Home Explore Help
Sign In
kevin
/
anissah
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 5f43161b02
Branches Tags
anissah
/
user
/
plugins
/
login
/
vendor
/
paragonie
/
random_compat
/
lib
/
random_bytes_openssl.php

random_bytes_openssl.php 2.5 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374757677787980818283848586 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * Random_* Compatibility Library 
    4. 

  4.  * for using the new PHP 7 random_* API in PHP 5 projects
    5. 

  5.  * 
    6. 

  6.  * The MIT License (MIT)
    7. 

  7.  * 
    8. 

  8.  * Copyright (c) 2015 Paragon Initiative Enterprises
    9. 

  9.  * 
    10. 

  10.  * Permission is hereby granted, free of charge, to any person obtaining a copy
    11. 

  11.  * of this software and associated documentation files (the "Software"), to deal
    12. 

  12.  * in the Software without restriction, including without limitation the rights
    13. 

  13.  * to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
    14. 

  14.  * copies of the Software, and to permit persons to whom the Software is
    15. 

  15.  * furnished to do so, subject to the following conditions:
    16. 

  16.  * 
    17. 

  17.  * The above copyright notice and this permission notice shall be included in
    18. 

  18.  * all copies or substantial portions of the Software.
    19. 

  19.  * 
    20. 

  20.  * THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
    21. 

  21.  * IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
    22. 

  22.  * FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
    23. 

  23.  * AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
    24. 

  24.  * LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
    25. 

  25.  * OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
    26. 

  26.  * SOFTWARE.
    27. 

  27.  */
    28. 

  28. 

  29. /**
    30. 

  30.  * Since openssl_random_pseudo_bytes() uses openssl's 
    31. 

  31.  * RAND_pseudo_bytes() API, which has been marked as deprecated by the
    32. 

  32.  * OpenSSL team, this is our last resort before failure.
    33. 

  33.  * 
    34. 

  34.  * @ref https://www.openssl.org/docs/crypto/RAND_bytes.html
    35. 

  35.  * 
    36. 

  36.  * @param int $bytes
    37. 

  37.  * 
    38. 

  38.  * @throws Exception
    39. 

  39.  * 
    40. 

  40.  * @return string
    41. 

  41.  */
    42. 

  42. function random_bytes($bytes)
    43. 

  43. {
    44. 

  44.     try {
    45. 

  45.         $bytes = RandomCompat_intval($bytes);
    46. 

  46.     } catch (TypeError $ex) {
    47. 

  47.         throw new TypeError(
    48. 

  48.             'random_bytes(): $bytes must be an integer'
    49. 

  49.         );
    50. 

  50.     }
    51. 

  51. 

  52.     if ($bytes < 1) {
    53. 

  53.         throw new Error(
    54. 

  54.             'Length must be greater than 0'
    55. 

  55.         );
    56. 

  56.     }
    57. 

  57. 

  58.     /**
    59. 

  59.      * $secure is passed by reference. If it's set to false, fail. Note
    60. 

  60.      * that this will only return false if this function fails to return
    61. 

  61.      * any data.
    62. 

  62.      * 
    63. 

  63.      * @ref https://github.com/paragonie/random_compat/issues/6#issuecomment-119564973
    64. 

  64.      */
    65. 

  65.     $secure = true;
    66. 

  66.     /**
    67. 

  67.      * @var string
    68. 

  68.      */
    69. 

  69.     $buf = openssl_random_pseudo_bytes($bytes, $secure);
    70. 

  70.     if (
    71. 

  71.         is_string($buf)
    72. 

  72.         &&
    73. 

  73.         $secure
    74. 

  74.         &&
    75. 

  75.         RandomCompat_strlen($buf) === $bytes
    76. 

  76.     ) {
    77. 

  77.         return $buf;
    78. 

  78.     }
    79. 

  79. 

  80.     /**
    81. 

  81.      * If we reach here, PHP has failed us.
    82. 

  82.      */
    83. 

  83.     throw new Exception(
    84. 

  84.         'Could not gather sufficient random data'
    85. 

  85.     );
    86. 

  86. }
    87.