php-src/ext/standard/crypt.c

/*
   +----------------------------------------------------------------------+
   | PHP version 4.0                                                      |
   +----------------------------------------------------------------------+
   | Copyright (c) 1997, 1998, 1999, 2000 The PHP Group                   |
   +----------------------------------------------------------------------+
   | This source file is subject to version 2.01 of the PHP license,      |
   | that is bundled with this package in the file LICENSE, and is        |
   | available at through the world-wide-web at                           |
   | http://www.php.net/license/2_01.txt.                                 |
   | If you did not receive a copy of the PHP license and are unable to   |
   | obtain it through the world-wide-web, please send a note to          |
   | license@php.net so we can mail you a copy immediately.               |
   +----------------------------------------------------------------------+
   | Authors: Stig Bakken <ssb@gaurdian.no>                               |
   |          Zeev Suraski <zeev@zend.com>                                |
   |          Rasmus Lerdorf <rasmus@lerdorf.on.ca>                       |
   +----------------------------------------------------------------------+
 */
/* $Id$ */
#include <stdlib.h>

#include "php.h"

#if HAVE_CRYPT

#if HAVE_UNISTD_H
#include <unistd.h>
#endif
#if HAVE_CRYPT_H
#include <crypt.h>
#endif
#if TM_IN_SYS_TIME
#include <sys/time.h>
#else
#include <time.h>
#endif
#if HAVE_STRING_H
#include <string.h>
#else
#include <strings.h>
#endif

#ifdef PHP_WIN32
#include <process.h>
extern char *crypt(char *__key,char *__salt);
#endif

#include "php_crypt.h"

/* 
   The capabilities of the crypt() function is determined by the test programs
   run by configure from aclocal.m4.  They will set PHP_STD_DES_CRYPT,
   PHP_EXT_DES_CRYPT, PHP_MD5_CRYPT and PHP_BLOWFISH_CRYPT as appropriate 
   for the target platform
*/
#if PHP_STD_DES_CRYPT
#define PHP_MAX_SALT_LEN 2
#endif
#if PHP_EXT_DES_CRYPT
#undef PHP_MAX_SALT_LEN
#define PHP_MAX_SALT_LEN 9
#endif
#if PHP_MD5_CRYPT
#undef PHP_MAX_SALT_LEN
#define PHP_MAX_SALT_LEN 12
#endif
#if PHP_BLOWFISH_CRYPT
#undef PHP_MAX_SALT_LEN
#define PHP_MAX_SALT_LEN 17
#endif

#if HAVE_LRAND48
#define PHP_CRYPT_RAND lrand48()
#else
#if HAVE_RANDOM
#define PHP_CRYPT_RAND random()
#else
#define PHP_CRYPT_RAND rand()
#endif
#endif

PHP_MINIT_FUNCTION(crypt)
{
#if PHP_STD_DES_CRYPT
    REGISTER_LONG_CONSTANT("CRYPT_SALT_LENGTH", 2, CONST_CS | CONST_PERSISTENT);
#else
#if PHP_MD5_CRYPT
    REGISTER_LONG_CONSTANT("CRYPT_SALT_LENGTH", 12, CONST_CS | CONST_PERSISTENT);
#endif
#endif
    REGISTER_LONG_CONSTANT("CRYPT_STD_DES", PHP_STD_DES_CRYPT, CONST_CS | CONST_PERSISTENT);
    REGISTER_LONG_CONSTANT("CRYPT_EXT_DES", PHP_EXT_DES_CRYPT, CONST_CS | CONST_PERSISTENT);
    REGISTER_LONG_CONSTANT("CRYPT_MD5", PHP_MD5_CRYPT, CONST_CS | CONST_PERSISTENT);
    REGISTER_LONG_CONSTANT("CRYPT_BLOWFISH", PHP_BLOWFISH_CRYPT, CONST_CS | CONST_PERSISTENT);
    return SUCCESS;
}

static unsigned char itoa64[] = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";

static void php_to64(char *s, long v, int n)	{
	while (--n >= 0) {
		*s++ = itoa64[v&0x3f]; 		
		v >>= 6;
	} 
} 

PHP_FUNCTION(crypt)
{
	char salt[PHP_MAX_SALT_LEN+1];
	pval **arg1, **arg2;

	salt[0]=salt[PHP_MAX_SALT_LEN]='\0';
	/* This will produce suitable results if people depend on DES-encryption
	   available (passing always 2-character salt). At least for glibc6.1 */
	memset(&salt[1], '$', PHP_MAX_SALT_LEN-1);

	switch (ARG_COUNT(ht)) {
		case 1:
			if (zend_get_parameters_ex(1, &arg1)==FAILURE) {
				RETURN_FALSE;
			}
			break;
		case 2:
			if (zend_get_parameters_ex(2, &arg1, &arg2)==FAILURE) {
				RETURN_FALSE;
			}
			convert_to_string_ex(arg2);
			memcpy(salt, (*arg2)->value.str.val, MIN(PHP_MAX_SALT_LEN,(*arg2)->value.str.len));
			break;
		default:
			WRONG_PARAM_COUNT;
			break;
	}
	convert_to_string_ex(arg1);

	/* The automatic salt generation only covers standard DES and md5-crypt */
	if(!*salt) {
#if HAVE_SRAND48
		srand48((unsigned int) time(0) * getpid());
#else
#if HAVE_SRANDOM
		srandom((unsigned int) time(0) * getpid());
#else
		srand((unsigned int) time(0) * getpid());
#endif
#endif

#if PHP_STD_DES_CRYPT
		php_to64(&salt[0], PHP_CRYPT_RAND, 2);
		salt[2] = '\0';
#else
#if PHP_MD5_CRYPT
		strcpy(salt, "$1$");
		php_to64(&salt[3], PHP_CRYPT_RAND, 4);
		php_to64(&salt[7], PHP_CRYPT_RAND, 4);
		strcpy(&salt[11], "$");
#endif
#endif
	}

	return_value->value.str.val = (char *) crypt((*arg1)->value.str.val, salt);
	return_value->value.str.len = strlen(return_value->value.str.val);
	return_value->type = IS_STRING;
	pval_copy_constructor(return_value);
}

#endif


/*
 * Local variables:
 * tab-width: 4
 * c-basic-offset: 4
 * End:
 */
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`/*`
			`+----------------------------------------------------------------------+`
License update 1999-07-16 21:13:16 +08:00			`\| PHP version 4.0 \|`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`+----------------------------------------------------------------------+`
Happy Y2K patch! Happy new year (or the new millennium, depending on whether you start counting at 0 or 1). 2000-01-01 09:32:05 +08:00			`\| Copyright (c) 1997, 1998, 1999, 2000 The PHP Group \|`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`+----------------------------------------------------------------------+`
the pipe is breaking all the time 2000-02-20 07:41:32 +08:00			`\| This source file is subject to version 2.01 of the PHP license, \|`
License update 1999-07-16 21:13:16 +08:00			`\| that is bundled with this package in the file LICENSE, and is \|`
			`\| available at through the world-wide-web at \|`
the pipe is breaking all the time 2000-02-20 07:41:32 +08:00			`\| http://www.php.net/license/2_01.txt. \|`
License update 1999-07-16 21:13:16 +08:00			`\| If you did not receive a copy of the PHP license and are unable to \|`
			`\| obtain it through the world-wide-web, please send a note to \|`
			`\| license@php.net so we can mail you a copy immediately. \|`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`+----------------------------------------------------------------------+`
			`\| Authors: Stig Bakken <ssb@gaurdian.no> \|`
License update 1999-07-16 21:13:16 +08:00			`\| Zeev Suraski <zeev@zend.com> \|`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`\| Rasmus Lerdorf <rasmus@lerdorf.on.ca> \|`
			`+----------------------------------------------------------------------+`
			`*/`
			`/* $Id$ */`
			`#include <stdlib.h>`

			`#include "php.h"`

			`#if HAVE_CRYPT`

			`#if HAVE_UNISTD_H`
			`#include <unistd.h>`
			`#endif`
			`#if HAVE_CRYPT_H`
			`#include <crypt.h>`
			`#endif`
			`#if TM_IN_SYS_TIME`
			`#include <sys/time.h>`
			`#else`
			`#include <time.h>`
			`#endif`
			`#if HAVE_STRING_H`
			`#include <string.h>`
			`#else`
			`#include <strings.h>`
			`#endif`

Fine tune Andi's patch 2000-02-11 23:59:30 +08:00			`#ifdef PHP_WIN32`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#include <process.h>`
			`extern char crypt(char __key,char *__salt);`
			`#endif`

Clean up php3.\.h files. The files itself are renamed, and references in all .\.[ch] files were changed. There is a slight chance that my script missed a few changes, please correct them manually. 1999-12-05 03:19:57 +08:00			`#include "php_crypt.h"`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00
			`/*`
			`The capabilities of the crypt() function is determined by the test programs`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`run by configure from aclocal.m4. They will set PHP_STD_DES_CRYPT,`
			`PHP_EXT_DES_CRYPT, PHP_MD5_CRYPT and PHP_BLOWFISH_CRYPT as appropriate`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`for the target platform`
			`*/`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_STD_DES_CRYPT`
			`#define PHP_MAX_SALT_LEN 2`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#endif`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_EXT_DES_CRYPT`
			`#undef PHP_MAX_SALT_LEN`
			`#define PHP_MAX_SALT_LEN 9`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#endif`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_MD5_CRYPT`
			`#undef PHP_MAX_SALT_LEN`
			`#define PHP_MAX_SALT_LEN 12`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#endif`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_BLOWFISH_CRYPT`
			`#undef PHP_MAX_SALT_LEN`
			`#define PHP_MAX_SALT_LEN 17`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#endif`

Same Fix here 1999-06-11 20:48:22 +08:00			`#if HAVE_LRAND48`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#define PHP_CRYPT_RAND lrand48()`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#else`
Same Fix here 1999-06-11 20:48:22 +08:00			`#if HAVE_RANDOM`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#define PHP_CRYPT_RAND random()`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#else`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#define PHP_CRYPT_RAND rand()`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`#endif`
			`#endif`

More symbol work. I've defined a few macros to help with module/request init/startup function definitions. Basically: PHP_MINIT_FUNCTION(module) PHP_MSHUTDOWN_FUNCTION(module) PHP_RINIT_FUNCTION(module) PHP_RSHUTDOWN_FUNCTION(module) PHP_MINFO_FUNCTION(module) These will expand to proper function prototypes. Now to specify these in the module entry, use: PHP_MINIT(module) PHP_MSHUTDOWN(module) PHP_RINIT(module) PHP_RSHUTDOWN(module) PHP_MINFO(module) I've updated all modules in ext/standard and everything from ext/apache to ext/db. If you can, please update your module to use these macros. 1999-07-27 04:09:08 +08:00			`PHP_MINIT_FUNCTION(crypt)`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`{`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_STD_DES_CRYPT`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`REGISTER_LONG_CONSTANT("CRYPT_SALT_LENGTH", 2, CONST_CS \| CONST_PERSISTENT);`
			`#else`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_MD5_CRYPT`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`REGISTER_LONG_CONSTANT("CRYPT_SALT_LENGTH", 12, CONST_CS \| CONST_PERSISTENT);`
			`#endif`
			`#endif`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`REGISTER_LONG_CONSTANT("CRYPT_STD_DES", PHP_STD_DES_CRYPT, CONST_CS \| CONST_PERSISTENT);`
			`REGISTER_LONG_CONSTANT("CRYPT_EXT_DES", PHP_EXT_DES_CRYPT, CONST_CS \| CONST_PERSISTENT);`
			`REGISTER_LONG_CONSTANT("CRYPT_MD5", PHP_MD5_CRYPT, CONST_CS \| CONST_PERSISTENT);`
			`REGISTER_LONG_CONSTANT("CRYPT_BLOWFISH", PHP_BLOWFISH_CRYPT, CONST_CS \| CONST_PERSISTENT);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`return SUCCESS;`
			`}`

			`static unsigned char itoa64[] = "./0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz";`

More php3_ annihilation 1999-12-18 12:01:20 +08:00			`static void php_to64(char *s, long v, int n) {`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`while (--n >= 0) {`
			`*s++ = itoa64[v&0x3f];`
			`v >>= 6;`
			`}`
			`}`

conv_proto *.[ch] 1999-05-16 19:19:26 +08:00			`PHP_FUNCTION(crypt)`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`{`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`char salt[PHP_MAX_SALT_LEN+1];`
Use new Zend API. 1999-09-25 03:35:25 +08:00			`pval arg1, arg2;`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`salt[0]=salt[PHP_MAX_SALT_LEN]='\0';`
Workaround for crypt() getting too few characters for salt. 1999-09-06 21:24:36 +08:00			`/* This will produce suitable results if people depend on DES-encryption`
			`available (passing always 2-character salt). At least for glibc6.1 */`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`memset(&salt[1], '$', PHP_MAX_SALT_LEN-1);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00
			`switch (ARG_COUNT(ht)) {`
			`case 1:`
- The tree compiles again 1999-12-19 06:40:35 +08:00			`if (zend_get_parameters_ex(1, &arg1)==FAILURE) {`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`RETURN_FALSE;`
			`}`
			`break;`
			`case 2:`
- The tree compiles again 1999-12-19 06:40:35 +08:00			`if (zend_get_parameters_ex(2, &arg1, &arg2)==FAILURE) {`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`RETURN_FALSE;`
			`}`
Use new Zend API. 1999-09-25 03:35:25 +08:00			`convert_to_string_ex(arg2);`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`memcpy(salt, (arg2)->value.str.val, MIN(PHP_MAX_SALT_LEN,(arg2)->value.str.len));`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`break;`
			`default:`
			`WRONG_PARAM_COUNT;`
			`break;`
			`}`
Use new Zend API. 1999-09-25 03:35:25 +08:00			`convert_to_string_ex(arg1);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00
			`/* The automatic salt generation only covers standard DES and md5-crypt */`
			`if(!*salt) {`
Same Fix here 1999-06-11 20:48:22 +08:00			`#if HAVE_SRAND48`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`srand48((unsigned int) time(0) * getpid());`
			`#else`
Same Fix here 1999-06-11 20:48:22 +08:00			`#if HAVE_SRANDOM`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`srandom((unsigned int) time(0) * getpid());`
			`#else`
			`srand((unsigned int) time(0) * getpid());`
			`#endif`
			`#endif`

- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_STD_DES_CRYPT`
			`php_to64(&salt[0], PHP_CRYPT_RAND, 2);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`salt[2] = '\0';`
			`#else`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`#if PHP_MD5_CRYPT`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`strcpy(salt, "$1$");`
- Convert 'PHP3' to 'PHP' - Avoid declaring crypt() related salt types twice 2000-02-26 11:20:55 +08:00			`php_to64(&salt[3], PHP_CRYPT_RAND, 4);`
			`php_to64(&salt[7], PHP_CRYPT_RAND, 4);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`strcpy(&salt[11], "$");`
			`#endif`
			`#endif`
			`}`

Use new Zend API. 1999-09-25 03:35:25 +08:00			`return_value->value.str.val = (char ) crypt((arg1)->value.str.val, salt);`
moved fdf, hyperwave, informix and some smaller files 1999-04-22 08:25:57 +08:00			`return_value->value.str.len = strlen(return_value->value.str.val);`
			`return_value->type = IS_STRING;`
			`pval_copy_constructor(return_value);`
			`}`

			`#endif`



			`/*`
			`* Local variables:`
			`* tab-width: 4`
			`* c-basic-offset: 4`
			`* End:`
			`*/`