Random id & tests

Author: jahyvari

ext/soap/php_soap.h

@@ -260,5 +260,6 @@ static zend_always_inline zval *php_soap_deref(zval *zv) {
 #define Z_CLIENT_WSS_TIMESTAMP_EXPIRES_P(zv) php_soap_deref(OBJ_PROP_NUM(Z_OBJ_P(zv), 40))
 #define Z_CLIENT_WSS_DIGEST_METHOD_P(zv) php_soap_deref(OBJ_PROP_NUM(Z_OBJ_P(zv), 41))
 #define Z_CLIENT_WSS_VERSION_P(zv) php_soap_deref(OBJ_PROP_NUM(Z_OBJ_P(zv), 42))
+#define Z_CLIENT_WSS_RANDOM_ID_P(zv) php_soap_deref(OBJ_PROP_NUM(Z_OBJ_P(zv), 43))
 
 #endif

ext/soap/php_wss.c

@@ -119,7 +119,11 @@ static int add_reference_to_signed_info(zval *this_ptr, xmlNodePtr signed_info,
 void add_wss_to_function_call(zval *this_ptr, int soap_version, xmlNodePtr envelope, xmlNodePtr head, xmlNodePtr body) /* {{{ */
 {
 	char random_s[10];
-	sprintf(random_s, "%d", (int)php_mt_rand_common(100000000,999999999));
+	if (Z_TYPE_P(Z_CLIENT_WSS_RANDOM_ID_P(this_ptr)) == IS_TRUE) {
+		sprintf(random_s, "%d", (int)php_mt_rand_common(100000000,999999999));
+	} else {
+		sprintf(random_s, "%d", 1);
+	}
 
 	zend_string *body_id = zend_string_concat2(
 		"BodyID-", strlen("BodyID-"),

ext/soap/soap.c

@@ -2836,6 +2836,7 @@ PHP_METHOD(SoapClient, __setWSS)
 		convert_to_null(Z_CLIENT_WSS_TIMESTAMP_EXPIRES_P(this_ptr));
 		convert_to_null(Z_CLIENT_WSS_DIGEST_METHOD_P(this_ptr));
 		convert_to_null(Z_CLIENT_WSS_VERSION_P(this_ptr));
+		ZVAL_TRUE(Z_CLIENT_WSS_RANDOM_ID_P(this_ptr));
 	}
 
 	if (options != NULL && !processed) {
@@ -2931,6 +2932,16 @@ PHP_METHOD(SoapClient, __setWSS)
 			}
 		}
 
+		if ((tmp = zend_hash_str_find(ht, "random_id", sizeof("random_id")-1)) != NULL) {
+			if (Z_TYPE_P(tmp) == IS_FALSE) {
+				ZVAL_FALSE(Z_CLIENT_WSS_RANDOM_ID_P(this_ptr));
+			} else if (Z_TYPE_P(tmp) != IS_TRUE) {
+				zend_type_error("%s(): \"random_id\" must be of type bool, %s given", get_active_function_name(), zend_zval_type_name(tmp));
+				success = 0;
+				goto cleanup;
+			}
+		}
+
 		if (success && wss_set) {
 			if ((tmp = zend_hash_str_find(ht, "wss_version", sizeof("wss_version")-1)) != NULL) {
 				if (Z_TYPE_P(tmp) == IS_LONG) {

ext/soap/soap.stub.php

@@ -137,6 +137,7 @@ class SoapClient
     private ?int $_wss_timestamp_expires = null;
     private ?int $_wss_digest_method = null;
     private ?int $_wss_version = null;
+    private bool $_wss_random_id = true;
 
     public function __construct(?string $wsdl, array $options = []) {}
 

ext/soap/soap_arginfo.h

@@ -1,5 +1,5 @@
 /* This is a generated file, edit the .stub.php file instead.
- * Stub hash: 9be909ecc245d559096af1fba97ff2634211caca */
+ * Stub hash: 653d3384207f336026346fcfc531ee40cf0fa5dd */
 
 ZEND_BEGIN_ARG_WITH_RETURN_TYPE_INFO_EX(arginfo_use_soap_error_handler, 0, 0, _IS_BOOL, 0)
 	ZEND_ARG_TYPE_INFO_WITH_DEFAULT_VALUE(0, enable, _IS_BOOL, 0, "true")
@@ -682,5 +682,11 @@ static zend_class_entry *register_class_SoapClient(void)
 	zend_declare_typed_property(class_entry, property__wss_version_name, &property__wss_version_default_value, ZEND_ACC_PRIVATE, NULL, (zend_type) ZEND_TYPE_INIT_MASK(MAY_BE_LONG|MAY_BE_NULL));
 	zend_string_release(property__wss_version_name);
 
+	zval property__wss_random_id_default_value;
+	ZVAL_BOOL(&property__wss_random_id_default_value, 1);
+	zend_string *property__wss_random_id_name = zend_string_init("_wss_random_id", sizeof("_wss_random_id") - 1, 1);
+	zend_declare_typed_property(class_entry, property__wss_random_id_name, &property__wss_random_id_default_value, ZEND_ACC_PRIVATE, NULL, (zend_type) ZEND_TYPE_INIT_MASK(MAY_BE_BOOL));
+	zend_string_release(property__wss_random_id_name);
+
 	return class_entry;
 }

ext/soap/tests/wss/T01.phpt

@@ -0,0 +1,59 @@
+--TEST--
+SOAP CLIENT WSS: WSS 1.0 SHA1 echo
+--EXTENSIONS--
+soap
+--INI--
+soap.wsdl_cache_enabled=0
+--FILE--
+<?php
+include __DIR__.DIRECTORY_SEPARATOR."wss-test.inc";
+
+$client = new LocalSoapClient(__DIR__.DIRECTORY_SEPARATOR."wss-test.wsdl");
+
+$client->__setWSS(array(
+	"random_id"         => false,
+	"x509_binsectoken"  => "TEST CERTIFICATE",
+	"signfunc"          => function($data) {
+		return "TEST SIGNATURE";
+	}
+));
+
+$client->testFunction(array(
+	"Param1" => "foo",
+	"Param2" => "bar"
+));
+?>
+--EXPECTF--
+<?xml version="1.0" encoding="UTF-8"?>
+<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="http://localhost/" xmlns:wsse="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-secext-1.0.xsd" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
+%w<SOAP-ENV:Header>
+%w<wsse:Security SOAP-ENV:mustUnderstand="1">
+%w<wsse:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="TokenID-1">VEVTVCBDRVJUSUZJQ0FURQ==</wsse:BinarySecurityToken>
+%w<ds:Signature>
+%w<ds:SignedInfo>
+%w<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+%w<ds:Reference URI="#BodyID-1">
+%w<ds:Transforms>
+%w<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w</ds:Transforms>
+%w<ds:DigestMethod Algorithm="http://www.w3.org/2000/09/xmldsig#sha1"/>
+%w<ds:DigestValue>OaQiUDsEKrCjytgTUqF4CLsB9jo=</ds:DigestValue>
+%w</ds:Reference>
+%w</ds:SignedInfo>
+%w<ds:SignatureValue>VEVTVCBTSUdOQVRVUkU=</ds:SignatureValue>
+%w<ds:KeyInfo>
+%w<wsse:SecurityTokenReference>
+%w<wsse:Reference URI="#TokenID-1" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
+%w</wsse:SecurityTokenReference>
+%w</ds:KeyInfo>
+%w</ds:Signature>
+%w</wsse:Security>
+%w</SOAP-ENV:Header>
+%w<SOAP-ENV:Body wsu:Id="BodyID-1">
+%w<ns1:testFunctionIn>
+%w<ns1:Param1>foo</ns1:Param1>
+%w<ns1:Param2>bar</ns1:Param2>
+%w</ns1:testFunctionIn>
+%w</SOAP-ENV:Body>
+</SOAP-ENV:Envelope>

ext/soap/tests/wss/T02.phpt

@@ -0,0 +1,36 @@
+--TEST--
+SOAP CLIENT WSS: Remove WSS headers echo
+--EXTENSIONS--
+soap
+--INI--
+soap.wsdl_cache_enabled=0
+--FILE--
+<?php
+include __DIR__.DIRECTORY_SEPARATOR."wss-test.inc";
+
+$client = new LocalSoapClient(__DIR__.DIRECTORY_SEPARATOR."wss-test.wsdl");
+
+$client->__setWSS(array(
+	"x509_binsectoken"  => "TEST CERTIFICATE",
+	"signfunc"          => function($data) {
+		return "TEST SIGNATURE";
+	}
+));
+
+$client->__setWSS();
+
+$client->testFunction(array(
+	"Param1" => "foo",
+	"Param2" => "bar"
+));
+?>
+--EXPECTF--
+<?xml version="1.0" encoding="UTF-8"?>
+<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="http://localhost/">
+%w<SOAP-ENV:Body>
+%w<ns1:testFunctionIn>
+%w<ns1:Param1>foo</ns1:Param1>
+%w<ns1:Param2>bar</ns1:Param2>
+%w</ns1:testFunctionIn>
+%w</SOAP-ENV:Body>
+</SOAP-ENV:Envelope>

ext/soap/tests/wss/T03.phpt

@@ -0,0 +1,27 @@
+--TEST--
+SOAP CLIENT WSS: No WSS headers echo
+--EXTENSIONS--
+soap
+--INI--
+soap.wsdl_cache_enabled=0
+--FILE--
+<?php
+include __DIR__.DIRECTORY_SEPARATOR."wss-test.inc";
+
+$client = new LocalSoapClient(__DIR__.DIRECTORY_SEPARATOR."wss-test.wsdl");
+
+$client->testFunction(array(
+	"Param1" => "foo",
+	"Param2" => "bar"
+));
+?>
+--EXPECTF--
+<?xml version="1.0" encoding="UTF-8"?>
+<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="http://localhost/">
+%w<SOAP-ENV:Body>
+%w<ns1:testFunctionIn>
+%w<ns1:Param1>foo</ns1:Param1>
+%w<ns1:Param2>bar</ns1:Param2>
+%w</ns1:testFunctionIn>
+%w</SOAP-ENV:Body>
+</SOAP-ENV:Envelope>

ext/soap/tests/wss/T04.phpt

@@ -0,0 +1,73 @@
+--TEST--
+SOAP CLIENT WSS: WSS 1.1 SHA256 with timestamp and random id echo
+--EXTENSIONS--
+soap
+--INI--
+soap.wsdl_cache_enabled=0
+--FILE--
+<?php
+include __DIR__.DIRECTORY_SEPARATOR."wss-test.inc";
+
+$client = new LocalSoapClient(__DIR__.DIRECTORY_SEPARATOR."wss-test.wsdl");
+
+$client->__setWSS(array(
+	"add_timestamp"     => true,
+    "timestamp_expires" => 300,
+    "digest_method"     => SOAP_WSS_DIGEST_METHOD_SHA256,
+    "wss_version"       => SOAP_WSS_VERSION_1_1,
+	"x509_binsectoken"  => "TEST CERTIFICATE",
+	"signfunc"          => function($data) {
+		return "TEST SIGNATURE";
+	}
+));
+
+$client->testFunction(array(
+	"Param1" => "foo",
+	"Param2" => "bar"
+));
+?>
+--EXPECTF--
+<?xml version="1.0" encoding="UTF-8"?>
+<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="http://localhost/" xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd">
+%w<SOAP-ENV:Header>
+%w<wsse11:Security SOAP-ENV:mustUnderstand="1">
+%w<wsu:Timestamp wsu:Id="TimestampID-%i">
+%w<wsu:Created>%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c</wsu:Created>
+%w<wsu:Expires>%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c%c</wsu:Expires>
+%w</wsu:Timestamp>
+%w<wsse11:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="TokenID-%i">%s</wsse11:BinarySecurityToken>
+%w<ds:Signature>
+%w<ds:SignedInfo>
+%w<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+%w<ds:Reference URI="#TimestampID-%i">
+%w<ds:Transforms>
+%w<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w</ds:Transforms>
+%w<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+%w<ds:DigestValue>%s</ds:DigestValue>
+%w</ds:Reference>
+%w<ds:Reference URI="#BodyID-%i">
+%w<ds:Transforms>
+%w<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w</ds:Transforms>
+%w<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha256"/>
+%w<ds:DigestValue>%s</ds:DigestValue>
+%w</ds:Reference>
+%w</ds:SignedInfo>
+%w<ds:SignatureValue>%s</ds:SignatureValue>
+%w<ds:KeyInfo>
+%w<wsse11:SecurityTokenReference>
+%w<wsse11:Reference URI="#TokenID-%i" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
+%w</wsse11:SecurityTokenReference>
+%w</ds:KeyInfo>
+%w</ds:Signature>
+%w</wsse11:Security>
+%w</SOAP-ENV:Header>
+%w<SOAP-ENV:Body wsu:Id="BodyID-%i">
+%w<ns1:testFunctionIn>
+%w<ns1:Param1>foo</ns1:Param1>
+%w<ns1:Param2>bar</ns1:Param2>
+%w</ns1:testFunctionIn>
+%w</SOAP-ENV:Body>
+</SOAP-ENV:Envelope>

ext/soap/tests/wss/T05.phpt

@@ -0,0 +1,76 @@
+--TEST--
+SOAP CLIENT WSS: WSS 1.1 SHA512 with additional header echo
+--EXTENSIONS--
+soap
+--INI--
+soap.wsdl_cache_enabled=0
+--FILE--
+<?php
+include __DIR__.DIRECTORY_SEPARATOR."wss-test.inc";
+
+$client = new LocalSoapClient(__DIR__.DIRECTORY_SEPARATOR."wss-test.wsdl");
+
+$client->__setWSS(array(
+	"random_id"         => false,
+	"digest_method"     => SOAP_WSS_DIGEST_METHOD_SHA512,
+	"wss_version"       => SOAP_WSS_VERSION_1_1,
+	"x509_binsectoken"  => "TEST CERTIFICATE",
+	"signfunc"          => function($data) {
+		return "TEST SIGNATURE";
+	}
+));
+
+$client->__setSoapHeaders(array(
+	new SoapHeader(
+		'http://localhost/header/',
+		'TestHeader1',
+		'Hello'
+	),
+	new SoapHeader(
+		'http://localhost/header/',
+		'TestHeader2',
+		'World'
+	),
+));
+
+$client->testFunction(array(
+	"Param1" => "foo",
+	"Param2" => "bar"
+));
+?>
+--EXPECTF--
+<?xml version="1.0" encoding="UTF-8"?>
+<SOAP-ENV:Envelope xmlns:SOAP-ENV="http://schemas.xmlsoap.org/soap/envelope/" xmlns:ns1="http://localhost/" xmlns:wsse11="http://docs.oasis-open.org/wss/oasis-wss-wssecurity-secext-1.1.xsd" xmlns:ds="http://www.w3.org/2000/09/xmldsig#" xmlns:wsu="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-wssecurity-utility-1.0.xsd" xmlns:ns2="http://localhost/header/">
+%w<SOAP-ENV:Header>
+%w<wsse11:Security SOAP-ENV:mustUnderstand="1">
+%w<wsse11:BinarySecurityToken EncodingType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-soap-message-security-1.0#Base64Binary" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3" wsu:Id="TokenID-1">%s</wsse11:BinarySecurityToken>
+%w<ds:Signature>
+%w<ds:SignedInfo>
+%w<ds:CanonicalizationMethod Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w<ds:SignatureMethod Algorithm="http://www.w3.org/2000/09/xmldsig#rsa-sha1"/>
+%w<ds:Reference URI="#BodyID-1">
+%w<ds:Transforms>
+%w<ds:Transform Algorithm="http://www.w3.org/2001/10/xml-exc-c14n#"/>
+%w</ds:Transforms>
+%w<ds:DigestMethod Algorithm="http://www.w3.org/2001/04/xmlenc#sha512"/>
+%w<ds:DigestValue>%s</ds:DigestValue>
+%w</ds:Reference>
+%w</ds:SignedInfo>
+%w<ds:SignatureValue>%s</ds:SignatureValue>
+%w<ds:KeyInfo>
+%w<wsse11:SecurityTokenReference>
+%w<wsse11:Reference URI="#TokenID-1" ValueType="http://docs.oasis-open.org/wss/2004/01/oasis-200401-wss-x509-token-profile-1.0#X509v3"/>
+%w</wsse11:SecurityTokenReference>
+%w</ds:KeyInfo>
+%w</ds:Signature>
+%w</wsse11:Security>
+%w<ns2:TestHeader1>Hello</ns2:TestHeader1>
+%w<ns2:TestHeader2>World</ns2:TestHeader2>
+%w</SOAP-ENV:Header>
+%w<SOAP-ENV:Body wsu:Id="BodyID-1">
+%w<ns1:testFunctionIn>
+%w<ns1:Param1>foo</ns1:Param1>
+%w<ns1:Param2>bar</ns1:Param2>
+%w</ns1:testFunctionIn>
+%w</SOAP-ENV:Body>
+</SOAP-ENV:Envelope>

ext/soap/tests/wss/wss-test.inc

@@ -0,0 +1,10 @@
+<?php
+class LocalSoapClient extends SoapClient {
+	public function __doRequest(string $request, string $location, string $action, int $version, bool $oneWay = false): ?string {
+		$doc = new DOMDocument();
+		$doc->preserveWhiteSpace = false;
+		$doc->formatOutput = true;
+		$doc->loadXML($request);
+		die($doc->saveXML());
+	}
+}