summaryrefslogblamecommitdiffstats
path: root/inc/crypto.inc.php
blob: d26a94abb0791a677a6b3a112c50b31f8aae36f8 (plain) (tree) 
a362ac12 ^










65a88e9c ^

a362ac12 ^

29183706 ^

65a88e9c ^

a362ac12 ^

65a88e9c ^



a362ac12 ^




65a88e9c ^

a362ac12 ^


65a88e9c ^

a362ac12 ^






1
2
3
4
5
6
7
8
9
10

11

12

13

14

15

16
17
18

19
20
21
22

23

24
25

26

27
28
29
30
31
32










                                                   
                                                              
         
                                                    
                                                                      
                                                        


                                                                                         



                             
                                                                    

                                                 
                                                                           





                                                         
<?php

class Crypto
{

	/**
	 * Hash given string using crypt's $6$,
	 * which translates to ~130 bit salt
	 * and 5000 rounds of hashing with SHA-512.
	 */
	public static function hash6(string $password): string
	{
		$salt = substr(str_replace('+', '.',
			base64_encode(Util::randomBytes(16))), 0, 16);
		$hash = crypt($password, '$6$' . $salt);
		if ($hash === null || strlen($hash) < 60) {
			ErrorHandler::traceError('Error hashing password using SHA-512');
		}
		return $hash;
	}

	/**
	 * Check if the given password matches the given crypt hash.
	 * Useful for checking a hashed password.
	 */
	public static function verify(string $password, string $hash): bool
	{
		return crypt($password, $hash) === $hash;
	}

}
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-11-21 18:36:25 +0100