wamo/gnu-social
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Magicsig is made a bit less cumbersome

Browse Source
This commit is contained in:
Mikael Nordfeldth 2014-05-31 13:34:06 +02:00
parent 411f3b86a4
commit 75711ae06a
2 changed files with 24 additions and 14 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

36
plugins/OStatus/classes/Magicsig.php
View File

@ -92,16 +92,15 @@ class Magicsig extends Managed_DataObject
{ {
$obj = parent::getKV($k, $v); $obj = parent::getKV($k, $v);
if ($obj instanceof Magicsig) { if ($obj instanceof Magicsig) {
// Please note we're replacing the $obj $obj->importKeys(); // Loads Crypt_RSA objects etc.
// FIXME: There should be an import-key that modifies the fetched $obj
$obj = Magicsig::fromString($obj->keypair);
// Never allow less than 1024 bit keys. // Throw out a big fat warning for keys of less than 1024 bits. (
// The only case these show up in would be imported or // The only case these show up in would be imported or
// legacy very-old-StatusNet generated keypairs. // legacy very-old-StatusNet generated keypairs.
if (strlen($obj->publicKey->modulus->toBits()) < 1024) { if (strlen($obj->publicKey->modulus->toBits()) < 1024) {
$obj->delete(); common_log(LOG_WARNING, sprintf('Salmon key with <1024 bits (%d) belongs to profile with id==%d',
return false; strlen($this->publicKey->modulus->toBits()),
$obj->user_id));
} }
} }
@ -118,7 +117,7 @@ class Magicsig extends Managed_DataObject
), ),
'primary key' => array('user_id'), 'primary key' => array('user_id'),
'foreign keys' => array( 'foreign keys' => array(
'magicsig_user_id_fkey' => array('user', array('user_id' => 'id')), 'magicsig_user_id_fkey' => array('profile', array('user_id' => 'id')),
), ),
); );
} }
@ -194,12 +193,23 @@ class Magicsig extends Managed_DataObject
$magic_sig = new Magicsig(); $magic_sig = new Magicsig();
// remove whitespace // remove whitespace
$text = preg_replace('/\s+/', '', $text); $magic_sig->keypair = preg_replace('/\s+/', '', $text);
$magic_sig->importKeys();
// Please note this object will be missing the user_id field
return $magic_sig;
}
/**
* importKeys will load the object's keypair string, which initiates
* loadKey() and configures Crypt_RSA objects.
*/
public function importKeys()
{
// parse components // parse components
if (!preg_match('/RSA\.([^\.]+)\.([^\.]+)(.([^\.]+))?/', $text, $matches)) { if (!preg_match('/RSA\.([^\.]+)\.([^\.]+)(.([^\.]+))?/', $this->keypair, $matches)) {
common_debug('Magicsig error: RSA key not found in provided string.'); common_debug('Magicsig error: RSA key not found in provided string.');
return false; throw new ServerException('RSA key not found in keypair string.');
} }
$mod = $matches[1]; $mod = $matches[1];
@ -210,12 +220,10 @@ class Magicsig extends Managed_DataObject
$private_exp = false; $private_exp = false;
} }
$magic_sig->loadKey($mod, $exp, 'public'); $this->loadKey($mod, $exp, 'public');
if ($private_exp) { if ($private_exp) {
$magic_sig->loadKey($mod, $private_exp, 'private'); $this->loadKey($mod, $private_exp, 'private');
} }
return $magic_sig;
} }
/** /**

2
plugins/OStatus/lib/magicenvelope.php
View File

@ -74,6 +74,8 @@ class MagicEnvelope
throw new ServerException(sprintf('Profile missing URI (id==%d)', $profile->id)); throw new ServerException(sprintf('Profile missing URI (id==%d)', $profile->id));
} }
$magicsig = $this->discoverKeyPair($signer_uri); $magicsig = $this->discoverKeyPair($signer_uri);
// discoverKeyPair should've thrown exception if it failed
assert($magicsig instanceof Magicsig);
} elseif (!$magicsig instanceof Magicsig) { // No discovery request, so we'll give up. } elseif (!$magicsig instanceof Magicsig) { // No discovery request, so we'll give up.
throw new ServerException(sprintf('No public key found for profile (id==%d)', $profile->id)); throw new ServerException(sprintf('No public key found for profile (id==%d)', $profile->id));
} }