Bug fixes and PHP 7.2 Ready

Chris Board · Chris Board · commit 1d835bfd85a5 · 2018-02-07T19:56:54.000Z
Implemented some bug fixes that were found durinig testing of PHP 7.2.

Added changes to the encryption/decryption methods to remove mcrypt as has been removed in PHP 7.2.
diff --git a/.idea/codeStyles/codeStyleConfig.xml b/.idea/codeStyles/codeStyleConfig.xml
diff --git a/.idea/php.xml b/.idea/php.xml
diff --git a/.idea/workspace.xml b/.idea/workspace.xml
diff --git a/APIManager.php b/APIManager.php
@@ -105,4 +105,3 @@ function decryptPostArray($postArray)
         }
 
     }
-?>
diff --git a/CommonTasks.php b/CommonTasks.php
@@ -20,11 +20,12 @@ function getIP()
             }
             return $ip;
         }
-        
+
         /**
          * Will generate a random password at the specified length. If length
          * omitted then it defaults to false
          * @param int $length
+         * @param null $possible
          * @return string
          */
         function generateRandomString($length = 6, $possible = null)
@@ -144,11 +145,11 @@ function getDBDateTime()
 
             return "$date $time";
         }
-        
+
         /**
          * Returns a long value of an epoch time stamp, this is based on the
          * current time
-         * @return long
+         * @return int
          */
         function getEpochTimeStamp()
         {
@@ -194,5 +195,4 @@ function findDateInSpecificFormat($format=null)
                 return $returnedDate;
             }
         }
-    }
-?>
+    }
diff --git a/ConnectionManager.php b/ConnectionManager.php
@@ -243,8 +243,9 @@ public function getDatabases($postArray)
         /**
          * Returns a JSON array to retrieve all of the databases that are availabe on the connection
          * and calls a function to also get the tables from each database
-         * @param type $postArray The post array that contains that connection details
+         * @param array $postArray The post array that contains that connection details
          * @deprecated This replaced with two separate API calls GetDatabases and GetTables
+         * @throws Exception
          */
         function retrieveDBsAndTables($postArray)
         {
@@ -427,15 +428,18 @@ function connectToDBFromPostArray($postArray)
                 return $this->connectToDB($server, $username, $password, $database, $port, $localTunnelPort, $postArray);
             }
         }
-        
+
         /**
          * Performs the actual MySQL Connection to the server
-         * @param type $server The MySQL Server to connect to
-         * @param type $username The username used for the database connection
-         * @param type $password The password used for the database connection
-         * @param type $database The database to use, can be null (no default database will be selected
-         * @param type $port The port number that should used
-         * @return type Array that details the connection state
+         * @param string $server The MySQL Server to connect to
+         * @param string $username The username used for the database connection
+         * @param string $password The password used for the database connection
+         * @param string $database The database to use, can be null (no default database will be selected
+         * @param string $port The port number that should used
+         * @param string $localTunnelPort
+         * @param null $postArray
+         * @return array that details the connection state
+         * @throws Exception
          */
         function connectToDB($server, $username, $password, $database, $port, $localTunnelPort = "-1", $postArray =  null)
         {
@@ -539,11 +543,12 @@ function connectToDB($server, $username, $password, $database, $port, $localTunn
             }
             return $status;
         }
-        
+
         /**
          * Gets the tables from the specified database
-         * @param type $db The database name where the tables should be retrieved from
-         * @return type An array detailing the error if the tables couldn't be retrieved, or an array of the tables that were retrieved
+         * @param string $db The database name where the tables should be retrieved from
+         * @return array An array detailing the error if the tables couldn't be retrieved, or an array of the tables that were retrieved
+         * @throws Exception
          */
         function getTables($db)
         {
@@ -571,7 +576,6 @@ function getTables($db)
                 HelperClass::printResponseInCorrectEncodingAndCloseTunnelIfNeeded($this->postArray, $status);
                 exit(); //MySQL Query Failed
             }
-            return $tables;
         }
         
         /**
@@ -589,5 +593,3 @@ function handleError($error, $errorCode)
             return $status;
         }
     }
-
-?>
diff --git a/DBHelper.php b/DBHelper.php
@@ -74,12 +74,13 @@ function closeMysqlIDBConnection($conn)
                 }
             }
         }
-        
+
         /**
-         * Connects to a database from config array, using ConfigManager class and get the array 
+         * Connects to a database from config array, using ConfigManager class and get the array
          * @param array $configArray Array values from the config file created from ConfigManager.php
          * @return MySQLConnection A valid MySQL Connection Resouce
          * @deprecated since version 1.0.0.5
+         * @throws Exception
          */
         function connectToDBFromConfigArray($configArray)
         {
@@ -96,15 +97,15 @@ function connectToDBFromConfigArray($configArray)
             
             return $this->connectToDB($server, $username, $password, $port, $database);
         }
-        
+
         /**
          * Connects to a database using individual variables for username, password and server etc
          * @param String $server The server to connect to
          * @param String $username The username to connect to the server
          * @param String $password The password to connect to the server
          * @param int $port The port to connect to the server
-         * @param String $database 
-         * @return MySQLConnection Valid MySQL Connection resource
+         * @param String $database
+         * @return resource Valid MySQL Connection resource
          * @throws Exception Thrown when failed to connect to database
          */
         function connectToDB($server, $username, $password, $port, $database)
@@ -234,6 +235,4 @@ function getTheNextIDFromDBToUse($database, $table, $error)
                 return -1;
             }
         }
-    }
-
-?>
+    }
diff --git a/Encryption.php b/Encryption.php
@@ -8,12 +8,14 @@
 
     class Encryption
     {
+        private $php_version;
         private $cipher = null;
         private $iv = null;
         private $previousCipher = null;
         private $previousIV = null;
         public function __construct()
         {
+            $this->php_version = phpversion();
             $configManager = new ConfigManager("mysql.conf");
             $this->cipher = $configManager->getConfigItemValue("encryption", "cipher", null);
             if ($this->cipher == null || empty($this->cipher))
@@ -34,11 +36,14 @@ function resetKeysToDefaultKeys()
 
         function encrypt($data)
         {
-
-            //$iv = "ryojvlzmdalyglrj";
-            //$key = CIPHERKEY;
-
-            return base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $this->addpadding($data), MCRYPT_MODE_CBC, $this->iv));
+            if ($this->version[0] === "5")
+            {
+                return base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $this->addpadding($data), MCRYPT_MODE_CBC, $this->iv));
+            }
+            else
+            {
+                return base64_encode(openssl_encrypt($data, 'AES-256-CBC', $this->cipher, OPENSSL_RAW_DATA, $this->iv));
+            }
         }
 
         private function addpadding($string, $blocksize = 16)
@@ -67,15 +72,21 @@ function decrypt($data)
         {
             try
             {
-
-                $base64Decoded = @base64_decode($data);
-                $decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $base64Decoded, MCRYPT_MODE_CBC, $this->iv);
-                return $this->strippadding($decrypted);
+                if ($this->version[0] === "5")
+                {
+                    $decoded = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $data, MCRYPT_MODE_CBC, $this->iv);
+                    $base64Decoded = @base64_decode($data);
+                    $decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $base64Decoded, MCRYPT_MODE_CBC, $this->iv);
+                    return $this->strippadding($decrypted);
+                }
+                else
+                {
+                    return $this->strippadding(openssl_decrypt(base64_decode($data), 'AES-256-CBC', $this->cipher, OPENSSL_RAW_DATA | OPENSSL_ZERO_PADDING, $this->iv));
+                }
             }
             catch (Exception $e)
             {
                 throw new Exception("Failed to decrypt");
             }
         }
     }
-?>
diff --git a/HelperClass.php b/HelperClass.php
@@ -38,14 +38,15 @@ function returnTunnelError($errorMessage)
             $array[MESSAGE] = $errorMessage;
             return $array;  
         }
-        
+
         /**
-         * Prints out the output to be picked up by Android in the correct format. 
+         * Prints out the output to be picked up by Android in the correct format.
          * If using version 1.2.0.0 or above then the output is encrypted before it is sent
          * back, older versions (older versions don't post the version) revert back to
          * the previous behaviour and the output is not encrypted
          * @param type $postArray The array that was posted from android (includes the version)
          * @param type $response The response that should be json_encoded and possibly encrypted depending on version
+         * @throws Exception
          */
         public static function printResponseInCorrectEncodingAndCloseTunnelIfNeeded($postArray, $response)
         {
@@ -70,9 +71,6 @@ public static function printResponseInCorrectEncodingAndCloseTunnelIfNeeded($pos
             }
             else
             {
-                //Temporary test for older application backward compatibility testing
-                //TODO: REMOVE THE ENCRYPTION
-                //print json_encode($encryption->decrypt($response));
                 if (isset($response->data))
                 {
                     print json_encode($response->data);
@@ -111,5 +109,3 @@ public static function getIP()
             return $ip;
         }
     }
-
-?>
diff --git a/Logger.php b/Logger.php
@@ -39,7 +39,7 @@ public function __construct($logID = 0)
         $this->logHandle = fopen($this->configManager->getConfigItemValue("debug", "debug_log", "api.log"), "a+");
         if (!$this->logHandle)
         {
-            throw new Exception("Unable to open debug log file: Error: " + error_get_last());
+            throw new Exception("Unable to open debug log file: Error: " . error_get_last());
         }
     }
 
@@ -54,7 +54,7 @@ public function getLogID()
 
     /**
      * Write a message to the API log file. A new line will automatically be put on the end of the log message
-     * @param $logMessage The message to be written to the file
+     * @param string $logMessage The message to be written to the file
      */
     public function writeToLog($logMessage)
     {
diff --git a/QueryExecManager.php b/QueryExecManager.php
@@ -27,11 +27,12 @@ public function __construct($logID)
      * Execute a query using the specified post data. The post data will include
      * the connectin details along with the query.
      * @param $postArray
+     * @throws Exception
      */
     function executeQuery($postArray)
     {
         include_once("ConnectionManager.php");
-        $connManager = new ConnectionManager();
+        $connManager = new ConnectionManager($this->logger->getLogID());
         $status = $connManager->connectToDBFromPostArray($postArray);
         if ($status[RESULT] !== SUCCESS)
         {
@@ -199,6 +200,8 @@ function executeQuery($postArray)
      * @param int $startIndex The start index of the result set to be returned
      * (the first parameter of the limit
      * @param string $query The query to be performed
+     * @param $totalRows
+     * @param $returnLimitParameter
      * @return string The query where the limit string has been converted
      */
     private function getLimitString(&$startIndex, $query, $totalRows, &$returnLimitParameter)
@@ -267,8 +270,8 @@ private function convertLimit($query, &$startIndex, $totalRowsCurrentlyDownloade
         $queryChar1Index = $startOfLimitParameter + strlen($limitParamater1) - 1;
         $queryChar2Index = $startOfLimitParameter + strlen($limitParamater1);
 
-        $this->logger->writeToLog("QueryChar1Index", $queryChar1Index);
-        $this->logger->writeToLog("QueryChar2Index", $queryChar2Index);
+        $this->logger->writeToLog("QueryChar1Index: ". $queryChar1Index);
+        $this->logger->writeToLog("QueryChar2Index: ". $queryChar2Index);
 
         if ($query[$queryChar1Index] == ',' || $query[$queryChar2Index] == ',')
         {
@@ -483,6 +486,4 @@ private function addSlahesToWhereParameters($query, $conn)
             return $query;
         }
     }
-}
-
-?>
+}
diff --git a/StatementRetrievalManager.php b/StatementRetrievalManager.php
@@ -14,19 +14,27 @@ class StatementRetrievalManager
 
     public function __construct($logID)
     {
-        $this->encryption = new Encryption();
-        $this->logger = new Logger($logID);
+        try
+        {
+            $this->encryption = new Encryption();
+            $this->logger = new Logger($logID);
+        }
+        catch (Exception $ex)
+        {
+            HelperClass::printResponseInCorrectEncodingAndCloseTunnelIfNeeded(null, $ex->getMessage());
+        }
     }
 
     /**
      * The base function class that retrieves the specified SQL statement
-     * @param type $postData The post data that includes the connection details and the type of SQL statement that should be retrieved
+     * @param array $postData The post data that includes the connection details and the type of SQL statement that should be retrieved
+     * @throws Exception
      */
     function getSqlStatement($postData)
     {
         include_once("ConnectionManager.php");
         $helperClass = new HelperClass();
-        $this->connManager = new ConnectionManager();
+        $this->connManager = new ConnectionManager($this->logger->getLogID());
         $status = $this->connManager->connectToDBFromPostArray($postData);
 
         if ($status[RESULT] != SUCCESS)
@@ -246,6 +254,4 @@ private function getDeleteStatement($postData)
         $line .= "WHERE &lt;{where_expression}&gt;";
         return $line;
     }
-}
-
-?>
+}
diff --git a/TunnelAPITest.php b/TunnelAPITest.php
@@ -26,5 +26,4 @@
     
     echo $serverOutput;
     
-    curl_close($ch);
-?>
+    curl_close($ch);
diff --git a/TunnelManager.php b/TunnelManager.php
@@ -237,6 +237,4 @@ private function returnSocket()
             
             return $socket;
         }
-    }
-    
-?>
+    }
diff --git a/XMLGenerator.php b/XMLGenerator.php
@@ -119,6 +119,4 @@ public function getNewLineChars()
         {
             return $this->newLineChars;
         }
-    }
-
-?>
+    }
diff --git a/tunnel.php b/tunnel.php
@@ -7,5 +7,3 @@
     echo "<pre>";
     print_r($output);
     echo "</pre><br /><br/ >";
-
-?>

Original file line number	Diff line number	Diff line change
`@@ -105,4 +105,3 @@ function decryptPostArray($postArray)`
`105`	`105`	`}`
`106`	`106`
`107`	`107`	`}`
`108`		`-?>`
Original file line number	Diff line number	Diff line change
`@@ -20,11 +20,12 @@ function getIP()`
`20`	`20`	`}`
`21`	`21`	`return $ip;`
`22`	`22`	`}`
`23`		`-`
	`23`	`+`
`24`	`24`	`/**`
`25`	`25`	`* Will generate a random password at the specified length. If length`
`26`	`26`	`* omitted then it defaults to false`
`27`	`27`	`* @param int $length`
	`28`	`+ * @param null $possible`
`28`	`29`	`* @return string`
`29`	`30`	`*/`
`30`	`31`	`function generateRandomString($length = 6, $possible = null)`
`@@ -144,11 +145,11 @@ function getDBDateTime()`
`144`	`145`
`145`	`146`	`return "$date $time";`
`146`	`147`	`}`
`147`		`-`
	`148`	`+`
`148`	`149`	`/**`
`149`	`150`	`* Returns a long value of an epoch time stamp, this is based on the`
`150`	`151`	`* current time`
`151`		`- * @return long`
	`152`	`+ * @return int`
`152`	`153`	`*/`
`153`	`154`	`function getEpochTimeStamp()`
`154`	`155`	`{`
`@@ -194,5 +195,4 @@ function findDateInSpecificFormat($format=null)`
`194`	`195`	`return $returnedDate;`
`195`	`196`	`}`
`196`	`197`	`}`
`197`		`- }`
`198`		`-?>`
	`198`	`+ }`
Original file line number	Diff line number	Diff line change
`@@ -8,12 +8,14 @@`
`8`	`8`
`9`	`9`	`class Encryption`
`10`	`10`	`{`
	`11`	`+ private $php_version;`
`11`	`12`	`private $cipher = null;`
`12`	`13`	`private $iv = null;`
`13`	`14`	`private $previousCipher = null;`
`14`	`15`	`private $previousIV = null;`
`15`	`16`	`public function __construct()`
`16`	`17`	`{`
	`18`	`+ $this->php_version = phpversion();`
`17`	`19`	`$configManager = new ConfigManager("mysql.conf");`
`18`	`20`	`$this->cipher = $configManager->getConfigItemValue("encryption", "cipher", null);`
`19`	`21`	`if ($this->cipher == null \|\| empty($this->cipher))`
`@@ -34,11 +36,14 @@ function resetKeysToDefaultKeys()`
`34`	`36`
`35`	`37`	`function encrypt($data)`
`36`	`38`	`{`
`37`		`-`
`38`		`- //$iv = "ryojvlzmdalyglrj";`
`39`		`- //$key = CIPHERKEY;`
`40`		`-`
`41`		`- return base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $this->addpadding($data), MCRYPT_MODE_CBC, $this->iv));`
	`39`	`+ if ($this->version[0] === "5")`
	`40`	`+ {`
	`41`	`+ return base64_encode(mcrypt_encrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $this->addpadding($data), MCRYPT_MODE_CBC, $this->iv));`
	`42`	`+ }`
	`43`	`+ else`
	`44`	`+ {`
	`45`	`+ return base64_encode(openssl_encrypt($data, 'AES-256-CBC', $this->cipher, OPENSSL_RAW_DATA, $this->iv));`
	`46`	`+ }`
`42`	`47`	`}`
`43`	`48`
`44`	`49`	`private function addpadding($string, $blocksize = 16)`
`@@ -67,15 +72,21 @@ function decrypt($data)`
`67`	`72`	`{`
`68`	`73`	`try`
`69`	`74`	`{`
`70`		`-`
`71`		`- $base64Decoded = @base64_decode($data);`
`72`		`- $decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $base64Decoded, MCRYPT_MODE_CBC, $this->iv);`
`73`		`- return $this->strippadding($decrypted);`
	`75`	`+ if ($this->version[0] === "5")`
	`76`	`+ {`
	`77`	`+ $decoded = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $data, MCRYPT_MODE_CBC, $this->iv);`
	`78`	`+ $base64Decoded = @base64_decode($data);`
	`79`	`+ $decrypted = mcrypt_decrypt(MCRYPT_RIJNDAEL_128, $this->cipher, $base64Decoded, MCRYPT_MODE_CBC, $this->iv);`
	`80`	`+ return $this->strippadding($decrypted);`
	`81`	`+ }`
	`82`	`+ else`
	`83`	`+ {`
	`84`	`+ return $this->strippadding(openssl_decrypt(base64_decode($data), 'AES-256-CBC', $this->cipher, OPENSSL_RAW_DATA \| OPENSSL_ZERO_PADDING, $this->iv));`
	`85`	`+ }`
`74`	`86`	`}`
`75`	`87`	`catch (Exception $e)`
`76`	`88`	`{`
`77`	`89`	`throw new Exception("Failed to decrypt");`
`78`	`90`	`}`
`79`	`91`	`}`
`80`	`92`	`}`
`81`		`-?>`
Original file line number	Diff line number	Diff line change
`@@ -38,14 +38,15 @@ function returnTunnelError($errorMessage)`
`38`	`38`	`$array[MESSAGE] = $errorMessage;`
`39`	`39`	`return $array;`
`40`	`40`	`}`
`41`		`-`
	`41`	`+`
`42`	`42`	`/**`
`43`		`- * Prints out the output to be picked up by Android in the correct format.`
	`43`	`+ * Prints out the output to be picked up by Android in the correct format.`
`44`	`44`	`* If using version 1.2.0.0 or above then the output is encrypted before it is sent`
`45`	`45`	`* back, older versions (older versions don't post the version) revert back to`
`46`	`46`	`* the previous behaviour and the output is not encrypted`
`47`	`47`	`* @param type $postArray The array that was posted from android (includes the version)`
`48`	`48`	`* @param type $response The response that should be json_encoded and possibly encrypted depending on version`
	`49`	`+ * @throws Exception`
`49`	`50`	`*/`
`50`	`51`	`public static function printResponseInCorrectEncodingAndCloseTunnelIfNeeded($postArray, $response)`
`51`	`52`	`{`
`@@ -70,9 +71,6 @@ public static function printResponseInCorrectEncodingAndCloseTunnelIfNeeded($pos`
`70`	`71`	`}`
`71`	`72`	`else`
`72`	`73`	`{`
`73`		`- //Temporary test for older application backward compatibility testing`
`74`		`- //TODO: REMOVE THE ENCRYPTION`
`75`		`- //print json_encode($encryption->decrypt($response));`
`76`	`74`	`if (isset($response->data))`
`77`	`75`	`{`
`78`	`76`	`print json_encode($response->data);`
`@@ -111,5 +109,3 @@ public static function getIP()`
`111`	`109`	`return $ip;`
`112`	`110`	`}`
`113`	`111`	`}`
`114`		`-`
`115`		`-?>`
Original file line number	Diff line number	Diff line change
`@@ -39,7 +39,7 @@ public function __construct($logID = 0)`
`39`	`39`	`$this->logHandle = fopen($this->configManager->getConfigItemValue("debug", "debug_log", "api.log"), "a+");`
`40`	`40`	`if (!$this->logHandle)`
`41`	`41`	`{`
`42`		`- throw new Exception("Unable to open debug log file: Error: " + error_get_last());`
	`42`	`+ throw new Exception("Unable to open debug log file: Error: " . error_get_last());`
`43`	`43`	`}`
`44`	`44`	`}`
`45`	`45`
`@@ -54,7 +54,7 @@ public function getLogID()`
`54`	`54`
`55`	`55`	`/**`
`56`	`56`	`* Write a message to the API log file. A new line will automatically be put on the end of the log message`
`57`		`- * @param $logMessage The message to be written to the file`
	`57`	`+ * @param string $logMessage The message to be written to the file`
`58`	`58`	`*/`
`59`	`59`	`public function writeToLog($logMessage)`
`60`	`60`	`{`