fixed pasargas RSA class bugs

Author: samuraee

composer.json

@@ -15,9 +15,10 @@
 		}
 	],
 	"require": {
-		"php": ">=7.0.0",
+		"php": ">=7.2",
 		"ext-soap" : "*",
         "ext-json": "*",
+        "ext-bcmath": "*",
         "illuminate/contracts": "~5.6.0|^6.0|^7.0|^8.0",
 		"illuminate/database": "~5.6.0|^6.0|^7.0|^8.0",
 		"illuminate/http": "~5.6.0|^6.0|^7.0|^8.0",

src/Adapter/Pasargad/RSA.php

@@ -1,5 +1,7 @@
 <?php
+
 namespace Tartan\Larapay\Adapter\Pasargad;
+
 define("BCCOMP_LARGER", 1);
 
 /**
@@ -8,145 +10,147 @@
  */
 class RSA
 {
-	public static function rsa_encrypt ($message, $public_key, $modulus, $keylength)
-	{
-		$padded    = RSA::add_PKCS1_padding($message, true, $keylength / 8);
-		$number    = RSA::binary_to_number($padded);
-		$encrypted = RSA::pow_mod($number, $public_key, $modulus);
-		$result    = RSA::number_to_binary($encrypted, $keylength / 8);
-
-		return $result;
-	}
-
-	public static function rsa_decrypt ($message, $private_key, $modulus, $keylength)
-	{
-		$number    = RSA::binary_to_number($message);
-		$decrypted = RSA::pow_mod($number, $private_key, $modulus);
-		$result    = RSA::number_to_binary($decrypted, $keylength / 8);
-
-		return RSA::remove_PKCS1_padding($result, $keylength / 8);
-	}
-
-	public static function rsa_sign ($message, $private_key, $modulus, $keylength)
-	{
-		$padded = RSA::add_PKCS1_padding($message, false, $keylength / 8);
-		$number = RSA::binary_to_number($padded);
-		$signed = RSA::pow_mod($number, $private_key, $modulus);
-		$result = RSA::number_to_binary($signed, $keylength / 8);
-
-		return $result;
-	}
-
-	public static function rsa_verify ($message, $public_key, $modulus, $keylength)
-	{
-		return RSA::rsa_decrypt($message, $public_key, $modulus, $keylength);
-	}
-
-	public static function rsa_kyp_verify ($message, $public_key, $modulus, $keylength)
-	{
-		$number    = RSA::binary_to_number($message);
-		$decrypted = RSA::pow_mod($number, $public_key, $modulus);
-		$result    = RSA::number_to_binary($decrypted, $keylength / 8);
-
-		return RSA::remove_KYP_padding($result, $keylength / 8);
-	}
-
-	public static function pow_mod ($p, $q, $r)
-	{
-		$factors      = array();
-		$div          = $q;
-		$power_of_two = 0;
-		while (bccomp($div, "0") == BCCOMP_LARGER) {
-			$rem = bcmod($div, 2);
-			$div = bcdiv($div, 2);
-			if ($rem) array_push($factors, $power_of_two);
-			$power_of_two++;
-		}
-		$partial_results = array();
-		$part_res        = $p;
-		$idx             = 0;
-		foreach ($factors as $factor) {
-			while ($idx < $factor) {
-				$part_res = bcpow($part_res, "2");
-				$part_res = bcmod($part_res, $r);
-				$idx++;
-			}
-			array_push($partial_results, $part_res);
-		}
-		$result = "1";
-		foreach ($partial_results as $part_res) {
-			$result = bcmul($result, $part_res);
-			$result = bcmod($result, $r);
-		}
-
-		return $result;
-	}
-
-	public static function add_PKCS1_padding ($data, $isPublicKey, $blocksize)
-	{
-		$pad_length = $blocksize - 3 - strlen($data);
-		if ($isPublicKey) {
-			$block_type = "\x02";
-			$padding    = "";
-			for ($i = 0; $i < $pad_length; $i++) {
-				$rnd = mt_rand(1, 255);
-				$padding .= chr($rnd);
-			}
-		}
-		else {
-			$block_type = "\x01";
-			$padding    = str_repeat("\xFF", $pad_length);
-		}
-
-		return "\x00" . $block_type . $padding . "\x00" . $data;
-	}
-
-	public static function remove_PKCS1_padding ($data, $blocksize)
-	{
-		assert(strlen($data) == $blocksize);
-		$data = substr($data, 1);
-		if ($data{0} == '\0')
-			die("Block type 0 not implemented.");
-		assert(($data{0} == "\x01") || ($data{0} == "\x02"));
-		$offset = strpos($data, "\0", 1);
-
-		return substr($data, $offset + 1);
-	}
-
-	public static function remove_KYP_padding ($data, $blocksize)
-	{
-		assert(strlen($data) == $blocksize);
-		$offset = strpos($data, "\0");
-
-		return substr($data, 0, $offset);
-	}
-
-	public static function binary_to_number ($data)
-	{
-		$base   = "256";
-		$radix  = "1";
-		$result = "0";
-		for ($i = strlen($data) - 1; $i >= 0; $i--) {
-			$digit    = ord($data{$i});
-			$part_res = bcmul($digit, $radix);
-			$result   = bcadd($result, $part_res);
-			$radix    = bcmul($radix, $base);
-		}
-
-		return $result;
-	}
-
-	public static function number_to_binary ($number, $blocksize)
-	{
-		$base   = "256";
-		$result = "";
-		$div    = $number;
-		while ($div > 0) {
-			$mod    = bcmod($div, $base);
-			$div    = bcdiv($div, $base);
-			$result = chr($mod) . $result;
-		}
-
-		return str_pad($result, $blocksize, "\x00", STR_PAD_LEFT);
-	}
+    public static function rsa_encrypt($message, $public_key, $modulus, $keylength)
+    {
+        $padded    = RSA::add_PKCS1_padding($message, true, $keylength / 8);
+        $number    = RSA::binary_to_number($padded);
+        $encrypted = RSA::pow_mod($number, $public_key, $modulus);
+        $result    = RSA::number_to_binary($encrypted, $keylength / 8);
+
+        return $result;
+    }
+
+    public static function rsa_decrypt($message, $private_key, $modulus, $keylength)
+    {
+        $number    = RSA::binary_to_number($message);
+        $decrypted = RSA::pow_mod($number, $private_key, $modulus);
+        $result    = RSA::number_to_binary($decrypted, $keylength / 8);
+
+        return RSA::remove_PKCS1_padding($result, $keylength / 8);
+    }
+
+    public static function rsa_sign($message, $private_key, $modulus, $keylength)
+    {
+        $padded = RSA::add_PKCS1_padding($message, false, $keylength / 8);
+        $number = RSA::binary_to_number($padded);
+        $signed = RSA::pow_mod($number, $private_key, $modulus);
+
+        return RSA::number_to_binary($signed, $keylength / 8);
+    }
+
+    public static function rsa_verify($message, $public_key, $modulus, $keylength)
+    {
+        return RSA::rsa_decrypt($message, $public_key, $modulus, $keylength);
+    }
+
+    public static function rsa_kyp_verify($message, $public_key, $modulus, $keylength)
+    {
+        $number    = RSA::binary_to_number($message);
+        $decrypted = RSA::pow_mod($number, $public_key, $modulus);
+        $result    = RSA::number_to_binary($decrypted, $keylength / 8);
+
+        return RSA::remove_KYP_padding($result, $keylength / 8);
+    }
+
+    public static function pow_mod($p, $q, $r)
+    {
+        $factors      = [];
+        $div          = $q;
+        $power_of_two = 0;
+
+        while (bccomp($div, "0") === BCCOMP_LARGER) {
+            $rem = bcmod($div, 2);
+            $div = bcdiv($div, 2);
+            if ($rem) {
+                $factors[] = $power_of_two;
+            }
+            $power_of_two++;
+        }
+        $partial_results = [];
+        $part_res        = $p;
+        $idx             = 0;
+        foreach ($factors as $factor) {
+            while ($idx < $factor) {
+                $part_res = bcpow($part_res, "2");
+                $part_res = bcmod($part_res, $r);
+                $idx++;
+            }
+            $partial_results [] = $part_res;
+        }
+        $result = "1";
+        foreach ($partial_results as $part_res) {
+            $result = bcmul($result, $part_res);
+            $result = bcmod($result, $r);
+        }
+
+        return $result;
+    }
+
+    public static function add_PKCS1_padding($data, $isPublicKey, $blocksize)
+    {
+        $pad_length = $blocksize - 3 - strlen($data);
+        if ($isPublicKey) {
+            $block_type = "\x02";
+            $padding    = "";
+            for ($i = 0; $i < $pad_length; $i++) {
+                $rnd     = random_int(1, 255);
+                $padding .= chr($rnd);
+            }
+        } else {
+            $block_type = "\x01";
+            $padding    = str_repeat("\xFF", $pad_length);
+        }
+
+        return "\x00" . $block_type . $padding . "\x00" . $data;
+    }
+
+    public static function remove_PKCS1_padding($data, $blocksize)
+    {
+        assert(strlen($data) == $blocksize);
+        $data = substr($data, 1);
+        if ($data{0} === '\0') {
+            die("Block type 0 not implemented.");
+        }
+        assert(($data{0} === "\x01") || ($data{0} === "\x02"));
+        $offset = strpos($data, "\0", 1);
+
+        return substr($data, $offset + 1);
+    }
+
+    public static function remove_KYP_padding($data, $blocksize)
+    {
+        assert(strlen($data) == $blocksize);
+        $offset = strpos($data, "\0");
+
+        return substr($data, 0, $offset);
+    }
+
+    public static function binary_to_number($data)
+    {
+        $base   = "256";
+        $radix  = "1";
+        $result = "0";
+        for ($i = strlen($data) - 1; $i >= 0; $i--) {
+            $digit    = ord($data{$i});
+            $part_res = bcmul($digit, $radix);
+            $result   = bcadd($result, $part_res);
+            $radix    = bcmul($radix, $base);
+        }
+
+        return $result;
+    }
+
+    public static function number_to_binary($number, $blocksize)
+    {
+        $base   = "256";
+        $result = "";
+        $div    = $number;
+        while ($div > 0) {
+            $mod    = bcmod($div, $base);
+            $div    = bcdiv($div, $base);
+            $result = chr($mod) . $result;
+        }
+
+        return str_pad($result, $blocksize, "\x00", STR_PAD_LEFT);
+    }
 }

src/Adapter/Pasargad/RSAProcessor.php

@@ -1,6 +1,12 @@
 <?php
 namespace Tartan\Larapay\Adapter\Pasargad;
 
+class RSAKeyType
+{
+    const XMLFile = 0;
+    const XMLString = 1;
+}
+
 /**
  * Class RSAProcessor
  * @package Tartan\Larapay\Adapter\Pasargad
@@ -18,18 +24,17 @@ class RSAProcessor
      * @param null $xmlRsaKey
      * @param null $type
      */
-	public function __construct ($xmlRsaKey = null, $type = null)
+	public function __construct ($xmlRsaKey = null, $keyType = null)
 	{
 		$xmlObj = null;
-		if ($xmlRsaKey == null) {
-			$xmlObj = simplexml_load_file("xmlfile/RSAKey.xml");
-		}
-		elseif ($type == RSAKeyType::XMLFile) {
-			$xmlObj = simplexml_load_file($xmlRsaKey);
-		}
-		else {
-			$xmlObj = simplexml_load_string($xmlRsaKey);
-		}
+        $keyType = is_null($keyType) ? null : strtolower($keyType);
+
+        if ($keyType === null || $keyType == RSAKeyType::XMLString) {
+            $xmlObj = simplexml_load_string($xmlRsaKey);
+        } elseif ($keyType == RSAKeyType::XMLFile) {
+            $xmlObj = simplexml_load_string(file_get_contents($xmlRsaKey));
+        }
+
 		$this->modulus     = RSA::binary_to_number(base64_decode($xmlObj->Modulus));
 		$this->public_key  = RSA::binary_to_number(base64_decode($xmlObj->Exponent));
 		$this->private_key = RSA::binary_to_number(base64_decode($xmlObj->D));
@@ -61,7 +66,7 @@ public function encrypt ($data)
 		return base64_encode(RSA::rsa_encrypt($data, $this->public_key, $this->modulus, $this->key_length));
 	}
 
-	public function dencrypt ($data)
+	public function decrypt ($data)
 	{
 		return RSA::rsa_decrypt($data, $this->private_key, $this->modulus, $this->key_length);
 	}
@@ -76,9 +81,3 @@ public function verify ($data)
 		return RSA::rsa_verify($data, $this->public_key, $this->modulus, $this->key_length);
 	}
 }
-
-class RSAKeyType
-{
-	const XMLFile = 0;
-	const XMLString = 1;
-}