diff options
| author | Marc Alexander <admin@m-a-styles.de> | 2017-05-05 20:52:21 -0400 | 
|---|---|---|
| committer | Marc Alexander <admin@m-a-styles.de> | 2017-05-05 20:52:21 -0400 | 
| commit | 18fe3b28330a234ef8a2c1a244b61ec2af1bb294 (patch) | |
| tree | 53486cc25170c3d1108919df47aea8e088a4ab7d /phpBB/phpbb/cron/task/core | |
| parent | ca9e3eb5282a933237636baf7e92a6b072baf477 (diff) | |
| download | forums-18fe3b28330a234ef8a2c1a244b61ec2af1bb294.tar forums-18fe3b28330a234ef8a2c1a244b61ec2af1bb294.tar.gz forums-18fe3b28330a234ef8a2c1a244b61ec2af1bb294.tar.bz2 forums-18fe3b28330a234ef8a2c1a244b61ec2af1bb294.tar.xz forums-18fe3b28330a234ef8a2c1a244b61ec2af1bb294.zip | |
[ticket/15219] Update hashes to bcrypt with cron
PHPBB3-15219
Diffstat (limited to 'phpBB/phpbb/cron/task/core')
| -rw-r--r-- | phpBB/phpbb/cron/task/core/update_hashes.php | 130 | 
1 files changed, 130 insertions, 0 deletions
| diff --git a/phpBB/phpbb/cron/task/core/update_hashes.php b/phpBB/phpbb/cron/task/core/update_hashes.php new file mode 100644 index 0000000000..458853f2fd --- /dev/null +++ b/phpBB/phpbb/cron/task/core/update_hashes.php @@ -0,0 +1,130 @@ +<?php +/** + * + * This file is part of the phpBB Forum Software package. + * + * @copyright (c) phpBB Limited <https://www.phpbb.com> + * @license GNU General Public License, version 2 (GPL-2.0) + * + * For full copyright and license information, please see + * the docs/CREDITS.txt file. + * + */ + +namespace phpbb\cron\task\core; + +/** + * Update old hashes to the current default hashing algorithm + * + * It is intended to gradually update all "old" style hashes to the + * current default hashing algorithm. + */ +class update_hashes extends \phpbb\cron\task\base +{ +	/** @var \phpbb\config\config */ +	protected $config; + +	/** @var \phpbb\db\driver\driver_interface */ +	protected $db; + +	/** @var \phpbb\lock\db */ +	protected $update_lock; + +	/** @var \phpbb\passwords\manager */ +	protected $passwords_manager; + +	/** @var string Default hashing type */ +	protected $default_type; + +	/** +	 * Constructor. +	 * +	 * @param \phpbb\config\config $config +	 * @param \phpbb\db\driver\driver_interface $db +	 * @param \phpbb\lock\db $update_lock +	 * @param \phpbb\passwords\manager $passwords_manager +	 * @param array $hashing_algorithms Hashing driver +	 *			service collection +	 * @param array $defaults Default password types +	 */ +	public function __construct(\phpbb\config\config $config, \phpbb\db\driver\driver_interface $db, \phpbb\lock\db $update_lock, \phpbb\passwords\manager $passwords_manager, $hashing_algorithms, $defaults) +	{ +		$this->config = $config; +		$this->db = $db; +		$this->passwords_manager = $passwords_manager; +		$this->update_lock = $update_lock; + +		foreach ($defaults as $type) +		{ +			if ($hashing_algorithms[$type]->is_supported()) +			{ +				$this->default_type = $type; +				break; +			} +		} +	} + +	/** +	 * {@inheritdoc} +	 */ +	public function is_runnable() +	{ +		return !$this->config['use_system_cron']; +	} + +	/** +	 * {@inheritdoc} +	 */ +	public function should_run() +	{ +		if (!empty($this->config['update_hashes_lock'])) +		{ +			$last_run = explode(' ', $this->config['update_hashes_lock']); +			if ($last_run[0] + 60 >= time()) +			{ +				return false; +			} +		} + +		return $this->config['enable_update_hashes'] && $this->config['update_hashes_last_cron'] < (time() - 60); +	} + +	/** +	 * {@inheritdoc} +	 */ +	public function run() +	{ +		if ($this->update_lock->acquire()) +		{ +			$sql = 'SELECT user_id, user_password +				FROM ' . USERS_TABLE . ' +				WHERE user_password ' . $this->db->sql_like_expression('$H$' . $this->db->get_any_char()) . ' +				OR user_password ' . $this->db->sql_like_expression('$CP$' . $this->db->get_any_char()); +			$result = $this->db->sql_query_limit($sql, 20); + +			$affected_rows = 0; + +			while ($row = $this->db->sql_fetchrow($result)) +			{ +				$new_hash = $this->passwords_manager->hash($row['user_password'], array($this->default_type)); + +				// Increase number so we know that users were selected from the database +				$affected_rows++; + +				$sql = 'UPDATE ' . USERS_TABLE . ' +					SET user_password = "' . $this->db->sql_escape($new_hash) . '" +					WHERE user_id = ' . (int)$row['user_id']; +				$this->db->sql_query($sql); +			} + +			$this->config->set('update_hashes_last_cron', time()); +			$this->update_lock->release(); + +			// Stop cron for good once all hashes are converted +			if ($affected_rows === 0) +			{ +				$this->config->set('enable_update_hashes', '0'); +			} +		} +	} +} | 
