+ * @param string $rand_seed Seed for random data (optional). For tests.

+ public function get_random_salt($length, $rand_seed = '/dev/urandom')

+ if (($fh = @fopen($rand_seed, 'rb')))

+ $settings = $this->get_hash_settings($this->generate_salt());

+<?php

+/**

+*

+* @package testing

+* @copyright (c) 2013 phpBB Group

+* @license http://opensource.org/licenses/gpl-2.0.php GNU General Public License v2

+*

+*/

+

+class phpbb_passwords_helper_test extends PHPUnit_Framework_TestCase

+{

+ public function setUp()

+ {

+ // Prepare dependencies for drivers

+ $config = new \phpbb\config\config(array());

+ $this->driver_helper = new \phpbb\passwords\driver\helper($config);

+

+ $this->passwords_drivers = array(

+ 'passwords.driver.bcrypt' => new \phpbb\passwords\driver\bcrypt($config, $this->driver_helper),

+ 'passwords.driver.bcrypt_2y' => new \phpbb\passwords\driver\bcrypt_2y($config, $this->driver_helper),

+ 'passwords.driver.salted_md5' => new \phpbb\passwords\driver\salted_md5($config, $this->driver_helper),

+ 'passwords.driver.phpass' => new \phpbb\passwords\driver\phpass($config, $this->driver_helper),

+ );

+

+ foreach ($this->passwords_drivers as $key => $driver)

+ {

+ $driver->set_name($key);

+ }

+ }

+

+ public function data_helper_encode64()

+ {

+ return array(

+ array('foobar', 6, 'axqPW3aQ'),

+ array('foobar', 7, 'axqPW3aQ..'),

+ array('foobar', 5, 'axqPW34'),

+ );

+ }

+

+ /**

+ * @dataProvider data_helper_encode64

+ */

+ public function test_helper_encode64($input, $length, $output)

+ {

+ $return = $this->driver_helper->hash_encode64($input, $length);

+ $this->assertEquals($output, $return);

+ }

+

+ public function data_get_random_salt()

+ {

+ return array(

+ array(24, false),

+ array(24, '/dev/foobar'),

+ );

+ }

+

+ /**

+ * @dataProvider data_get_random_salt

+ */

+ public function test_get_random_salt($length, $rand_seed)

+ {

+ $rand_string = (empty($rand_seed)) ? $this->driver_helper->get_random_salt($length) : $this->driver_helper->get_random_salt($length, $rand_seed);

+ $start = microtime(true);

+

+ // Run each test for max. 1 second

+ while ((microtime(true) - $start) < 1)

+ {

+ $urandom_string = (empty($rand_seed)) ? $this->driver_helper->get_random_salt($length) : $this->driver_helper->get_random_salt($length, $rand_seed);

+ $this->assertEquals($length, strlen($urandom_string));

+ $this->assertNotEquals($rand_string, $urandom_string);

+ }

+ }

+

+ public function test_get_hash_settings_salted_md5()

+ {

+ $settings = $this->passwords_drivers['passwords.driver.salted_md5']->get_hash_settings('$H$9isfrtKXWqrz8PvztXlL3.daw4U0zI1');

+ $this->assertEquals(array(

+ 'count' => pow(2, 11),

+ 'salt' => 'isfrtKXW',

+ 'full' => '$H$9isfrtKXW',

+ ),

+ $settings

+ );

+ $this->assertEquals(false, $this->passwords_drivers['passwords.driver.salted_md5']->get_hash_settings(false));

+ }

+}

+ array(

+ 'passwords.driver.bcrypt_2y',

+ array('passwords.driver.salted_md4'),

+ false,

+ ),

+

+ public function test_check_hash_with_large_input()

+ {

+ // 16 MB password, should be rejected quite fast

+ $start_time = time();

+ $this->assertFalse($this->manager->check(str_repeat('a', 1024 * 1024 * 16), '$H$9isfrtKXWqrz8PvztXlL3.daw4U0zI1'));

+ $this->assertLessThanOrEqual(5, time() - $start_time);

+ }

+

+ public function test_hash_password_with_large_input()

+ {

+ // 16 MB password, should be rejected quite fast

+ $start_time = time();

+ $this->assertFalse($this->manager->hash(str_repeat('a', 1024 * 1024 * 16)));

+ $this->assertLessThanOrEqual(5, time() - $start_time);

+ }