TheFirstGoodmaN
3 years ago
committed by
GitHub
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
3 changed files with
24 additions and
1 deletions
-
plugins/password/config.inc.php.dist
-
plugins/password/password.php
-
plugins/password/tests/Password.php
|
|
|
@ -44,7 +44,7 @@ $config['password_force_new_user'] = false; |
|
|
|
|
|
|
|
// Password hashing/crypting algorithm. |
|
|
|
// Possible options: des-crypt, ext-des-crypt, md5-crypt, blowfish-crypt, |
|
|
|
// sha256-crypt, sha512-crypt, md5, sha, smd5, ssha, ssha512, samba, ad, dovecot, clear. |
|
|
|
// sha256-crypt, sha512-crypt, md5, sha, smd5, ssha, ssha256, ssha512, samba, ad, dovecot, clear. |
|
|
|
// Also supported are password_hash() algoriths: hash-bcrypt, hash-argon2i, hash-argon2id. |
|
|
|
// Default: 'clear' (no hashing) |
|
|
|
// For details see password::hash_password() method. |
|
|
|
|
|
|
|
@ -636,6 +636,26 @@ class password extends rcube_plugin |
|
|
|
$prefix = '{SSHA}'; |
|
|
|
break; |
|
|
|
|
|
|
|
// base64 encoded ssha256 for mailcow
|
|
|
|
case 'ssha256': |
|
|
|
$salt = rcube_utils::random_bytes(8); |
|
|
|
|
|
|
|
if (function_exists('hash')) { |
|
|
|
$salt = substr(pack("H*", hash('sha256', $salt . $password)), 0, 4); |
|
|
|
$crypted = hash('sha256', $password . $salt, true); |
|
|
|
} |
|
|
|
else { |
|
|
|
rcube::raise_error([ |
|
|
|
'code' => 600, 'file' => __FILE__, 'line' => __LINE__, |
|
|
|
'message' => "Password plugin: Your PHP installation does not have the hash() function" |
|
|
|
], true, true |
|
|
|
); |
|
|
|
} |
|
|
|
|
|
|
|
$crypted = base64_encode($crypted . $salt); |
|
|
|
$prefix = '{SSHA256}'; |
|
|
|
break; |
|
|
|
|
|
|
|
case 'ssha512': |
|
|
|
$salt = rcube_utils::random_bytes(8); |
|
|
|
|
|
|
|
|
|
|
|
@ -102,6 +102,9 @@ class Password_Plugin extends PHPUnit\Framework\TestCase |
|
|
|
$pass = password::hash_password('test', 'ssha'); |
|
|
|
$this->assertMatchesRegularExpression('/^\{SSHA\}[a-zA-Z0-9+\/]{32}$/', $pass); |
|
|
|
|
|
|
|
$pass = password::hash_password('test', 'ssha256'); |
|
|
|
$this->assertMatchesRegularExpression('/^\{SSHA256\}[a-zA-Z0-9+\/=]{48}$/', $pass); |
|
|
|
|
|
|
|
$pass = password::hash_password('test', 'sha256-crypt'); |
|
|
|
$this->assertMatchesRegularExpression('/^\{SHA256-CRYPT\}\$5\$[a-zA-Z0-9]{16}\$[a-zA-Z0-9.\/]{43}$/', $pass); |
|
|
|
|
|
|
|
|
