<?php
/**
 * PrivateBin
 *
 * a zero-knowledge paste bin
 *
 * @link      https://github.com/PrivateBin/PrivateBin
 * @copyright 2012 Sébastien SAUVAGE (sebsauvage.net)
 * @license   https://www.opensource.org/licenses/zlib-license.php The zlib/libpng License
 * @version   1.2.1
 */

namespace PrivateBin;

/**
 * FormatV2
 *
 * Provides validation function for version 2 format of pastes & comments.
 */
class FormatV2
{
    /**
     * version 2 format validator
     *
     * Checks if the given array is a proper version 2 formatted, encrypted message.
     *
     * @access public
     * @static
     * @param  array $message
     * @param  bool  $isComment
     * @return bool
     */
    public static function isValid($message, $isComment = false)
    {
        $required_keys = array('adata', 'meta', 'v', 'ct');
        if ($isComment) {
            $required_keys[] = 'pasteid';
            $required_keys[] = 'parentid';
        }

        // Make sure no additionnal keys were added.
        if (count(array_keys($message)) != count($required_keys)) {
            return false;
        }

        // Make sure required fields are present.
        foreach ($required_keys as $k) {
            if (!array_key_exists($k, $message)) {
                return false;
            }
        }

        // Make sure some fields are base64 data:
        // - initialization vector
        if (!base64_decode($message['adata'][0][0], true)) {
            return false;
        }
        // - salt
        if (!base64_decode($message['adata'][0][1], true)) {
            return false;
        }
        // - cipher text
        if (!($ct = base64_decode($message['ct'], true))) {
            return false;
        }

        // Make sure some fields have a reasonable size:
        // - initialization vector
        if (strlen($message['adata'][0][0]) > 24) {
            return false;
        }
        // - salt
        if (strlen($message['adata'][0][1]) > 14) {
            return false;
        }

        // Make sure some fields contain no unsupported values:
        // - version
        if (!(is_int($message['v']) || is_float($message['v'])) || (float) $message['v'] < 2) {
            return false;
        }
        // - iterations, refuse less then 10000 iterations (minimum NIST recommendation)
        if (!is_int($message['adata'][0][2]) || $message['adata'][0][2] <= 10000) {
            return false;
        }
        // - key size
        if (!in_array($message['adata'][0][3], array(128, 192, 256), true)) {
            return false;
        }
        // - tag size
        if (!in_array($message['adata'][0][4], array(64, 96, 128), true)) {
            return false;
        }
        // - algorithm, must be AES
        if ($message['adata'][0][5] !== 'aes') {
            return false;
        }
        // - mode
        if (!in_array($message['adata'][0][6], array('ctr', 'cbc', 'gcm'), true)) {
            return false;
        }
        // - compression
        if (!in_array($message['adata'][0][7], array('zlib', 'none'), true)) {
            return false;
        }

        // Reject data if entropy is too low
        if (strlen($ct) > strlen(gzdeflate($ct))) {
            return false;
        }

        return true;
    }
}