Merge pull request #123 from paragonie/psalm

Integrate with Psalm
paragonie · Feb 14, 2017 · 1925b3f · 1925b3f
2 parents 736f6b0 + 1e71c3e
commit 1925b3f
Show file tree

Hide file tree

Showing 15 changed files with 170 additions and 48 deletions.
diff --git a/.travis.yml b/.travis.yml
@@ -1,22 +1,32 @@
 language: php
-
-php:
-  - 5.3
-  - 5.4
-  - 5.5
-  - 5.6
-  - 7.0
-  - hhvm
+sudo: false
 
 matrix:
   fast_finish: true
+  include:
+    - php: "5.3"
+      env: USE_PSALM=0
+    - php: "5.4"
+      env: USE_PSALM=0
+    - php: "5.5"
+      env: USE_PSALM=0
+    - php: "5.6"
+      env: USE_PSALM=1
+    - php: "7.0"
+      env: USE_PSALM=1
+    - php: "7.1"
+      env: USE_PSALM=1
+    - php: "hhvm"
+      env: USE_PSALM=1
   allow_failures:
-    - php: hhvm
-
-sudo: false
+    - php: "hhvm"
 
 install:
-  - composer install
+    - composer self-update
+    - composer install
+    - if [[ $USE_PSALM -eq 1 ]]; then composer require --dev "vimeo/psalm:dev-master"; fi
 
 script:
-  - ./phpunit.sh
+    - vendor/bin/phpunit
+    - php -dmbstring.func_overload=7 vendor/bin/phpunit
+    - if [[ $USE_PSALM -eq 1 ]]; then vendor/bin/psalm; fi
diff --git a/CHANGELOG.md b/CHANGELOG.md
@@ -1,3 +1,8 @@
+### Version 2.0.5 - 2017-??-??
+
+* Run random_compat through the static analysis tool, [psalm](https://github.com/vimeo/psalm),
+  as part of our continuous integration process.
+
 ### Version 2.0.4 - 2016-11-07
 
 * Don't unnecessarily prevent `mcrypt_create_iv()` from being used.

diff --git a/lib/byte_safe_strings.php b/lib/byte_safe_strings.php
@@ -51,7 +51,7 @@ function RandomCompat_strlen($binary_string)
                 );
             }
 
-            return mb_strlen($binary_string, '8bit');
+            return (int) mb_strlen($binary_string, '8bit');
         }
 
     } else {
@@ -73,7 +73,7 @@ function RandomCompat_strlen($binary_string)
                     'RandomCompat_strlen() expects a string'
                 );
             }
-            return strlen($binary_string);
+            return (int) strlen($binary_string);
         }
     }
 }
@@ -118,7 +118,7 @@ function RandomCompat_substr($binary_string, $start, $length = null)
                  * mb_substr($str, 0, NULL, '8bit') returns an empty string on
                  * PHP 5.3, so we have to find the length ourselves.
                  */
-                $length = RandomCompat_strlen($length) - $start;
+                $length = RandomCompat_strlen($binary_string) - $start;
             } elseif (!is_int($length)) {
                 throw new TypeError(
                     'RandomCompat_substr(): Third argument should be an integer, or omitted'
@@ -130,10 +130,10 @@ function RandomCompat_substr($binary_string, $start, $length = null)
                 return '';
             }
             if ($start > RandomCompat_strlen($binary_string)) {
-                return false;
+                return '';
             }
 
-            return mb_substr($binary_string, $start, $length, '8bit');
+            return (string) mb_substr($binary_string, $start, $length, '8bit');
         }
 
     } else {
@@ -172,10 +172,10 @@ function RandomCompat_substr($binary_string, $start, $length = null)
                     );
                 }
 
-                return substr($binary_string, $start, $length);
+                return (string) substr($binary_string, $start, $length);
             }
 
-            return substr($binary_string, $start);
+            return (string) substr($binary_string, $start);
         }
     }
 }
diff --git a/lib/cast_to_int.php b/lib/cast_to_int.php
@@ -40,7 +40,7 @@
      * @param int|float $number    The number we want to convert to an int
      * @param boolean   $fail_open Set to true to not throw an exception
      * 
-     * @return int (or float if $fail_open)
+     * @return int|float
      *
      * @throws TypeError
      */
@@ -60,8 +60,10 @@ function RandomCompat_intval($number, $fail_open = false)
             $number = (int) $number;
         }
 
-        if (is_int($number) || $fail_open) {
-            return $number;
+        if (is_int($number)) {
+            return (int) $number;
+        } elseif ($fail_open) {
+            return (float) $number;
         }
 
         throw new TypeError(

diff --git a/lib/random.php b/lib/random.php
@@ -199,6 +199,10 @@ class_exists('COM')
         /**
          * We don't have any more options, so let's throw an exception right now
          * and hope the developer won't let it fail silently.
+         *
+         * @param mixed $length
+         * @return void
+         * @throws Exception
          */
         function random_bytes($length)
         {

diff --git a/lib/random_bytes_com_dotnet.php b/lib/random_bytes_com_dotnet.php
@@ -55,6 +55,11 @@ function random_bytes($bytes)
         }
 
         $buf = '';
+        if (!class_exists('COM')) {
+            throw new Error(
+                'COM does not exist'
+            );
+        }
         $util = new COM('CAPICOM.Utilities.1');
         $execCount = 0;
 

diff --git a/lib/random_bytes_dev_urandom.php b/lib/random_bytes_dev_urandom.php
@@ -104,33 +104,50 @@ function random_bytes($bytes)
          * page load.
          */
         if (!empty($fp)) {
+            /**
+             * @var int
+             */
             $remaining = $bytes;
+
+            /**
+             * @var string|bool
+             */
             $buf = '';
 
             /**
              * We use fread() in a loop to protect against partial reads
              */
             do {
+                /**
+                 * @var string|bool
+                 */
                 $read = fread($fp, $remaining);
-                if ($read === false) {
-                    /**
-                     * We cannot safely read from the file. Exit the
-                     * do-while loop and trigger the exception condition
-                     */
-                    $buf = false;
-                    break;
+                if (!is_string($read)) {
+                    if ($read === false) {
+                        /**
+                         * We cannot safely read from the file. Exit the
+                         * do-while loop and trigger the exception condition
+                         *
+                         * @var string|bool
+                         */
+                        $buf = false;
+                        break;
+                    }
                 }
                 /**
                  * Decrease the number of bytes returned from remaining
                  */
                 $remaining -= RandomCompat_strlen($read);
-                $buf .= $read;
+                /**
+                 * @var string|bool
+                 */
+                $buf = $buf . $read;
             } while ($remaining > 0);
 
             /**
              * Is our result valid?
              */
-            if ($buf !== false) {
+            if (is_string($buf)) {
                 if (RandomCompat_strlen($buf) === $bytes) {
                     /**
                      * Return our random entropy buffer here:

diff --git a/lib/random_bytes_libsodium_legacy.php b/lib/random_bytes_libsodium_legacy.php
@@ -72,7 +72,7 @@ function random_bytes($bytes)
             $buf = Sodium::randombytes_buf($bytes);
         }
 
-        if ($buf !== false) {
+        if (is_string($buf)) {
             if (RandomCompat_strlen($buf) === $bytes) {
                 return $buf;
             }

diff --git a/lib/random_int.php b/lib/random_int.php
@@ -151,11 +151,6 @@ function random_int($min, $max)
          * Let's grab the necessary number of random bytes
          */
         $randomByteString = random_bytes($bytes);
-        if ($randomByteString === false) {
-            throw new Exception(
-                'Random number generator failure'
-            );
-        }
 
         /**
          * Let's turn $randomByteString into an integer

diff --git a/other/ide_stubs/COM.php b/other/ide_stubs/COM.php
@@ -15,12 +15,6 @@ class COM
      */
     public function GetRandom($bytes, $dummy)
     {
-        static $fp = null;
-        if (!$fp) {
-            $fp = fopen('/dev/urandom', 'rb');
-        }
-        return fread($fp, $bytes);
+        return '';
     }
 }
-
-throw new Exception('Attempting to include IDE stub files in a project.');
diff --git a/other/ide_stubs/README.md b/other/ide_stubs/README.md
@@ -2,4 +2,6 @@
 
 These exist to reduce false positive errors on PHPStorm and other IDEs.
 
+They also exist so Psalm has some idea what's going on.
+
 Don't use them in your project.
diff --git a/other/ide_stubs/com_exception.php b/other/ide_stubs/com_exception.php
@@ -9,5 +9,3 @@ class com_exception extends Exception
 {
 
 }
-
-throw new Exception('Attempting to include IDE stub files in a project.');
diff --git a/other/ide_stubs/libsodium.php b/other/ide_stubs/libsodium.php
@@ -0,0 +1,90 @@
+<?php
+
+/**
+ * This does nothing if the libsodium extension is loaded, so it's harmless.
+ *
+ * This file alone is released under CC0 and WTFPL dual licensing.
+ */
+namespace Sodium {
+    if (!extension_loaded('libsodium')) {
+
+        /**
+         * Generate a string of random bytes
+         * /dev/urandom
+         *
+         * @param int $length
+         * @return string
+         */
+        function randombytes_buf(
+            $length
+        )
+        {
+            return '';
+        }
+
+        /**
+         * Generate a 16-bit integer
+         * /dev/urandom
+         *
+         * @return int
+         */
+        function randombytes_random16()
+        {
+            return '';
+        }
+
+        /**
+         * Generate an unbiased random integer between 0 and a specified value
+         * /dev/urandom
+         *
+         * @param int $upperBoundNonInclusive
+         * @return int
+         */
+        function randombytes_uniform(
+            $upperBoundNonInclusive
+        )
+        {
+            return 0;
+        }
+    }
+}
+namespace {
+    class Sodium
+    {
+
+        /**
+         * Generate a string of random bytes
+         * /dev/urandom
+         *
+         * @param int $length
+         * @return string
+         */
+        public static function randombytes_buf($length)
+        {
+            return '';
+        }
+
+        /**
+         * Generate a 16-bit integer
+         * /dev/urandom
+         *
+         * @return int
+         */
+        public static function randombytes_random16()
+        {
+            return '';
+        }
+
+        /**
+         * Generate an unbiased random integer between 0 and a specified value
+         * /dev/urandom
+         *
+         * @param int $upperBoundNonInclusive
+         * @return int
+         */
+        public static function randombytes_uniform($upperBoundNonInclusive = 0)
+        {
+            return 0;
+        }
+    }
+}
diff --git a/psalm-autoload.php b/psalm-autoload.php
@@ -3,6 +3,7 @@
 require_once 'lib/byte_safe_strings.php';
 require_once 'lib/cast_to_int.php';
 require_once 'lib/error_polyfill.php';
+require_once 'other/ide_stubs/libsodium.php';
 require_once 'lib/random.php';
 
 $int = random_int(0, 65536);
diff --git a/psalm.xml b/psalm.xml
@@ -9,7 +9,6 @@
     </projectFiles>
     <issueHandlers>
         <DuplicateClass errorLevel="info" />
-        <UndefinedClass errorLevel="info" />
         <FailedTypeResolution errorLevel="info" />
         <InvalidArgument errorLevel="info" />
         <InvalidOperand errorLevel="info" />
Original file line number	Diff line number	Diff line change
Expand Up		@@ -2,4 +2,6 @@

		These exist to reduce false positive errors on PHPStorm and other IDEs.

		They also exist so Psalm has some idea what's going on.

		Don't use them in your project.
Original file line number	Diff line number	Diff line change
Expand Up		@@ -9,5 +9,3 @@ class com_exception extends Exception
		{

		}

		throw new Exception('Attempting to include IDE stub files in a project.');