public static randomString ( integer $len = null, string $chars = null, callable $cb = null, integer $pri, boolean $hang = false ) : string | ||
$len | integer | Length of desired string |
$chars | string | String of allowed characters |
$cb | callable | Callback |
$pri | integer | Priority of EIO operation |
$hang | boolean | If true, we shall use /dev/random instead of /dev/urandom and it may cause a delay |
return | string |
public static function randomString($len = null, $chars = null, $cb = null, $pri = 0, $hang = false)
{
if ($len === null) {
$len = 64;
}
if ($chars === null) {
$chars = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789_-.';
}
if ($cb === null) {
Daemon::log('[CODE WARN] \\PHPDaemon\\Utils\\Crypt::randomString: non-callback way is not secure.' . ' Please rewrite your code with callback function in third argument' . PHP_EOL . Debug::backtrace());
$r = '';
$m = mb_orig_strlen($chars) - 1;
for ($i = 0; $i < $len; ++$i) {
$r .= $chars[mt_rand(0, $m)];
}
return $r;
}
$charsLen = mb_orig_strlen($chars);
$mask = static::getMinimalBitMask($charsLen - 1);
$iterLimit = max($len, $len * 64);
static::randomInts(2 * $len, function ($ints) use($cb, $chars, $charsLen, $len, $mask, &$iterLimit) {
if ($ints === false) {
$cb(false);
return;
}
$r = '';
for ($i = 0, $s = sizeof($ints); $i < $s; ++$i) {
// This is wasteful, but RNGs are fast and doing otherwise adds complexity and bias
$c = $ints[$i] & $mask;
// Only use the random number if it is in range, otherwise try another (next iteration)
if ($c < $charsLen) {
$r .= static::stringIdx($chars, $c);
}
// Guarantee termination
if (--$iterLimit <= 0) {
return false;
}
}
$d = $len - mb_orig_strlen($r);
if ($d > 0) {
static::randomString($d, $chars, function ($r2) use($r, $cb) {
$cb($r . $r2);
});
return;
}
$cb($r);
}, $pri, $hang);
}
public function perform() { $hash = Request::getString($_REQUEST['x']); if (!strlen($hash) || base64_decode($hash, true) === false) { $this->req->setResult(['success' => false, 'error' => 'Wrong format of extTokenHash']); return; } $this->appInstance->externalAuthTokens->findByExtTokenHash($hash, function ($result) use($hash) { if ($result) { $this->req->setResult(['success' => false, 'error' => 'This token was already used.']); return; } $ip = $this->req->getIp(); $intToken = Crypt::hash(Daemon::uniqid() . "" . $ip . "" . Crypt::randomString()); $this->appInstance->externalAuthTokens->save(['extTokenHash' => $hash, 'intToken' => $intToken, 'ip' => $ip, 'useragent' => Request::getString($_SERVER['HTTP_USER_AGENT']), 'ctime' => microtime(true), 'status' => 'new'], function ($lastError) use($intToken) { if (!isset($lastError['n']) || $lastError['n'] === 0) { $this->req->setResult(['success' => false, 'errors' => ['code' => 'Sorry, internal error.']]); return; } $type = Request::getString($_REQUEST['type']); if ($type === 'email') { // send email.... } elseif ($type === 'redirect') { $this->req->redirectTo(HTTPClient::buildUrl(['/' . $this->req->locale . '/account/extauth', 'i' => $intToken]), false); } $this->req->setResult(['success' => true, 'intToken' => $intToken]); }); }); }