diff options
| author | Rubén Calvo <rubencm@gmail.com> | 2018-07-14 11:42:32 +0200 |
|---|---|---|
| committer | Rubén Calvo <rubencm@gmail.com> | 2018-07-14 11:42:32 +0200 |
| commit | ffcfec044b73bfa1b5522499b82b074ee99b3869 (patch) | |
| tree | 088c92fef492ed67dc99730b2c7c422720ffa6b0 /phpBB/includes/functions.php | |
| parent | 911c46cc61cd64913283509602a2db9e7c86b914 (diff) | |
| download | forums-ffcfec044b73bfa1b5522499b82b074ee99b3869.tar forums-ffcfec044b73bfa1b5522499b82b074ee99b3869.tar.gz forums-ffcfec044b73bfa1b5522499b82b074ee99b3869.tar.bz2 forums-ffcfec044b73bfa1b5522499b82b074ee99b3869.tar.xz forums-ffcfec044b73bfa1b5522499b82b074ee99b3869.zip | |
[ticket/15723] Rewrite gen_rand_string() and gen_rand_string_friendly()
PHPBB3-15723
Diffstat (limited to 'phpBB/includes/functions.php')
| -rw-r--r-- | phpBB/includes/functions.php | 27 |
1 files changed, 20 insertions, 7 deletions
diff --git a/phpBB/includes/functions.php b/phpBB/includes/functions.php index cbea7afe6e..51f5bc0fd5 100644 --- a/phpBB/includes/functions.php +++ b/phpBB/includes/functions.php @@ -73,8 +73,17 @@ function set_var(&$result, $var, $type, $multibyte = false) */ function gen_rand_string($num_chars = 8) { - // [a, z] + [0, 9] = 36 - return substr(strtoupper(base_convert(bin2hex(random_bytes($num_chars + 1)), 16, 36)), 0, $num_chars); + $range = array_merge(range('A', 'Z'), range(0, 9)); + $size = count($range); + + $output = ''; + for ($i = 0; $i < $num_chars; $i++) + { + $rand = random_int(0, $size-1); + $output .= $range[$rand]; + } + + return $output; } /** @@ -88,13 +97,17 @@ function gen_rand_string($num_chars = 8) */ function gen_rand_string_friendly($num_chars = 8) { - $rand_str = bin2hex(random_bytes($num_chars + 1)); + $range = array_merge(range('A', 'N'), range('P', 'Z'), range(1, 9)); + $size = count($range); - // Remove Z and Y from the base_convert(), replace 0 with Z and O with Y - // [a, z] + [0, 9] - {z, y} = [a, z] + [0, 9] - {0, o} = 34 - $rand_str = str_replace(array('0', 'O'), array('Z', 'Y'), strtoupper(base_convert($rand_str, 16, 34))); + $output = ''; + for ($i = 0; $i < $num_chars; $i++) + { + $rand = random_int(0, $size-1); + $output .= $range[$rand]; + } - return substr($rand_str, 0, $num_chars); + return $output; } /** |