Rev 63 | Rev 65 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
Rev 63 | Rev 64 | ||
---|---|---|---|
Line 59... | Line 59... | ||
59 | 59 | ||
60 | require_once __DIR__ . '/misc_functions.inc.php'; |
60 | require_once __DIR__ . '/misc_functions.inc.php'; |
61 | 61 | ||
62 | define('OID_MCF_VTS_V1', '1.3.6.1.4.1.37476.3.0.1.1'); // { iso(1) identified-organization(3) dod(6) internet(1) private(4) enterprise(1) 37476 specifications(3) misc(0) modular-crypt-format(1) vts-crypt-v1(1) } |
62 | define('OID_MCF_VTS_V1', '1.3.6.1.4.1.37476.3.0.1.1'); // { iso(1) identified-organization(3) dod(6) internet(1) private(4) enterprise(1) 37476 specifications(3) misc(0) modular-crypt-format(1) vts-crypt-v1(1) } |
63 | 63 | ||
- | 64 | // Valid algorithms for vts_password_hash(): |
|
64 | define('PASSWORD_STD_DES', 'std_des'); |
65 | define('PASSWORD_STD_DES', 'std_des'); // Algorithm from crypt() |
65 | define('PASSWORD_EXT_DES', 'ext_des'); |
66 | define('PASSWORD_EXT_DES', 'ext_des'); // Algorithm from crypt() |
66 | define('PASSWORD_MD5', 'md5'); |
67 | define('PASSWORD_MD5', 'md5'); // Algorithm from crypt() |
67 | define('PASSWORD_BLOWFISH', 'blowfish'); |
68 | define('PASSWORD_BLOWFISH', 'blowfish'); // Algorithm from crypt() |
68 | define('PASSWORD_SHA256', 'sha256'); |
69 | define('PASSWORD_SHA256', 'sha256'); // Algorithm from crypt() |
69 | define('PASSWORD_SHA512', 'sha512'); |
70 | define('PASSWORD_SHA512', 'sha512'); // Algorithm from crypt() |
70 | define('PASSWORD_VTS_MCF1', OID_MCF_VTS_V1); |
71 | define('PASSWORD_VTS_MCF1', OID_MCF_VTS_V1); // Algorithm from ViaThinkSoft |
71 | - | ||
72 | define('BASE64_RFC4648_ALPHABET', '0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz+/'); |
72 | // Other valid values (already defined in PHP): |
73 | define('BASE64_CRYPT_ALPHABET', './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'); |
73 | // - PASSWORD_DEFAULT |
- | 74 | // - PASSWORD_BCRYPT |
|
- | 75 | // - PASSWORD_ARGON2I |
|
- | 76 | // - PASSWORD_ARGON2ID |
|
74 | 77 | ||
75 | // --- Part 1: Modular Crypt Format encode/decode |
78 | // --- Part 1: Modular Crypt Format encode/decode |
76 | 79 | ||
77 | function crypt_modular_format($id, $bin_salt, $bin_hash, $params=null) { |
80 | function crypt_modular_format_encode($id, $bin_salt, $bin_hash, $params=null) { |
78 | // $<id>[$<param>=<value>(,<param>=<value>)*][$<salt>[$<hash>]] |
81 | // $<id>[$<param>=<value>(,<param>=<value>)*][$<salt>[$<hash>]] |
79 | $out = '$'.$id; |
82 | $out = '$'.$id; |
80 | if (!is_null($params)) { |
83 | if (!is_null($params)) { |
81 | $ary_params = array(); |
84 | $ary_params = array(); |
82 | //ksort($params); |
- | |
83 | foreach ($params as $name => $value) { |
85 | foreach ($params as $name => $value) { |
84 | $ary_params[] = "$name=$value"; |
86 | $ary_params[] = "$name=$value"; |
85 | } |
87 | } |
86 | $out .= '$'.implode(',',$ary_params); |
88 | $out .= '$'.implode(',',$ary_params); |
87 | } |
89 | } |
Line 126... | Line 128... | ||
126 | return array('id' => $id, 'salt' => $bin_salt, 'hash' => $bin_hash, 'params' => $params); |
128 | return array('id' => $id, 'salt' => $bin_salt, 'hash' => $bin_hash, 'params' => $params); |
127 | } |
129 | } |
128 | 130 | ||
129 | // --- Part 2: ViaThinkSoft Modular Crypt Format 1.0 |
131 | // --- Part 2: ViaThinkSoft Modular Crypt Format 1.0 |
130 | 132 | ||
- | 133 | function vts_crypt_version($hash) { |
|
- | 134 | if (str_starts_with($hash, '$'.OID_MCF_VTS_V1.'$')) { |
|
- | 135 | return '1'; |
|
- | 136 | } else { |
|
- | 137 | return '0'; |
|
- | 138 | } |
|
- | 139 | } |
|
- | 140 | ||
131 | function vts_crypt($algo, $str_password, $str_salt, $ver='1', $mode='ps') { |
141 | function vts_crypt_hash($algo, $str_password, $str_salt, $ver='1', $mode='ps') { |
132 | if ($ver == '1') { |
142 | if ($ver == '1') { |
133 | if ($mode == 'sp') { |
143 | if ($mode == 'sp') { |
134 | $payload = $str_salt.$str_password; |
144 | $payload = $str_salt.$str_password; |
135 | if (($algo === 'sha3-512') && !in_array($algo, hash_algos()) && function_exists('sha3_512')) { |
145 | if (($algo === 'sha3-512') && !in_array($algo, hash_algos()) && function_exists('sha3_512')) { |
136 | $bin_hash = sha3_512($payload, true); |
146 | $bin_hash = sha3_512($payload, true); |
Line 160... | Line 170... | ||
160 | } |
170 | } |
161 | } else { |
171 | } else { |
162 | throw new Exception("Invalid VTS crypt version 1 mode. Expect sp, ps, sps, or hmac."); |
172 | throw new Exception("Invalid VTS crypt version 1 mode. Expect sp, ps, sps, or hmac."); |
163 | } |
173 | } |
164 | $bin_salt = $str_salt; |
174 | $bin_salt = $str_salt; |
165 | return crypt_modular_format(OID_MCF_VTS_V1, $bin_salt, $bin_hash, array('a'=>$algo,'m'=>$mode)); |
175 | return crypt_modular_format_encode(OID_MCF_VTS_V1, $bin_salt, $bin_hash, array('a'=>$algo,'m'=>$mode)); |
166 | } else { |
176 | } else { |
167 | throw new Exception("Invalid VTS crypt version, expect 1."); |
177 | throw new Exception("Invalid VTS crypt version, expect 1."); |
168 | } |
178 | } |
169 | } |
179 | } |
170 | 180 | ||
171 | // --- Part 3: vts_password_hash() and vts_password_verify() |
- | |
172 | - | ||
173 | /** This function extends password_verify() by adding ViaThinkSoft Modular Crypt Format 1.0. |
- | |
174 | * @param string $password to be checked |
- | |
175 | * @param string $hash Hash created by crypt(), password_hash(), or vts_password_hash(). |
- | |
176 | * @return bool true if password is valid |
181 | function vts_crypt_verify($password, $hash): bool { |
177 | */ |
- | |
178 | function vts_password_verify($password, $hash): bool { |
182 | $ver = vts_crypt_version($hash); |
179 | if (str_starts_with($hash, '$'.PASSWORD_VTS_MCF1.'$')) { |
183 | if ($ver == '1') { |
180 | - | ||
181 | // Decode the MCF hash parameters |
184 | // Decode the MCF hash parameters |
182 | $data = crypt_modular_format_decode($hash); |
185 | $data = crypt_modular_format_decode($hash); |
183 | if ($data === false) throw new Exception('Invalid auth key'); |
186 | if ($data === false) throw new Exception('Invalid auth key'); |
184 | $id = $data['id']; |
187 | $id = $data['id']; |
185 | $bin_salt = $data['salt']; |
188 | $bin_salt = $data['salt']; |
186 | $bin_hash = $data['hash']; |
189 | $bin_hash = $data['hash']; |
187 | $params = $data['params']; |
190 | $params = $data['params']; |
188 | $algo = $params['a']; |
191 | $algo = $params['a']; |
189 | $mode = $params['m']; |
192 | $mode = $params['m']; |
190 | $ver = '1'; |
- | |
191 | 193 | ||
192 | // Create a VTS MCF 1.0 hash based on the parameters of $hash and the password $password |
194 | // Create a VTS MCF 1.0 hash based on the parameters of $hash and the password $password |
193 | $calc_authkey_1 = vts_crypt($algo, $password, $bin_salt, $ver, $mode); |
195 | $calc_authkey_1 = vts_crypt_hash($algo, $password, $bin_salt, $ver, $mode); |
194 | 196 | ||
195 | // We rewrite the MCF to make sure that they match (if params) have the wrong order |
197 | // We rewrite the MCF to make sure that they match (if params have the wrong order) |
196 | $calc_authkey_2 = crypt_modular_format($id, $bin_salt, $bin_hash, $params); |
198 | $calc_authkey_2 = crypt_modular_format_encode($id, $bin_salt, $bin_hash, $params); |
197 | 199 | ||
198 | return hash_equals($calc_authkey_1, $calc_authkey_2); |
200 | return hash_equals($calc_authkey_1, $calc_authkey_2); |
- | 201 | } else { |
|
- | 202 | throw new Exception("Invalid VTS crypt version, expect 1."); |
|
- | 203 | } |
|
- | 204 | } |
|
199 | 205 | ||
- | 206 | // --- Part 3: vts_password_hash() and vts_password_verify() |
|
- | 207 | ||
- | 208 | /** This function extends password_verify() by adding ViaThinkSoft Modular Crypt Format 1.0. |
|
- | 209 | * @param string $password to be checked |
|
- | 210 | * @param string $hash Hash created by crypt(), password_hash(), or vts_password_hash(). |
|
- | 211 | * @return bool true if password is valid |
|
- | 212 | */ |
|
- | 213 | function vts_password_verify($password, $hash): bool { |
|
- | 214 | if (vts_crypt_version($hash) != '0') { |
|
- | 215 | // Hash created by vts_password_hash(), or vts_crypt_hash() |
|
- | 216 | return vts_crypt_verify($password, $hash); |
|
200 | } else { |
217 | } else { |
201 | // password_hash() and crypt() hashes |
218 | // Hash created by vts_password_hash(), password_hash(), or crypt() |
202 | return password_verify($password, $hash); |
219 | return password_verify($password, $hash); |
203 | } |
220 | } |
204 | } |
221 | } |
205 | 222 | ||
206 | /** This function extends password_hash() with the algorithms supported by crypt(). |
223 | /** This function extends password_hash() with the algorithms supported by crypt(). |
207 | * It also adds ViaThinkSoft Modular Crypt Format 1.0. |
224 | * It also adds vts_crypt_hash() which implements the ViaThinkSoft Modular Crypt Format 1.0. |
208 | * The result can be verified using vts_password_verify(). |
225 | * The result can be verified using vts_password_verify(). |
209 | * @param string $password to be hashed |
226 | * @param string $password to be hashed |
210 | * @param mixed $algo algorithm |
227 | * @param mixed $algo algorithm |
211 | * @param array $options options for the hashing algorithm |
228 | * @param array $options options for the hashing algorithm |
212 | * @return string Crypt compatible password hash |
229 | * @return string Crypt style password hash |
213 | */ |
230 | */ |
214 | function vts_password_hash($password, $algo, $options=array()): string { |
231 | function vts_password_hash($password, $algo, $options=array()): string { |
215 | $crypt_salt = null; |
232 | $crypt_salt = null; |
216 | if (($algo === PASSWORD_STD_DES) && defined('CRYPT_STD_DES')) { |
233 | if (($algo === PASSWORD_STD_DES) && defined('CRYPT_STD_DES')) { |
217 | // Standard DES-based hash with a two character salt from the alphabet "./0-9A-Za-z". Using invalid characters in the salt will cause crypt() to fail. |
234 | // Standard DES-based hash with a two character salt from the alphabet "./0-9A-Za-z". Using invalid characters in the salt will cause crypt() to fail. |
Line 239... | Line 256... | ||
239 | $rounds = isset($options['rounds']) ? $options['rounds'] : 5000; |
256 | $rounds = isset($options['rounds']) ? $options['rounds'] : 5000; |
240 | $crypt_salt = $algo.'rounds='.$rounds.'$'.des_compat_salt(16).'$'; |
257 | $crypt_salt = $algo.'rounds='.$rounds.'$'.des_compat_salt(16).'$'; |
241 | } |
258 | } |
242 | 259 | ||
243 | if (!is_null($crypt_salt)) { |
260 | if (!is_null($crypt_salt)) { |
- | 261 | // Algorithms: PASSWORD_STD_DES |
|
- | 262 | // PASSWORD_EXT_DES |
|
- | 263 | // PASSWORD_MD5 |
|
- | 264 | // PASSWORD_BLOWFISH |
|
- | 265 | // PASSWORD_SHA256 |
|
- | 266 | // PASSWORD_SHA512 |
|
244 | $out = crypt($password, $crypt_salt); |
267 | $out = crypt($password, $crypt_salt); |
245 | if (strlen($out) < 13) throw new Exception("crypt() failed"); |
268 | if (strlen($out) < 13) throw new Exception("crypt() failed"); |
246 | return $out; |
269 | return $out; |
247 | } else if ($algo === PASSWORD_VTS_MCF1) { |
270 | } else if ($algo === PASSWORD_VTS_MCF1) { |
- | 271 | // Algorithms: PASSWORD_VTS_MCF1 |
|
248 | $ver = '1'; |
272 | $ver = '1'; |
249 | $algo = isset($options['algo']) ? $options['algo'] : 'sha3-512'; |
273 | $algo = isset($options['algo']) ? $options['algo'] : 'sha3-512'; |
250 | $mode = isset($options['mode']) ? $options['mode'] : 'ps'; |
274 | $mode = isset($options['mode']) ? $options['mode'] : 'ps'; |
251 | $salt_len = isset($options['salt_length']) ? $options['salt_length'] : 50; |
275 | $salt_len = isset($options['salt_length']) ? $options['salt_length'] : 50; |
252 | $salt = random_bytes_ex($salt_len, true, true); |
276 | $salt = random_bytes_ex($salt_len, true, true); |
253 | return vts_crypt($algo, $password, $salt, $ver, $mode); |
277 | return vts_crypt_hash($algo, $password, $salt, $ver, $mode); |
254 | } else { |
278 | } else { |
255 | // $algo === PASSWORD_DEFAULT |
279 | // Algorithms: PASSWORD_DEFAULT |
256 | // $algo === PASSWORD_BCRYPT |
280 | // PASSWORD_BCRYPT |
257 | // $algo === PASSWORD_ARGON2I |
281 | // PASSWORD_ARGON2I |
258 | // $algo === PASSWORD_ARGON2ID |
282 | // PASSWORD_ARGON2ID |
259 | return password_hash($password, $algo, $options); |
283 | return password_hash($password, $algo, $options); |
260 | } |
284 | } |
261 | } |
285 | } |
262 | 286 | ||
263 | // --- Part 4: Useful functions required by the above functions |
287 | // --- Part 4: Useful functions required by the crypt-functions |
- | 288 | ||
- | 289 | define('BASE64_RFC4648_ALPHABET', '0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz+/'); |
|
- | 290 | define('BASE64_CRYPT_ALPHABET', './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'); |
|
264 | 291 | ||
265 | function des_compat_salt($salt_len) { |
292 | function des_compat_salt($salt_len) { |
266 | if ($salt_len <= 0) return ''; |
293 | if ($salt_len <= 0) return ''; |
267 | $characters = './0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'; |
294 | $characters = BASE64_CRYPT_ALPHABET; |
268 | $salt = ''; |
295 | $salt = ''; |
269 | $bytes = random_bytes_ex($salt_len, true, true); |
296 | $bytes = random_bytes_ex($salt_len, true, true); |
270 | for ($i=0; $i<$salt_len; $i++) { |
297 | for ($i=0; $i<$salt_len; $i++) { |
271 | $salt .= $characters[ord($bytes[$i]) % strlen($characters)]; |
298 | $salt .= $characters[ord($bytes[$i]) % strlen($characters)]; |
272 | } |
299 | } |
273 | return $salt; |
300 | return $salt; |
274 | } |
301 | } |
275 | 302 | ||
276 | function base64_int_encode($num) { |
303 | function base64_int_encode($num) { |
277 | // https://stackoverflow.com/questions/15534982/which-iteration-rules-apply-on-crypt-using-crypt-ext-des |
304 | // https://stackoverflow.com/questions/15534982/which-iteration-rules-apply-on-crypt-using-crypt-ext-des |
278 | $alphabet_raw='./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz'; |
305 | $alphabet_raw = BASE64_CRYPT_ALPHABET; |
279 | $alphabet=str_split($alphabet_raw); |
306 | $alphabet = str_split($alphabet_raw); |
280 | $arr=array(); |
307 | $arr = array(); |
281 | $base=sizeof($alphabet); |
308 | $base = sizeof($alphabet); |
282 | while($num) { |
309 | while ($num) { |
283 | $rem=$num % $base; |
310 | $rem = $num % $base; |
Line 289... | Line 316... | ||
289 | } |
316 | } |
290 | 317 | ||
291 | function crypt_radix64_encode($str) { |
318 | function crypt_radix64_encode($str) { |
292 | $x = $str; |
319 | $x = $str; |
293 | $x = base64_encode($x); |
320 | $x = base64_encode($x); |
294 | $x = rtrim($x, '='); |
321 | $x = rtrim($x, '='); // remove padding |
295 | $x = strtr($x, BASE64_RFC4648_ALPHABET, BASE64_CRYPT_ALPHABET); |
322 | $x = strtr($x, BASE64_RFC4648_ALPHABET, BASE64_CRYPT_ALPHABET); |
296 | return $x; |
323 | return $x; |
297 | } |
324 | } |
298 | 325 | ||
299 | function crypt_radix64_decode($str) { |
326 | function crypt_radix64_decode($str) { |
Line 304... | Line 331... | ||
304 | } |
331 | } |
305 | 332 | ||
306 | // --- Part 5: Selftest |
333 | // --- Part 5: Selftest |
307 | 334 | ||
308 | /* |
335 | /* |
- | 336 | $rnd = random_bytes_ex(50, true, true); |
|
309 | assert(crypt_radix64_decode(crypt_radix64_encode('test123')) === 'test123'); |
337 | assert(crypt_radix64_decode(crypt_radix64_encode($rnd)) === $rnd); |
310 | 338 | ||
- | 339 | $password = random_bytes_ex(20, false, true); |
|
311 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_STD_DES))); |
340 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_STD_DES))); |
312 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_EXT_DES))); |
341 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_EXT_DES))); |
313 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_MD5))); |
342 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_MD5))); |
314 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_BLOWFISH))); |
343 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_BLOWFISH))); |
315 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_SHA256))); |
344 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_SHA256))); |
316 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_SHA512))); |
345 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_SHA512))); |
317 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_VTS_MCF1))); |
346 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_VTS_MCF1))); |
318 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_DEFAULT))); |
347 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_DEFAULT))); |
319 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_BCRYPT))); |
348 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_BCRYPT))); |
- | 349 | if (defined('PASSWORD_ARGON2I')) |
|
320 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_ARGON2I))); |
350 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_ARGON2I))); |
- | 351 | if (defined('PASSWORD_ARGON2ID')) |
|
321 | assert(vts_password_Verify('test123',vts_password_hash('test123', PASSWORD_ARGON2ID))); |
352 | assert(vts_password_verify($password,vts_password_hash($password, PASSWORD_ARGON2ID))); |
- | 353 | echo "OK, Password $password\n"; |
|
322 | */ |
354 | */ |
323 | - |