diff options
author | Andrew Dolgov <[email protected]> | 2012-01-23 22:04:01 +0400 |
---|---|---|
committer | Andrew Dolgov <[email protected]> | 2012-01-23 22:04:01 +0400 |
commit | 8db5d8ea6d38df8a18e8290753b1b29f76bcf962 (patch) | |
tree | 55e32ea2f0b6889c37cae930f77c401c3ea0b40e /classes/pref_users.php | |
parent | 098df83ba6a5fb7ea03cb9dfc9f6eca82397fe27 (diff) |
add get_random_bytes() in case openssl_random_pseudo_bytes() is unavailable
Diffstat (limited to 'classes/pref_users.php')
-rw-r--r-- | classes/pref_users.php | 6 |
1 files changed, 3 insertions, 3 deletions
diff --git a/classes/pref_users.php b/classes/pref_users.php index 975b41f5c..94ee270d3 100644 --- a/classes/pref_users.php +++ b/classes/pref_users.php @@ -206,7 +206,7 @@ class Pref_Users extends Protected_Handler { $password = db_escape_string(trim($_REQUEST["password"])); if ($password) { - $salt = substr(bin2hex(openssl_random_pseudo_bytes(125)), 0, 250); + $salt = substr(bin2hex(get_random_bytes(125)), 0, 250); $pwd_hash = encrypt_password($password, $salt, true); $pass_query_part = "pwd_hash = '$pwd_hash', salt = '$salt',"; } else { @@ -234,7 +234,7 @@ class Pref_Users extends Protected_Handler { $login = db_escape_string(trim($_REQUEST["login"])); $tmp_user_pwd = make_password(8); - $salt = substr(bin2hex(openssl_random_pseudo_bytes(125)), 0, 250); + $salt = substr(bin2hex(get_random_bytes(125)), 0, 250); $pwd_hash = encrypt_password($tmp_user_pwd, $salt, true); $result = db_query($this->link, "SELECT id FROM ttrss_users WHERE @@ -280,7 +280,7 @@ class Pref_Users extends Protected_Handler { $email = db_fetch_result($result, 0, "email"); $salt = db_fetch_result($result, 0, "salt"); - $new_salt = substr(bin2hex(openssl_random_pseudo_bytes(125)), 0, 250); + $new_salt = substr(bin2hex(get_random_bytes(125)), 0, 250); $tmp_user_pwd = make_password(8); $pwd_hash = encrypt_password($tmp_user_pwd, $new_salt, true); |