diff options
Diffstat (limited to 'www/wiki/includes/password/MWOldPassword.php')
-rw-r--r-- | www/wiki/includes/password/MWOldPassword.php | 54 |
1 files changed, 54 insertions, 0 deletions
diff --git a/www/wiki/includes/password/MWOldPassword.php b/www/wiki/includes/password/MWOldPassword.php new file mode 100644 index 00000000..c48b6e61 --- /dev/null +++ b/www/wiki/includes/password/MWOldPassword.php @@ -0,0 +1,54 @@ +<?php +/** + * Implements the MWOldPassword class for the MediaWiki software. + * + * This program is free software; you can redistribute it and/or modify + * it under the terms of the GNU General Public License as published by + * the Free Software Foundation; either version 2 of the License, or + * (at your option) any later version. + * + * This program is distributed in the hope that it will be useful, + * but WITHOUT ANY WARRANTY; without even the implied warranty of + * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the + * GNU General Public License for more details. + * + * You should have received a copy of the GNU General Public License along + * with this program; if not, write to the Free Software Foundation, Inc., + * 51 Franklin Street, Fifth Floor, Boston, MA 02110-1301, USA. + * http://www.gnu.org/copyleft/gpl.html + * + * @file + */ + +/** + * The old style of MediaWiki password hashing. It involves + * running MD5 on the password. + * + * @since 1.24 + */ +class MWOldPassword extends ParameterizedPassword { + protected function getDefaultParams() { + return []; + } + + protected function getDelimiter() { + return ':'; + } + + public function crypt( $plaintext ) { + if ( count( $this->args ) === 1 ) { + // Accept (but do not generate) salted passwords with :A: prefix. + // These are actually B-type passwords, but an error in a previous + // version of MediaWiki caused them to be written with an :A: + // prefix. + $this->hash = md5( $this->args[0] . '-' . md5( $plaintext ) ); + } else { + $this->args = []; + $this->hash = md5( $plaintext ); + } + + if ( !is_string( $this->hash ) || strlen( $this->hash ) < 32 ) { + throw new PasswordError( 'Error when hashing password.' ); + } + } +} |