		- * @param string $oid
112		- * @return boolean
113		- */
114		- public function hasExpectedPolicy($oid): bool
115		- {
116		- return in_array($oid, $this->_expectedPolicies);
117		- }
	108	+ /**
	109	+ * Check whether node has OID as an expected policy.
	110	+ *
	111	+ * @param string $oid
	112	+ * @return boolean
	113	+ */
	114	+ public function hasExpectedPolicy($oid): bool
	115	+ {
	116	+ return in_array($oid, $this->_expectedPolicies);
	117	+ }
118	118
119		- /**
120		- * Get the expected policy set.
121		- *
122		- * @return string[]
123		- */
124		- public function expectedPolicies(): array
125		- {
126		- return $this->_expectedPolicies;
127		- }
	119	+ /**
	120	+ * Get the expected policy set.
	121	+ *
	122	+ * @return string[]
	123	+ */
	124	+ public function expectedPolicies(): array
	125	+ {
	126	+ return $this->_expectedPolicies;
	127	+ }
128	128
129		- /**
130		- * Set expected policies.
131		- *
132		- * @param string ...$oids Policy OIDs
133		- */
134		- public function setExpectedPolicies(...$oids)
135		- {
136		- $this->_expectedPolicies = $oids;
137		- }
	129	+ /**
	130	+ * Set expected policies.
	131	+ *
	132	+ * @param string ...$oids Policy OIDs
	133	+ */
	134	+ public function setExpectedPolicies(...$oids)
	135	+ {
	136	+ $this->_expectedPolicies = $oids;
	137	+ }
138	138
139		- /**
140		- * Check whether node has a child node with given valid policy OID.
141		- *
142		- * @param string $oid
143		- * @return boolean
144		- */
145		- public function hasChildWithValidPolicy($oid): bool
146		- {
147		- foreach ($this->_children as $node) {
148		- if ($node->validPolicy() == $oid) {
149		- return true;
150		- }
151		- }
152		- return false;
153		- }
	139	+ /**
	140	+ * Check whether node has a child node with given valid policy OID.
	141	+ *
	142	+ * @param string $oid
	143	+ * @return boolean
	144	+ */
	145	+ public function hasChildWithValidPolicy($oid): bool
	146	+ {
	147	+ foreach ($this->_children as $node) {
	148	+ if ($node->validPolicy() == $oid) {
	149	+ return true;
	150	+ }
	151	+ }
	152	+ return false;
	153	+ }
154	154
155		- /**
156		- * Add child node.
157		- *
158		- * @param PolicyNode $node
159		- * @return self
160		- */
161		- public function addChild(PolicyNode $node)
162		- {
163		- $id = spl_object_hash($node);
164		- $node->_parent = $this;
165		- $this->_children[$id] = $node;
166		- return $this;
167		- }
	155	+ /**
	156	+ * Add child node.
	157	+ *
	158	+ * @param PolicyNode $node
	159	+ * @return self
	160	+ */
	161	+ public function addChild(PolicyNode $node)
	162	+ {
	163	+ $id = spl_object_hash($node);
	164	+ $node->_parent = $this;
	165	+ $this->_children[$id] = $node;
	166	+ return $this;
	167	+ }
168	168
169		- /**
170		- * Get the child nodes.
171		- *
172		- * @return PolicyNode[]
173		- */
174		- public function children(): array
175		- {
176		- return array_values($this->_children);
177		- }
	169	+ /**
	170	+ * Get the child nodes.
	171	+ *
	172	+ * @return PolicyNode[]
	173	+ */
	174	+ public function children(): array
	175	+ {
	176	+ return array_values($this->_children);
	177	+ }
178	178
179		- /**
180		- * Remove this node from the tree.
181		- *
182		- * @return self The removed node
183		- */
184		- public function remove()
185		- {
186		- if ($this->_parent) {
187		- $id = spl_object_hash($this);
188		- unset($this->_parent->_children[$id]);
189		- unset($this->_parent);
190		- }
191		- return $this;
192		- }
	179	+ /**
	180	+ * Remove this node from the tree.
	181	+ *
	182	+ * @return self The removed node
	183	+ */
	184	+ public function remove()
	185	+ {
	186	+ if ($this->_parent) {
	187	+ $id = spl_object_hash($this);
	188	+ unset($this->_parent->_children[$id]);
	189	+ unset($this->_parent);
	190	+ }
	191	+ return $this;
	192	+ }
193	193
194		- /**
195		- * Check whether node has a parent.
196		- *
197		- * @return bool
198		- */
199		- public function hasParent(): bool
200		- {
201		- return isset($this->_parent);
202		- }
	194	+ /**
	195	+ * Check whether node has a parent.
	196	+ *
	197	+ * @return bool
	198	+ */
	199	+ public function hasParent(): bool
	200	+ {
	201	+ return isset($this->_parent);
	202	+ }
203	203
204		- /**
205		- * Get the parent node.
206		- *
207		- * @return PolicyNode\|null
208		- */
209		- public function parent()
210		- {
211		- return $this->_parent;
212		- }
	204	+ /**
	205	+ * Get the parent node.
	206	+ *
	207	+ * @return PolicyNode\|null
	208	+ */
	209	+ public function parent()
	210	+ {
	211	+ return $this->_parent;
	212	+ }
213	213
214		- /**
215		- * Get chain of parent nodes from this node's parent to the root node.
216		- *
217		- * @return PolicyNode[]
218		- */
219		- public function parents(): array
220		- {
221		- if (!$this->_parent) {
222		- return array();
223		- }
224		- $nodes = $this->_parent->parents();
225		- $nodes[] = $this->_parent;
226		- return array_reverse($nodes);
227		- }
	214	+ /**
	215	+ * Get chain of parent nodes from this node's parent to the root node.
	216	+ *
	217	+ * @return PolicyNode[]
	218	+ */
	219	+ public function parents(): array
	220	+ {
	221	+ if (!$this->_parent) {
	222	+ return array();
	223	+ }
	224	+ $nodes = $this->_parent->parents();
	225	+ $nodes[] = $this->_parent;
	226	+ return array_reverse($nodes);
	227	+ }
228	228
229		- /**
230		- * Walk tree from this node, applying a callback for each node.
231		- *
232		- * Nodes are traversed depth-first and callback shall be applied post-order.
233		- *
234		- * @param callable $fn
235		- */
236		- public function walkNodes(callable $fn)
237		- {
238		- foreach ($this->_children as $node) {
239		- $node->walkNodes($fn);
240		- }
241		- $fn($this);
242		- }
	229	+ /**
	230	+ * Walk tree from this node, applying a callback for each node.
	231	+ *
	232	+ * Nodes are traversed depth-first and callback shall be applied post-order.
	233	+ *
	234	+ * @param callable $fn
	235	+ */
	236	+ public function walkNodes(callable $fn)
	237	+ {
	238	+ foreach ($this->_children as $node) {
	239	+ $node->walkNodes($fn);
	240	+ }
	241	+ $fn($this);
	242	+ }
243	243
244		- /**
245		- * Get the total number of nodes in a tree.
246		- *
247		- * @return int
248		- */
249		- public function nodeCount(): int
250		- {
251		- $c = 1;
252		- foreach ($this->_children as $child) {
253		- $c += $child->nodeCount();
254		- }
255		- return $c;
256		- }
	244	+ /**
	245	+ * Get the total number of nodes in a tree.
	246	+ *
	247	+ * @return int
	248	+ */
	249	+ public function nodeCount(): int
	250	+ {
	251	+ $c = 1;
	252	+ foreach ($this->_children as $child) {
	253	+ $c += $child->nodeCount();
	254	+ }
	255	+ return $c;
	256	+ }
257	257
258		- /**
259		- * Get the number of child nodes.
260		- *
261		- * @see \Countable::count()
262		- */
263		- public function count(): int
264		- {
265		- return count($this->_children);
266		- }
	258	+ /**
	259	+ * Get the number of child nodes.
	260	+ *
	261	+ * @see \Countable::count()
	262	+ */
	263	+ public function count(): int
	264	+ {
	265	+ return count($this->_children);
	266	+ }
267	267
268		- /**
269		- * Get iterator for the child nodes.
270		- *
271		- * @see \IteratorAggregate::getIterator()
272		- */
273		- public function getIterator(): \ArrayIterator
274		- {
275		- return new \ArrayIterator($this->_children);
276		- }
	268	+ /**
	269	+ * Get iterator for the child nodes.
	270	+ *
	271	+ * @see \IteratorAggregate::getIterator()
	272	+ */
	273	+ public function getIterator(): \ArrayIterator
	274	+ {
	275	+ return new \ArrayIterator($this->_children);
	276	+ }
277	277	}

		@@ -1,6 +1,6 @@ discard block
		block discarded – undo
1	1	<?php
2	2
3		-declare(strict_types=1);
	3	+declare(strict_types = 1);
4	4
5	5	namespace X509\CertificationPath\Policy;
6	6
		@@ -94,7 +94,7 @@ discard block
		block discarded – undo
94	94	// is not in the user-initial-policy-set and is not anyPolicy,
95	95	// delete this node and all its children.
96	96	$valid_policy_node_set = array_filter($valid_policy_node_set,
97		- function (PolicyNode $node) use ($policies) {
	97	+ function(PolicyNode $node) use ($policies) {
98	98	if ($node->isAnyPolicy()) {
99	99	return true;
100	100	}
		@@ -106,7 +106,7 @@ discard block
		block discarded – undo
106	106	});
107	107	// array of valid policy OIDs
108	108	$valid_policy_set = array_map(
109		- function (PolicyNode $node) {
	109	+ function(PolicyNode $node) {
110	110	return $node->validPolicy();
111	111	}, $valid_policy_node_set);
112	112	// 3. If the valid_policy_tree includes a node of depth n with
		@@ -387,7 +387,7 @@ discard block
		block discarded – undo
387	387	}
388	388	// for each node in a tree
389	389	$this->_root->walkNodes(
390		- function (PolicyNode $node) use (&$set) {
	390	+ function(PolicyNode $node) use (&$set) {
391	391	$parents = $node->parents();
392	392	// node has parents
393	393	if (count($parents)) {

		@@ -23,172 +23,172 @@
		block discarded – undo
23	23	*/
24	24	class CertificationPath implements \Countable, \IteratorAggregate
25	25	{
26		- /**
27		- * Certification path.
28		- *
29		- * @var Certificate[] $_certificates
30		- */
31		- protected $_certificates;
	26	+ /**
	27	+ * Certification path.
	28	+ *
	29	+ * @var Certificate[] $_certificates
	30	+ */
	31	+ protected $_certificates;
32	32
33		- /**
34		- * Constructor.
35		- *
36		- * @param Certificate ...$certificates Certificates from the trust anchor
37		- * to the target end-entity certificate
38		- */
39		- public function __construct(Certificate ...$certificates)
40		- {
41		- $this->_certificates = $certificates;
42		- }
	33	+ /**
	34	+ * Constructor.
	35	+ *
	36	+ * @param Certificate ...$certificates Certificates from the trust anchor
	37	+ * to the target end-entity certificate
	38	+ */
	39	+ public function __construct(Certificate ...$certificates)
	40	+ {
	41	+ $this->_certificates = $certificates;
	42	+ }
43	43
44		- /**
45		- * Initialize from a certificate chain.
46		- *
47		- * @param CertificateChain $chain
48		- * @return self
49		- */
50		- public static function fromCertificateChain(CertificateChain $chain)
51		- {
52		- return new self(...array_reverse($chain->certificates(), false));
53		- }
	44	+ /**
	45	+ * Initialize from a certificate chain.
	46	+ *
	47	+ * @param CertificateChain $chain
	48	+ * @return self
	49	+ */
	50	+ public static function fromCertificateChain(CertificateChain $chain)
	51	+ {
	52	+ return new self(...array_reverse($chain->certificates(), false));
	53	+ }
54	54
55		- /**
56		- * Build certification path to given target.
57		- *
58		- * @param Certificate $target Target end-entity certificate
59		- * @param CertificateBundle $trust_anchors List of trust anchors
60		- * @param CertificateBundle\|null $intermediate Optional intermediate
61		- * certificates
62		- * @return self
63		- */
64		- public static function toTarget(Certificate $target,
65		- CertificateBundle $trust_anchors, CertificateBundle $intermediate = null)
66		- {
67		- $builder = new CertificationPathBuilder($trust_anchors);
68		- return $builder->shortestPathToTarget($target, $intermediate);
69		- }
	55	+ /**
	56	+ * Build certification path to given target.
	57	+ *
	58	+ * @param Certificate $target Target end-entity certificate
	59	+ * @param CertificateBundle $trust_anchors List of trust anchors
	60	+ * @param CertificateBundle\|null $intermediate Optional intermediate
	61	+ * certificates
	62	+ * @return self
	63	+ */
	64	+ public static function toTarget(Certificate $target,
	65	+ CertificateBundle $trust_anchors, CertificateBundle $intermediate = null)
	66	+ {
	67	+ $builder = new CertificationPathBuilder($trust_anchors);
	68	+ return $builder->shortestPathToTarget($target, $intermediate);
	69	+ }
70	70
71		- /**
72		- * Build certification path from given trust anchor to target certificate,
73		- * using intermediate certificates from given bundle.
74		- *
75		- * @param Certificate $trust_anchor Trust anchor certificate
76		- * @param Certificate $target Target end-entity certificate
77		- * @param CertificateBundle\|null $intermediate Optional intermediate
78		- * certificates
79		- * @return self
80		- */
81		- public static function fromTrustAnchorToTarget(Certificate $trust_anchor,
82		- Certificate $target, CertificateBundle $intermediate = null)
83		- {
84		- return self::toTarget($target, new CertificateBundle($trust_anchor),
85		- $intermediate);
86		- }
	71	+ /**
	72	+ * Build certification path from given trust anchor to target certificate,
	73	+ * using intermediate certificates from given bundle.
	74	+ *
	75	+ * @param Certificate $trust_anchor Trust anchor certificate
	76	+ * @param Certificate $target Target end-entity certificate
	77	+ * @param CertificateBundle\|null $intermediate Optional intermediate
	78	+ * certificates
	79	+ * @return self
	80	+ */
	81	+ public static function fromTrustAnchorToTarget(Certificate $trust_anchor,
	82	+ Certificate $target, CertificateBundle $intermediate = null)
	83	+ {
	84	+ return self::toTarget($target, new CertificateBundle($trust_anchor),
	85	+ $intermediate);
	86	+ }
87	87
88		- /**
89		- * Get certificates.
90		- *
91		- * @return Certificate[]
92		- */
93		- public function certificates(): array
94		- {
95		- return $this->_certificates;
96		- }
	88	+ /**
	89	+ * Get certificates.
	90	+ *
	91	+ * @return Certificate[]
	92	+ */
	93	+ public function certificates(): array
	94	+ {
	95	+ return $this->_certificates;
	96	+ }
97	97
98		- /**
99		- * Get the trust anchor certificate from the path.
100		- *
101		- * @throws \LogicException If path is empty
102		- * @return Certificate
103		- */
104		- public function trustAnchorCertificate(): Certificate
105		- {
106		- if (!count($this->_certificates)) {
107		- throw new \LogicException("No certificates.");
108		- }
109		- return $this->_certificates[0];
110		- }
	98	+ /**
	99	+ * Get the trust anchor certificate from the path.
	100	+ *
	101	+ * @throws \LogicException If path is empty
	102	+ * @return Certificate
	103	+ */
	104	+ public function trustAnchorCertificate(): Certificate
	105	+ {
	106	+ if (!count($this->_certificates)) {
	107	+ throw new \LogicException("No certificates.");
	108	+ }
	109	+ return $this->_certificates[0];
	110	+ }
111	111
112		- /**
113		- * Get the end-entity certificate from the path.
114		- *
115		- * @throws \LogicException If path is empty
116		- * @return Certificate
117		- */
118		- public function endEntityCertificate(): Certificate
119		- {
120		- if (!count($this->_certificates)) {
121		- throw new \LogicException("No certificates.");
122		- }
123		- return $this->_certificates[count($this->_certificates) - 1];
124		- }
	112	+ /**
	113	+ * Get the end-entity certificate from the path.
	114	+ *
	115	+ * @throws \LogicException If path is empty
	116	+ * @return Certificate
	117	+ */
	118	+ public function endEntityCertificate(): Certificate
	119	+ {
	120	+ if (!count($this->_certificates)) {
	121	+ throw new \LogicException("No certificates.");
	122	+ }
	123	+ return $this->_certificates[count($this->_certificates) - 1];
	124	+ }
125	125
126		- /**
127		- * Get certification path as a certificate chain.
128		- *
129		- * @return CertificateChain
130		- */
131		- public function certificateChain(): CertificateChain
132		- {
133		- return new CertificateChain(
134		- ...array_reverse($this->_certificates, false));
135		- }
	126	+ /**
	127	+ * Get certification path as a certificate chain.
	128	+ *
	129	+ * @return CertificateChain
	130	+ */
	131	+ public function certificateChain(): CertificateChain
	132	+ {
	133	+ return new CertificateChain(
	134	+ ...array_reverse($this->_certificates, false));
	135	+ }
136	136
137		- /**
138		- * Check whether certification path starts with one ore more given
139		- * certificates in parameter order.
140		- *
141		- * @param Certificate ...$certs Certificates
142		- * @return true
143		- */
144		- public function startsWith(Certificate ...$certs)
145		- {
146		- $n = count($certs);
147		- if ($n > count($this->_certificates)) {
148		- return false;
149		- }
150		- for ($i = 0; $i < $n; ++$i) {
151		- if (!$certs[$i]->equals($this->_certificates[$i])) {
152		- return false;
153		- }
154		- }
155		- return true;
156		- }
	137	+ /**
	138	+ * Check whether certification path starts with one ore more given
	139	+ * certificates in parameter order.
	140	+ *
	141	+ * @param Certificate ...$certs Certificates
	142	+ * @return true
	143	+ */
	144	+ public function startsWith(Certificate ...$certs)
	145	+ {
	146	+ $n = count($certs);
	147	+ if ($n > count($this->_certificates)) {
	148	+ return false;
	149	+ }
	150	+ for ($i = 0; $i < $n; ++$i) {
	151	+ if (!$certs[$i]->equals($this->_certificates[$i])) {
	152	+ return false;
	153	+ }
	154	+ }
	155	+ return true;
	156	+ }
157	157
158		- /**
159		- * Validate certification path.
160		- *
161		- * @param PathValidationConfig $config
162		- * @param Crypto\|null $crypto Crypto engine, use default if not set
163		- * @throws Exception\PathValidationException
164		- * @return PathValidation\PathValidationResult
165		- */
166		- public function validate(PathValidationConfig $config,
167		- Crypto $crypto = null): PathValidation\PathValidationResult
168		- {
169		- $crypto = $crypto ?: Crypto::getDefault();
170		- $validator = new PathValidator($crypto, $config, ...$this->_certificates);
171		- return $validator->validate();
172		- }
	158	+ /**
	159	+ * Validate certification path.
	160	+ *
	161	+ * @param PathValidationConfig $config
	162	+ * @param Crypto\|null $crypto Crypto engine, use default if not set
	163	+ * @throws Exception\PathValidationException
	164	+ * @return PathValidation\PathValidationResult
	165	+ */
	166	+ public function validate(PathValidationConfig $config,
	167	+ Crypto $crypto = null): PathValidation\PathValidationResult
	168	+ {
	169	+ $crypto = $crypto ?: Crypto::getDefault();
	170	+ $validator = new PathValidator($crypto, $config, ...$this->_certificates);
	171	+ return $validator->validate();
	172	+ }
173	173
174		- /**
175		- *
176		- * @see \Countable::count()
177		- * @return int
178		- */
179		- public function count(): int
180		- {
181		- return count($this->_certificates);
182		- }
	174	+ /**
	175	+ *
	176	+ * @see \Countable::count()
	177	+ * @return int
	178	+ */
	179	+ public function count(): int
	180	+ {
	181	+ return count($this->_certificates);
	182	+ }
183	183
184		- /**
185		- * Get iterator for certificates.
186		- *
187		- * @see \IteratorAggregate::getIterator()
188		- * @return \ArrayIterator
189		- */
190		- public function getIterator(): \ArrayIterator
191		- {
192		- return new \ArrayIterator($this->_certificates);
193		- }
	184	+ /**
	185	+ * Get iterator for certificates.
	186	+ *
	187	+ * @see \IteratorAggregate::getIterator()
	188	+ * @return \ArrayIterator
	189	+ */
	190	+ public function getIterator(): \ArrayIterator
	191	+ {
	192	+ return new \ArrayIterator($this->_certificates);
	193	+ }
194	194	}

		@@ -16,85 +16,85 @@
		block discarded – undo
16	16	*/
17	17	class PathValidationResult
18	18	{
19		- /**
20		- * Certificates in a certification path.
21		- *
22		- * @var \X509\Certificate\Certificate[] $_certificates
23		- */
24		- protected $_certificates;
	19	+ /**
	20	+ * Certificates in a certification path.
	21	+ *
	22	+ * @var \X509\Certificate\Certificate[] $_certificates
	23	+ */
	24	+ protected $_certificates;
25	25
26		- /**
27		- * Valid policy tree.
28		- *
29		- * @var \X509\CertificationPath\Policy\PolicyTree\|null $_policyTree
30		- */
31		- protected $_policyTree;
	26	+ /**
	27	+ * Valid policy tree.
	28	+ *
	29	+ * @var \X509\CertificationPath\Policy\PolicyTree\|null $_policyTree
	30	+ */
	31	+ protected $_policyTree;
32	32
33		- /**
34		- * End-entity certificate's public key.
35		- *
36		- * @var PublicKeyInfo
37		- */
38		- protected $_publicKeyInfo;
	33	+ /**
	34	+ * End-entity certificate's public key.
	35	+ *
	36	+ * @var PublicKeyInfo
	37	+ */
	38	+ protected $_publicKeyInfo;
39	39
40		- /**
41		- * Public key algorithm.
42		- *
43		- * @var AlgorithmIdentifierType
44		- */
45		- protected $_publicKeyAlgo;
	40	+ /**
	41	+ * Public key algorithm.
	42	+ *
	43	+ * @var AlgorithmIdentifierType
	44	+ */
	45	+ protected $_publicKeyAlgo;
46	46
47		- /**
48		- * Public key parameters.
49		- *
50		- * @var Element\|null $_publicKeyParameters
51		- */
52		- protected $_publicKeyParameters;
	47	+ /**
	48	+ * Public key parameters.
	49	+ *
	50	+ * @var Element\|null $_publicKeyParameters
	51	+ */
	52	+ protected $_publicKeyParameters;
53	53
54		- /**
55		- * Constructor.
56		- *
57		- * @param \X509\Certificate\Certificate[] $certificates Certificates in a
58		- * certification path
59		- * @param \X509\CertificationPath\Policy\PolicyTree\|null $policy_tree Valid
60		- * policy tree
61		- * @param PublicKeyInfo $pubkey_info Public key of the end-entity
62		- * certificate
63		- * @param AlgorithmIdentifierType $algo Public key algorithm of the
64		- * end-entity certificate
65		- * @param Element\|null $params Algorithm parameters
66		- */
67		- public function __construct(array $certificates, $policy_tree,
68		- PublicKeyInfo $pubkey_info, AlgorithmIdentifierType $algo,
69		- Element $params = null)
70		- {
71		- $this->_certificates = array_values($certificates);
72		- $this->_policyTree = $policy_tree;
73		- $this->_publicKeyInfo = $pubkey_info;
74		- $this->_publicKeyAlgo = $algo;
75		- $this->_publicKeyParameters = $params;
76		- }
	54	+ /**
	55	+ * Constructor.
	56	+ *
	57	+ * @param \X509\Certificate\Certificate[] $certificates Certificates in a
	58	+ * certification path
	59	+ * @param \X509\CertificationPath\Policy\PolicyTree\|null $policy_tree Valid
	60	+ * policy tree
	61	+ * @param PublicKeyInfo $pubkey_info Public key of the end-entity
	62	+ * certificate
	63	+ * @param AlgorithmIdentifierType $algo Public key algorithm of the
	64	+ * end-entity certificate
	65	+ * @param Element\|null $params Algorithm parameters
	66	+ */
	67	+ public function __construct(array $certificates, $policy_tree,
	68	+ PublicKeyInfo $pubkey_info, AlgorithmIdentifierType $algo,
	69	+ Element $params = null)
	70	+ {
	71	+ $this->_certificates = array_values($certificates);
	72	+ $this->_policyTree = $policy_tree;
	73	+ $this->_publicKeyInfo = $pubkey_info;
	74	+ $this->_publicKeyAlgo = $algo;
	75	+ $this->_publicKeyParameters = $params;
	76	+ }
77	77
78		- /**
79		- * Get end-entity certificate.
80		- *
81		- * @return \X509\Certificate\Certificate
82		- */
83		- public function certificate(): Certificate
84		- {
85		- return $this->_certificates[count($this->_certificates) - 1];
86		- }
	78	+ /**
	79	+ * Get end-entity certificate.
	80	+ *
	81	+ * @return \X509\Certificate\Certificate
	82	+ */
	83	+ public function certificate(): Certificate
	84	+ {
	85	+ return $this->_certificates[count($this->_certificates) - 1];
	86	+ }
87	87
88		- /**
89		- * Get certificate policies of the end-entity certificate.
90		- *
91		- * @return \X509\Certificate\Extension\CertificatePolicy\PolicyInformation[]
92		- */
93		- public function policies(): array
94		- {
95		- if (!$this->_policyTree) {
96		- return array();
97		- }
98		- return $this->_policyTree->policiesAtDepth(count($this->_certificates));
99		- }
	88	+ /**
	89	+ * Get certificate policies of the end-entity certificate.
	90	+ *
	91	+ * @return \X509\Certificate\Extension\CertificatePolicy\PolicyInformation[]
	92	+ */
	93	+ public function policies(): array
	94	+ {
	95	+ if (!$this->_policyTree) {
	96	+ return array();
	97	+ }
	98	+ return $this->_policyTree->policiesAtDepth(count($this->_certificates));
	99	+ }
100	100	}

sop / x509

GitHub Access Token became invalid

Pull Request — master (#1)

Status

Category

Indentation +81 added lines, -81 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +200 added lines, -200 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +238 added lines, -238 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +393 added lines, -393 removed lines patch added patch discarded remove patch

Spacing +4 added lines, -4 removed lines patch added patch discarded remove patch

Indentation +156 added lines, -156 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +480 added lines, -480 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch

Indentation +74 added lines, -74 removed lines patch added patch discarded remove patch

Spacing +1 added lines, -1 removed lines patch added patch discarded remove patch