-
Unverified3fbd8475
<?php/* This code is part of FusionDirectory (http://www.fusiondirectory.org/) Copyright (C) 2003-2010 Cajus Pollmeier Copyright (C) 2011-2019 FusionDirectory This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301, USA.*//*! * \file class_passwordMethodCrypt.inc * Source code for class passwordMethodCrypt *//*! * \brief This class contains all the functions for crypt password methods * \see passwordMethod */class passwordMethodCrypt extends passwordMethod{ /*! * \brief passwordMethodCrypt Constructor */ function __construct () { } /*! * \brief Is available * * \return TRUE if is avaibable, otherwise return false */ public function is_available (): bool { return function_exists('crypt'); } /*! * \brief Generate template hash * * \param string $pwd Password * \param bool $locked Should the password be locked * * \return string the password hash */ public function generate_hash (string $pwd, bool $locked = FALSE): string { $salt = ''; if ($this->hash == "crypt/standard-des") { $salt = ""; for ($i = 0; $i < 2; $i++) { $salt .= get_random_char(); } } elseif ($this->hash == "crypt/enhanced-des") { $salt = "_";7172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140
for ($i = 0; $i < 8; $i++) {
$salt .= get_random_char();
}
} elseif ($this->hash == "crypt/md5") {
$salt = "\$1\$";
for ($i = 0; $i < 8; $i++) {
$salt .= get_random_char();
}
$salt .= "\$";
} elseif ($this->hash == "crypt/blowfish") {
$salt = "\$2a\$07\$";
for ($i = 0; $i < CRYPT_SALT_LENGTH; $i++) {
$salt .= get_random_char();
}
$salt .= "\$";
} elseif ($this->hash == "crypt/sha-256") {
$salt = "\$5\$";
for ($i = 0; $i < 16; $i++) {
$salt .= get_random_char();
}
$salt .= "\$";
} elseif ($this->hash == "crypt/sha-512") {
$salt = "\$6\$";
for ($i = 0; $i < 16; $i++) {
$salt .= get_random_char();
}
$salt .= "\$";
}
return '{CRYPT}'.($locked ? '!' : '').crypt($pwd, $salt);
}
function checkPassword ($pwd, $hash): bool
{
// Not implemented
return FALSE;
}
/*!
* \brief Get the hash name
*/
static function get_hash_name ()
{
$hashes = [];
if (CRYPT_STD_DES == 1) {
$hashes[] = "crypt/standard-des";
}
if (CRYPT_EXT_DES == 1) {
$hashes[] = "crypt/enhanced-des";
}
if (CRYPT_MD5 == 1) {
$hashes[] = "crypt/md5";
}
if (CRYPT_BLOWFISH == 1) {
$hashes[] = "crypt/blowfish";
}
if (CRYPT_SHA256 == 1) {
$hashes[] = "crypt/sha-256";
}
if (CRYPT_SHA512 == 1) {
$hashes[] = "crypt/sha-512";
}
return $hashes;
}
141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184
/*!
* \brief Extract a method
*
* \param string $classname The password method class name
*
* \param string $password_hash
*/
static function _extract_method ($password_hash): string
{
if (!preg_match('/^{crypt}/i', $password_hash)) {
return "";
}
$password_hash = preg_replace('/^{[^}]+}!?/', '', $password_hash);
if (preg_match("/^[a-zA-Z0-9.\/][a-zA-Z0-9.\/]/", $password_hash)) {
return "crypt/standard-des";
}
if (preg_match("/^_[a-zA-Z0-9.\/]/", $password_hash)) {
return "crypt/enhanced-des";
}
if (preg_match('/^\$1\$/', $password_hash)) {
return "crypt/md5";
}
if (preg_match('/^(\$2\$|\$2a\$)/', $password_hash)) {
return "crypt/blowfish";
}
if (preg_match('/^\$5\$/', $password_hash)) {
return "crypt/sha-256";
}
if (preg_match('/^\$6\$/', $password_hash)) {
return "crypt/sha-512";
}
return "";
}
}