2015-08-18 00:00:26 +00:00
|
|
|
<?php
|
|
|
|
|
|
|
|
|
|
namespace Drupal\Component\Utility;
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Utility class for cryptographically-secure string handling routines.
|
|
|
|
|
*
|
|
|
|
|
* @ingroup utility
|
|
|
|
|
*/
|
|
|
|
|
class Crypt {
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Returns a string of highly randomized bytes (over the full 8-bit range).
|
|
|
|
|
*
|
|
|
|
|
* This function is better than simply calling mt_rand() or any other built-in
|
|
|
|
|
* PHP function because it can return a long string of bytes (compared to < 4
|
|
|
|
|
* bytes normally from mt_rand()) and uses the best available pseudo-random
|
|
|
|
|
* source.
|
|
|
|
|
*
|
2016-04-20 16:56:34 +00:00
|
|
|
* In PHP 7 and up, this uses the built-in PHP function random_bytes().
|
|
|
|
|
* In older PHP versions, this uses the random_bytes() function provided by
|
|
|
|
|
* the random_compat library.
|
|
|
|
|
*
|
2015-08-18 00:00:26 +00:00
|
|
|
* @param int $count
|
|
|
|
|
* The number of characters (bytes) to return in the string.
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
* A randomly generated string.
|
|
|
|
|
*/
|
|
|
|
|
public static function randomBytes($count) {
|
2016-04-20 16:56:34 +00:00
|
|
|
return random_bytes($count);
|
2015-08-18 00:00:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Calculates a base-64 encoded, URL-safe sha-256 hmac.
|
|
|
|
|
*
|
|
|
|
|
* @param mixed $data
|
|
|
|
|
* Scalar value to be validated with the hmac.
|
|
|
|
|
* @param mixed $key
|
|
|
|
|
* A secret key, this can be any scalar value.
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
* A base-64 encoded sha-256 hmac, with + replaced with -, / with _ and
|
|
|
|
|
* any = padding characters removed.
|
|
|
|
|
*/
|
|
|
|
|
public static function hmacBase64($data, $key) {
|
|
|
|
|
// $data and $key being strings here is necessary to avoid empty string
|
|
|
|
|
// results of the hash function if they are not scalar values. As this
|
|
|
|
|
// function is used in security-critical contexts like token validation it
|
|
|
|
|
// is important that it never returns an empty string.
|
|
|
|
|
if (!is_scalar($data) || !is_scalar($key)) {
|
|
|
|
|
throw new \InvalidArgumentException('Both parameters passed to \Drupal\Component\Utility\Crypt::hmacBase64 must be scalar values.');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$hmac = base64_encode(hash_hmac('sha256', $data, $key, TRUE));
|
|
|
|
|
// Modify the hmac so it's safe to use in URLs.
|
2015-08-27 19:03:05 +00:00
|
|
|
return str_replace(['+', '/', '='], ['-', '_', ''], $hmac);
|
2015-08-18 00:00:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
* Calculates a base-64 encoded, URL-safe sha-256 hash.
|
|
|
|
|
*
|
|
|
|
|
* @param string $data
|
|
|
|
|
* String to be hashed.
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
* A base-64 encoded sha-256 hash, with + replaced with -, / with _ and
|
|
|
|
|
* any = padding characters removed.
|
|
|
|
|
*/
|
|
|
|
|
public static function hashBase64($data) {
|
|
|
|
|
$hash = base64_encode(hash('sha256', $data, TRUE));
|
|
|
|
|
// Modify the hash so it's safe to use in URLs.
|
2015-08-27 19:03:05 +00:00
|
|
|
return str_replace(['+', '/', '='], ['-', '_', ''], $hash);
|
2015-08-18 00:00:26 +00:00
|
|
|
}
|
|
|
|
|
|
2015-11-04 19:11:27 +00:00
|
|
|
/**
|
|
|
|
|
* Compares strings in constant time.
|
|
|
|
|
*
|
|
|
|
|
* @param string $known_string
|
|
|
|
|
* The expected string.
|
|
|
|
|
* @param string $user_string
|
|
|
|
|
* The user supplied string to check.
|
|
|
|
|
*
|
|
|
|
|
* @return bool
|
|
|
|
|
* Returns TRUE when the two strings are equal, FALSE otherwise.
|
|
|
|
|
*/
|
|
|
|
|
public static function hashEquals($known_string, $user_string) {
|
|
|
|
|
if (function_exists('hash_equals')) {
|
|
|
|
|
return hash_equals($known_string, $user_string);
|
|
|
|
|
}
|
|
|
|
|
else {
|
|
|
|
|
// Backport of hash_equals() function from PHP 5.6
|
|
|
|
|
// @see https://github.com/php/php-src/blob/PHP-5.6/ext/hash/hash.c#L739
|
|
|
|
|
if (!is_string($known_string)) {
|
|
|
|
|
trigger_error(sprintf("Expected known_string to be a string, %s given", gettype($known_string)), E_USER_WARNING);
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!is_string($user_string)) {
|
|
|
|
|
trigger_error(sprintf("Expected user_string to be a string, %s given", gettype($user_string)), E_USER_WARNING);
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
$known_len = strlen($known_string);
|
|
|
|
|
if ($known_len !== strlen($user_string)) {
|
|
|
|
|
return FALSE;
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// This is security sensitive code. Do not optimize this for speed.
|
|
|
|
|
$result = 0;
|
|
|
|
|
for ($i = 0; $i < $known_len; $i++) {
|
|
|
|
|
$result |= (ord($known_string[$i]) ^ ord($user_string[$i]));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
return $result === 0;
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2015-08-18 00:00:26 +00:00
|
|
|
/**
|
|
|
|
|
* Returns a URL-safe, base64 encoded string of highly randomized bytes.
|
|
|
|
|
*
|
2016-04-20 16:56:34 +00:00
|
|
|
* @param $count
|
2015-08-18 00:00:26 +00:00
|
|
|
* The number of random bytes to fetch and base64 encode.
|
|
|
|
|
*
|
|
|
|
|
* @return string
|
|
|
|
|
* The base64 encoded result will have a length of up to 4 * $byte_count.
|
|
|
|
|
*
|
|
|
|
|
* @see \Drupal\Component\Utility\Crypt::randomBytes()
|
|
|
|
|
*/
|
|
|
|
|
public static function randomBytesBase64($count = 32) {
|
2015-08-27 19:03:05 +00:00
|
|
|
return str_replace(['+', '/', '='], ['-', '_', ''], base64_encode(static::randomBytes($count)));
|
2015-08-18 00:00:26 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
}
|
