PageRenderTime 37ms CodeModel.GetById 14ms RepoModel.GetById 0ms app.codeStats 0ms

/core/src/main/php/security/crypto/MD5CryptImpl.class.php

http://github.com/xp-framework/xp-framework
PHP | 109 lines | 49 code | 13 blank | 47 comment | 7 complexity | 1a5b0631cc6442ea5a0809d09ab5d1e1 MD5 | raw file
Possible License(s): BSD-3-Clause 
    

  1. <?php
    2. 

  2. /* This class is part of the XP framework
    3. 

  3.  *
    4. 

  4.  * $Id$ 
    5. 

  5.  */
    6. 

  6. 

  7.   uses('security.crypto.CryptImpl');
    8. 

  8. 

  9.   /**
    10. 

  10.    * MD5 Crypt implementation
    11. 

  11.    *
    12. 

  12.    * Based on the implementation found in FreeBSD 2.2.[56]-RELEASE, which
    13. 

  13.    * contains the following license:
    14. 

  14.    * <pre>
    15. 

  15.    *   "THE BEER-WARE LICENSE" (Revision 42):
    16. 

  16.    *   <phk@login.dknet.dk> wrote this file.  As long as you retain this notice you
    17. 

  17.    *   can do whatever you want with this stuff. If we meet some day, and you think
    18. 

  18.    *   this stuff is worth it, you can buy me a beer in return.   Poul-Henning Kamp
    19. 

  19.    * </pre>
    20. 

  20.    *
    21. 

  21.    * @see   php://md5
    22. 

  22.    * @see   php://pack
    23. 

  23.    * @see   xp://security.crypto.UnixCrypt
    24. 

  24.    * @see   https://bugs.php.net/bug.php?id=55439
    25. 

  25.    */
    26. 

  26.   class MD5CryptImpl extends security·crypto·CryptImpl {
    27. 

  27.     const MAGIC = '$1$';
    28. 

  28.     
    29. 

  29.     /**
    30. 

  30.      * Converts an integer to a base64 string
    31. 

  31.      *
    32. 

  32.      * @param   int value
    33. 

  33.      * @param   int length
    34. 

  34.      * @return  string
    35. 

  35.      */
    36. 

  36.     protected function to64($value, $length) {
    37. 

  37.       static $itoa= './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';
    38. 

  38. 

  39.       $r= '';
    40. 

  40.       while ($length--) {
    41. 

  41.         $r.= $itoa{$value & 0x3F};
    42. 

  42.         $value >>= 6;
    43. 

  43.       }
    44. 

  44.       return $r;
    45. 

  45.     }
    46. 

  46.     
    47. 

  47.     /**
    48. 

  48.      * Crypt a given plain-text string
    49. 

  49.      *
    50. 

  50.      * @param   string plain
    51. 

  51.      * @param   string salt salt, optionally including magic '$1$'
    52. 

  52.      * @return  string
    53. 

  53.      */
    54. 

  54.     public function crypt($plain, $salt) {
    55. 

  55.     
    56. 

  56.       // Take care of situation when magic is present in string
    57. 

  57.       if (0 === strpos($salt, self::MAGIC)) {
    58. 

  58.         $salt= substr($salt, strlen(self::MAGIC));
    59. 

  59.       }
    60. 

  60.       
    61. 

  61.       // Salt can have up to 8 characters, and goes max. until '$'
    62. 

  62.       $salt= substr($salt, 0, min(8, strpos($salt.'$', '$')));
    63. 

  63.       
    64. 

  64.       // Initial
    65. 

  65.       $ctx= $plain.self::MAGIC.$salt;
    66. 

  66.       $final= pack('H*', md5($plain.$salt.$plain));
    67. 

  67.       $l= strlen($plain);
    68. 

  68.       
    69. 

  69.       // Initial transformation
    70. 

  70.       for ($i= $l; $i > 0; $i-= 16) {
    71. 

  71.         $ctx.= substr($final, 0, $i > 16 ? 16 : $i);
    72. 

  72.       }
    73. 

  73.       
    74. 

  74.       // Memset
    75. 

  75.       for ($i= $l; $i; $i >>= 1) {
    76. 

  76.         $ctx.= $i & 1 ? "\0" : $plain{0};
    77. 

  77.       }
    78. 

  78.       
    79. 

  79.       // Slow down
    80. 

  80.       for ($final= pack('H*', md5($ctx)), $i= 0; $i < 1000; $i++) {
    81. 

  81.         $ctx1= $i & 1 ? $plain : substr($final, 0, 16);
    82. 

  82.         $i % 3 && $ctx1.= $salt;
    83. 

  83.         $i % 7 && $ctx1.= $plain;
    84. 

  84.         $ctx1.= $i & 1 ? substr($final, 0, 16) : $plain;
    85. 

  85.         $final= pack('H*', md5($ctx1));
    86. 

  86.       }
    87. 

  87.       
    88. 

  88.       // Final transformation
    89. 

  89.       return (
    90. 

  90.         self::MAGIC.$salt.'$'.
    91. 

  91.         $this->to64((ord($final{0}) << 16) | (ord($final{6}) << 8) | ord($final{12}), 4).
    92. 

  92.         $this->to64((ord($final{1}) << 16) | (ord($final{7}) << 8) | ord($final{13}), 4).
    93. 

  93.         $this->to64((ord($final{2}) << 16) | (ord($final{8}) << 8) | ord($final{14}), 4).
    94. 

  94.         $this->to64((ord($final{3}) << 16) | (ord($final{9}) << 8) | ord($final{15}), 4).
    95. 

  95.         $this->to64((ord($final{4}) << 16) | (ord($final{10}) << 8) | ord($final{5}), 4).
    96. 

  96.         $this->to64(ord($final{11}), 2)
    97. 

  97.       );
    98. 

  98.     }
    99. 

  99. 

  100.     /**
    101. 

  101.      * Creates a string representation of this crypt implementation
    102. 

  102.      *
    103. 

  103.      * @return  string
    104. 

  104.      */
    105. 

  105.     public function toString() {
    106. 

  106.       return $this->getClassName();
    107. 

  107.     }
    108. 

  108.   }
    109. 

  109. ?>
    110. 

  110.