Révision 97383e36
Ajouté par Assos Assos il y a plus de 9 ans
drupal7/includes/password.inc | ||
---|---|---|
140 | 140 |
* @param $algo |
141 | 141 |
* The string name of a hashing algorithm usable by hash(), like 'sha256'. |
142 | 142 |
* @param $password |
143 |
* The plain-text password to hash.
|
|
143 |
* Plain-text password up to 512 bytes (128 to 512 UTF-8 characters) to hash.
|
|
144 | 144 |
* @param $setting |
145 | 145 |
* An existing hash or the output of _password_generate_salt(). Must be |
146 | 146 |
* at least 12 characters (the settings and salt). |
... | ... | |
150 | 150 |
* The return string will be truncated at DRUPAL_HASH_LENGTH characters max. |
151 | 151 |
*/ |
152 | 152 |
function _password_crypt($algo, $password, $setting) { |
153 |
// Prevent DoS attacks by refusing to hash large passwords. |
|
154 |
if (strlen($password) > 512) { |
|
155 |
return FALSE; |
|
156 |
} |
|
153 | 157 |
// The first 12 characters of an existing hash are its setting string. |
154 | 158 |
$setting = substr($setting, 0, 12); |
155 | 159 |
|
Formats disponibles : Unified diff
Udpate to 7.34