Thijs/wiki.techinc.nl
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
wiki.techinc.nl/includes/utils/MWCryptRand.php

80 lines
2.9 KiB
PHP
Raw Normal View History

Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
<?php
/**
* A cryptographic random generator class used for generating secret keys
*
* This is based in part on Drupal code as well as what we used in our own code
* prior to introduction of this class.
*
Added missing GPLv2 headers in some places. Also made file/class documentation more consistent. Change-Id: Ibe7815124d6915792dcbb150d01df21d9b22b0b0
2012-05-21 19:56:04 +00:00
* This program is free software; you can redistribute it and/or modify
* it under the terms of the GNU General Public License as published by
* the Free Software Foundation; either version 2 of the License, or
* (at your option) any later version.
*
* This program is distributed in the hope that it will be useful,
* but WITHOUT ANY WARRANTY; without even the implied warranty of
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
* GNU General Public License for more details.
*
* You should have received a copy of the GNU General Public License along
* with this program; if not, write to the Free Software Foundation, Inc.,
* 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA.
* http://www.gnu.org/copyleft/gpl.html
*
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
* @author Daniel Friesen
* @file
*/
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
use MediaWiki\MediaWikiServices;
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
class MWCryptRand {
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
/**
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
* @return CryptRand
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
*/
protected static function singleton() {
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
return MediaWikiServices::getInstance()->getCryptRand();
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
}
/**
* Return a boolean indicating whether or not the source used for cryptographic
* random bytes generation in the previously run generate* call
* was cryptographically strong.
*
* @return bool Returns true if the source was strong, false if not.
*/
public static function wasStrong() {
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
return self::singleton()->wasStrong();
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
}
/**
* Generate a run of (ideally) cryptographically random data and return
* it in raw binary form.
* You can use MWCryptRand::wasStrong() if you wish to know if the source used
* was cryptographically strong.
*
Fixed some @params documentation (includes/utils) Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in captial. Change-Id: I9bd4ef370016cbbcce42d2612031a264eb3de61b
2014-07-21 18:58:14 +00:00
* @param int $bytes The number of bytes of random data to generate
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param bool $forceStrong Pass true if you want generate to prefer cryptographically
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
* strong sources of entropy even if reading from them may steal
* more entropy from the system than optimal.
Fixed some @params documentation (includes/utils) Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in captial. Change-Id: I9bd4ef370016cbbcce42d2612031a264eb3de61b
2014-07-21 18:58:14 +00:00
* @return string Raw binary random data
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
*/
* Removed the $method parameters from MWCryptRand. Apparently Dantman didn't know about our awesome debug traceback functions like wfGetAllCallers(). The weird optional-middle-parameter calling convention thankfully disappears as a consequence. * Reduced the amount of debug log noise slightly, removing a few redundant messages.
2012-03-21 10:27:34 +00:00
public static function generate( $bytes, $forceStrong = false ) {
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
return self::singleton()->generate( $bytes, $forceStrong );
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
}
/**
* Generate a run of (ideally) cryptographically random data and return
* it in hexadecimal string format.
* You can use MWCryptRand::wasStrong() if you wish to know if the source used
* was cryptographically strong.
*
Fixed some @params documentation (includes/utils) Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in captial. Change-Id: I9bd4ef370016cbbcce42d2612031a264eb3de61b
2014-07-21 18:58:14 +00:00
* @param int $chars The number of hex chars of random data to generate
Fixed @param tags to conform with Doxygen format. Doxygen expects parameter types to come before the parameter name in @param tags. Used a quick regex to switch everything around where possible. This only fixes cases where a primitve variable (or a primitive followed by other types) is the variable type. Other cases will need to be fixed manually. Change-Id: Ic59fd20856eb0489d70f3469a56ebce0efb3db13
2013-03-11 17:15:01 +00:00
* @param bool $forceStrong Pass true if you want generate to prefer cryptographically
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
* strong sources of entropy even if reading from them may steal
* more entropy from the system than optimal.
Fixed some @params documentation (includes/utils) Swapped some "$var type" to "type $var" or added missing types before the $var. Changed some other types to match the more common spelling. Makes beginning of some text in captial. Change-Id: I9bd4ef370016cbbcce42d2612031a264eb3de61b
2014-07-21 18:58:14 +00:00
* @return string Hexadecimal random data
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
*/
* Removed the $method parameters from MWCryptRand. Apparently Dantman didn't know about our awesome debug traceback functions like wfGetAllCallers(). The weird optional-middle-parameter calling convention thankfully disappears as a consequence. * Reduced the amount of debug log noise slightly, removing a few redundant messages.
2012-03-21 10:27:34 +00:00
public static function generateHex( $chars, $forceStrong = false ) {
Move most of MWCryptRand into libs Dependency-inject the MW-specific parts of MWCryptRand via MediaWikiServices into a generic CryptRand class that is in libs/. Note that this removes the wfGetAllCallers() debug logging from generate(). Change-Id: I9742735c266ee69fb247199d3c553cd2ad2a3987
2016-10-02 07:04:17 +00:00
return self::singleton()->generateHex( $chars, $forceStrong );
Commit the cryptrand project worked on in git: - MWCryptRand: A new api for generating cryptographic randomness for security tokens. Uses whatever cryptographic source is available and if not falls back to using random state and clock drift. - wfRandomString - A simple non-cryptographic pesudo-random string generation function to replace wfGenerateToken which was written pretending to be secure when it's really not. - Core updates to use MWCryptRand in various places: -- user_token generation (to do this we stop generating user_token implicitly and only generate it when needed to avoid depleting the system's entropy pool by reading random data we'll never use) -- email confirmation token generation -- password salt generation -- temporary password generation -- Generation of the automatic watchlist token -- login and create user tokens -- session ids when php's entropy sources are not set -- the installer when generating wgSecretKey and the upgrade key
2012-03-20 05:17:40 +00:00
}
}
Reference in a new issue Copy permalink