Home Explore Help
Sign In
RMichael
/
gnu-social
forked from diogo/gnu-social
Watch 1
Star 0
Fork 0
Files
Branch: 1.1.x
Branches Tags
gnu-social
/
extlib
/
Auth
/
OpenID
/
HMAC.php

HMAC.php 2.9 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106 
  1. <?php
    2. 

  2. 

  3. /**
    4. 

  4.  * This is the HMACSHA1 implementation for the OpenID library.
    5. 

  5.  *
    6. 

  6.  * PHP versions 4 and 5
    7. 

  7.  *
    8. 

  8.  * LICENSE: See the COPYING file included in this distribution.
    9. 

  9.  *
    10. 

  10.  * @access private
    11. 

  11.  * @package OpenID
    12. 

  12.  * @author JanRain, Inc. <openid@janrain.com>
    13. 

  13.  * @copyright 2005-2008 Janrain, Inc.
    14. 

  14.  * @license http://www.apache.org/licenses/LICENSE-2.0 Apache
    15. 

  15.  */
    16. 

  16. 

  17. require_once 'Auth/OpenID.php';
    18. 

  18. 

  19. /**
    20. 

  20.  * SHA1_BLOCKSIZE is this module's SHA1 blocksize used by the fallback
    21. 

  21.  * implementation.
    22. 

  22.  */
    23. 

  23. define('Auth_OpenID_SHA1_BLOCKSIZE', 64);
    24. 

  24. 

  25. function Auth_OpenID_SHA1($text)
    26. 

  26. {
    27. 

  27.     if (function_exists('hash') &&
    28. 

  28.         function_exists('hash_algos') &&
    29. 

  29.         (in_array('sha1', hash_algos()))) {
    30. 

  30.         // PHP 5 case (sometimes): 'hash' available and 'sha1' algo
    31. 

  31.         // supported.
    32. 

  32.         return hash('sha1', $text, true);
    33. 

  33.     } else if (function_exists('sha1')) {
    34. 

  34.         // PHP 4 case: 'sha1' available.
    35. 

  35.         $hex = sha1($text);
    36. 

  36.         $raw = '';
    37. 

  37.         for ($i = 0; $i < 40; $i += 2) {
    38. 

  38.             $hexcode = substr($hex, $i, 2);
    39. 

  39.             $charcode = (int)base_convert($hexcode, 16, 10);
    40. 

  40.             $raw .= chr($charcode);
    41. 

  41.         }
    42. 

  42.         return $raw;
    43. 

  43.     } else {
    44. 

  44.         // Explode.
    45. 

  45.         trigger_error('No SHA1 function found', E_USER_ERROR);
    46. 

  46.     }
    47. 

  47. }
    48. 

  48. 

  49. /**
    50. 

  50.  * Compute an HMAC/SHA1 hash.
    51. 

  51.  *
    52. 

  52.  * @access private
    53. 

  53.  * @param string $key The HMAC key
    54. 

  54.  * @param string $text The message text to hash
    55. 

  55.  * @return string $mac The MAC
    56. 

  56.  */
    57. 

  57. function Auth_OpenID_HMACSHA1($key, $text)
    58. 

  58. {
    59. 

  59.     if (Auth_OpenID::bytes($key) > Auth_OpenID_SHA1_BLOCKSIZE) {
    60. 

  60.         $key = Auth_OpenID_SHA1($key, true);
    61. 

  61.     }
    62. 

  62. 

  63.     if (function_exists('hash_hmac') &&
    64. 

  64.         function_exists('hash_algos') &&
    65. 

  65.         (in_array('sha1', hash_algos()))) {
    66. 

  66.         return hash_hmac('sha1', $text, $key, true);
    67. 

  67.     }
    68. 

  68.     // Home-made solution
    69. 

  69. 

  70.     $key = str_pad($key, Auth_OpenID_SHA1_BLOCKSIZE, chr(0x00));
    71. 

  71.     $ipad = str_repeat(chr(0x36), Auth_OpenID_SHA1_BLOCKSIZE);
    72. 

  72.     $opad = str_repeat(chr(0x5c), Auth_OpenID_SHA1_BLOCKSIZE);
    73. 

  73.     $hash1 = Auth_OpenID_SHA1(($key ^ $ipad) . $text, true);
    74. 

  74.     $hmac = Auth_OpenID_SHA1(($key ^ $opad) . $hash1, true);
    75. 

  75.     return $hmac;
    76. 

  76. }
    77. 

  77. 

  78. if (function_exists('hash') &&
    79. 

  79.     function_exists('hash_algos') &&
    80. 

  80.     (in_array('sha256', hash_algos()))) {
    81. 

  81.     function Auth_OpenID_SHA256($text)
    82. 

  82.     {
    83. 

  83.         // PHP 5 case: 'hash' available and 'sha256' algo supported.
    84. 

  84.         return hash('sha256', $text, true);
    85. 

  85.     }
    86. 

  86.     define('Auth_OpenID_SHA256_SUPPORTED', true);
    87. 

  87. } else {
    88. 

  88.     define('Auth_OpenID_SHA256_SUPPORTED', false);
    89. 

  89. }
    90. 

  90. 

  91. if (function_exists('hash_hmac') &&
    92. 

  92.     function_exists('hash_algos') &&
    93. 

  93.     (in_array('sha256', hash_algos()))) {
    94. 

  94. 

  95.     function Auth_OpenID_HMACSHA256($key, $text)
    96. 

  96.     {
    97. 

  97.         // Return raw MAC (not hex string).
    98. 

  98.         return hash_hmac('sha256', $text, $key, true);
    99. 

  99.     }
    100. 

  100. 

  101.     define('Auth_OpenID_HMACSHA256_SUPPORTED', true);
    102. 

  102. } else {
    103. 

  103.     define('Auth_OpenID_HMACSHA256_SUPPORTED', false);
    104. 

  104. }
    105. 

  105. 

  106.