Code Coverage for /Users/ericduran/Sites/drupal/drupal/core/lib/Drupal/Component/Utility/Crypt.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	60.00% covered (warning)	60.00%	3 / 5	CRAP	36.36% covered (danger)	36.36%	16 / 44
Crypt	0.00% covered (danger)	0.00%	0 / 1	60.00% covered (warning)	60.00%	3 / 5	134.65	36.36% covered (danger)	36.36%	16 / 44
randomBytes				0.00% covered (danger)	0.00%	0 / 1	30.63	40.91% covered (danger)	40.91%	9 / 22
hmacBase64				100.00% covered (success)	100.00%	1 / 1	3	100.00% covered (success)	100.00%	4 / 4
hashBase64				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	2 / 2
hashEquals				0.00% covered (danger)	0.00%	0 / 1	42	0.00% covered (danger)	0.00%	0 / 15
randomBytesBase64				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1

1	<?php
2
3	/**
4	* @file
5	* Contains \Drupal\Component\Utility\Crypt.
6	*/
7
8	namespace Drupal\Component\Utility;
9
10	/**
11	* Utility class for cryptographically-secure string handling routines.
12	*
13	* @ingroup utility
14	*/
15	class Crypt {
16
17	/**
18	* Returns a string of highly randomized bytes (over the full 8-bit range).
19	*
20	* This function is better than simply calling mt_rand() or any other built-in
21	* PHP function because it can return a long string of bytes (compared to < 4
22	* bytes normally from mt_rand()) and uses the best available pseudo-random
23	* source.
24	*
25	* @param int $count
26	* The number of characters (bytes) to return in the string.
27	*
28	* @return string
29	* A randomly generated string.
30	*/
31	public static function randomBytes($count) {
32	// $random_state does not use drupal_static as it stores random bytes.
33	static $random_state, $bytes;
34
35	$missing_bytes = $count - strlen($bytes);
36
37	if ($missing_bytes > 0) {
38	// openssl_random_pseudo_bytes() will find entropy in a system-dependent
39	// way.
40	if (function_exists('openssl_random_pseudo_bytes')) {
41	$bytes .= openssl_random_pseudo_bytes($missing_bytes);
42	}
43
44	// If OpenSSL is not available, we can use mcrypt. On Windows, this will
45	// transparently pull from CryptGenRandom. On Unix-based systems, it will
46	// read from /dev/urandom as expected.
47	elseif (function_exists(('mcrypt_create_iv')) && defined('MCRYPT_DEV_URANDOM')) {
48	$bytes .= mcrypt_create_iv($count, MCRYPT_DEV_URANDOM);
49	}
50
51	// Else, read directly from /dev/urandom, which is available on many *nix
52	// systems and is considered cryptographically secure.
53	elseif ($fh = @fopen('/dev/urandom', 'rb')) {
54	// PHP only performs buffered reads, so in reality it will always read
55	// at least 4096 bytes. Thus, it costs nothing extra to read and store
56	// that much so as to speed any additional invocations.
57	$bytes .= fread($fh, max(4096, $missing_bytes));
58	fclose($fh);
59	}
60
61	// If we couldn't get enough entropy, this simple hash-based PRNG will
62	// generate a good set of pseudo-random bytes on any system.
63	// Note that it may be important that our $random_state is passed
64	// through hash() prior to being rolled into $output, that the two hash()
65	// invocations are different, and that the extra input into the first one -
66	// the microtime() - is prepended rather than appended. This is to avoid
67	// directly leaking $random_state via the $output stream, which could
68	// allow for trivial prediction of further "random" numbers.
69	if (strlen($bytes) < $count) {
70	// Initialize on the first call. The contents of $_SERVER includes a mix
71	// of user-specific and system information that varies a little with
72	// each page.
73	if (!isset($random_state)) {
74	$random_state = print_r($_SERVER, TRUE);
75	if (function_exists('getmypid')) {
76	// Further initialize with the somewhat random PHP process ID.
77	$random_state .= getmypid();
78	}
79	$bytes = '';
80	}
81
82	do {
83	$random_state = hash('sha256', microtime() . mt_rand() . $random_state);
84	$bytes .= hash('sha256', mt_rand() . $random_state, TRUE);
85	} while (strlen($bytes) < $count);
86	}
87	}
88	$output = substr($bytes, 0, $count);
89	$bytes = substr($bytes, $count);
90	return $output;
91	}
92
93	/**
94	* Calculates a base-64 encoded, URL-safe sha-256 hmac.
95	*
96	* @param mixed $data
97	* Scalar value to be validated with the hmac.
98	* @param mixed $key
99	* A secret key, this can be any scalar value.
100	*
101	* @return string
102	* A base-64 encoded sha-256 hmac, with + replaced with -, / with _ and
103	* any = padding characters removed.
104	*/
105	public static function hmacBase64($data, $key) {
106	// $data and $key being strings here is necessary to avoid empty string
107	// results of the hash function if they are not scalar values. As this
108	// function is used in security-critical contexts like token validation it
109	// is important that it never returns an empty string.
110	if (!is_scalar($data) \|\| !is_scalar($key)) {
111	throw new \InvalidArgumentException('Both parameters passed to \Drupal\Component\Utility\Crypt::hmacBase64 must be scalar values.');
112	}
113
114	$hmac = base64_encode(hash_hmac('sha256', $data, $key, TRUE));
115	// Modify the hmac so it's safe to use in URLs.
116	return str_replace(['+', '/', '='], ['-', '_', ''], $hmac);
117	}
118
119	/**
120	* Calculates a base-64 encoded, URL-safe sha-256 hash.
121	*
122	* @param string $data
123	* String to be hashed.
124	*
125	* @return string
126	* A base-64 encoded sha-256 hash, with + replaced with -, / with _ and
127	* any = padding characters removed.
128	*/
129	public static function hashBase64($data) {
130	$hash = base64_encode(hash('sha256', $data, TRUE));
131	// Modify the hash so it's safe to use in URLs.
132	return str_replace(['+', '/', '='], ['-', '_', ''], $hash);
133	}
134
135	/**
136	* Compares strings in constant time.
137	*
138	* @param string $known_string
139	* The expected string.
140	* @param string $user_string
141	* The user supplied string to check.
142	*
143	* @return bool
144	* Returns TRUE when the two strings are equal, FALSE otherwise.
145	*/
146	public static function hashEquals($known_string, $user_string) {
147	if (function_exists('hash_equals')) {
148	return hash_equals($known_string, $user_string);
149	}
150	else {
151	// Backport of hash_equals() function from PHP 5.6
152	// @see https://github.com/php/php-src/blob/PHP-5.6/ext/hash/hash.c#L739
153	if (!is_string($known_string)) {
154	trigger_error(sprintf("Expected known_string to be a string, %s given", gettype($known_string)), E_USER_WARNING);
155	return FALSE;
156	}
157
158	if (!is_string($user_string)) {
159	trigger_error(sprintf("Expected user_string to be a string, %s given", gettype($user_string)), E_USER_WARNING);
160	return FALSE;
161	}
162
163	$known_len = strlen($known_string);
164	if ($known_len !== strlen($user_string)) {
165	return FALSE;
166	}
167
168	// This is security sensitive code. Do not optimize this for speed.
169	$result = 0;
170	for ($i = 0; $i < $known_len; $i++) {
171	$result \|= (ord($known_string[$i]) ^ ord($user_string[$i]));
172	}
173
174	return $result === 0;
175	}
176	}
177
178	/**
179	* Returns a URL-safe, base64 encoded string of highly randomized bytes.
180	*
181	* @param $byte_count
182	* The number of random bytes to fetch and base64 encode.
183	*
184	* @return string
185	* The base64 encoded result will have a length of up to 4 * $byte_count.
186	*
187	* @see \Drupal\Component\Utility\Crypt::randomBytes()
188	*/
189	public static function randomBytesBase64($count = 32) {
190	return str_replace(['+', '/', '='], ['-', '_', ''], base64_encode(static::randomBytes($count)));
191	}
192
193	}