صفحهٔ اصلی گشت‌و‌گذار راهنما
ثبت نام ورود
moonsflyer
/
yunjing_master
1
0
انشعاب 0
پرونده‌ها مشکلات 0 درخواست واکشی 0 ویکی
شاخه: master
شاخه‌ها تگ‌ها
yunjing_master
/
sdk
/
aws
/
Aws
/
Crypto
/
Polyfill
/
Key.php

Key.php 1.7 KB
لینک دائمی تاريخچه خام

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677 
  1. <?php
    2. 

  2. namespace Aws\Crypto\Polyfill;
    3. 

  3. 

  4. /**
    5. 

  5.  * Class Key
    6. 

  6.  *
    7. 

  7.  * Wraps a string to keep it hidden from stack traces.
    8. 

  8.  *
    9. 

  9.  * @package Aws\Crypto\Polyfill
    10. 

  10.  */
    11. 

  11. class Key
    12. 

  12. {
    13. 

  13.     /**
    14. 

  14.      * @var string $internalString
    15. 

  15.      */
    16. 

  16.     private $internalString;
    17. 

  17. 

  18.     /**
    19. 

  19.      * Hide contents of 
    20. 

  20.      *
    21. 

  21.      * @return array
    22. 

  22.      */
    23. 

  23.     public function __debugInfo()
    24. 

  24.     {
    25. 

  25.         return [];
    26. 

  26.     }
    27. 

  27. 

  28.     /**
    29. 

  29.      * Key constructor.
    30. 

  30.      * @param string $str
    31. 

  31.      */
    32. 

  32.     public function __construct($str)
    33. 

  33.     {
    34. 

  34.         $this->internalString = $str;
    35. 

  35.     }
    36. 

  36. 

  37.     /**
    38. 

  38.      * Defense in depth:
    39. 

  39.      *
    40. 

  40.      * PHP 7.2 includes the Sodium cryptography library, which (among other things)
    41. 

  41.      * exposes a function called sodium_memzero() that we can use to zero-fill strings
    42. 

  42.      * to minimize the risk of sensitive cryptographic materials persisting in memory.
    43. 

  43.      *
    44. 

  44.      * If this function is not available, we XOR the string in-place with itself as a
    45. 

  45.      * best-effort attempt.
    46. 

  46.      */
    47. 

  47.     public function __destruct()
    48. 

  48.     {
    49. 

  49.         if (extension_loaded('sodium') && function_exists('sodium_memzero')) {
    50. 

  50.             try {
    51. 

  51.                 \sodium_memzero($this->internalString);
    52. 

  52.             } catch (\SodiumException $ex) {
    53. 

  53.                 // This is a best effort, but does not provide the same guarantees as sodium_memzero():
    54. 

  54.                 $this->internalString ^= $this->internalString;
    55. 

  55.             }
    56. 

  56.         }
    57. 

  57.     }
    58. 

  58. 

  59.     /**
    60. 

  60.      * @return string
    61. 

  61.      */
    62. 

  62.     public function get()
    63. 

  63.     {
    64. 

  64.         return $this->internalString;
    65. 

  65.     }
    66. 

  66. 

  67.     /**
    68. 

  68.      * @return int
    69. 

  69.      */
    70. 

  70.     public function length()
    71. 

  71.     {
    72. 

  72.         if (\is_callable('\\mb_strlen')) {
    73. 

  73.             return (int) \mb_strlen($this->internalString, '8bit');
    74. 

  74.         }
    75. 

  75.         return (int) \strlen($this->internalString);
    76. 

  76.     }
    77. 

  77. }
    78.