Rev 67 | Rev 69 | Go to most recent revision | Show entire file | Regard whitespace | Details | Blame | Last modification | View Log | RSS feed
Rev 67 | Rev 68 | ||
---|---|---|---|
Line 1313... | Line 1313... | ||
1313 | substr($hash, 20, 12); |
1313 | substr($hash, 20, 12); |
1314 | } |
1314 | } |
1315 | 1315 | ||
1316 | /** |
1316 | /** |
1317 | * Collection of Namebased UUIDv8 Hash Space IDs |
1317 | * Collection of Namebased UUIDv8 Hash Space IDs |
1318 | * @return array An array containing tuples of [PHP Algo Name, Hash Space UUID, Human friendly name, Hash Space Author, Available] |
1318 | * @return array An array containing tuples of [PHP Algo Name, Hash Space UUID, Human friendly name, Hash Space Author, Available, AlgorithmOID] |
1319 | */ |
1319 | */ |
1320 | function get_uuidv8_hash_space_ids(): array { |
1320 | function get_uuidv8_hash_space_ids(): array { |
1321 | $out = array(); |
1321 | $out = array(); |
1322 | 1322 | ||
1323 | // The following Hash Space UUIDs are defined in draft-ietf-uuidrev-rfc4122bis-11 as Example for Namebased UUIDv8 |
1323 | // The following Hash Space UUIDs are defined in draft-ietf-uuidrev-rfc4122bis-11 as Example for Namebased UUIDv8 |
1324 | $category = 'Internet Draft 11, Appendix B'; |
1324 | $category = 'Internet Draft 11, Appendix B'; |
1325 | $out[] = ['sha224', '59031ca3-fbdb-47fb-9f6c-0f30e2e83145', 'SHA-224', $category, PHP_VERSION_ID >= 70100]; |
1325 | $out[] = ['sha224', '59031ca3-fbdb-47fb-9f6c-0f30e2e83145', 'SHA-224', $category, PHP_VERSION_ID >= 70100, null]; |
1326 | $out[] = ['sha256', '3fb32780-953c-4464-9cfd-e85dbbe9843d', 'SHA-256', $category, PHP_VERSION_ID >= 70100]; |
1326 | $out[] = ['sha256', '3fb32780-953c-4464-9cfd-e85dbbe9843d', 'SHA-256', $category, PHP_VERSION_ID >= 70100, null]; |
1327 | $out[] = ['sha384', 'e6800581-f333-484b-8778-601ff2b58da8', 'SHA-384', $category, PHP_VERSION_ID >= 70100]; |
1327 | $out[] = ['sha384', 'e6800581-f333-484b-8778-601ff2b58da8', 'SHA-384', $category, PHP_VERSION_ID >= 70100, null]; |
1328 | $out[] = ['sha512', '0fde22f2-e7ba-4fd1-9753-9c2ea88fa3f9', 'SHA-512', $category, PHP_VERSION_ID >= 70100]; |
1328 | $out[] = ['sha512', '0fde22f2-e7ba-4fd1-9753-9c2ea88fa3f9', 'SHA-512', $category, PHP_VERSION_ID >= 70100, null]; |
1329 | $out[] = ['sha512/224', '003c2038-c4fe-4b95-a672-0c26c1b79542', 'SHA-512/224', $category, PHP_VERSION_ID >= 70100]; |
1329 | $out[] = ['sha512/224', '003c2038-c4fe-4b95-a672-0c26c1b79542', 'SHA-512/224', $category, PHP_VERSION_ID >= 70100, null]; |
1330 | $out[] = ['sha512/256', '9475ad00-3769-4c07-9642-5e7383732306', 'SHA-512/256', $category, PHP_VERSION_ID >= 70100]; |
1330 | $out[] = ['sha512/256', '9475ad00-3769-4c07-9642-5e7383732306', 'SHA-512/256', $category, PHP_VERSION_ID >= 70100, null]; |
1331 | $out[] = ['sha3-224', '9768761f-ac5a-419e-a180-7ca239e8025a', 'SHA3-224', $category, PHP_VERSION_ID >= 70100]; |
1331 | $out[] = ['sha3-224', '9768761f-ac5a-419e-a180-7ca239e8025a', 'SHA3-224', $category, PHP_VERSION_ID >= 70100, null]; |
1332 | $out[] = ['sha3-256', '2034d66b-4047-4553-8f80-70e593176877', 'SHA3-256', $category, PHP_VERSION_ID >= 70100]; |
1332 | $out[] = ['sha3-256', '2034d66b-4047-4553-8f80-70e593176877', 'SHA3-256', $category, PHP_VERSION_ID >= 70100, null]; |
1333 | $out[] = ['sha3-384', '872fb339-2636-4bdd-bda6-b6dc2a82b1b3', 'SHA3-384', $category, PHP_VERSION_ID >= 70100]; |
1333 | $out[] = ['sha3-384', '872fb339-2636-4bdd-bda6-b6dc2a82b1b3', 'SHA3-384', $category, PHP_VERSION_ID >= 70100, null]; |
1334 | $out[] = ['sha3-512', 'a4920a5d-a8a6-426c-8d14-a6cafbe64c7b', 'SHA3-512', $category, PHP_VERSION_ID >= 70100]; |
1334 | $out[] = ['sha3-512', 'a4920a5d-a8a6-426c-8d14-a6cafbe64c7b', 'SHA3-512', $category, PHP_VERSION_ID >= 70100, null]; |
1335 | $out[] = ['shake128'/*Currently no PHP core algorithm!*/, '7ea218f6-629a-425f-9f88-7439d63296bb', 'SHAKE128', $category, file_exists(__DIR__.'/SHA3.php')]; |
1335 | $out[] = ['shake128'/*Currently no PHP core algorithm!*/, '7ea218f6-629a-425f-9f88-7439d63296bb', 'SHAKE128', $category, file_exists(__DIR__.'/SHA3.php'), null]; |
1336 | $out[] = ['shake256'/*Currently no PHP core algorithm!*/, '2e7fc6a4-2919-4edc-b0ba-7d7062ce4f0a', 'SHAKE256', $category, file_exists(__DIR__.'/SHA3.php')]; |
1336 | $out[] = ['shake256'/*Currently no PHP core algorithm!*/, '2e7fc6a4-2919-4edc-b0ba-7d7062ce4f0a', 'SHAKE256', $category, file_exists(__DIR__.'/SHA3.php'), null]; |
1337 | 1337 | ||
1338 | // --- |
1338 | // --- |
1339 | 1339 | ||
1340 | // Proposal https://github.com/ietf-wg-uuidrev/rfc4122bis/issues/143#issuecomment-1709117798 , probably to be put into Draft 12 |
1340 | // Proposal https://github.com/ietf-wg-uuidrev/rfc4122bis/issues/143#issuecomment-1709117798 , probably to be put into Draft 12 |
1341 | $category = 'Internet Draft 12 Proposal'; |
1341 | $category = 'Internet Draft 12 Proposal'; |
1342 | $out[] = ['sha224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.4'), 'SHA-224', $category, PHP_VERSION_ID >= 70100]; |
1342 | $out[] = ['sha224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.4'), 'SHA-224', $category, PHP_VERSION_ID >= 70100, $oid]; |
1343 | $out[] = ['sha256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.1'), 'SHA-256', $category, PHP_VERSION_ID >= 70100]; |
1343 | $out[] = ['sha256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.1'), 'SHA-256', $category, PHP_VERSION_ID >= 70100, $oid]; |
1344 | $out[] = ['sha384', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.2'), 'SHA-384', $category, PHP_VERSION_ID >= 70100]; |
1344 | $out[] = ['sha384', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.2'), 'SHA-384', $category, PHP_VERSION_ID >= 70100, $oid]; |
1345 | $out[] = ['sha512', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.3'), 'SHA-512', $category, PHP_VERSION_ID >= 70100]; |
1345 | $out[] = ['sha512', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.3'), 'SHA-512', $category, PHP_VERSION_ID >= 70100, $oid]; |
1346 | $out[] = ['sha512/224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.5'), 'SHA-512/224', $category, PHP_VERSION_ID >= 70100]; |
1346 | $out[] = ['sha512/224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.5'), 'SHA-512/224', $category, PHP_VERSION_ID >= 70100, $oid]; |
1347 | $out[] = ['sha512/256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.6'), 'SHA-512/256', $category, PHP_VERSION_ID >= 70100]; |
1347 | $out[] = ['sha512/256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.6'), 'SHA-512/256', $category, PHP_VERSION_ID >= 70100, $oid]; |
1348 | $out[] = ['sha3-224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.7'), 'SHA3-224', $category, PHP_VERSION_ID >= 70100]; |
1348 | $out[] = ['sha3-224', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.7'), 'SHA3-224', $category, PHP_VERSION_ID >= 70100, $oid]; |
1349 | $out[] = ['sha3-256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.8'), 'SHA3-256', $category, PHP_VERSION_ID >= 70100]; |
1349 | $out[] = ['sha3-256', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.8'), 'SHA3-256', $category, PHP_VERSION_ID >= 70100, $oid]; |
1350 | $out[] = ['sha3-384', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.9'), 'SHA3-384', $category, PHP_VERSION_ID >= 70100]; |
1350 | $out[] = ['sha3-384', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.9'), 'SHA3-384', $category, PHP_VERSION_ID >= 70100, $oid]; |
1351 | $out[] = ['sha3-512', gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.10'), 'SHA3-512', $category, PHP_VERSION_ID >= 70100]; |
1351 | $out[] = ['sha3-512', gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.10'), 'SHA3-512', $category, PHP_VERSION_ID >= 70100, $oid]; |
1352 | $out[] = ['shake128'/*Currently no PHP core algorithm!*/, gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.11'), 'SHAKE128', $category, file_exists(__DIR__.'/SHA3.php')]; |
1352 | $out[] = ['shake128'/*Currently no PHP core algorithm!*/, gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.11'), 'SHAKE128', $category, file_exists(__DIR__.'/SHA3.php'), $oid]; |
1353 | $out[] = ['shake256'/*Currently no PHP core algorithm!*/, gen_uuid_v5(UUID_NAMEBASED_NS_OID, '2.16.840.1.101.3.4.2.12'), 'SHAKE256', $category, file_exists(__DIR__.'/SHA3.php')]; |
1353 | $out[] = ['shake256'/*Currently no PHP core algorithm!*/, gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid='2.16.840.1.101.3.4.2.12'), 'SHAKE256', $category, file_exists(__DIR__.'/SHA3.php'), $oid]; |
1354 | 1354 | ||
1355 | // --- |
1355 | // --- |
1356 | 1356 | ||
1357 | // TODO: ViaThinkSoft Hashes should alos be identified by OID instead of custom namespace |
- | |
1358 | // But the problem is that we would need to define dummy OIDs for the algorithms where we cannot find OIDs |
- | |
1359 | // List of OIDs here: https://github.com/ietf-wg-uuidrev/rfc4122bis/issues/143#issuecomment-1709117798 |
- | |
1360 | - | ||
1361 | // The following Hash Space UUIDs are defined by ViaThinkSoft |
1357 | // The following Hash Space UUIDs are defined by ViaThinkSoft |
1362 | // These Hash Spaces can be calculated as follows: |
- | |
1363 | // UUIDv8_NamebasedViaThinkSoft := <HashAlgo>_AsUUIDv8( BinaryHashSpaceUUID + BinaryNamespaceUUID + Data ) |
1358 | // UUIDv8_NamebasedViaThinkSoft := <HashAlgo>_AsUUIDv8( BinaryHashSpaceUUID + BinaryNamespaceUUID + Data ) |
- | 1359 | // Algorithms which have an OID get defined as follows: |
|
- | 1360 | // BinaryHashSpaceUUID := SHA1_AsUUIDv5( hex2bin(NS_OID) + AlgorithmOID ) |
|
- | 1361 | // If no OID can be found, the hash space is constructed using a custom namespace and the PHP name as payload: |
|
1364 | // BinaryHashSpaceUUID := SHA1_AsUUIDv5( hex2bin('1ee317e2-1853-64b2-8fe9-3c4a92df8582') + PhpHashAlgoName ) |
1362 | // BinaryHashSpaceUUID := SHA1_AsUUIDv5( hex2bin('1ee317e2-1853-64b2-8fe9-3c4a92df8582') + PhpHashAlgoName ) |
1365 | foreach (hash_algos() as $algo) { |
1363 | $available_algos = hash_algos(); |
1366 | if ($algo == 'md5') continue; // MD5 is already used in UUIDv3 |
1364 | $unavailable_algos = []; |
1367 | if ($algo == 'sha1') continue; // MD5 is already used in UUIDv5 |
1365 | if (PHP_VERSION_ID < 80100/*8.1.0*/) { |
1368 | foreach ($out as list($algo2,$space,$friendlyName,$author)) { |
1366 | $unavailable_algos[] = 'murmur3c'; // length: 16 bytes |
1369 | if ($algo == $algo2) continue 2; // UUID is already defined by RFC, don't need a VTS Hash Space UUID |
1367 | $unavailable_algos[] = 'murmur3f'; // length: 16 bytes |
1370 | } |
- | |
1371 | if (strlen(hash($algo,'',false)) < 32) continue; // Hash too short (needs at least 16 bytes) |
1368 | $unavailable_algos[] = 'xxh128'; // length: 16 bytes |
1372 | $out[] = [$algo, gen_uuid_v5('1ee317e2-1853-64b2-8fe9-3c4a92df8582', $algo), strtoupper($algo), 'ViaThinkSoft', true]; |
- | |
1373 | } |
1369 | } |
1374 | - | ||
- | 1370 | if (PHP_VERSION_ID < 99999) { |
|
1375 | // How to update this list $unavailable_algos: |
1371 | // How to update this list $unavailable_algos: |
1376 | // 1. Look if new hashes are listed in the PHP documentation: https://www.php.net/manual/de/function.hash-algos.php |
1372 | // 1. Look if new hashes are listed in the PHP documentation: https://www.php.net/manual/de/function.hash-algos.php |
1377 | // 2. If the required version is lower than our server version, then you don't need to do anything |
1373 | // 2. If the required version is lower than our server version, then you don't need to do anything |
1378 | // 3. Otherwise, run this command on a different machine (where the algorithms are implemented) to check if the hashes have the correct length |
1374 | // 3. Otherwise, run this command on a different machine (where the algorithms are implemented) to check if the hashes have the correct length |
1379 | // foreach (hash_algos() as $algo) { |
1375 | // foreach (hash_algos() as $algo) { |
1380 | // $len = strlen(hash($algo, '', false)); |
1376 | // $len = strlen(hash($algo, '', false)); |
1381 | // if ($len >= 32) echo "$algo, length $len\n"; |
1377 | // if ($len >= 32) echo "$algo, length $len\n"; |
1382 | // } |
1378 | // } |
1383 | // 4. Then, include all fitting hashes here |
1379 | // 4. Then, include all fitting hashes here |
1384 | // 5. Please publish the new hash space IDs here: https://oidplus.viathinksoft.com/oidplus/?goto=guid%3Auuid_mac_utils%2Fuuidv8_hash_space_vts |
1380 | // 5. Please publish the new hash space IDs here: https://oidplus.viathinksoft.com/oidplus/?goto=guid%3Auuid_mac_utils%2Fuuidv8_hash_space_vts |
1385 | $unavailable_algos = []; |
- | |
1386 | if (PHP_VERSION_ID < 80100/*8.1.0*/) { |
- | |
1387 | $unavailable_algos[] = 'murmur3c'; // length: 16 bytes |
- | |
1388 | $unavailable_algos[] = 'murmur3f'; // length: 16 bytes |
- | |
1389 | $unavailable_algos[] = 'xxh128'; // length: 16 bytes |
- | |
1390 | } |
1381 | } |
- | 1382 | $all_algos = array_merge($available_algos, $unavailable_algos); |
|
- | 1383 | ||
1391 | foreach ($unavailable_algos as $algo) { |
1384 | foreach ($all_algos as $algo) { |
- | 1385 | if ($algo == 'md5') continue; // MD5 is already used in UUIDv3 |
|
- | 1386 | if ($algo == 'sha1') continue; // SHA1 is already used in UUIDv5 |
|
- | 1387 | foreach ($out as list($algo2,$space,$friendlyName,$author)) { |
|
- | 1388 | if ($algo == $algo2) continue 2; // UUID is already defined by RFC, don't need a VTS Hash Space UUID |
|
- | 1389 | } |
|
- | 1390 | if (in_array($algo,$available_algos) && (strlen(hash($algo,'',false)) < 32)) continue; // Hash too short (needs at least 16 bytes) |
|
- | 1391 | ||
- | 1392 | // List of OIDs here: https://github.com/ietf-wg-uuidrev/rfc4122bis/issues/143#issuecomment-1709117798 |
|
- | 1393 | $oid = null; |
|
- | 1394 | if ($algo == 'gost') $oid = '1.2.643.2.2.30.0'; |
|
- | 1395 | if ($algo == 'gost-crypto') $oid = '1.2.643.2.2.30.1'; |
|
- | 1396 | if ($algo == 'haval128,3') $oid = '1.3.6.1.4.1.18105.2.1.1.1'; |
|
- | 1397 | if ($algo == 'haval160,3') $oid = '1.3.6.1.4.1.18105.2.1.1.2'; |
|
- | 1398 | if ($algo == 'haval192,3') $oid = '1.3.6.1.4.1.18105.2.1.1.3'; |
|
- | 1399 | if ($algo == 'haval224,3') $oid = '1.3.6.1.4.1.18105.2.1.1.4'; |
|
- | 1400 | if ($algo == 'haval256,3') $oid = '1.3.6.1.4.1.18105.2.1.1.5'; |
|
- | 1401 | if ($algo == 'haval128,4') $oid = '1.3.6.1.4.1.18105.2.1.1.6'; |
|
- | 1402 | if ($algo == 'haval160,4') $oid = '1.3.6.1.4.1.18105.2.1.1.7'; |
|
- | 1403 | if ($algo == 'haval192,4') $oid = '1.3.6.1.4.1.18105.2.1.1.8'; |
|
- | 1404 | if ($algo == 'haval224,4') $oid = '1.3.6.1.4.1.18105.2.1.1.9'; |
|
- | 1405 | if ($algo == 'haval256,4') $oid = '1.3.6.1.4.1.18105.2.1.1.10'; |
|
- | 1406 | if ($algo == 'haval128,5') $oid = '1.3.6.1.4.1.18105.2.1.1.11'; |
|
- | 1407 | if ($algo == 'haval160,5') $oid = '1.3.6.1.4.1.18105.2.1.1.12'; |
|
- | 1408 | if ($algo == 'haval192,5') $oid = '1.3.6.1.4.1.18105.2.1.1.13'; |
|
- | 1409 | if ($algo == 'haval224,5') $oid = '1.3.6.1.4.1.18105.2.1.1.14'; |
|
- | 1410 | if ($algo == 'haval256,5') $oid = '1.3.6.1.4.1.18105.2.1.1.15'; |
|
- | 1411 | if ($algo == 'md2') $oid = '1.2.840.113549.2.2'; |
|
- | 1412 | if ($algo == 'md4') $oid = '1.2.840.113549.2.4'; |
|
- | 1413 | if ($algo == 'ripemd128') $oid = '1.3.36.3.2.2'; // or 1.0.10118.3.0.50 |
|
- | 1414 | if ($algo == 'ripemd160') $oid = '1.3.36.3.2.1'; // or 1.0.10118.3.0.49 |
|
- | 1415 | if ($algo == 'ripemd256') $oid = '1.3.36.3.2.3'; |
|
- | 1416 | if ($algo == 'whirlpool') $oid = '1.0.10118.3.0.55'; |
|
- | 1417 | ||
- | 1418 | if ($oid == null) { |
|
1392 | $out[] = [$algo, gen_uuid_v5('1ee317e2-1853-64b2-8fe9-3c4a92df8582', $algo), strtoupper($algo), 'ViaThinkSoft', false]; |
1419 | $out[] = [$algo, gen_uuid_v5('1ee317e2-1853-64b2-8fe9-3c4a92df8582', $algo), strtoupper($algo), 'ViaThinkSoft by PHP name', in_array($algo,$available_algos), $oid]; |
- | 1420 | } else { |
|
- | 1421 | $out[] = [$algo, gen_uuid_v5(UUID_NAMEBASED_NS_OID, $oid), strtoupper($algo), 'ViaThinkSoft by OID', in_array($algo,$available_algos), $oid]; |
|
- | 1422 | } |
|
1393 | } |
1423 | } |
1394 | 1424 | ||
1395 | return $out; |
1425 | return $out; |
1396 | } |
1426 | } |
1397 | 1427 |