Главная Обзор Помощь
Регистрация Вход
benjamin.harris
/
crop-monitor
1
0
Ответвить 0
Файлы Задачи 0 Запросы на слияние 0 Вики
Ветка: master
Ветки Метки
crop-monitor
/
core
/
model
/
modx
/
hashing
/
modpbkdf2.class.php

modpbkdf2.class.php 2.6 KB
Постоянная ссылка История Исходник

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061 
  1. <?php
    2. 

  2. /*
    3. 

  3.  * This file is part of MODX Revolution.
    4. 

  4.  *
    5. 

  5.  * Copyright (c) MODX, LLC. All Rights Reserved.
    6. 

  6.  *
    7. 

  7.  * For complete copyright and license information, see the COPYRIGHT and LICENSE
    8. 

  8.  * files found in the top-level directory of this distribution.
    9. 

  9.  */
    10. 

  10. 

  11. /**
    12. 

  12.  * A PBKDF2 implementation of modHash.
    13. 

  13.  *
    14. 

  14.  * {@inheritdoc}
    15. 

  15.  *
    16. 

  16.  * @package modx
    17. 

  17.  * @subpackage hashing
    18. 

  18.  */
    19. 

  19. class modPBKDF2 extends modHash {
    20. 

  20.     /**
    21. 

  21.      * Generate a hash of a string using the RSA PBKDFA2 specification.
    22. 

  22.      *
    23. 

  23.      * The following options are available:
    24. 

  24.      *  - salt (required): a valid, non-empty string to salt the hashes
    25. 

  25.      *  - iterations: the number of iterations per block, default is 1000 (< 1000 not recommended)
    26. 

  26.      *  - derived_key_length: the size of the derived key to generate, default is 32
    27. 

  27.      *  - algorithm: the hash algorithm to use, default is sha256
    28. 

  28.      *  - raw_output: if true, returns binary output, otherwise derived key is base64_encode()'d; default is false
    29. 

  29.      *
    30. 

  30.      * @param string $string A string to generate a secure hash from.
    31. 

  31.      * @param array $options An array of options to be passed to the hash implementation.
    32. 

  32.      * @return mixed The hash result or false on failure.
    33. 

  33.      */
    34. 

  34.     public function hash($string, array $options = array()) {
    35. 

  35.         $derivedKey = false;
    36. 

  36.         $salt = $this->getOption('salt', $options, false);
    37. 

  37.         if (is_string($salt) && strlen($salt) > 0) {
    38. 

  38.             $iterations = (integer) $this->getOption('iterations', $options, 1000);
    39. 

  39.             $derivedKeyLength = (integer) $this->getOption('derived_key_length', $options, 32);
    40. 

  40.             $algorithm = $this->getOption('algorithm', $options, 'sha256');
    41. 

  41. 

  42.             $hashLength = strlen(hash($algorithm, null, true));
    43. 

  43.             $keyBlocks = ceil($derivedKeyLength / $hashLength);
    44. 

  44.             $derivedKey = '';
    45. 

  45.             for ($block = 1; $block <= $keyBlocks; $block++) {
    46. 

  46.                 $hashBlock = $hb = hash_hmac($algorithm, $salt . pack('N', $block), $string, true);
    47. 

  47.                 for ($blockIteration = 1; $blockIteration < $iterations; $blockIteration++) {
    48. 

  48.                     $hashBlock ^= ($hb = hash_hmac($algorithm, $hb, $string, true));
    49. 

  49.                 }
    50. 

  50.                 $derivedKey .= $hashBlock;
    51. 

  51.             }
    52. 

  52.             $derivedKey = substr($derivedKey, 0, $derivedKeyLength);
    53. 

  53.             if (!$this->getOption('raw_output', $options, false)) {
    54. 

  54.                 $derivedKey = base64_encode($derivedKey);
    55. 

  55.             }
    56. 

  56.         } else {
    57. 

  57.             $this->host->modx->log(modX::LOG_LEVEL_ERROR, "PBKDF2 requires a valid salt string.", '', __METHOD__, __FILE__, __LINE__);
    58. 

  58.         }
    59. 

  59.         return $derivedKey;
    60. 

  60.     }
    61. 

  61. }
    62.