Review usage of public key, secret key and key pair

nikic · nikic · commit bcf2f946284c · 2020-10-13T10:08:23.000+02:00
Some of original parameter names weren't correct, e.g. some functions
using $keypair even though they only accept a single key. Fix a
number of such issues after cross-checking with the libsodium docs
and the implementation.
diff --git a/ext/sodium/libsodium.stub.php b/ext/sodium/libsodium.stub.php
@@ -36,47 +36,47 @@ function sodium_crypto_auth(string $message, string $key): string {}
 
 function sodium_crypto_auth_keygen(): string {}
 
-function sodium_crypto_auth_verify(string $signature, string $message, string $key): bool {}
+function sodium_crypto_auth_verify(string $mac, string $message, string $key): bool {}
 
-function sodium_crypto_box(string $message, string $nonce, string $key): string {}
+function sodium_crypto_box(string $message, string $nonce, string $key_pair): string {}
 
 function sodium_crypto_box_keypair(): string {}
 
-function sodium_crypto_box_seed_keypair(string $key): string {}
+function sodium_crypto_box_seed_keypair(string $seed): string {}
 
 function sodium_crypto_box_keypair_from_secretkey_and_publickey(string $secret_key, string $public_key): string {}
 
-function sodium_crypto_box_open(string $ciphertext, string $nonce, string $key): string|false {}
+function sodium_crypto_box_open(string $ciphertext, string $nonce, string $key_pair): string|false {}
 
-function sodium_crypto_box_publickey(string $key): string {}
+function sodium_crypto_box_publickey(string $key_pair): string {}
 
-function sodium_crypto_box_publickey_from_secretkey(string $key): string {}
+function sodium_crypto_box_publickey_from_secretkey(string $secret_key): string {}
 
-function sodium_crypto_box_seal(string $message, string $key): string {}
+function sodium_crypto_box_seal(string $message, string $key_pair): string {}
 
-function sodium_crypto_box_seal_open(string $ciphertext, string $key): string|false {}
+function sodium_crypto_box_seal_open(string $ciphertext, string $key_pair): string|false {}
 
-function sodium_crypto_box_secretkey(string $key): string {}
+function sodium_crypto_box_secretkey(string $key_pair): string {}
 
 function sodium_crypto_kx_keypair(): string {}
 
-function sodium_crypto_kx_publickey(string $key): string {}
+function sodium_crypto_kx_publickey(string $key_pair): string {}
 
-function sodium_crypto_kx_secretkey(string $key): string {}
+function sodium_crypto_kx_secretkey(string $key_pair): string {}
 
 function sodium_crypto_kx_seed_keypair(string $seed): string {}
 
-function sodium_crypto_kx_client_session_keys(string $client_keypair, string $server_key): array {}
+function sodium_crypto_kx_client_session_keys(string $client_key_pair, string $server_key): array {}
 
-function sodium_crypto_kx_server_session_keys(string $server_keypair, string $client_key): array {}
+function sodium_crypto_kx_server_session_keys(string $server_key_pair, string $client_key): array {}
 
 function sodium_crypto_generichash(string $message, string $key = "", int $length = SODIUM_CRYPTO_GENERICHASH_BYTES): string {}
 
 function sodium_crypto_generichash_keygen(): string {}
 
 function sodium_crypto_generichash_init(string $key = "", int $length = SODIUM_CRYPTO_GENERICHASH_BYTES): string {}
 
-function sodium_crypto_generichash_update(string &$state, string $string): bool {}
+function sodium_crypto_generichash_update(string &$state, string $message): bool {}
 
 function sodium_crypto_generichash_final(string &$state, int $length = SODIUM_CRYPTO_GENERICHASH_BYTES): string {}
 
@@ -130,29 +130,29 @@ function sodium_crypto_shorthash(string $message, string $key): string {}
 
 function sodium_crypto_shorthash_keygen(): string {}
 
-function sodium_crypto_sign(string $message, string $keypair): string {}
+function sodium_crypto_sign(string $message, string $secret_key): string {}
 
-function sodium_crypto_sign_detached(string $message, string $keypair): string {}
+function sodium_crypto_sign_detached(string $message, string $secret_key): string {}
 
-function sodium_crypto_sign_ed25519_pk_to_curve25519(string $key): string {}
+function sodium_crypto_sign_ed25519_pk_to_curve25519(string $public_key): string {}
 
-function sodium_crypto_sign_ed25519_sk_to_curve25519(string $key): string {}
+function sodium_crypto_sign_ed25519_sk_to_curve25519(string $secret_key): string {}
 
 function sodium_crypto_sign_keypair(): string {}
 
 function sodium_crypto_sign_keypair_from_secretkey_and_publickey(string $secret_key, string $public_key): string {}
 
-function sodium_crypto_sign_open(string $ciphertext, string $keypair): string|false {}
+function sodium_crypto_sign_open(string $ciphertext, string $public_key): string|false {}
 
-function sodium_crypto_sign_publickey(string $key): string {}
+function sodium_crypto_sign_publickey(string $key_pair): string {}
 
-function sodium_crypto_sign_secretkey(string $key): string {}
+function sodium_crypto_sign_secretkey(string $key_pair): string {}
 
-function sodium_crypto_sign_publickey_from_secretkey(string $key): string {}
+function sodium_crypto_sign_publickey_from_secretkey(string $secret_key): string {}
 
-function sodium_crypto_sign_seed_keypair(string $key): string {}
+function sodium_crypto_sign_seed_keypair(string $seed): string {}
 
-function sodium_crypto_sign_verify_detached(string $signature, string $message, string $key): bool {}
+function sodium_crypto_sign_verify_detached(string $signature, string $message, string $public_key): bool {}
 
 function sodium_crypto_stream(int $length, string $nonce, string $key): string {}
 
@@ -185,4 +185,4 @@ function sodium_base642bin(string $string, int $id, string $ignore  = ""): strin
 #endif
 
 /** @alias sodium_crypto_box_publickey_from_secretkey */
-function sodium_crypto_scalarmult_base(string $key): string {}
+function sodium_crypto_scalarmult_base(string $secret_key): string {}
diff --git a/ext/sodium/libsodium_arginfo.h b/ext/sodium/libsodium_arginfo.h
@@ -1,5 +1,5 @@
 /* This is a generated file, edit the .stub.php file instead.
- * Stub hash: 1b4db83553e156fc38c6e83681f351639a39ac4f */
+ * Stub hash: 60259c3fefaf8ba8ac22bf80147c3525387ec763 */
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_aead_aes256gcm_is_available, 0, 0, _IS_BOOL, 0)
 ZEND_END_ARG_INFO()
@@ -81,21 +81,21 @@ ZEND_END_ARG_INFO()
 #define arginfo_sodium_crypto_auth_keygen arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_auth_verify, 0, 3, _IS_BOOL, 0)
-	ZEND_ARG_TYPE_INFO(0, signature, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, mac, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box, 0, 3, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, nonce, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key_pair, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 #define arginfo_sodium_crypto_box_keypair arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box_seed_keypair, 0, 1, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, seed, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box_keypair_from_secretkey_and_publickey, 0, 2, IS_STRING, 0)
@@ -106,39 +106,44 @@ ZEND_END_ARG_INFO()
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_MASK_EX(arginfo_sodium_crypto_box_open, 0, 3, MAY_BE_STRING|MAY_BE_FALSE)
 	ZEND_ARG_TYPE_INFO(0, ciphertext, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, nonce, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key_pair, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_box_publickey arginfo_sodium_crypto_box_seed_keypair
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box_publickey, 0, 1, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key_pair, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_box_publickey_from_secretkey arginfo_sodium_crypto_box_seed_keypair
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box_publickey_from_secretkey, 0, 1, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, secret_key, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_box_seal arginfo_sodium_crypto_auth
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_box_seal, 0, 2, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key_pair, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_MASK_EX(arginfo_sodium_crypto_box_seal_open, 0, 2, MAY_BE_STRING|MAY_BE_FALSE)
 	ZEND_ARG_TYPE_INFO(0, ciphertext, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key_pair, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_box_secretkey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_box_secretkey arginfo_sodium_crypto_box_publickey
 
 #define arginfo_sodium_crypto_kx_keypair arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
-#define arginfo_sodium_crypto_kx_publickey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_kx_publickey arginfo_sodium_crypto_box_publickey
 
-#define arginfo_sodium_crypto_kx_secretkey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_kx_secretkey arginfo_sodium_crypto_box_publickey
 
-ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_kx_seed_keypair, 0, 1, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, seed, IS_STRING, 0)
-ZEND_END_ARG_INFO()
+#define arginfo_sodium_crypto_kx_seed_keypair arginfo_sodium_crypto_box_seed_keypair
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_kx_client_session_keys, 0, 2, IS_ARRAY, 0)
-	ZEND_ARG_TYPE_INFO(0, client_keypair, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, client_key_pair, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, server_key, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_kx_server_session_keys, 0, 2, IS_ARRAY, 0)
-	ZEND_ARG_TYPE_INFO(0, server_keypair, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, server_key_pair, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, client_key, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
@@ -157,7 +162,7 @@ ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_generichash_update, 0, 2, _IS_BOOL, 0)
 	ZEND_ARG_TYPE_INFO(1, state, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, string, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_generichash_final, 0, 1, IS_STRING, 0)
@@ -238,11 +243,19 @@ ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_scalarmult, 0, 2,
 	ZEND_ARG_TYPE_INFO(0, p, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_secretbox arginfo_sodium_crypto_box
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_secretbox, 0, 3, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, nonce, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
 #define arginfo_sodium_crypto_secretbox_keygen arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
-#define arginfo_sodium_crypto_secretbox_open arginfo_sodium_crypto_box_open
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_MASK_EX(arginfo_sodium_crypto_secretbox_open, 0, 3, MAY_BE_STRING|MAY_BE_FALSE)
+	ZEND_ARG_TYPE_INFO(0, ciphertext, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, nonce, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, key, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
 #if defined(crypto_secretstream_xchacha20poly1305_ABYTES)
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_secretstream_xchacha20poly1305_keygen, 0, 0, IS_STRING, 0)
@@ -291,33 +304,39 @@ ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_sign, 0, 2, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, keypair, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, secret_key, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
 #define arginfo_sodium_crypto_sign_detached arginfo_sodium_crypto_sign
 
-#define arginfo_sodium_crypto_sign_ed25519_pk_to_curve25519 arginfo_sodium_crypto_box_seed_keypair
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_sign_ed25519_pk_to_curve25519, 0, 1, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, public_key, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_sign_ed25519_sk_to_curve25519 arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_sign_ed25519_sk_to_curve25519 arginfo_sodium_crypto_box_publickey_from_secretkey
 
 #define arginfo_sodium_crypto_sign_keypair arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
 #define arginfo_sodium_crypto_sign_keypair_from_secretkey_and_publickey arginfo_sodium_crypto_box_keypair_from_secretkey_and_publickey
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_MASK_EX(arginfo_sodium_crypto_sign_open, 0, 2, MAY_BE_STRING|MAY_BE_FALSE)
 	ZEND_ARG_TYPE_INFO(0, ciphertext, IS_STRING, 0)
-	ZEND_ARG_TYPE_INFO(0, keypair, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, public_key, IS_STRING, 0)
 ZEND_END_ARG_INFO()
 
-#define arginfo_sodium_crypto_sign_publickey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_sign_publickey arginfo_sodium_crypto_box_publickey
 
-#define arginfo_sodium_crypto_sign_secretkey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_sign_secretkey arginfo_sodium_crypto_box_publickey
 
-#define arginfo_sodium_crypto_sign_publickey_from_secretkey arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_sign_publickey_from_secretkey arginfo_sodium_crypto_box_publickey_from_secretkey
 
 #define arginfo_sodium_crypto_sign_seed_keypair arginfo_sodium_crypto_box_seed_keypair
 
-#define arginfo_sodium_crypto_sign_verify_detached arginfo_sodium_crypto_auth_verify
+ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_sign_verify_detached, 0, 3, _IS_BOOL, 0)
+	ZEND_ARG_TYPE_INFO(0, signature, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, message, IS_STRING, 0)
+	ZEND_ARG_TYPE_INFO(0, public_key, IS_STRING, 0)
+ZEND_END_ARG_INFO()
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_crypto_stream, 0, 3, IS_STRING, 0)
 	ZEND_ARG_TYPE_INFO(0, length, IS_LONG, 0)
@@ -327,7 +346,7 @@ ZEND_END_ARG_INFO()
 
 #define arginfo_sodium_crypto_stream_keygen arginfo_sodium_crypto_aead_chacha20poly1305_keygen
 
-#define arginfo_sodium_crypto_stream_xor arginfo_sodium_crypto_box
+#define arginfo_sodium_crypto_stream_xor arginfo_sodium_crypto_secretbox
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_add, 0, 2, IS_VOID, 0)
 	ZEND_ARG_TYPE_INFO(1, string1, IS_STRING, 0)
@@ -381,7 +400,7 @@ ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_sodium_base642bin, 0, 2, IS_STRI
 ZEND_END_ARG_INFO()
 #endif
 
-#define arginfo_sodium_crypto_scalarmult_base arginfo_sodium_crypto_box_seed_keypair
+#define arginfo_sodium_crypto_scalarmult_base arginfo_sodium_crypto_box_publickey_from_secretkey
 
 
 ZEND_FUNCTION(sodium_crypto_aead_aes256gcm_is_available);
diff --git a/ext/sodium/tests/crypto_box.phpt b/ext/sodium/tests/crypto_box.phpt
@@ -142,7 +142,7 @@ bool(true)
 bool(true)
 bool(true)
 bool(true)
-sodium_crypto_box(): Argument #3 ($key) must be SODIUM_CRYPTO_BOX_KEYPAIRBYTES bytes long
+sodium_crypto_box(): Argument #3 ($key_pair) must be SODIUM_CRYPTO_BOX_KEYPAIRBYTES bytes long
 bool(true)
 string(17) "Hi, this is Alice"
 string(21) "Hi Alice! This is Bob"
