leftypol
/
leftypol
4
5
Fork 2
Code Issues 54 Pull Requests 1 Projects Releases Wiki Activity
Browse Source

Handle mcrypt_create_iv deprectation by using randombytes in newer PHP versions

pull/40/head
Benjamin Southall 5 years ago
parent
67ef23d758
commit
7aae5ed3e9
1 changed files with 7 additions and 6 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 11
      inc/mod/auth.php

11
inc/mod/auth.php
View File

@ -69,12 +69,13 @@ function test_password($password, $salt, $test) {
}
function generate_salt() {
// mcrypt_create_iv() was deprecated in PHP 7.1.0, only use it if we're below that version number.
if (PHP_VERSION_ID < 70100) {
// 128 bits of entropy
if (function_exists('random_bytes')) {
return strtr(base64_encode(random_bytes(16)), '+', '.');
} else {
return strtr(base64_encode(mcrypt_create_iv(16, MCRYPT_DEV_URANDOM)), '+', '.');
}
// Otherwise, use random_bytes()
return strtr(base64_encode(random_bytes(16)), '+', '.');
}
function login($username, $password) {
@ -210,8 +211,8 @@ function check_login($prompt = false) {
}
$mod = array(
'id' => $user['id'],
'type' => $user['type'],
'id' => (int)$user['id'],
'type' => (int)$user['type'],
'username' => $cookie[0],
'boards' => explode(',', $user['boards'])
);

Write Preview
Loading…
Cancel
Save