REL1_34/php/Argon2Password_8php_source.html

<?php


use Wikimedia\Assert\Assert;


class Argon2Password extends Password {

    private static $knownOptions = [

        'memory_cost' => null,

        'time_cost' => null,

        'threads' => null,

    ];


    protected function isSupported() {

        // It is actually possible to have a PHP build with Argon2i but not Argon2id

        return defined( 'PASSWORD_ARGON2I' ) || defined( 'PASSWORD_ARGON2ID' );

    }


    private function prepareParams() {

        switch ( $this->config['algo'] ) {

            case 'argon2i':

                $algo = PASSWORD_ARGON2I;

                break;

            case 'argon2id':

                $algo = PASSWORD_ARGON2ID;

                break;

            case 'auto':

                $algo = defined( 'PASSWORD_ARGON2ID' ) ? PASSWORD_ARGON2ID : PASSWORD_ARGON2I;

                break;

            default:

                throw new LogicException( "Unexpected algo: {$this->config['algo']}" );


        }


        $params = array_intersect_key( $this->config, self::$knownOptions );


        return [ $algo, $params ];

    }


    public function crypt( $password ) {

        list( $algo, $params ) = $this->prepareParams();

        $this->hash = password_hash( $password, $algo, $params );

    }


    public function equals( $other ) {

        wfDeprecated( __METHOD__, '1.33' );


        if ( is_string( $other ) ) {

            return $this->verify( $other );

        }


        // Argon2 key derivation is not deterministic, can't pass objects to equals()

        return false;

    }


    public function verify( $password ) {

        Assert::parameterType( 'string', $password, '$password' );


        return password_verify( $password, $this->hash );

    }


    public function toString() {

        $res = ":argon2:{$this->hash}";

        $this->assertIsSafeSize( $res );

        return $res;

    }


    public function needsUpdate() {

        list( $algo, $params ) = $this->prepareParams();

        return password_needs_rehash( $this->hash, $algo, $params );

    }


}


wfDeprecated
wfDeprecated( $function, $version=false, $component=false, $callerOffset=2)
Throws a warning that $function is deprecated.
Definition GlobalFunctions.php:1044

Argon2Password
Implements Argon2, a modern key derivation algorithm designed to resist GPU cracking and side-channel...
Definition Argon2Password.php:30

Argon2Password\toString
toString()
Convert this hash to a string that can be stored in the database.The resulting string should be consi...
Definition Argon2Password.php:106

Argon2Password\equals
equals( $other)
Compare one Password object to this object.By default, do a timing-safe string comparison on the resu...
Definition Argon2Password.php:83

Argon2Password\needsUpdate
needsUpdate()
Determine if the hash needs to be updated.bool True if needs update, false otherwise
Definition Argon2Password.php:115

Argon2Password\crypt
crypt( $password)
Hash a password and store the result in this object.The result of the password hash should be put int...
Definition Argon2Password.php:75

Argon2Password\isSupported
isSupported()
Whether current password type is supported on this system.bool
Definition Argon2Password.php:43

Argon2Password\prepareParams
prepareParams()
Definition Argon2Password.php:51

Argon2Password\verify
verify( $password)
Checks whether the given password matches the hash stored in this object.bool
Definition Argon2Password.php:97

Argon2Password\$knownOptions
static null[] $knownOptions
Array with known password_hash() option names as keys.
Definition Argon2Password.php:34

Password
Represents a password hash for use in authentication.
Definition Password.php:61

Password\assertIsSafeSize
assertIsSafeSize( $hash)
Assert that hash will fit in a tinyblob field.
Definition Password.php:218

$res
$res
Definition testCompression.php:52