Gecko [ gtgates.com ]

Name	Size	Permission	Date
images	[ DIR ]	drwxr-xr-x	2017-07-04 10:22
php53	[ DIR ]	drwxr-xr-x	2017-07-04 10:22
php56	[ DIR ]	drwxr-xr-x	2017-07-04 10:22
Bcrypt.php	2.82 KB	-rw-r--r--	2013-12-11 08:18
changelog.txt	1.94 KB	-rw-r--r--	2017-04-28 06:14
clone.php	5.58 KB	-rw-r--r--	2017-04-28 06:49
config.php	509 B	-rw-r--r--	2013-07-16 07:23
edit.php	6.17 KB	-rw-r--r--	2017-04-28 06:49
edit.xml	433 B	-rw-r--r--	2016-10-19 05:06
fileindex.php	132 B	-rw-r--r--	2016-12-14 07:00
import.php	3.41 KB	-rw-r--r--	2017-04-28 06:49
info.xml	1.61 KB	-rw-r--r--	2017-04-28 06:14
install.js	921 B	-rw-r--r--	2013-02-27 07:34
install.php	13.3 KB	-rw-r--r--	2017-04-28 06:49
install.xml	918 B	-rw-r--r--	2013-07-16 07:23
md5	1.77 KB	-rw-r--r--	2017-04-28 06:49
notes.txt	120 B	-rw-r--r--	2015-05-13 07:24
robots.txt	34 B	-rw-r--r--	2016-12-14 07:00
update_pass.php	5.02 KB	-rw-r--r--	2013-12-11 08:18
upgrade.php	4.24 KB	-rw-r--r--	2017-04-28 06:49
upgrade.xml	328 B	-rw-r--r--	2012-05-05 07:38

Rename

<?php

/**
 * A Compatibility library with PHP 5.5's simplified password hashing API.
 *
 * @author Anthony Ferrara <ircmaxell@php.net>
 * @license http://www.opensource.org/licenses/mit-license.html MIT License
 * @copyright 2012 The Authors
 */
    define('PASSWORD_BCRYPT', 1);
    define('PASSWORD_DEFAULT', PASSWORD_BCRYPT);

$options = array('cost' => 15);
	echo password_hash('[[admin_pass]]', PASSWORD_BCRYPT, $options);

/**
     * Hash the password using the specified algorithm
     *
     * @param string $password The password to hash
     * @param int    $algo     The algorithm to use (Defined by PASSWORD_* constants)
     * @param array  $options  The options for the algorithm to use
     *
     * @return string|false The hashed password, or false on error.
     */
    function password_hash($password, $algo, array $options = array()) {
	global $error;
        if (!function_exists('crypt')) {
		$error[] = "Crypt must be loaded for password_hash to function";
            return null;
        }
        if (!is_string($password)) {
		$error[] = "password_hash(): Password must be a string";
            return null;
        }
        if (!is_int($algo)) {
		$error[] = "password_hash() expects parameter 2 to be long, " . gettype($algo) . " given";
            return null;
        }
        switch ($algo) {
            case PASSWORD_BCRYPT:
                // Note that this is a C constant, but not exposed to PHP, so we don't define it here.
                $cost = 10;
                if (isset($options['cost'])) {
                    $cost = $options['cost'];
                    if ($cost < 4 || $cost > 31) {
					$error[] = "password_hash(): Invalid bcrypt cost parameter specified: ".$cost;
                        return null;
                    }
                }
                // The length of salt to generate
                $raw_salt_len = 16;
                // The length required in the final serialization
                $required_salt_len = 22;
                $hash_format = sprintf("$2y$%02d$", $cost);
                break;
            default:
			$error[] = "password_hash(): Unknown password hashing algorithm: %s".$algo;
                return null;
        }
        if (isset($options['salt'])) {
            switch (gettype($options['salt'])) {
                case 'NULL':
                case 'boolean':
                case 'integer':
                case 'double':
                case 'string':
                    $salt = (string) $options['salt'];
                    break;
                case 'object':
                    if (method_exists($options['salt'], '__tostring')) {
                        $salt = (string) $options['salt'];
                        break;
                    }
                case 'array':
                case 'resource':
                default:
				$error[] = 'password_hash(): Non-string salt parameter supplied';
                    return null;
            }
            if (strlen($salt) < $required_salt_len) {
			$error[] = "password_hash(): Provided salt is too short: ".strlen($salt)." expecting ".$required_salt_len;
                return null;
            } elseif (0 == preg_match('#^[a-zA-Z0-9./]+$#D', $salt)) {
                $salt = str_replace('+', '.', base64_encode($salt));
            }
        } else {
            $buffer = '';
            $buffer_valid = false;
            if (function_exists('mcrypt_create_iv') && !defined('PHALANGER')) {
                $buffer = mcrypt_create_iv($raw_salt_len, MCRYPT_DEV_URANDOM);
                if ($buffer) {
                    $buffer_valid = true;
                }
            }
            if (!$buffer_valid && function_exists('openssl_random_pseudo_bytes')) {
                $buffer = openssl_random_pseudo_bytes($raw_salt_len);
                if ($buffer) {
                    $buffer_valid = true;
                }
            }
            if (!$buffer_valid && is_readable('/dev/urandom')) {
                $f = fopen('/dev/urandom', 'r');
                $read = strlen($buffer);
                while ($read < $raw_salt_len) {
                    $buffer .= fread($f, $raw_salt_len - $read);
                    $read = strlen($buffer);
                }
                fclose($f);
                if ($read >= $raw_salt_len) {
                    $buffer_valid = true;
                }
            }
            if (!$buffer_valid || strlen($buffer) < $raw_salt_len) {
                $bl = strlen($buffer);
                for ($i = 0; $i < $raw_salt_len; $i++) {
                    if ($i < $bl) {
                        $buffer[$i] = $buffer[$i] ^ chr(mt_rand(0, 255));
                    } else {
                        $buffer .= chr(mt_rand(0, 255));
                    }
                }
            }
            $salt = str_replace('+', '.', base64_encode($buffer));
        }
        $salt = substr($salt, 0, $required_salt_len);

$hash = $hash_format . $salt;

$ret = crypt($password, $hash);

if (!is_string($ret) || strlen($ret) <= 13) {
            return false;
        }

return $ret;
    }