Return false for hash_hmac/hash_hmac_file on invalid algorithm

pascalheidmann · web-flow · commit 6e67bad61a5b · 2020-10-01T13:16:13.000+02:00
diff --git a/conf/config.neon b/conf/config.neon
@@ -875,6 +875,10 @@ services:
 		class: PHPStan\Type\Php\GettimeofdayDynamicFunctionReturnTypeExtension
 		tags:
 			- phpstan.broker.dynamicFunctionReturnTypeExtension
+	-
+		class: PHPStan\Type\Php\HashHmacFunctionsReturnTypeExtension
+		tags:
+			- phpstan.broker.dynamicFunctionReturnTypeExtension
 
 	-
 		class: PHPStan\Type\Php\SimpleXMLElementClassPropertyReflectionExtension
diff --git a/resources/functionMap.php b/resources/functionMap.php
@@ -3915,7 +3915,7 @@
 'hash_hkdf' => ['string', 'algo'=>'string', 'ikm'=>'string', 'length='=>'int', 'info='=>'string', 'salt='=>'string'],
 'hash_hmac' => ['string', 'algo'=>'string', 'data'=>'string', 'key'=>'string', 'raw_output='=>'bool'],
 'hash_hmac_algos' => ['array<int,string>'],
-'hash_hmac_file' => ['string', 'algo'=>'string', 'filename'=>'string', 'key'=>'string', 'raw_output='=>'bool'],
+'hash_hmac_file' => ['string|false', 'algo'=>'string', 'filename'=>'string', 'key'=>'string', 'raw_output='=>'bool'],
 'hash_init' => ['HashContext', 'algo'=>'string', 'options='=>'int', 'key='=>'string'],
 'hash_pbkdf2' => ['string', 'algo'=>'string', 'password'=>'string', 'salt'=>'string', 'iterations'=>'int', 'length='=>'int', 'raw_output='=>'bool'],
 'hash_update' => ['bool', 'context'=>'HashContext', 'data'=>'string'],
diff --git a/src/Type/Php/HashHmacFunctionsReturnTypeExtension.php b/src/Type/Php/HashHmacFunctionsReturnTypeExtension.php
@@ -0,0 +1,88 @@
+<?php declare(strict_types = 1);
+
+namespace PHPStan\Type\Php;
+
+use PhpParser\Node\Expr\FuncCall;
+use PHPStan\Analyser\Scope;
+use PHPStan\Reflection\FunctionReflection;
+use PHPStan\Reflection\ParametersAcceptorSelector;
+use PHPStan\Type\Constant\ConstantBooleanType;
+use PHPStan\Type\DynamicFunctionReturnTypeExtension;
+use PHPStan\Type\MixedType;
+use PHPStan\Type\Type;
+use PHPStan\Type\TypeUtils;
+
+final class HashHmacFunctionsReturnTypeExtension implements DynamicFunctionReturnTypeExtension
+{
+
+	private const HMAC_ALGORITHMS = [
+		'md2',
+		'md4',
+		'md5',
+		'sha1',
+		'sha224',
+		'sha256',
+		'sha384',
+		'sha512/224',
+		'sha512/256',
+		'sha512',
+		'sha3-224',
+		'sha3-256',
+		'sha3-384',
+		'sha3-512',
+		'ripemd128',
+		'ripemd160',
+		'ripemd256',
+		'ripemd320',
+		'whirlpool',
+		'tiger128,3',
+		'tiger160,3',
+		'tiger192,3',
+		'tiger128,4',
+		'tiger160,4',
+		'tiger192,4',
+		'snefru',
+		'snefru256',
+		'gost',
+		'gost-crypto',
+		'haval128,3',
+		'haval160,3',
+		'haval192,3',
+		'haval224,3',
+		'haval256,3',
+		'haval128,4',
+		'haval160,4',
+		'haval192,4',
+		'haval224,4',
+		'haval256,4',
+		'haval128,5',
+		'haval160,5',
+		'haval192,5',
+		'haval224,5',
+		'haval256,5',
+	];
+
+	public function isFunctionSupported(FunctionReflection $functionReflection): bool
+	{
+		return in_array($functionReflection->getName(), ['hash_hmac', 'hash_hmac_file'], true);
+	}
+
+	public function getTypeFromFunctionCall(FunctionReflection $functionReflection, FuncCall $functionCall, Scope $scope): Type
+	{
+		$defaultReturnType = ParametersAcceptorSelector::selectSingle($functionReflection->getVariants())->getReturnType();
+
+		$argType = $scope->getType($functionCall->args[0]->value);
+		if ($argType instanceof MixedType) {
+			return TypeUtils::toBenevolentUnion($defaultReturnType);
+		}
+
+		$values = TypeUtils::getConstantStrings($argType);
+		if (count($values) !== 1) {
+			return TypeUtils::toBenevolentUnion($defaultReturnType);
+		}
+		$string = $values[0];
+
+		return in_array($string->getValue(), self::HMAC_ALGORITHMS, true) ? $defaultReturnType : new ConstantBooleanType(false);
+	}
+
+}
diff --git a/tests/PHPStan/Analyser/NodeScopeResolverTest.php b/tests/PHPStan/Analyser/NodeScopeResolverTest.php
@@ -5905,6 +5905,46 @@ public function dataFunctions(): array
 				'array<int, string>|int|false',
 				'$strWordCountStrTypeIndeterminant',
 			],
+			[
+				'string',
+				'$hashHmacMd5',
+			],
+			[
+				'string',
+				'$hashHmacSha256',
+			],
+			[
+				'false',
+				'$hashHmacNonCryptographic',
+			],
+			[
+				'false',
+				'$hashHmacRandom',
+			],
+			[
+				'string',
+				'$hashHmacVariable',
+			],
+			[
+				'string|false',
+				'$hashHmacFileMd5',
+			],
+			[
+				'string|false',
+				'$hashHmacFileSha256',
+			],
+			[
+				'false',
+				'$hashHmacFileNonCryptographic',
+			],
+			[
+				'false',
+				'$hashHmacFileRandom',
+			],
+			[
+				'(string|false)',
+				'$hashHmacFileVariable',
+			],
 		];
 	}
 
diff --git a/tests/PHPStan/Analyser/data/functions.php b/tests/PHPStan/Analyser/data/functions.php
@@ -123,4 +123,16 @@
 $integer = doFoo();
 $strWordCountStrTypeIndeterminant = str_word_count('string', $integer);
 
+$hashHmacMd5 = hash_hmac('md5', 'data', 'key');
+$hashHmacSha256 = hash_hmac('sha256', 'data', 'key');
+$hashHmacNonCryptographic = hash_hmac('crc32', 'data', 'key');
+$hashHmacRandom = hash_hmac('random', 'data', 'key');
+$hashHmacVariable = hash_hmac($string, 'data', 'key');
+
+$hashHmacFileMd5 = hash_hmac_file('md5', 'data', 'key');
+$hashHmacFileSha256 = hash_hmac_file('sha256', 'data', 'key');
+$hashHmacFileNonCryptographic = hash_hmac_file('crc32', 'data', 'key');
+$hashHmacFileRandom = hash_hmac_file('random', 'data', 'key');
+$hashHmacFileVariable = hash_hmac_file($string, 'data', 'key');
+
 die;
