Home Explore Help
Register Sign In
gyfl
/
xyzshop
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 554a38c8b2
Branches Tags
xyzshop
/
test
/
TestSecurity.php

TestSecurity.php 11 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Created by PhpStorm.
    4. 

  4.  * User: stanley-king
    5. 

  5.  * Date: 2018/12/12
    6. 

  6.  * Time: 11:01 AM
    7. 

  7.  */
    8. 

  8. 

  9. 

  10. define('BASE_ROOT_PATH',str_replace('/test','',dirname(__FILE__)));
    11. 

  11. require_once(BASE_ROOT_PATH . '/fooder.php');
    12. 

  12. require_once(BASE_ROOT_PATH . '/helper/event_looper.php');
    13. 

  13. require_once(BASE_ROOT_PATH . '/helper/search/processor.php');
    14. 

  14. require_once(BASE_ROOT_PATH . '/helper/search/tcp_client.php');
    15. 

  15. require_once(BASE_ROOT_PATH . '/helper/search/util.php');
    16. 

  16. require_once(BASE_ROOT_PATH . '/helper/category_helper.php');
    17. 

  17. require_once(BASE_ROOT_PATH . '/helper/search/searcher.php');
    18. 

  18. require_once(BASE_ROOT_PATH . '/helper/brand_helper.php');
    19. 

  19. require_once(BASE_ROOT_PATH . '/helper/algorithm.php');
    20. 

  20. require_once(BASE_ROOT_PATH . '/helper/special_helper.php');
    21. 

  21. 

  22. define('MOBILE_SERVER',true);
    23. 

  23. define('TIME_STAMP',time());
    24. 

  24. 

  25. class TestSecurity extends PHPUnit_Framework_TestCase
    26. 

  26. {
    27. 

  27.     public static function setUpBeforeClass()
    28. 

  28.     {
    29. 

  29.         Base::run_util();
    30. 

  30.     }
    31. 

  31. 

  32. 

  33.     public function testPay()
    34. 

  34.     {
    35. 

  35.         $pri_key = BASE_DATA_PATH .'/api/alipay/key/rsa_private_key.pem';
    36. 

  36.         $pub_key = BASE_DATA_PATH.'/api/alipay/key/alipay_public_key.pem';
    37. 

  37. 

  38.         $key = file_get_contents($pri_key);
    39. 

  39.         $pri = openssl_get_privatekey($key);
    40. 

  40.         $err = openssl_error_string();
    41. 

  41. //
    42. 

  42.         $key = file_get_contents($pub_key);
    43. 

  43.         $pub = openssl_get_publickey($key);
    44. 

  44.         $err = openssl_error_string();
    45. 

  45. 

  46.         $body = 'discount=0.00&payment_type=1&subject=%E5%AE%9E%E7%89%A9%E8%AE%A2%E5%8D%95_580507223514222365&trade_no=2016012721001004800042946454&buyer_email=13911129867&gmt_create=2016-01-27+15%3A25%3A29&notify_type=trade_status_sync&quantity=1&out_trade_no=580507223514222365&seller_id=2088121219613123&notify_time=2016-01-27+15%3A25%3A29&body=%E5%95%86%E5%93%81%E8%AF%A6%E6%83%85&trade_status=WAIT_BUYER_PAY&is_total_fee_adjust=Y&total_fee=8.00&seller_email=napheir.ao%40lrlz.com&price=8.00&buyer_id=2088202332994802&notify_id=66af3b99b765d046d2d533eaf6558fcm68&use_coupon=N';
    47. 

  47.         $body = 'discount=0.00&payment_type=1&subject=%E5%AE%9E%E7%89%A9%E8%AE%A2%E5%8D%95_280507226197761365&trade_no=2016012721001004800047345139&buyer_email=13911129867&gmt_create=2016-01-27+16%3A10%3A55&notify_type=trade_status_sync&quantity=1&out_trade_no=280507226197761365&seller_id=2088121219613123&notify_time=2016-01-27+16%3A10%3A55&body=%E5%95%86%E5%93%81%E8%AF%A6%E6%83%85&trade_status=WAIT_BUYER_PAY&is_total_fee_adjust=Y&total_fee=8.00&seller_email=napheir.ao%40lrlz.com&price=8.00&buyer_id=2088202332994802&notify_id=44d5cc359f27f5cb6e31fb10f480fb0m68&use_coupon=N';
    48. 

  48.         openssl_sign($body, $signed, $pri);
    49. 

  49. 

  50.         $res = openssl_verify($body, $signed, $pub);
    51. 

  51.         $err = openssl_error_string();
    52. 

  52. 

  53.         $s = base64_encode($signed);
    54. 

  54.         $s = urlencode($s);
    55. 

  55. 

  56.         $sign='lnxpRmnHsaeUoPgtCrGm%2FtWohi3ORJk85q9Ic6X4c10q9O%2FASMXA2Z%2BzAH9%2BgPZAwsMywUA9O4HQ3ZCCrSpPhzJ8hEQ8Dc2SsMnvmeY6UqA7Zi6MZBTSeU1AuV3IV0tN4DTpnuk9ceetwQhNEwCiRo9vjrC%2B0TTHGfXb94OfJuM%3D';
    57. 

  57.         $signx = urldecode($sign);
    58. 

  58.         $signy = base64_decode($signx);
    59. 

  59. 

  60.         $res = openssl_verify($body, $signy, $pub);
    61. 

  61.         $err = openssl_error_string();
    62. 

  62. 

  63. //        openssl_encrypt()
    64. 

  64. //
    65. 

  65. //
    66. 

  66. //    $signed = base64_encode($signed);
    67. 

  67. //    $signed = urlencode($signed);
    68. 

  68. //
    69. 

  69. //    $body = 'body=%E5%95%86%E5%93%81%E8%AF%A6%E6%83%85&buyer_email=bestcoolbear%40163.com&buyer_id=2088402949754402&discount=0.00&gmt_create=2015-12-31+14%3A51%3A41&gmt_payment=2015-12-31+14%3A51%3A41&is_total_fee_adjust=N&notify_id=35ceee6a4348f21bb27838770223ad0j34&notify_time=2015-12-31+14%3A51%3A41&notify_type=trade_status_sync&out_trade_no=150504888692984277&payment_type=1&price=0.01&quantity=1&seller_email=napheir.ao%40lrlz.com&seller_id=2088121219613123&subject=%E5%AE%9E%E7%89%A9%E8%AE%A2%E5%8D%95_150504888692984277&total_fee=0.01&trade_no=2015123121001004400035472261&trade_status=TRADE_SUCCESS&use_coupon=N';
    70. 

  70. //    $data = 'gNvKQd0GXULuvr%2F1FKjQrKVI%2BeT%2B8qz2ohSohfkzn%2Fx5ajMUdDD1zBXsxbv9%2FJZbaLq7KihhJmlb28E02S6hI9OlG7f7%2BTJ%2FTtrh8Xy2%2FYiU2KNpjtowS%2FM3io23lgfyQgIEQ0xIpyMZg4NRdaoW6thnrgQzs%2B9rY57iFgdG%2B24%3D';
    71. 

  71. //    openssl_sign($body, $sig, $pri);
    72. 

  72. //    $sig64 = base64_encode($sig);
    73. 

  73. //    $res = openssl_verify($body, $sig, $pub);
    74. 

  74. //    $err = openssl_error_string();
    75. 

  75.     }
    76. 

  76. 

  77.     public static function zero_iv($ivlen) {
    78. 

  78.         $result = '';
    79. 

  79.         for ($i = 0; $i < $ivlen; ++$i) {
    80. 

  80.             $result .= chr(0);
    81. 

  81.         }
    82. 

  82.         return $result;
    83. 

  83.     }
    84. 

  84.     public function testEncrypt()
    85. 

  85.     {
    86. 

  86.         $plaintext = "message to be encrypted";
    87. 

  87.         $cipher="AES-128-CBC";
    88. 

  88.         $ivlen = openssl_cipher_iv_length($cipher);
    89. 

  89. //        $iv = openssl_random_pseudo_bytes($ivlen);
    90. 

  90.         $iv = self::zero_iv($ivlen);
    91. 

  91.         $key = '55668899';
    92. 

  92.         $ciphertext = openssl_encrypt($plaintext, $cipher, $key, 0, $iv);
    93. 

  93.         $original_plaintext = openssl_decrypt($ciphertext, $cipher, $key, 0, $iv);
    94. 

  94. 

  95. 

  96. 

  97.     }
    98. 

  98.     public function testDecrypt()
    99. 

  99.     {
    100. 

  100.         $ciphers = openssl_get_cipher_methods();
    101. 

  101.         $cipher_text = 'pvmi16xnV6C3/1O8637DUKMTuNuZruETPg5TXE8rs78=';
    102. 

  102.         $cipher="AES-128-CBC";
    103. 

  103.         $ivlen = openssl_cipher_iv_length($cipher);
    104. 

  104.         $iv = self::zero_iv($ivlen);
    105. 

  105.         $key = '55668899';
    106. 

  106.         $plaintext = openssl_decrypt($cipher_text, $cipher, $key, 0, $iv);;
    107. 

  107.     }
    108. 

  108. 

  109.     public function testSign()
    110. 

  110.     {
    111. 

  111.         //$body= 'body=order_sn=8000000000295701&buyer_email=13911129867&buyer_id=2088202332994802&discount=0.00&gmt_create=2016-10-29 20:51:36&gmt_payment=2016-10-29 20:51:37&is_total_fee_adjust=N&notify_id=0960c111697dbcdfbedad9ed94625adm6a&notify_time=2016-10-29 20:51:38&notify_type=trade_status_sync&out_trade_no=650531089488891490&payment_type=1&price=1.80&quantity=1&seller_email=napheir.ao@lrlz.com&seller_id=2088121219613123&subject=实物订单_650531089488891490&total_fee=1.80&trade_no=2016102921001004800260656982&trade_status=TRADE_SUCCESS&use_coupon=N';
    112. 

  112. 

  113.         $body = "xxxxffff";
    114. 

  114. 

  115.         $pri_key = BASE_DATA_PATH .'/api/alipay/key/rsa_private_key.pem';
    116. 

  116.         $pub_key = BASE_DATA_PATH.'/api/alipay/key/alipay_public_key.pem';
    117. 

  117. 

  118.         $key = file_get_contents($pri_key);
    119. 

  119.         $pri = openssl_get_privatekey($key);
    120. 

  120.         openssl_sign($body, $signed, $pri);
    121. 

  121.         $sign = base64_encode($signed);
    122. 

  122. 

  123.         $key = file_get_contents($pub_key);
    124. 

  124.         $pub = openssl_get_publickey($key);
    125. 

  125. 

  126.         $res = openssl_verify($body, $signed, $pub);
    127. 

  127.     }
    128. 

  128. 

  129.     public function testB64()
    130. 

  130.     {
    131. 

  131.         $pub_key = BASE_DATA_PATH.'/api/alipay/key/alipay_public_key.pem';
    132. 

  132. 

  133.         $key = file_get_contents($pub_key);
    134. 

  134.         $pub = openssl_get_publickey($key);
    135. 

  135.         $err = openssl_error_string();
    136. 

  136. 

  137.         $data = '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';
    138. 

  138.         $pem = "-----BEGIN PUBLIC KEY-----\n" . $data . "-----END PUBLIC KEY-----\n";
    139. 

  139.         $x = openssl_pkey_get_private($pem);
    140. 

  140.         $y = openssl_error_string();
    141. 

  141.     }
    142. 

  142. 

  143.     public function testLocalSign()
    144. 

  144.     {
    145. 

  145. 

  146. //        $pri_key = BASE_DATA_PATH.'/api/alipay/key/rsa_private_key.pem';
    147. 

  147. //        $pub_key = BASE_DATA_PATH.'/api/alipay/key/rsa_public_key.pem';
    148. 

  148. 

  149.         $body ='body=order_sn=8000000000295404&buyer_email=13911129867&buyer_id=2088202332994802&discount=0.00&gmt_create=2016-10-29 20:24:18&gmt_payment=2016-10-29 20:24:18&is_total_fee_adjust=N&notify_id=f29b67caf1da662d7210f04b3675f3am6a&notify_time=2016-10-29 23:52:32&notify_type=trade_status_sync&out_trade_no=850531087853085490&payment_type=1&price=0.76&quantity=1&seller_email=napheir.ao@lrlz.com&seller_id=2088121219613123&subject=实物订单_850531087853085490&total_fee=0.76&trade_no=2016102921001004800260616422&trade_status=TRADE_SUCCESS&use_coupon=N';
    150. 

  150.         $sign ='WG+9QtqYOlmxVRzTVyso2toN1wOxXz4aBUS7ZRL7nzvDCdXaZRU3I2bN8EZ2pcag8DiU6eUXI99YY0MaTjnAJgGGESzd5S1KHDSg0ZNdsZueaLhmYQNGpap7jyRxBSDNIR+tEPU5FzgDivU4uK4f5PWu0FiOd9jOfXLIkGneRxg=';
    151. 

  151. 

  152.         $pub_key = '/Users/stanley-king/Desktop/payment/alipay/key/alipay_public_key.pem';
    153. 

  153. 

  154. //        $pri_key = '/Users/stanley-king/.ssh/rsa_private_key.pem';
    155. 

  155. //        $pub_key = '/Users/stanley-king/.ssh/rsa_public_key.pem';
    156. 

  156. 

  157. //        $pri_key = '/Users/stanley-king/work/PHPProject/rsa_private_key.pem';
    158. 

  158. //        $pub_key = '/Users/stanley-king/work/PHPProject/rsa_public_key.pem';
    159. 

  159. 

  160. //        $key = file_get_contents($pri_key);
    161. 

  161. //        $pri = openssl_get_privatekey($key);
    162. 

  162. //        openssl_sign($body, $signed, $pri);
    163. 

  163. //        $sign = base64_encode($signed);
    164. 

  164. 

  165.         $key = file_get_contents($pub_key);
    166. 

  166.         $pub = openssl_get_publickey($key);
    167. 

  167. 

  168.         $signed = base64_decode($sign);
    169. 

  169. 

  170.         $res = openssl_verify($body, $signed, $pub);
    171. 

  171.     }
    172. 

  172. 

  173.     public function testCmbpay()
    174. 

  174.     {
    175. 

  175.         $x = 'BranchID=0021&CoNo=006438&BillNo=5320089577&Amount=2.05&Date=20161030&ExpireTimeSpan=30&MerchantUrl=http%3A%2F%2F121.43.114.153%2Fmobile%2Fcmbpay_notify.php&MerchantPara=pay_sn%3A610531141658503490%7Corder_sn%3A8000000000298701%7Cmember_id%3A36490&MerchantCode=%7C4xKshccAHleC65HWnU828KX1n5MtZAcd1Ma4XfVTwPibT3QJLqgRwZhxSclZyyV8WE%2Fkv8jT01eYd1y%2Aed6SsJHw2BuxSoIqGeXL4b0HMTqYaZ%2AcGEyJ4n8nVYW7vDn%2AM%2FvnDRoCuahqmft0i2suJlgZP07w36WzDPmN9SKRd60%2A4HCG2GdSy0gJ1f8tcW9C7qW6ltC7XzWlZ9yJnuKeDSJ4JHzSy24invATyz8qOuehypiWCCRLYouNCJorAqFETHZgB5kfEEJzH%2AODIf24Fywe%2Amuib96thBMGwJ1A%2AuLl4FqlchHx6QYCUyxxRNcmnF7YPkfcQs43g4ekaiHKudxmAZ%2AwJMKxPRen3g9TUyXvqSW%2FpxyPELKlKJQYUGodBn6kZN0yQ7Pw%7C4fd51f4fe55b76e5e17538d7969b2fdd8f0b8e67&MerchantRetUrl=http%3A%2F%2F121.43.114.153%2Fmobile%2Findex.php&MerchantRetPara=act%3Dpay_return%26op%3Dcmbpay%26pay_sn%3D610531141658503490%26order_sn%3D8000000000298701%26member_id%3D36490';
    176. 

  176.         $y = urldecode($x);
    177. 

  177.     }
    178. 

  178. 

  179.     public function testPubkey()
    180. 

  180.     {
    181. 

  181.         $file = fopen('/Users/stanley-king/work/PHPProject/public.key','r');
    182. 

  182.         $data = fread($file,1024);
    183. 

  183.         fclose($file);
    184. 

  184.         $base64 = base64_encode($data);
    185. 

  185.     }
    186. 

  186. 

  187.     public function testPublicKey()
    188. 

  188.     {
    189. 

  189.         $CMPPAY_ONLINE = true;
    190. 

  190.         if($CMPPAY_ONLINE == true) {
    191. 

  191.             $pub_key = 'MIGJAoGBALKsktbh7j9O9pM0p7qnxxImgODqxjpiT7Xl2bvZCywJtwsNI6CchqAagOYGJjG0NZsnjFunTw5YM9TD5KxsUOILAL6IaNMH/fWREhVjkUDJ4CYtLWlKozElvXRp1iZxf66yHHhN4t7TE5S9NWpEBSn37TEfFLU99Go1WReI1XN1AgMBAAE=';
    192. 

  192.         } else {
    193. 

  193.             $pub_key = 'MFwwDQYJKoZIhvcNAQEBBQADSwAwSAJBALuUIwMGhvbpCwYzKCMzvSMQiLAAj5y74cN09N1TXVONPWhvLWkuzEPSd1ogPJLWiVyEG7gEIBT3zTlCV+NMou0CAwEAAQ==';
    194. 

  194.         }
    195. 

  195. 

  196.         $pk = chunk_split($pub_key, 64, "\n");
    197. 

  197.         $pk = "-----BEGIN PUBLIC KEY-----\n{$pk}-----END PUBLIC KEY-----\n";
    198. 

  198. 

  199.         $pkid = openssl_pkey_get_public($pub_key);
    200. 

  200.     }
    201. 

  201. 

  202. }
    203.