PageRenderTime 49ms CodeModel.GetById 23ms RepoModel.GetById 1ms app.codeStats 0ms

/core/src/main/php/security/crypto/UnixCrypt.class.php

http://github.com/xp-framework/xp-framework
PHP | 246 lines | 129 code | 16 blank | 101 comment | 25 complexity | 52db4c7bd107c268a5cb7eb90c0cdd6a MD5 | raw file
Possible License(s): BSD-3-Clause 
    

  1. <?php
    2. 

  2. /* This class is part of the XP framework
    3. 

  3.  *
    4. 

  4.  * $Id$ 
    5. 

  5.  */
    6. 

  6. 

  7.   uses(
    8. 

  8.     'security.crypto.CryptoException',
    9. 

  9.     'security.crypto.NativeCryptImpl',
    10. 

  10.     'security.crypto.CryptNotImplemented'
    11. 

  11.   );
    12. 

  12. 

  13.   /**
    14. 

  14.    * Unix crypt algorithm implementation. Note:  There is no decrypt 
    15. 

  15.    * function, since crypt() uses a one-way algorithm.
    16. 

  16.    *
    17. 

  17.    * Usage: Generating a crypted password
    18. 

  18.    * <code>
    19. 

  19.    *   // Use system default, generate a salt
    20. 

  20.    *   $default= UnixCrypt::crypt('plain');
    21. 

  21.    *
    22. 

  22.    *   // Use traditional
    23. 

  23.    *   $traditional= UnixCrypt::crypt('plain', 'ab');
    24. 

  24.    *
    25. 

  25.    *   // Use MD5 encryption with 12 character salt
    26. 

  26.    *   $md5= UnixCrypt::crypt('plain', '$1$0123456789AB');
    27. 

  27.    *
    28. 

  28.    *   // Use blowfish encryption with 16 character salt
    29. 

  29.    *   $blowfish= UnixCrypt::crypt('plain', '$2$0123456789ABCDEF');
    30. 

  30.    *
    31. 

  31.    *   // Use extended DES-based encryption with a nine character salt
    32. 

  32.    *   $extdes= UnixCrypt::crypt('plain', '_012345678');
    33. 

  33.    * </code>
    34. 

  34.    *
    35. 

  35.    * Usage: Verifying an entered password
    36. 

  36.    * <code>
    37. 

  37.    *   $verified= UnixCrypt::matches($crypted, $entered);
    38. 

  38.    * </code>
    39. 

  39.    *
    40. 

  40.    * @test     xp://net.xp_framework.unittest.security.UnixCryptTest
    41. 

  41.    * @see      php://crypt
    42. 

  42.    * @purpose  One-way string encryption (hashing)
    43. 

  43.    */
    44. 

  44.   class UnixCrypt extends Object {
    45. 

  45.     public static $DEFAULT;
    46. 

  46.     public static $STANDARD;
    47. 

  47.     public static $EXTENDED;
    48. 

  48.     public static $BLOWFISH;
    49. 

  49.     public static $MD5;
    50. 

  50. 

  51.     static function __static() {
    52. 

  52.       $builtin= version_compare(PHP_VERSION, '5.3.0', 'ge');
    53. 

  53. 

  54.       if (!CRYPT_STD_DES) {
    55. 

  55.         self::$STANDARD= new CryptNotImplemented('STD_DES');
    56. 

  56.       } else {
    57. 

  57.         self::$STANDARD= new NativeCryptImpl();
    58. 

  58.         
    59. 

  59.         // Before 5.3.2, PHP's crypt() function returned incorrect values 
    60. 

  60.         // when given salt characters outside of the alphabet "./0-9A-Za-z".
    61. 

  61.         // No real workaround, so throw an exception - this is inconsistent
    62. 

  62.         // with XP on newer PHP versions which yields the correct results.
    63. 

  63.         // On systems >= 5.3.2, check for usage of libc crypt() which also  
    64. 

  64.         // allows salts which are too short and unsafe characters \n and : 
    65. 

  65.         if (version_compare(PHP_VERSION, '5.3.2', 'lt')) {
    66. 

  66.           self::$STANDARD= newinstance('security.crypto.NativeCryptImpl', array(), '{
    67. 

  67.             public function crypt($plain, $salt) {
    68. 

  68.               if (!preg_match("#^[./0-9A-Za-z]{2}#", $salt)) {
    69. 

  69.                 throw new CryptoException("Malformed salt");
    70. 

  70.               }
    71. 

  71.               return parent::crypt($plain, $salt);
    72. 

  72.             }
    73. 

  73. 

  74.             public function toString() {
    75. 

  75.               return "security.crypto.NativeCryptImpl+std:salt-alphabet-constraint";
    76. 

  76.             }
    77. 

  77.           }');
    78. 

  78.         } else if (':' === substr(crypt('', ':'), 0, 1)) {
    79. 

  79.           self::$STANDARD= newinstance('security.crypto.NativeCryptImpl', array(), '{
    80. 

  80.             public function crypt($plain, $salt) {
    81. 

  81.               if (strlen($salt) < 1 || strcspn($salt, "\n:") < 2) {
    82. 

  82.                 throw new CryptoException("Malformed salt");
    83. 

  83.               }
    84. 

  84.               return parent::crypt($plain, $salt);
    85. 

  85.             }
    86. 

  86. 

  87.             public function toString() {
    88. 

  88.               return "security.crypto.NativeCryptImpl+std:salt-unsafe-check";
    89. 

  89.             }
    90. 

  90.           }');
    91. 

  91.         }
    92. 

  92.       }
    93. 

  93. 

  94.       if (!CRYPT_BLOWFISH) {
    95. 

  95.         self::$BLOWFISH= new CryptNotImplemented('BLOWFISH');
    96. 

  96.       } else {
    97. 

  97.         self::$BLOWFISH= new NativeCryptImpl();
    98. 

  98.         
    99. 

  99.         // The blowfish method has a bug between PHP 5.3.0 and 5.3.2 which
    100. 

  100.         // returns a bogus result instead of failing when the cost parameter
    101. 

  101.         // is incorrect. For *any* builtin implementation, recognition is 
    102. 

  102.         // broken as the "__" in "$2a$__$" for example makes PHP not jump 
    103. 

  103.         // into the blowfish branch but fall back to the else branch, and thus 
    104. 

  104.         // to standard DES. See line 247 and following in ext/standard/crypt.c
    105. 

  105.         if ($builtin) {
    106. 

  106.           self::$BLOWFISH= newinstance('security.crypto.NativeCryptImpl', array(), '{
    107. 

  107.             public function crypt($plain, $salt) {
    108. 

  108.               if (1 !== sscanf($salt, "$2a$%02d$", $cost)) {
    109. 

  109.                 throw new CryptoException("Malformed cost parameter");
    110. 

  110.               }
    111. 

  111.               if ($cost < 4 || $cost > 31) {
    112. 

  112.                 throw new CryptoException("Cost parameter must be between 04 and 31");
    113. 

  113.               }
    114. 

  114.               return parent::crypt($plain, $salt);
    115. 

  115.             }
    116. 

  116. 

  117.             public function toString() {
    118. 

  118.               return "security.crypto.NativeCryptImpl+blowfish:cost-param-check";
    119. 

  119.             }
    120. 

  120.           }');
    121. 

  121.         }
    122. 

  122.       }
    123. 

  123.       
    124. 

  124.       if (!CRYPT_EXT_DES) {
    125. 

  125.         self::$EXTENDED= new CryptNotImplemented('EXT_DES');
    126. 

  126.       } else {
    127. 

  127. 

  128.         // PHP's crypt() function crashes if the salt is too short due to PHP 
    129. 

  129.         // using its own DES implementations as 5.3 - these don't check the 
    130. 

  130.         // return value correctly. See Bug #51059, which was fixed in PHP 5.3.2
    131. 

  131.         // Debian only recognizes EXT_DES if the salt is 9 characters long, see
    132. 

  132.         // notes in PHP Bug #51254. As there is no reliable way to detect whether
    133. 

  133.         // the patch (referenced in this bug) is applied, always use the check
    134. 

  134.         // and strip off rest of crypted when matching. 
    135. 

  135.         self::$EXTENDED= newinstance('security.crypto.NativeCryptImpl', array(), '{
    136. 

  136.           public function crypt($plain, $salt) {
    137. 

  137.             if (strlen($salt) < 9) {
    138. 

  138.               throw new CryptoException("Extended DES: Salt too short");
    139. 

  139.             }
    140. 

  140.             return parent::crypt($plain, $salt); 
    141. 

  141.           }
    142. 

  142. 

  143.           public function matches($encrypted, $entered) {
    144. 

  144.             return ($encrypted === $this->crypt($entered, substr($encrypted, 0, 9))); 
    145. 

  145.           }
    146. 

  146. 

  147.           public function toString() {
    148. 

  148.             return "security.crypto.NativeCryptImpl+ext:recognition-fix";
    149. 

  149.           }
    150. 

  150.         }');
    151. 

  151.       }
    152. 

  152. 

  153.       if (!CRYPT_MD5) {
    154. 

  154.         self::$MD5= XPClass::forName('security.crypto.MD5CryptImpl')->newInstance();
    155. 

  155.       } else {
    156. 

  156.         self::$MD5= new NativeCryptImpl();
    157. 

  157.         
    158. 

  158.         // In PHP version between 5.3.0 and 5.3.5, this fails for situations when
    159. 

  159.         // the salt is too short, too long or does not end with "$". 5.3.6 only
    160. 

  160.         // breaks when the salt is too short. 5.3.7 is the first version to get it
    161. 

  161.         // right, except: In PHP Bug #55439, crypt() returns just the salt for MD5
    162. 

  162.         // on Un*x systems. This bug first occurred in PHP 5.3.7 RC6 and was shipped 
    163. 

  163.         // with PHP 5.3.7, and fixed in the release thereafter.
    164. 

  164.         if ($builtin && version_compare(PHP_VERSION, '5.3.7', 'lt')) {
    165. 

  165.           self::$MD5= XPClass::forName('security.crypto.MD5CryptImpl')->newInstance();
    166. 

  166.         } else if (0 === strpos(PHP_VERSION, '5.3.7')) {
    167. 

  167.           if ('$1$' === crypt('', '$1$')) {
    168. 

  168.             self::$MD5= XPClass::forName('security.crypto.MD5CryptImpl')->newInstance();
    169. 

  169.           }
    170. 

  170.         }
    171. 

  171.       }
    172. 

  172.       
    173. 

  173.       self::$DEFAULT= self::$MD5;
    174. 

  174.     }
    175. 

  175.   
    176. 

  176.     /**
    177. 

  177.      * Encrypt a string
    178. 

  178.      *
    179. 

  179.      * The salt may be in one of three forms (from man 3 crypt):
    180. 

  180.      *
    181. 

  181.      * <pre>
    182. 

  182.      * Extended
    183. 

  183.      * --------
    184. 

  184.      * If it begins with an underscore (``_'') then the DES Extended 
    185. 

  185.      * Format is used in interpreting both the key and the salt, as 
    186. 

  186.      * outlined below.
    187. 

  187.      *
    188. 

  188.      * Modular 
    189. 

  189.      * -------     
    190. 

  190.      * If it begins with the string ``$digit$'' then the Modular Crypt 
    191. 

  191.      * Format is used, as outlined below.
    192. 

  192.      *
    193. 

  193.      * Traditional
    194. 

  194.      * -----------
    195. 

  195.      * If neither of the above is true, it assumes the Traditional 
    196. 

  196.      * Format, using the entire string as the salt (or the first portion).
    197. 

  197.      * </pre>
    198. 

  198.      *
    199. 

  199.      * If ommitted, the salt is generated and the system default is used.
    200. 

  200.      *
    201. 

  201.      * @param   string original
    202. 

  202.      * @param   string salt default NULL
    203. 

  203.      * @return  string crypted
    204. 

  204.      */
    205. 

  205.     public static function crypt($original, $salt= NULL) {
    206. 

  206.       if (NULL === $salt) {
    207. 

  207.         $impl= self::$DEFAULT;
    208. 

  208.       } else if ('_' === $salt{0}) {
    209. 

  209.         $impl= self::$EXTENDED;
    210. 

  210.       } else if (0 === strpos($salt, '$1$')) {
    211. 

  211.         $impl= self::$MD5;
    212. 

  212.       } else if (0 === strpos($salt, '$2a$')) {
    213. 

  213.         $impl= self::$BLOWFISH;
    214. 

  214.       } else {
    215. 

  215.         $impl= self::$STANDARD;
    216. 

  216.       }
    217. 

  217. 

  218.       return $impl->crypt($original, $salt);
    219. 

  219.     }
    220. 

  220.     
    221. 

  221.     /**
    222. 

  222.      * Check if an entered string matches the crypt
    223. 

  223.      *
    224. 

  224.      * @param   string encrypted
    225. 

  225.      * @param   string entered
    226. 

  226.      * @return  bool
    227. 

  227.      */
    228. 

  228.     public static function matches($encrypted, $entered) {
    229. 

  229.       return ($encrypted === self::crypt($entered, $encrypted));
    230. 

  230.     }
    231. 

  231. 

  232.     /**
    233. 

  233.      * Returns crypt implementations
    234. 

  234.      *
    235. 

  235.      * @return  [:security.crypto.CryptImpl]
    236. 

  236.      */
    237. 

  237.     public static function implementations() {
    238. 

  238.       return array(
    239. 

  239.         'std_des'  => self::$STANDARD, 
    240. 

  240.         'ext_des'  => self::$EXTENDED, 
    241. 

  241.         'blowfish' => self::$BLOWFISH, 
    242. 

  242.         'md5'      => self::$MD5
    243. 

  243.       );
    244. 

  244.     }
    245. 

  245.   }
    246. 

  246. ?>
    247. 

  247.