Refactor Crypt class to use Mcrypt Adapter

Removes code duplication between `Crypt` and `Mcrpyt` classes. `Mcrpyt` is used
for all equivalent `Crypt` methods except `Crypt::encrypt` becuase
`Mcrypt::encrpt` throws an exception preventing it's use.

Author: pmclain

lib/internal/Magento/Framework/Encryption/Adapter/Mcrypt.php

@@ -25,6 +25,8 @@ class Mcrypt implements EncryptionAdapterInterface
     private $initVector;
 
     /**
+     * Encryption algorithm module handle
+     *
      * @var resource
      */
     private $handle;
@@ -119,6 +121,16 @@ public function getInitVector(): ?string
         return $this->initVector;
     }
 
+    /**
+     * Get the current mcrypt handle
+     *
+     * @return resource
+     */
+    public function getHandle()
+    {
+        return $this->handle;
+    }
+
     /**
      * Encrypt a string
      *

lib/internal/Magento/Framework/Encryption/Crypt.php

@@ -32,11 +32,11 @@ class Crypt
     protected $_initVector;
 
     /**
-     * Encryption algorithm module handle
+     * Mcrypt adapter
      *
-     * @var resource
+     * @var \Magento\Framework\Encryption\Adapter\Mcrypt
      */
-    protected $_handle;
+    private $mcrypt;
 
     /**
      * Constructor
@@ -56,64 +56,30 @@ public function __construct(
         $mode = MCRYPT_MODE_ECB,
         $initVector = false
     ) {
-        $this->_cipher = $cipher;
-        $this->_mode = $mode;
-        // @codingStandardsIgnoreStart
-        $this->_handle = @mcrypt_module_open($cipher, '', $mode, '');
-        // @codingStandardsIgnoreEnd
-        try {
+        if (true === $initVector) {
             // @codingStandardsIgnoreStart
-            $maxKeySize = @mcrypt_enc_get_key_size($this->_handle);
+            $handle = @mcrypt_module_open($cipher, '', $mode, '');
+            $initVectorSize = @mcrypt_enc_get_iv_size($handle);
             // @codingStandardsIgnoreEnd
-            if (strlen((string)$key) > $maxKeySize) {
-                throw new \Magento\Framework\Exception\LocalizedException(
-                    new \Magento\Framework\Phrase('Key must not exceed %1 bytes.', [$maxKeySize])
-                );
-            }
-            // @codingStandardsIgnoreStart
-            $initVectorSize = @mcrypt_enc_get_iv_size($this->_handle);
-            // @codingStandardsIgnoreEnd
-            if (true === $initVector) {
-                /* Generate a random vector from human-readable characters */
-                $abc = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
-                $initVector = '';
-                for ($i = 0; $i < $initVectorSize; $i++) {
-                    $initVector .= $abc[rand(0, strlen($abc) - 1)];
-                }
-            } elseif (false === $initVector) {
-                /* Set vector to zero bytes to not use it */
-                $initVector = str_repeat("\0", $initVectorSize);
-            } elseif (!is_string($initVector) || strlen($initVector) != $initVectorSize) {
-                throw new \Magento\Framework\Exception\LocalizedException(
-                    new \Magento\Framework\Phrase(
-                        'Init vector must be a string of %1 bytes.',
-                        [$initVectorSize]
-                    )
-                );
+
+            /* Generate a random vector from human-readable characters */
+            $allowedCharacters = 'abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
+            $initVector = '';
+            for ($i = 0; $i < $initVectorSize; $i++) {
+                $initVector .= $allowedCharacters[random_int(0, strlen($allowedCharacters) - 1)];
             }
-            $this->_initVector = $initVector;
-        } catch (\Exception $e) {
             // @codingStandardsIgnoreStart
-            @mcrypt_module_close($this->_handle);
+            @mcrypt_generic_deinit($handle);
+            @mcrypt_module_close($handle);
             // @codingStandardsIgnoreEnd
-            throw $e;
         }
-        // @codingStandardsIgnoreStart
-        @mcrypt_generic_init($this->_handle, $key, $initVector);
-        // @codingStandardsIgnoreEnd
-    }
 
-    /**
-     * Destructor frees allocated resources
-     */
-    public function __destruct()
-    {
-        // @codingStandardsIgnoreStart
-        @mcrypt_generic_deinit($this->_handle);
-        // @codingStandardsIgnoreEnd
-        // @codingStandardsIgnoreStart
-        @mcrypt_module_close($this->_handle);
-        // @codingStandardsIgnoreEnd
+        $this->mcrypt = new \Magento\Framework\Encryption\Adapter\Mcrypt(
+            $key,
+            $cipher,
+            $mode,
+            $initVector === false ? null : $initVector
+        );
     }
 
     /**
@@ -123,7 +89,7 @@ public function __destruct()
      */
     public function getCipher()
     {
-        return $this->_cipher;
+        return $this->mcrypt->getCipher();
     }
 
     /**
@@ -133,7 +99,7 @@ public function getCipher()
      */
     public function getMode()
     {
-        return $this->_mode;
+        return $this->mcrypt->getMode();
     }
 
     /**
@@ -143,7 +109,7 @@ public function getMode()
      */
     public function getInitVector()
     {
-        return $this->_initVector;
+        return $this->mcrypt->getInitVector();
     }
 
     /**
@@ -157,9 +123,8 @@ public function encrypt($data)
         if (strlen($data) == 0) {
             return $data;
         }
-        // @codingStandardsIgnoreStart
-        return @mcrypt_generic($this->_handle, $data);
-        // @codingStandardsIgnoreEnd
+        // @codingStandardsIgnoreLine
+        return @mcrypt_generic($this->mcrypt->getHandle(), $data);
     }
 
     /**
@@ -170,17 +135,6 @@ public function encrypt($data)
      */
     public function decrypt($data)
     {
-        if (strlen($data) == 0) {
-            return $data;
-        }
-        // @codingStandardsIgnoreStart
-        $data = @mdecrypt_generic($this->_handle, $data);
-        // @codingStandardsIgnoreEnd
-        /*
-         * Returned string can in fact be longer than the unencrypted string due to the padding of the data
-         * @link http://www.php.net/manual/en/function.mdecrypt-generic.php
-         */
-        $data = rtrim($data, "\0");
-        return $data;
+        return $this->mcrypt->decrypt($data);
     }
 }

lib/internal/Magento/Framework/Encryption/Test/Unit/CryptTest.php

@@ -85,6 +85,7 @@ public function testConstructor($cipher, $mode)
 
     public function getConstructorExceptionData()
     {
+        $key = substr(__CLASS__, -32, 32);
         $result = [];
         foreach (self::SUPPORTED_CIPHER_MODE_COMBINATIONS as $cipher => $modes) {
             /** @var array $modes */
@@ -94,8 +95,8 @@ public function getConstructorExceptionData()
                 $tooLongInitVector = str_repeat('-', $this->_getInitVectorSize($cipher, $mode) + 1);
                 $result['tooLongKey-' . $cipher . '-' . $mode . '-false'] = [$tooLongKey, $cipher, $mode, false];
                 $keyPrefix = 'key-' . $cipher . '-' . $mode;
-                $result[$keyPrefix . '-tooShortInitVector'] = [$this->_key, $cipher, $mode, $tooShortInitVector];
-                $result[$keyPrefix . '-tooLongInitVector'] = [$this->_key, $cipher, $mode, $tooLongInitVector];
+                $result[$keyPrefix . '-tooShortInitVector'] = [$key, $cipher, $mode, $tooShortInitVector];
+                $result[$keyPrefix . '-tooLongInitVector'] = [$key, $cipher, $mode, $tooLongInitVector];
             }
         }
         return $result;