Code Coverage for /Users/ericduran/Sites/drupal/drupal/core/lib/Drupal/Core/Password/PhpassHashedPassword.php

	Code Coverage
	Classes and Traits			Functions and Methods				Lines
Total	0.00% covered (danger)	0.00%	0 / 1	44.44% covered (danger)	44.44%	4 / 9	CRAP	53.73% covered (warning)	53.73%	36 / 67
PhpassHashedPassword	0.00% covered (danger)	0.00%	0 / 1	44.44% covered (danger)	44.44%	4 / 9	119.15	53.73% covered (warning)	53.73%	36 / 67
__construct				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 2
base64Encode				0.00% covered (danger)	0.00%	0 / 1	42	0.00% covered (danger)	0.00%	0 / 17
generateSalt				0.00% covered (danger)	0.00%	0 / 1	2	0.00% covered (danger)	0.00%	0 / 4
enforceLog2Boundaries				100.00% covered (success)	100.00%	1 / 1	3	100.00% covered (success)	100.00%	5 / 5
crypt				0.00% covered (danger)	0.00%	0 / 1	8.25	84.21% covered (warning)	84.21%	16 / 19
getCountLog2				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
hash				100.00% covered (success)	100.00%	1 / 1	1	100.00% covered (success)	100.00%	1 / 1
check				0.00% covered (danger)	0.00%	0 / 1	7.64	64.29% covered (warning)	64.29%	9 / 14
needsRehash				100.00% covered (success)	100.00%	1 / 1	3	100.00% covered (success)	100.00%	4 / 4

1	<?php
2
3	/**
4	* @file
5	* Contains \Drupal\Core\Password\PhpassHashedPassword.
6	*/
7
8	namespace Drupal\Core\Password;
9
10	use Drupal\Component\Utility\Crypt;
11
12	/**
13	* Secure password hashing functions based on the Portable PHP password
14	* hashing framework.
15	*
16	* @see http://www.openwall.com/phpass/
17	*/
18	class PhpassHashedPassword implements PasswordInterface {
19	/**
20	* The minimum allowed log2 number of iterations for password stretching.
21	*/
22	const MIN_HASH_COUNT = 7;
23
24	/**
25	* The maximum allowed log2 number of iterations for password stretching.
26	*/
27	const MAX_HASH_COUNT = 30;
28
29	/**
30	* The expected (and maximum) number of characters in a hashed password.
31	*/
32	const HASH_LENGTH = 55;
33
34	/**
35	* Returns a string for mapping an int to the corresponding base 64 character.
36	*/
37	static $ITOA64 = './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz';
38
39	/**
40	* Specifies the number of times the hashing function will be applied when
41	* generating new password hashes. The number of times is calculated by
42	* raising 2 to the power of the given value.
43	*/
44	protected $countLog2;
45
46	/**
47	* Constructs a new password hashing instance.
48	*
49	* @param int $countLog2
50	* Password stretching iteration count. Specifies the number of times the
51	* hashing function will be applied when generating new password hashes.
52	* The number of times is calculated by raising 2 to the power of the given
53	* value.
54	*/
55	function __construct($countLog2) {
56	// Ensure that $countLog2 is within set bounds.
57	$this->countLog2 = $this->enforceLog2Boundaries($countLog2);
58	}
59
60	/**
61	* Encodes bytes into printable base 64 using the *nix standard from crypt().
62	*
63	* @param string $input
64	* The string containing bytes to encode.
65	* @param int $count
66	* The number of characters (bytes) to encode.
67	*
68	* @return string
69	* Encoded string.
70	*/
71	protected function base64Encode($input, $count) {
72	$output = '';
73	$i = 0;
74	do {
75	$value = ord($input[$i++]);
76	$output .= static::$ITOA64[$value & 0x3f];
77	if ($i < $count) {
78	$value \|= ord($input[$i]) << 8;
79	}
80	$output .= static::$ITOA64[($value >> 6) & 0x3f];
81	if ($i++ >= $count) {
82	break;
83	}
84	if ($i < $count) {
85	$value \|= ord($input[$i]) << 16;
86	}
87	$output .= static::$ITOA64[($value >> 12) & 0x3f];
88	if ($i++ >= $count) {
89	break;
90	}
91	$output .= static::$ITOA64[($value >> 18) & 0x3f];
92	} while ($i < $count);
93
94	return $output;
95	}
96
97	/**
98	* Generates a random base 64-encoded salt prefixed with hash settings.
99	*
100	* Proper use of salts may defeat a number of attacks, including:
101	* - The ability to try candidate passwords against multiple hashes at once.
102	* - The ability to use pre-hashed lists of candidate passwords.
103	* - The ability to determine whether two users have the same (or different)
104	* password without actually having to guess one of the passwords.
105	*
106	* @return string
107	* A 12 character string containing the iteration count and a random salt.
108	*/
109	protected function generateSalt() {
110	$output = '$S$';
111	// We encode the final log2 iteration count in base 64.
112	$output .= static::$ITOA64[$this->countLog2];
113	// 6 bytes is the standard salt for a portable phpass hash.
114	$output .= $this->base64Encode(Crypt::randomBytes(6), 6);
115	return $output;
116	}
117
118	/**
119	* Ensures that $count_log2 is within set bounds.
120	*
121	* @param int $count_log2
122	* Integer that determines the number of iterations used in the hashing
123	* process. A larger value is more secure, but takes more time to complete.
124	*
125	* @return int
126	* Integer within set bounds that is closest to $count_log2.
127	*/
128	protected function enforceLog2Boundaries($count_log2) {
129	if ($count_log2 < static::MIN_HASH_COUNT) {
130	return static::MIN_HASH_COUNT;
131	}
132	elseif ($count_log2 > static::MAX_HASH_COUNT) {
133	return static::MAX_HASH_COUNT;
134	}
135
136	return (int) $count_log2;
137	}
138
139	/**
140	* Hash a password using a secure stretched hash.
141	*
142	* By using a salt and repeated hashing the password is "stretched". Its
143	* security is increased because it becomes much more computationally costly
144	* for an attacker to try to break the hash by brute-force computation of the
145	* hashes of a large number of plain-text words or strings to find a match.
146	*
147	* @param string $algo
148	* The string name of a hashing algorithm usable by hash(), like 'sha256'.
149	* @param string $password
150	* Plain-text password up to 512 bytes (128 to 512 UTF-8 characters) to
151	* hash.
152	* @param string $setting
153	* An existing hash or the output of $this->generateSalt(). Must be at least
154	* 12 characters (the settings and salt).
155	*
156	* @return string
157	* A string containing the hashed password (and salt) or FALSE on failure.
158	* The return string will be truncated at HASH_LENGTH characters max.
159	*/
160	protected function crypt($algo, $password, $setting) {
161	// Prevent DoS attacks by refusing to hash large passwords.
162	if (strlen($password) > PasswordInterface::PASSWORD_MAX_LENGTH) {
163	return FALSE;
164	}
165
166	// The first 12 characters of an existing hash are its setting string.
167	$setting = substr($setting, 0, 12);
168
169	if ($setting[0] != '$' \|\| $setting[2] != '$') {
170	return FALSE;
171	}
172	$count_log2 = $this->getCountLog2($setting);
173	// Stored hashes may have been crypted with any iteration count. However we
174	// do not allow applying the algorithm for unreasonable low and high values
175	// respectively.
176	if ($count_log2 != $this->enforceLog2Boundaries($count_log2)) {
177	return FALSE;
178	}
179	$salt = substr($setting, 4, 8);
180	// Hashes must have an 8 character salt.
181	if (strlen($salt) != 8) {
182	return FALSE;
183	}
184
185	// Convert the base 2 logarithm into an integer.
186	$count = 1 << $count_log2;
187
188	// We rely on the hash() function being available in PHP 5.2+.
189	$hash = hash($algo, $salt . $password, TRUE);
190	do {
191	$hash = hash($algo, $hash . $password, TRUE);
192	} while (--$count);
193
194	$len = strlen($hash);
195	$output = $setting . $this->base64Encode($hash, $len);
196	// $this->base64Encode() of a 16 byte MD5 will always be 22 characters.
197	// $this->base64Encode() of a 64 byte sha512 will always be 86 characters.
198	$expected = 12 + ceil((8 * $len) / 6);
199	return (strlen($output) == $expected) ? substr($output, 0, static::HASH_LENGTH) : FALSE;
200	}
201
202	/**
203	* Parses the log2 iteration count from a stored hash or setting string.
204	*
205	* @param string $setting
206	* An existing hash or the output of $this->generateSalt(). Must be at least
207	* 12 characters (the settings and salt).
208	*
209	* @return int
210	* The log2 iteration count.
211	*/
212	public function getCountLog2($setting) {
213	return strpos(static::$ITOA64, $setting[3]);
214	}
215
216	/**
217	* {@inheritdoc}
218	*/
219	public function hash($password) {
220	return $this->crypt('sha512', $password, $this->generateSalt());
221	}
222
223	/**
224	* {@inheritdoc}
225	*/
226	public function check($password, $hash) {
227	if (substr($hash, 0, 2) == 'U$') {
228	// This may be an updated password from user_update_7000(). Such hashes
229	// have 'U' added as the first character and need an extra md5() (see the
230	// Drupal 7 documentation).
231	$stored_hash = substr($hash, 1);
232	$password = md5($password);
233	}
234	else {
235	$stored_hash = $hash;
236	}
237
238	$type = substr($stored_hash, 0, 3);
239	switch ($type) {
240	case '$S$':
241	// A normal Drupal 7 password using sha512.
242	$computed_hash = $this->crypt('sha512', $password, $stored_hash);
243	break;
244	case '$H$':
245	// phpBB3 uses "$H$" for the same thing as "$P$".
246	case '$P$':
247	// A phpass password generated using md5. This is an
248	// imported password or from an earlier Drupal version.
249	$computed_hash = $this->crypt('md5', $password, $stored_hash);
250	break;
251	default:
252	return FALSE;
253	}
254
255	// Compare using hashEquals() instead of === to mitigate timing attacks.
256	return $computed_hash && Crypt::hashEquals($stored_hash, $computed_hash);
257	}
258
259	/**
260	* {@inheritdoc}
261	*/
262	public function needsRehash($hash) {
263	// Check whether this was an updated password.
264	if ((substr($hash, 0, 3) != '$S$') \|\| (strlen($hash) != static::HASH_LENGTH)) {
265	return TRUE;
266	}
267	// Ensure that $count_log2 is within set bounds.
268	$count_log2 = $this->enforceLog2Boundaries($this->countLog2);
269	// Check whether the iteration count used differs from the standard number.
270	return ($this->getCountLog2($hash) !== $count_log2);
271	}
272
273	}