]> git.mxchange.org Git - shipsimu.git/commitdiff
Support for cluster added to RNG, hashPassword() finished for better hashes
authorRoland Häder <roland@mxchange.org>
Sun, 8 Jun 2008 13:41:20 +0000 (13:41 +0000)
committerRoland Häder <roland@mxchange.org>
Sun, 8 Jun 2008 13:41:20 +0000 (13:41 +0000)
application/ship-simu/main/registration/class_ShipSimuRegistration.php
inc/classes/main/crypto/class_CryptoHelper.php
inc/classes/main/rng/class_RandomNumberGenerator.php
inc/config.php

index ff3a45a34a798b39f8d22e3bd582b671b43de3ed..a6639c5688f00013960e4a98054fc32b9c279b7c 100644 (file)
@@ -67,8 +67,12 @@ class ShipSimuRegistration extends BaseRegistration {
                // Check if the password is found in the request
                if ($this->getRequestInstance()->isRequestElementSet($requestKey)) {
                        // So encrypt the password and store it for later usage in
-                       // the request
-                       $this->hashedPassword = ObjectFactory::createObjectByConfiguredName('crypto_heler')->hashPassword($this->getRequestInstance()->getRequestElement($requestKey));
+                       // the request:
+                       // 1.: Get the plain password
+                       $plainPassword = $this->getRequestInstance()->getRequestElement($requestKey);
+                       // 2. Get a crypto helper and hash the password
+                       $this->hashedPassword = ObjectFactory::createObjectByConfiguredName('crypto_heler')->hashPassword($plainPassword);
+                       // 3. Store the hash back in the request
                        $this->getRequestInstance()->setRequestElement('pass_hash', $this->hashedPassword);
                }
        }
index 5652b89f07e3e48e240d369c3bb8aecba46b8b1a..d23645272f79cdb47b41cf32ea342fec6f15864e 100644 (file)
@@ -115,7 +115,41 @@ class CryptoHelper extends BaseFrameworkSystem {
                $length = $this->getConfigInstance()->readConfig('salt_length');
 
                // Keep only defined number of characters
-               $this->salt = substr($randomString, -$length, $length);
+               $this->salt = substr(sha1($randomString), -$length, $length);
+       }
+
+       /**
+        * Hashes a password with salt and returns the hash. If an old previous hash
+        * is supplied the method will use the first X chars of that hash for hashing
+        * the password. This is useful if you want to check if the password is
+        * identical for authorization purposes.
+        *
+        * @param       $plainPassword  The plain password to use
+        * @param       $oldHash                A previously hashed password
+        * @return      $hashed                 The hashed and salted password
+        */
+       public function hashPassword ($plainPassword, $oldHash = "") {
+               // Is the old password set?
+               if (empty($oldHash)) {
+                       // No, then use the current salt
+                       $salt = $this->salt;
+               } else {
+                       // Use the salt from hash, first get length
+                       $length = $this->getConfigInstance()->readConfig('salt_length');
+
+                       // Then extract the X first characters from the hash as our salt
+                       $salt = substr($oldHash, 0, $length);
+               }
+
+               // Hash the password with salt
+               $hashed = $salt . md5(sprintf($this->getConfigInstance()->readConfig('hash_mask'),
+                       $salt,
+                       $this->rngInstance->getExtraSalt(),
+                       $plainPassword
+               ));
+
+               // And return it
+               return $hashed;
        }
 }
 
index a8063c6fc234e22b00a037a2daf1e8aae9a8e9ff..dded7e0b40613c6ec7851484bbb4aa2869d65fa4 100644 (file)
@@ -85,6 +85,9 @@ class RandomNumberGenerator extends BaseFrameworkSystem {
         * @return      void
         */
        protected function initRng () {
+               // Seed mt_rand()
+               mt_srand((double) microtime() * 1000000);
+
                // Get the prime number from config
                $this->prime = $this->getConfigInstance()->readConfig('math_prime');
 
@@ -92,9 +95,17 @@ class RandomNumberGenerator extends BaseFrameworkSystem {
                // a better prime number
                $this->extraNumber = ($this->prime * $this->prime / (pi() ^ 2));
 
+               // Set the server IP to cluster
+               $serverIp = "cluster";
+               // Do we have a single server?
+               if ($this->getConfigInstance()->readConfig('is_single_server') == "Y") {
+                       // Then use that IP for extra security
+                       $serverIp = getenv('SERVER_ADDR');
+               }
+
                // One-way data we need for "extra-salting" the random number
                // @TODO Add site for stronger salt!
-               $this->extraSalt = sha1(getenv('SERVER_ADDR') . ":" . getenv('SERVER_SOFTWARE') . ":" . $this->getConfigInstance()->readConfig('date_key') . ":" . serialize($this->getDatabaseInstance()->getConnectionData()));
+               $this->extraSalt = sha1($serverIp . ":" . getenv('SERVER_SOFTWARE') . ":" . $this->getConfigInstance()->readConfig('date_key') . ":" . serialize($this->getDatabaseInstance()->getConnectionData()));
 
                // Get config entry for max salt length
                $this->rndStrLen = $this->getConfigInstance()->readConfig('rnd_str_length');
@@ -134,6 +145,15 @@ class RandomNumberGenerator extends BaseFrameworkSystem {
                // @TODO I had a better random number generator here
                return mt_rand($min, $max);
        }
+
+       /**
+        * Getter for extra salt
+        *
+        * @return      $extraSalt
+        */
+       public final function getExtraSalt () {
+               return $this->extraSalt;
+       }
 }
 
 // [EOF]
index eabfde19f25f473b4d7edba0365e933d35bf89c8..4abf5abb02a027efe5fd79b9db06f6faeb56271a 100644 (file)
@@ -195,5 +195,11 @@ $cfg->setConfigEntry('salt_length', 10);
 // CFG: RND-STR-LENGTH
 $cfg->setConfigEntry('rnd_str_length', 128);
 
+// CFG: HASH-MASK
+$cfg->setConfigEntry('hash_mask', "%1s:%2s:%3s"); // 1=salt, 2=extra salt, 3=plain password
+
+// CFG: IS-SINGLE-SERVER
+$cfg->setConfigEntry('is_single_server', "Y");
+
 // [EOF]
 ?>