summaryrefslogblamecommitdiffstats
path: root/inc/crypto.inc.php
blob: 56f5073cee79d57603e23a61072f2d98d7f3013e (plain) (tree) 
a362ac12 ^












639715ce ^

a362ac12 ^
















1
2
3
4
5
6
7
8
9
10
11
12

13

14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29












                                                   
                                                                                                                                    















                                                                                                 
<?php

class Crypto
{

	/**
	 * Hash given string using crypt's $6$,
	 * which translates to ~130 bit salt
	 * and 5000 rounds of hashing with SHA-512.
	 */
	public static function hash6($password)
	{
		$salt = substr(str_replace('+', '.', base64_encode(pack('N4', mt_rand(), mt_rand(), mt_rand(), mt_rand()))), 0, 16);
		$hash = crypt($password, '$6$' . $salt);
		if (strlen($hash) < 60) Util::traceError('Error hashing password using SHA-512');
		return $hash;
	}

	/**
	 * Check if the given password matches the given cryp hash.
	 * Useful for checking a hashed password.
	 */
	public static function verify($password, $hash)
	{
		return crypt($password, $hash) === $hash;
	}

}
generated by cgit v1.2.3-55-g7522 (git 2.39.0) at 2024-04-24 12:07:36 +0200