dongzi0602 2011-08-23 23:07
浏览 83
已采纳

PHP crypt()函数的salt参数和返回值如何工作?

Normally if I have a password, I would use this pseudocode:

$password = "this is the user's password";
/***/
$salt = GenerateSalt();
$hash = Hash($password);
$hash = Hash($hash . $salt);

However, as I understand it, PHP has a crypt() function which takes a salt as well as the number of iterations of a particular algorithm. Apparently you are.. supposed to pass the returned hash of crypt back into crypt as the salt. I do not understand this.

Can anyone please clarify how crypt works? Do I still need to append my own salt and rehash? In that case, would I just use a fixed salt for crypt, and then generate a separate crypt for each user? Or does crypt's $salt parameter take care of that for me?

  • 写回答

2条回答 默认 最新

  • doudou3213 2011-08-23 23:16
    关注

    The output of crypt consists of:

    • (optionally an algorithm identifier + load factor)
    • the salt for the used algorithm
    • the real hash

    When you pass this output als "salt" back to crypt, it will extract the right algorithm and salt, and use these for the operation. If there is only an algorithm mentioned, it uses this one and generate random salt. Otherwise it will choose a default algorithm and generate random salt. The hash part in the passed salt parameter is ignored.

    So you can simply compare your stored_hash with crypt(password, stored_hash) - if it is equal, it quite likely was the right password.

    Here is an pseudocode explanation (in PHP-like syntax) how crypt works:

    function crypt($password, $salt)
    {
      if (substr($salt,0 1) == "_") {
         $count = substr($salt, 1, 4);
         $real_salt = substr($salt, 5, 4);
         return "_" . $count . $real_salt . crypt_ext_des($password, $count, $salt);
      }
      if(substr($salt, 0, 3) == "$1$") {
         list($ignored, $real_salt, $ignored) = explode("$", $salt);
         return "$1$" . $real_salt . "$" . crypt_md5($password, $real_salt);
      }
      if(substr($salt, 0, 4) == "$2a$") {
          $cost = substr($salt, 4, 2);
          $real_salt = substr($salt, 7, 22);
          return "$2a$" . $cost . "$" . $real_salt . crypt_brypt($password, $real_salt, $cost);
      }
      // ... SHA256 and SHA512 analogons
    
      // no match => STD_DES
      $real_salt = substr($salt, 0, 2);
      return $real_salt . crypt_std_des($password, $real_salt);
    }
    

    The individual crypt_xxx functions then do the real work, depending on the algorithm. (Actually, the generation of random salt is missing in this description. It will be done if the $real_salt is empty.)

    本回答被题主选为最佳回答 , 对您是否有帮助呢?
    评论
查看更多回答(1条)

报告相同问题?

悬赏问题

  • ¥15 这个复选框什么作用?
  • ¥15 单通道放大电路的工作原理
  • ¥30 YOLO检测微调结果p为1
  • ¥20 求快手直播间榜单匿名采集ID用户名简单能学会的
  • ¥15 DS18B20内部ADC模数转换器
  • ¥15 做个有关计算的小程序
  • ¥15 MPI读取tif文件无法正常给各进程分配路径
  • ¥30 关于#算法#的问题:运用EViews第九版本进行一系列计量经济学的时间数列数据回归分析预测问题 求各位帮我解答一下
  • ¥15 setInterval 页面闪烁,怎么解决
  • ¥15 如何让企业微信机器人实现消息汇总整合