Result check at `Security::generateRandomKey()` added

90a62501 · Paul Klimov · 1085f1bd · 90a62501 · 90a62501
Commit 90a62501 authored Jun 29, 2014 by Paul Klimov
Hide whitespace changes
Inline Side-by-side

Showing with 16 additions and 1 deletion

Security.php framework/base/Security.php +9 -1

SecurityTest.php tests/unit/framework/base/SecurityTest.php +7 -0

No files found.
--- a/framework/base/Security.php
+++ b/framework/base/Security.php
@@ -309,11 +309,19 @@ class Security extends Component
     * Generates a random key.
     * Note the generated key is a binary string with the specified number of bytes in it.
     * @param integer $length the length of the key that should be generated
+     * @throws Exception on failure.
     * @return string the generated random key
     */
    public function generateRandomKey($length = 32)
    {
-        return mcrypt_create_iv($length, MCRYPT_DEV_URANDOM);
+        if (!extension_loaded('mcrypt')) {
+            throw new InvalidConfigException('The mcrypt PHP extension is not installed.');
+        }
+        $key = mcrypt_create_iv($length, MCRYPT_DEV_URANDOM);
+        if ($key === false) {
+            throw new Exception('Unable to generate random key.');
+        }
+        return $key;
    }
    /**

--- a/tests/unit/framework/base/SecurityTest.php
+++ b/tests/unit/framework/base/SecurityTest.php
@@ -131,4 +131,11 @@ class SecurityTest extends TestCase
        $decryptedData = $this->security->decrypt($encryptedData, $key);
        $this->assertEquals($data, $decryptedData);
    }
+    public function testGenerateRandomKey()
+    {
+        $keyLength = 20;
+        $key = $this->security->generateRandomKey($keyLength);
+        $this->assertEquals($keyLength, strlen($key));
+    }
 }