PageRenderTime 48ms CodeModel.GetById 20ms RepoModel.GetById 1ms app.codeStats 0ms

/htdocs/zend/1.10.2-minapp/library/Zend/Crypt/DiffieHellman.php

http://github.com/pmjones/php-framework-benchmarks
PHP | 380 lines | 168 code | 26 blank | 186 comment | 35 complexity | df0c0d3f7e242fa7c1a7a01afe028430 MD5 | raw file
Possible License(s): LGPL-3.0, Apache-2.0, BSD-3-Clause, ISC, AGPL-3.0, LGPL-2.1 
    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Zend Framework
    4. 

  4.  *
    5. 

  5.  * LICENSE
    6. 

  6.  *
    7. 

  7.  * This source file is subject to the new BSD license that is bundled
    8. 

  8.  * with this package in the file LICENSE.txt.
    9. 

  9.  * It is also available through the world-wide-web at this URL:
    10. 

  10.  * http://framework.zend.com/license/new-bsd
    11. 

  11.  * If you did not receive a copy of the license and are unable to
    12. 

  12.  * obtain it through the world-wide-web, please send an email
    13. 

  13.  * to license@zend.com so we can send you a copy immediately.
    14. 

  14.  *
    15. 

  15.  * @category   Zend
    16. 

  16.  * @package    Zend_Crypt
    17. 

  17.  * @subpackage DiffieHellman
    18. 

  18.  * @copyright  Copyright (c) 2005-2010 Zend Technologies USA Inc. (http://www.zend.com)
    19. 

  19.  * @license    http://framework.zend.com/license/new-bsd     New BSD License
    20. 

  20.  * @version    $Id: DiffieHellman.php 20096 2010-01-06 02:05:09Z bkarwin $
    21. 

  21.  */
    22. 

  22. 

  23. /**
    24. 

  24.  * PHP implementation of the Diffie-Hellman public key encryption algorithm.
    25. 

  25.  * Allows two unassociated parties to establish a joint shared secret key
    26. 

  26.  * to be used in encrypting subsequent communications.
    27. 

  27.  *
    28. 

  28.  * @category   Zend
    29. 

  29.  * @package    Zend_Crypt
    30. 

  30.  * @copyright  Copyright (c) 2005-2010 Zend Technologies USA Inc. (http://www.zend.com)
    31. 

  31.  * @license    http://framework.zend.com/license/new-bsd     New BSD License
    32. 

  32.  */
    33. 

  33. class Zend_Crypt_DiffieHellman
    34. 

  34. {
    35. 

  35. 

  36.     /**
    37. 

  37.      * Static flag to select whether to use PHP5.3's openssl extension
    38. 

  38.      * if available.
    39. 

  39.      *
    40. 

  40.      * @var boolean
    41. 

  41.      */
    42. 

  42.     public static $useOpenssl = true;
    43. 

  43. 

  44.     /**
    45. 

  45.      * Default large prime number; required by the algorithm.
    46. 

  46.      *
    47. 

  47.      * @var string
    48. 

  48.      */
    49. 

  49.     private $_prime = null;
    50. 

  50. 

  51.     /**
    52. 

  52.      * The default generator number. This number must be greater than 0 but
    53. 

  53.      * less than the prime number set.
    54. 

  54.      *
    55. 

  55.      * @var string
    56. 

  56.      */
    57. 

  57.     private $_generator = null;
    58. 

  58. 

  59.     /**
    60. 

  60.      * A private number set by the local user. It's optional and will
    61. 

  61.      * be generated if not set.
    62. 

  62.      *
    63. 

  63.      * @var string
    64. 

  64.      */
    65. 

  65.     private $_privateKey = null;
    66. 

  66. 

  67.     /**
    68. 

  68.      * BigInteger support object courtesy of Zend_Crypt_Math
    69. 

  69.      *
    70. 

  70.      * @var Zend_Crypt_Math_BigInteger
    71. 

  71.      */
    72. 

  72.     private $_math = null;
    73. 

  73. 

  74.     /**
    75. 

  75.      * The public key generated by this instance after calling generateKeys().
    76. 

  76.      *
    77. 

  77.      * @var string
    78. 

  78.      */
    79. 

  79.     private $_publicKey = null;
    80. 

  80. 

  81.     /**
    82. 

  82.      * The shared secret key resulting from a completed Diffie Hellman
    83. 

  83.      * exchange
    84. 

  84.      *
    85. 

  85.      * @var string
    86. 

  86.      */
    87. 

  87.     private $_secretKey = null;
    88. 

  88. 

  89.     /**
    90. 

  90.      * Constants
    91. 

  91.      */
    92. 

  92.     const BINARY = 'binary';
    93. 

  93.     const NUMBER = 'number';
    94. 

  94.     const BTWOC  = 'btwoc';
    95. 

  95. 

  96.     /**
    97. 

  97.      * Constructor; if set construct the object using the parameter array to
    98. 

  98.      * set values for Prime, Generator and Private.
    99. 

  99.      * If a Private Key is not set, one will be generated at random.
    100. 

  100.      *
    101. 

  101.      * @param string $prime
    102. 

  102.      * @param string $generator
    103. 

  103.      * @param string $privateKey
    104. 

  104.      * @param string $privateKeyType
    105. 

  105.      * @return void
    106. 

  106.      */
    107. 

  107.     public function __construct($prime, $generator, $privateKey = null, $privateKeyType = self::NUMBER)
    108. 

  108.     {
    109. 

  109.         $this->setPrime($prime);
    110. 

  110.         $this->setGenerator($generator);
    111. 

  111.         if (!is_null($privateKey)) {
    112. 

  112.             $this->setPrivateKey($privateKey, $privateKeyType);
    113. 

  113.         }
    114. 

  114.         $this->setBigIntegerMath();
    115. 

  115.     }
    116. 

  116. 

  117.     /**
    118. 

  118.      * Generate own public key. If a private number has not already been
    119. 

  119.      * set, one will be generated at this stage.
    120. 

  120.      *
    121. 

  121.      * @return Zend_Crypt_DiffieHellman
    122. 

  122.      */
    123. 

  123.     public function generateKeys()
    124. 

  124.     {
    125. 

  125.         if (function_exists('openssl_dh_compute_key') && self::$useOpenssl !== false) {
    126. 

  126.             $details = array();
    127. 

  127.             $details['p'] = $this->getPrime();
    128. 

  128.             $details['g'] = $this->getGenerator();
    129. 

  129.             if ($this->hasPrivateKey()) {
    130. 

  130.                 $details['priv_key'] = $this->getPrivateKey();
    131. 

  131.             }
    132. 

  132.             $opensslKeyResource = openssl_pkey_new( array('dh' => $details) );
    133. 

  133.             $data = openssl_pkey_get_details($opensslKeyResource);
    134. 

  134.             $this->setPrivateKey($data['dh']['priv_key'], self::BINARY);
    135. 

  135.             $this->setPublicKey($data['dh']['pub_key'], self::BINARY);
    136. 

  136.         } else {
    137. 

  137.             // Private key is lazy generated in the absence of PHP 5.3's ext/openssl
    138. 

  138.             $publicKey = $this->_math->powmod($this->getGenerator(), $this->getPrivateKey(), $this->getPrime());
    139. 

  139.             $this->setPublicKey($publicKey);
    140. 

  140.         }
    141. 

  141.         return $this;
    142. 

  142.     }
    143. 

  143. 

  144.     /**
    145. 

  145.      * Setter for the value of the public number
    146. 

  146.      *
    147. 

  147.      * @param string $number
    148. 

  148.      * @param string $type
    149. 

  149.      * @return Zend_Crypt_DiffieHellman
    150. 

  150.      */
    151. 

  151.     public function setPublicKey($number, $type = self::NUMBER)
    152. 

  152.     {
    153. 

  153.         if ($type == self::BINARY) {
    154. 

  154.             $number = $this->_math->fromBinary($number);
    155. 

  155.         }
    156. 

  156.         if (!preg_match("/^\d+$/", $number)) {
    157. 

  157.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    158. 

  158.             throw new Zend_Crypt_DiffieHellman_Exception('invalid parameter; not a positive natural number');
    159. 

  159.         }
    160. 

  160.         $this->_publicKey = (string) $number;
    161. 

  161.         return $this;
    162. 

  162.     }
    163. 

  163. 

  164.     /**
    165. 

  165.      * Returns own public key for communication to the second party to this
    166. 

  166.      * transaction.
    167. 

  167.      *
    168. 

  168.      * @param string $type
    169. 

  169.      * @return string
    170. 

  170.      */
    171. 

  171.     public function getPublicKey($type = self::NUMBER)
    172. 

  172.     {
    173. 

  173.         if (is_null($this->_publicKey)) {
    174. 

  174.             require_once 'Zend/Crypt/DiffieHellman/Exception.php';
    175. 

  175.             throw new Zend_Crypt_DiffieHellman_Exception('A public key has not yet been generated using a prior call to generateKeys()');
    176. 

  176.         }
    177. 

  177.         if ($type == self::BINARY) {
    178. 

  178.             return $this->_math->toBinary($this->_publicKey);
    179. 

  179.         } elseif ($type == self::BTWOC) {
    180. 

  180.             return $this->_math->btwoc($this->_math->toBinary($this->_publicKey));
    181. 

  181.         }
    182. 

  182.         return $this->_publicKey;
    183. 

  183.     }
    184. 

  184. 

  185.     /**
    186. 

  186.      * Compute the shared secret key based on the public key received from the
    187. 

  187.      * the second party to this transaction. This should agree to the secret
    188. 

  188.      * key the second party computes on our own public key.
    189. 

  189.      * Once in agreement, the key is known to only to both parties.
    190. 

  190.      * By default, the function expects the public key to be in binary form
    191. 

  191.      * which is the typical format when being transmitted.
    192. 

  192.      *
    193. 

  193.      * If you need the binary form of the shared secret key, call
    194. 

  194.      * getSharedSecretKey() with the optional parameter for Binary output.
    195. 

  195.      *
    196. 

  196.      * @param string $publicKey
    197. 

  197.      * @param string $type
    198. 

  198.      * @return mixed
    199. 

  199.      */
    200. 

  200.     public function computeSecretKey($publicKey, $type = self::NUMBER, $output = self::NUMBER)
    201. 

  201.     {
    202. 

  202.         if ($type == self::BINARY) {
    203. 

  203.             $publicKey = $this->_math->fromBinary($publicKey);
    204. 

  204.         }
    205. 

  205.         if (!preg_match("/^\d+$/", $publicKey)) {
    206. 

  206.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    207. 

  207.             throw new Zend_Crypt_DiffieHellman_Exception('invalid parameter; not a positive natural number');
    208. 

  208.         }
    209. 

  209.         if (function_exists('openssl_dh_compute_key') && self::$useOpenssl !== false) {
    210. 

  210.             $this->_secretKey = openssl_dh_compute_key($publicKey, $this->getPublicKey());
    211. 

  211.         } else {
    212. 

  212.             $this->_secretKey = $this->_math->powmod($publicKey, $this->getPrivateKey(), $this->getPrime());
    213. 

  213.         }
    214. 

  214.         return $this->getSharedSecretKey($output);
    215. 

  215.     }
    216. 

  216. 

  217.     /**
    218. 

  218.      * Return the computed shared secret key from the DiffieHellman transaction
    219. 

  219.      *
    220. 

  220.      * @param string $type
    221. 

  221.      * @return string
    222. 

  222.      */
    223. 

  223.     public function getSharedSecretKey($type = self::NUMBER)
    224. 

  224.     {
    225. 

  225.         if (!isset($this->_secretKey)) {
    226. 

  226.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    227. 

  227.             throw new Zend_Crypt_DiffieHellman_Exception('A secret key has not yet been computed; call computeSecretKey()');
    228. 

  228.         }
    229. 

  229.         if ($type == self::BINARY) {
    230. 

  230.             return $this->_math->toBinary($this->_secretKey);
    231. 

  231.         } elseif ($type == self::BTWOC) {
    232. 

  232.             return $this->_math->btwoc($this->_math->toBinary($this->_secretKey));
    233. 

  233.         }
    234. 

  234.         return $this->_secretKey;
    235. 

  235.     }
    236. 

  236. 

  237.     /**
    238. 

  238.      * Setter for the value of the prime number
    239. 

  239.      *
    240. 

  240.      * @param string $number
    241. 

  241.      * @return Zend_Crypt_DiffieHellman
    242. 

  242.      */
    243. 

  243.     public function setPrime($number)
    244. 

  244.     {
    245. 

  245.         if (!preg_match("/^\d+$/", $number) || $number < 11) {
    246. 

  246.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    247. 

  247.             throw new Zend_Crypt_DiffieHellman_Exception('invalid parameter; not a positive natural number or too small: should be a large natural number prime');
    248. 

  248.         }
    249. 

  249.         $this->_prime = (string) $number;
    250. 

  250.         return $this;
    251. 

  251.     }
    252. 

  252. 

  253.     /**
    254. 

  254.      * Getter for the value of the prime number
    255. 

  255.      *
    256. 

  256.      * @return string
    257. 

  257.      */
    258. 

  258.     public function getPrime()
    259. 

  259.     {
    260. 

  260.         if (!isset($this->_prime)) {
    261. 

  261.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    262. 

  262.             throw new Zend_Crypt_DiffieHellman_Exception('No prime number has been set');
    263. 

  263.         }
    264. 

  264.         return $this->_prime;
    265. 

  265.     }
    266. 

  266. 

  267. 

  268.     /**
    269. 

  269.      * Setter for the value of the generator number
    270. 

  270.      *
    271. 

  271.      * @param string $number
    272. 

  272.      * @return Zend_Crypt_DiffieHellman
    273. 

  273.      */
    274. 

  274.     public function setGenerator($number)
    275. 

  275.     {
    276. 

  276.         if (!preg_match("/^\d+$/", $number) || $number < 2) {
    277. 

  277.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    278. 

  278.             throw new Zend_Crypt_DiffieHellman_Exception('invalid parameter; not a positive natural number greater than 1');
    279. 

  279.         }
    280. 

  280.         $this->_generator = (string) $number;
    281. 

  281.         return $this;
    282. 

  282.     }
    283. 

  283. 

  284.     /**
    285. 

  285.      * Getter for the value of the generator number
    286. 

  286.      *
    287. 

  287.      * @return string
    288. 

  288.      */
    289. 

  289.     public function getGenerator()
    290. 

  290.     {
    291. 

  291.         if (!isset($this->_generator)) {
    292. 

  292.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    293. 

  293.             throw new Zend_Crypt_DiffieHellman_Exception('No generator number has been set');
    294. 

  294.         }
    295. 

  295.         return $this->_generator;
    296. 

  296.     }
    297. 

  297. 

  298.     /**
    299. 

  299.      * Setter for the value of the private number
    300. 

  300.      *
    301. 

  301.      * @param string $number
    302. 

  302.      * @param string $type
    303. 

  303.      * @return Zend_Crypt_DiffieHellman
    304. 

  304.      */
    305. 

  305.     public function setPrivateKey($number, $type = self::NUMBER)
    306. 

  306.     {
    307. 

  307.         if ($type == self::BINARY) {
    308. 

  308.             $number = $this->_math->fromBinary($number);
    309. 

  309.         }
    310. 

  310.         if (!preg_match("/^\d+$/", $number)) {
    311. 

  311.             require_once('Zend/Crypt/DiffieHellman/Exception.php');
    312. 

  312.             throw new Zend_Crypt_DiffieHellman_Exception('invalid parameter; not a positive natural number');
    313. 

  313.         }
    314. 

  314.         $this->_privateKey = (string) $number;
    315. 

  315.         return $this;
    316. 

  316.     }
    317. 

  317. 

  318.     /**
    319. 

  319.      * Getter for the value of the private number
    320. 

  320.      *
    321. 

  321.      * @param string $type
    322. 

  322.      * @return string
    323. 

  323.      */
    324. 

  324.     public function getPrivateKey($type = self::NUMBER)
    325. 

  325.     {
    326. 

  326.         if (!$this->hasPrivateKey()) {
    327. 

  327.             $this->setPrivateKey($this->_generatePrivateKey());
    328. 

  328.         }
    329. 

  329.         if ($type == self::BINARY) {
    330. 

  330.             return $this->_math->toBinary($this->_privateKey);
    331. 

  331.         } elseif ($type == self::BTWOC) {
    332. 

  332.             return $this->_math->btwoc($this->_math->toBinary($this->_privateKey));
    333. 

  333.         }
    334. 

  334.         return $this->_privateKey;
    335. 

  335.     }
    336. 

  336. 

  337.     /**
    338. 

  338.      * Check whether a private key currently exists.
    339. 

  339.      *
    340. 

  340.      * @return boolean
    341. 

  341.      */
    342. 

  342.     public function hasPrivateKey()
    343. 

  343.     {
    344. 

  344.         return isset($this->_privateKey);
    345. 

  345.     }
    346. 

  346. 

  347.     /**
    348. 

  348.      * Setter to pass an extension parameter which is used to create
    349. 

  349.      * a specific BigInteger instance for a specific extension type.
    350. 

  350.      * Allows manual setting of the class in case of an extension
    351. 

  351.      * problem or bug.
    352. 

  352.      *
    353. 

  353.      * @param string $extension
    354. 

  354.      * @return void
    355. 

  355.      */
    356. 

  356.     public function setBigIntegerMath($extension = null)
    357. 

  357.     {
    358. 

  358.         /**
    359. 

  359.          * @see Zend_Crypt_Math
    360. 

  360.          */
    361. 

  361.         require_once 'Zend/Crypt/Math.php';
    362. 

  362.         $this->_math = new Zend_Crypt_Math($extension);
    363. 

  363.     }
    364. 

  364. 

  365.     /**
    366. 

  366.      * In the event a private number/key has not been set by the user,
    367. 

  367.      * or generated by ext/openssl, a best attempt will be made to
    368. 

  368.      * generate a random key. Having a random number generator installed
    369. 

  369.      * on linux/bsd is highly recommended! The alternative is not recommended
    370. 

  370.      * for production unless without any other option.
    371. 

  371.      *
    372. 

  372.      * @return string
    373. 

  373.      */
    374. 

  374.     protected function _generatePrivateKey()
    375. 

  375.     {
    376. 

  376.         $rand = $this->_math->rand($this->getGenerator(), $this->getPrime());
    377. 

  377.         return $rand;
    378. 

  378.     }
    379. 

  379. 

  380. }
    381.