Merge remote-tracking branch 'origin/MAGETWO-96983' into chaika_february

olysenko · olysenko · commit c6599d255c72 · 2019-02-11T17:19:10.000+02:00
diff --git a/lib/internal/Magento/Framework/Encryption/Adapter/SodiumChachaIetf.php b/lib/internal/Magento/Framework/Encryption/Adapter/SodiumChachaIetf.php
@@ -33,6 +33,7 @@ public function __construct(
      *
      * @param string $data
      * @return string string
+     * @throws \SodiumException
      */
     public function encrypt(string $data): string
     {
@@ -58,13 +59,17 @@ public function decrypt(string $data): string
         $nonce = mb_substr($data, 0, SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES, '8bit');
         $payload = mb_substr($data, SODIUM_CRYPTO_AEAD_CHACHA20POLY1305_IETF_NPUBBYTES, null, '8bit');
 
-        $plainText = sodium_crypto_aead_chacha20poly1305_ietf_decrypt(
-            $payload,
-            $nonce,
-            $nonce,
-            $this->key
-        );
+        try {
+            $plainText = sodium_crypto_aead_chacha20poly1305_ietf_decrypt(
+                $payload,
+                $nonce,
+                $nonce,
+                $this->key
+            );
+        } catch (\SodiumException $e) {
+            $plainText = '';
+        }
 
-        return $plainText;
+        return $plainText !== false ? $plainText : '';
     }
 }
diff --git a/lib/internal/Magento/Framework/Encryption/Test/Unit/Adapter/SodiumChachaIetfTest.php b/lib/internal/Magento/Framework/Encryption/Test/Unit/Adapter/SodiumChachaIetfTest.php
@@ -11,13 +11,17 @@
  */
 namespace Magento\Framework\Encryption\Test\Unit\Adapter;
 
-class SodiumChachaIetfTest extends \PHPUnit\Framework\TestCase
+use Magento\Framework\Encryption\Adapter\SodiumChachaIetf;
+use PHPUnit\Framework\TestCase;
+
+class SodiumChachaIetfTest extends TestCase
 {
+    /**
+     * @return array
+     */
     public function getCryptData(): array
     {
-        $fixturesFilename = __DIR__ . '/../Crypt/_files/_sodium_chachaieft_fixtures.php';
-
-        $result = include $fixturesFilename;
+        $result = include __DIR__ . '/../Crypt/_files/_sodium_chachaieft_fixtures.php';
         /* Restore encoded string back to binary */
         foreach ($result as &$cryptParams) {
             $cryptParams['encrypted'] = base64_decode($cryptParams['encrypted']);
@@ -29,21 +33,30 @@ public function getCryptData(): array
 
     /**
      * @dataProvider getCryptData
+     *
+     * @param string $key
+     * @param string $encrypted
+     * @param string $decrypted
+     * @throws \SodiumException
      */
-    public function testEncrypt(string $key, string $encrypted, string $decrypted)
+    public function testEncrypt(string $key, string $encrypted, string $decrypted): void
     {
-        $crypt = new \Magento\Framework\Encryption\Adapter\SodiumChachaIetf($key);
+        $crypt = new SodiumChachaIetf($key);
         $result = $crypt->encrypt($decrypted);
 
         $this->assertNotEquals($encrypted, $result);
     }
 
     /**
      * @dataProvider getCryptData
+     *
+     * @param string $key
+     * @param string $encrypted
+     * @param string $decrypted
      */
-    public function testDecrypt(string $key, string $encrypted, string $decrypted)
+    public function testDecrypt(string $key, string $encrypted, string $decrypted): void
     {
-        $crypt = new \Magento\Framework\Encryption\Adapter\SodiumChachaIetf($key);
+        $crypt = new SodiumChachaIetf($key);
         $result = $crypt->decrypt($encrypted);
 
         $this->assertEquals($decrypted, $result);
diff --git a/lib/internal/Magento/Framework/Encryption/Test/Unit/Crypt/_files/_sodium_chachaieft_fixtures.php b/lib/internal/Magento/Framework/Encryption/Test/Unit/Crypt/_files/_sodium_chachaieft_fixtures.php
@@ -32,4 +32,14 @@
         'encrypted' => 'UglO9dEgslFpwPwejJmrK89PmBicv+I1pfdaXaEI69IrETD8LpdzOLF7',
         'decrypted' => 'Hello World!!!',
     ],
+    5 => [
+        'key' => '6wRADHwwCBGgdxbcHhovGB0upmg0mbsN',
+        'encrypted' => '',
+        'decrypted' => '',
+    ],
+    6 => [
+        'key' => '6wRADHwwCBGgdxbcHhovGB0upmg0mbsN',
+        'encrypted' => 'bWFsZm9ybWVkLWlucHV0',
+        'decrypted' => '',
+    ],
 ];
diff --git a/lib/internal/Magento/Framework/Encryption/Test/Unit/EncryptorTest.php b/lib/internal/Magento/Framework/Encryption/Test/Unit/EncryptorTest.php
@@ -8,43 +8,46 @@
 
 namespace Magento\Framework\Encryption\Test\Unit;
 
+use Magento\Framework\App\DeploymentConfig;
 use Magento\Framework\Encryption\Adapter\SodiumChachaIetf;
-use Magento\Framework\Encryption\Encryptor;
 use Magento\Framework\Encryption\Crypt;
+use Magento\Framework\Encryption\Encryptor;
+use Magento\Framework\Math\Random;
 use Magento\Framework\Encryption\KeyValidator;
 use Magento\Framework\TestFramework\Unit\Helper\ObjectManager;
 
 class EncryptorTest extends \PHPUnit\Framework\TestCase
 {
-    const CRYPT_KEY_1 = 'g9mY9KLrcuAVJfsmVUSRkKFLDdUPVkaZ';
-    const CRYPT_KEY_2 = '7wEjmrliuqZQ1NQsndSa8C8WHvddeEbN';
+    private const CRYPT_KEY_1 = 'g9mY9KLrcuAVJfsmVUSRkKFLDdUPVkaZ';
+    private const CRYPT_KEY_2 = '7wEjmrliuqZQ1NQsndSa8C8WHvddeEbN';
 
     /**
-     * @var \Magento\Framework\Encryption\Encryptor
+     * @var Encryptor
      */
     private $encryptor;
 
     /**
-     * @var \PHPUnit_Framework_MockObject_MockObject
+     * @var Random | \PHPUnit_Framework_MockObject_MockObject
      */
     private $randomGeneratorMock;
 
     /**
-     * @var KeyValidator|\PHPUnit_Framework_MockObject_MockObject
+     * @var KeyValidator | \PHPUnit_Framework_MockObject_MockObject
      */
     private $keyValidatorMock;
 
     protected function setUp()
     {
-        $this->randomGeneratorMock = $this->createMock(\Magento\Framework\Math\Random::class);
-        $deploymentConfigMock = $this->createMock(\Magento\Framework\App\DeploymentConfig::class);
+        $this->randomGeneratorMock = $this->createMock(Random::class);
+        /** @var DeploymentConfig | \PHPUnit_Framework_MockObject_MockObject $deploymentConfigMock */
+        $deploymentConfigMock = $this->createMock(DeploymentConfig::class);
         $deploymentConfigMock->expects($this->any())
             ->method('get')
             ->with(Encryptor::PARAM_CRYPT_KEY)
-            ->will($this->returnValue(self::CRYPT_KEY_1));
+            ->willReturn(self::CRYPT_KEY_1);
         $this->keyValidatorMock = $this->createMock(KeyValidator::class);
         $this->encryptor = (new ObjectManager($this))->getObject(
-            \Magento\Framework\Encryption\Encryptor::class,
+            Encryptor::class,
             [
                 'random' => $this->randomGeneratorMock,
                 'deploymentConfig' => $deploymentConfigMock,
@@ -53,42 +56,42 @@ protected function setUp()
         );
     }
 
-    public function testGetHashNoSalt()
+    public function testGetHashNoSalt(): void
     {
         $this->randomGeneratorMock->expects($this->never())->method('getRandomString');
         $expected = '5e884898da28047151d0e56f8dc6292773603d0d6aabbdd62a11ef721d1542d8';
         $actual = $this->encryptor->getHash('password');
         $this->assertEquals($expected, $actual);
     }
 
-    public function testGetHashSpecifiedSalt()
+    public function testGetHashSpecifiedSalt(): void
     {
         $this->randomGeneratorMock->expects($this->never())->method('getRandomString');
         $expected = '13601bda4ea78e55a07b98866d2be6be0744e3866f13c00c811cab608a28f322:salt:1';
         $actual = $this->encryptor->getHash('password', 'salt');
         $this->assertEquals($expected, $actual);
     }
 
-    public function testGetHashRandomSaltDefaultLength()
+    public function testGetHashRandomSaltDefaultLength(): void
     {
         $salt = '-----------random_salt----------';
         $this->randomGeneratorMock
             ->expects($this->once())
             ->method('getRandomString')
             ->with(32)
-            ->will($this->returnValue($salt));
+            ->willReturn($salt);
         $expected = 'a1c7fc88037b70c9be84d3ad12522c7888f647915db78f42eb572008422ba2fa:' . $salt . ':1';
         $actual = $this->encryptor->getHash('password', true);
         $this->assertEquals($expected, $actual);
     }
 
-    public function testGetHashRandomSaltSpecifiedLength()
+    public function testGetHashRandomSaltSpecifiedLength(): void
     {
         $this->randomGeneratorMock
             ->expects($this->once())
             ->method('getRandomString')
             ->with(11)
-            ->will($this->returnValue('random_salt'));
+            ->willReturn('random_salt');
         $expected = '4c5cab8dd00137d11258f8f87b93fd17bd94c5026fc52d3c5af911dd177a2611:random_salt:1';
         $actual = $this->encryptor->getHash('password', 11);
         $this->assertEquals($expected, $actual);
@@ -101,7 +104,7 @@ public function testGetHashRandomSaltSpecifiedLength()
      *
      * @dataProvider validateHashDataProvider
      */
-    public function testValidateHash($password, $hash, $expected)
+    public function testValidateHash($password, $hash, $expected): void
     {
         $actual = $this->encryptor->validateHash($password, $hash);
         $this->assertEquals($expected, $actual);
@@ -110,7 +113,7 @@ public function testValidateHash($password, $hash, $expected)
     /**
      * @return array
      */
-    public function validateHashDataProvider()
+    public function validateHashDataProvider(): array
     {
         return [
             ['password', 'hash:salt:1', false],
@@ -125,13 +128,13 @@ public function validateHashDataProvider()
      * @dataProvider encryptWithEmptyKeyDataProvider
      * @expectedException \SodiumException
      */
-    public function testEncryptWithEmptyKey($key)
+    public function testEncryptWithEmptyKey($key): void
     {
-        $deploymentConfigMock = $this->createMock(\Magento\Framework\App\DeploymentConfig::class);
+        $deploymentConfigMock = $this->createMock(DeploymentConfig::class);
         $deploymentConfigMock->expects($this->any())
             ->method('get')
             ->with(Encryptor::PARAM_CRYPT_KEY)
-            ->will($this->returnValue($key));
+            ->willReturn($key);
         $model = new Encryptor($this->randomGeneratorMock, $deploymentConfigMock);
         $value = 'arbitrary_string';
         $this->assertEquals($value, $model->encrypt($value));
@@ -140,7 +143,7 @@ public function testEncryptWithEmptyKey($key)
     /**
      * @return array
      */
-    public function encryptWithEmptyKeyDataProvider()
+    public function encryptWithEmptyKeyDataProvider(): array
     {
         return [[null], [0], [''], ['0']];
     }
@@ -150,13 +153,13 @@ public function encryptWithEmptyKeyDataProvider()
      *
      * @dataProvider decryptWithEmptyKeyDataProvider
      */
-    public function testDecryptWithEmptyKey($key)
+    public function testDecryptWithEmptyKey($key): void
     {
-        $deploymentConfigMock = $this->createMock(\Magento\Framework\App\DeploymentConfig::class);
+        $deploymentConfigMock = $this->createMock(DeploymentConfig::class);
         $deploymentConfigMock->expects($this->any())
             ->method('get')
             ->with(Encryptor::PARAM_CRYPT_KEY)
-            ->will($this->returnValue($key));
+            ->willReturn($key);
         $model = new Encryptor($this->randomGeneratorMock, $deploymentConfigMock);
         $value = 'arbitrary_string';
         $this->assertEquals('', $model->decrypt($value));
@@ -165,36 +168,35 @@ public function testDecryptWithEmptyKey($key)
     /**
      * @return array
      */
-    public function decryptWithEmptyKeyDataProvider()
+    public function decryptWithEmptyKeyDataProvider(): array
     {
         return [[null], [0], [''], ['0']];
     }
 
-    public function testEncrypt()
+    public function testEncrypt(): void
     {
         // sample data to encrypt
         $data = 'Mares eat oats and does eat oats, but little lambs eat ivy.';
 
         $actual = $this->encryptor->encrypt($data);
 
         // Extract the initialization vector and encrypted data
-        $parts = explode(':', $actual, 3);
-        list(, , $encryptedData) = $parts;
+        [, , $encryptedData] = explode(':', $actual, 3);
 
         $crypt = new SodiumChachaIetf(self::CRYPT_KEY_1);
         // Verify decrypted matches original data
         $this->assertEquals($data, $crypt->decrypt(base64_decode((string)$encryptedData)));
     }
 
-    public function testDecrypt()
+    public function testDecrypt(): void
     {
         $message = 'Mares eat oats and does eat oats, but little lambs eat ivy.';
         $encrypted = $this->encryptor->encrypt($message);
 
         $this->assertEquals($message, $this->encryptor->decrypt($encrypted));
     }
 
-    public function testLegacyDecrypt()
+    public function testLegacyDecrypt(): void
     {
         // sample data to encrypt
         $data = '0:2:z3a4ACpkU35W6pV692U4ueCVQP0m0v0p:' .
@@ -203,26 +205,25 @@ public function testLegacyDecrypt()
         $actual = $this->encryptor->decrypt($data);
 
         // Extract the initialization vector and encrypted data
-        $parts = explode(':', $data, 4);
-        list(, , $iv, $encrypted) = $parts;
+        [, , $iv, $encrypted] = explode(':', $data, 4);
 
         // Decrypt returned data with RIJNDAEL_256 cipher, cbc mode
         $crypt = new Crypt(self::CRYPT_KEY_1, MCRYPT_RIJNDAEL_256, MCRYPT_MODE_CBC, $iv);
         // Verify decrypted matches original data
         $this->assertEquals($encrypted, base64_encode($crypt->encrypt($actual)));
     }
 
-    public function testEncryptDecryptNewKeyAdded()
+    public function testEncryptDecryptNewKeyAdded(): void
     {
-        $deploymentConfigMock = $this->createMock(\Magento\Framework\App\DeploymentConfig::class);
+        $deploymentConfigMock = $this->createMock(DeploymentConfig::class);
         $deploymentConfigMock->expects($this->at(0))
             ->method('get')
             ->with(Encryptor::PARAM_CRYPT_KEY)
-            ->will($this->returnValue(self::CRYPT_KEY_1));
+            ->willReturn(self::CRYPT_KEY_1);
         $deploymentConfigMock->expects($this->at(1))
             ->method('get')
             ->with(Encryptor::PARAM_CRYPT_KEY)
-            ->will($this->returnValue(self::CRYPT_KEY_1 . "\n" . self::CRYPT_KEY_2));
+            ->willReturn(self::CRYPT_KEY_1 . "\n" . self::CRYPT_KEY_2);
         $model1 = new Encryptor($this->randomGeneratorMock, $deploymentConfigMock);
         // simulate an encryption key is being added
         $model2 = new Encryptor($this->randomGeneratorMock, $deploymentConfigMock);
@@ -236,7 +237,7 @@ public function testEncryptDecryptNewKeyAdded()
         $this->assertSame($data, $decryptedData, 'Encryptor failed to decrypt data encrypted by old keys.');
     }
 
-    public function testValidateKey()
+    public function testValidateKey(): void
     {
         $this->keyValidatorMock->method('isValid')->willReturn(true);
         $this->encryptor->validateKey(self::CRYPT_KEY_1);
@@ -245,7 +246,7 @@ public function testValidateKey()
     /**
      * @expectedException \Exception
      */
-    public function testValidateKeyInvalid()
+    public function testValidateKeyInvalid(): void
     {
         $this->keyValidatorMock->method('isValid')->willReturn(false);
         $this->encryptor->validateKey('-----    ');
@@ -254,7 +255,7 @@ public function testValidateKeyInvalid()
     /**
      * @return array
      */
-    public function useSpecifiedHashingAlgoDataProvider()
+    public function useSpecifiedHashingAlgoDataProvider(): array
     {
         return [
             ['password', 'salt', Encryptor::HASH_VERSION_MD5,
@@ -276,7 +277,7 @@ public function useSpecifiedHashingAlgoDataProvider()
      * @param $hashAlgo
      * @param $expected
      */
-    public function testGetHashMustUseSpecifiedHashingAlgo($password, $salt, $hashAlgo, $expected)
+    public function testGetHashMustUseSpecifiedHashingAlgo($password, $salt, $hashAlgo, $expected): void
     {
         $hash = $this->encryptor->getHash($password, $salt, $hashAlgo);
         $this->assertEquals($expected, $hash);
