We use cookies to ensure you get the best experience on our website
Home Esplora Aiuto
Registrati Accedi
0ct0pu5
/
themes-wordpress
1
0
Forka 0
File Problemi 0 Pull Requests 0 Wiki
Albero (Tree): acb6d5c97f
Rami (Branch) Tag
themes-wordpres...
/
vendor
/
phpcompatibility
/
php-compatibility
/
PHPCompatibility
/
Sniffs
/
ParameterValues
/
RemovedNonCryptoHashSniff.php

RemovedNonCryptoHashSniff.php 3.4 KB
Cronologia Originale

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121 
  1. <?php
    2. 

  2. /**
    3. 

  3.  * PHPCompatibility, an external standard for PHP_CodeSniffer.
    4. 

  4.  *
    5. 

  5.  * @package   PHPCompatibility
    6. 

  6.  * @copyright 2012-2019 PHPCompatibility Contributors
    7. 

  7.  * @license   https://opensource.org/licenses/LGPL-3.0 LGPL3
    8. 

  8.  * @link      https://github.com/PHPCompatibility/PHPCompatibility
    9. 

  9.  */
    10. 

  10. 

  11. namespace PHPCompatibility\Sniffs\ParameterValues;
    12. 

  12. 

  13. use PHPCompatibility\AbstractFunctionCallParameterSniff;
    14. 

  14. use PHP_CodeSniffer_File as File;
    15. 

  15. 

  16. /**
    17. 

  17.  * Detect usage of non-cryptographic hashes.
    18. 

  18.  *
    19. 

  19.  * "The `hash_hmac()`, `hash_hmac_file()`, `hash_pbkdf2()`, and `hash_init()`
    20. 

  20.  * (with `HASH_HMAC`) functions no longer accept non-cryptographic hashes."
    21. 

  21.  *
    22. 

  22.  * PHP version 7.2
    23. 

  23.  *
    24. 

  24.  * @link https://www.php.net/manual/en/migration72.incompatible.php#migration72.incompatible.hash-functions
    25. 

  25.  *
    26. 

  26.  * @since 9.0.0
    27. 

  27.  */
    28. 

  28. class RemovedNonCryptoHashSniff extends AbstractFunctionCallParameterSniff
    29. 

  29. {
    30. 

  30. 

  31.     /**
    32. 

  32.      * Functions to check for.
    33. 

  33.      *
    34. 

  34.      * @since 9.0.0
    35. 

  35.      *
    36. 

  36.      * @var array
    37. 

  37.      */
    38. 

  38.     protected $targetFunctions = array(
    39. 

  39.         'hash_hmac'      => true,
    40. 

  40.         'hash_hmac_file' => true,
    41. 

  41.         'hash_init'      => true,
    42. 

  42.         'hash_pbkdf2'    => true,
    43. 

  43.     );
    44. 

  44. 

  45.     /**
    46. 

  46.      * List of the non-cryptographic hashes.
    47. 

  47.      *
    48. 

  48.      * @since 9.0.0
    49. 

  49.      *
    50. 

  50.      * @var array
    51. 

  51.      */
    52. 

  52.     protected $disabledCryptos = array(
    53. 

  53.         'adler32' => true,
    54. 

  54.         'crc32'   => true,
    55. 

  55.         'crc32b'  => true,
    56. 

  56.         'fnv132'  => true,
    57. 

  57.         'fnv1a32' => true,
    58. 

  58.         'fnv164'  => true,
    59. 

  59.         'fnv1a64' => true,
    60. 

  60.         'joaat'   => true,
    61. 

  61.     );
    62. 

  62. 

  63. 

  64.     /**
    65. 

  65.      * Do a version check to determine if this sniff needs to run at all.
    66. 

  66.      *
    67. 

  67.      * @since 9.0.0
    68. 

  68.      *
    69. 

  69.      * @return bool
    70. 

  70.      */
    71. 

  71.     protected function bowOutEarly()
    72. 

  72.     {
    73. 

  73.         return ($this->supportsAbove('7.2') === false);
    74. 

  74.     }
    75. 

  75. 

  76. 

  77.     /**
    78. 

  78.      * Process the parameters of a matched function.
    79. 

  79.      *
    80. 

  80.      * @since 9.0.0
    81. 

  81.      *
    82. 

  82.      * @param \PHP_CodeSniffer_File $phpcsFile    The file being scanned.
    83. 

  83.      * @param int                   $stackPtr     The position of the current token in the stack.
    84. 

  84.      * @param string                $functionName The token content (function name) which was matched.
    85. 

  85.      * @param array                 $parameters   Array with information about the parameters.
    86. 

  86.      *
    87. 

  87.      * @return int|void Integer stack pointer to skip forward or void to continue
    88. 

  88.      *                  normal file processing.
    89. 

  89.      */
    90. 

  90.     public function processParameters(File $phpcsFile, $stackPtr, $functionName, $parameters)
    91. 

  91.     {
    92. 

  92.         if (isset($parameters[1]) === false) {
    93. 

  93.             return;
    94. 

  94.         }
    95. 

  95. 

  96.         $targetParam = $parameters[1];
    97. 

  97. 

  98.         if (isset($this->disabledCryptos[$this->stripQuotes($targetParam['raw'])]) === false) {
    99. 

  99.             return;
    100. 

  100.         }
    101. 

  101. 

  102.         if (strtolower($functionName) === 'hash_init'
    103. 

  103.             && (isset($parameters[2]) === false
    104. 

  104.             || ($parameters[2]['raw'] !== 'HASH_HMAC'
    105. 

  105.                 && $parameters[2]['raw'] !== (string) \HASH_HMAC))
    106. 

  106.         ) {
    107. 

  107.             // For hash_init(), these hashes are only disabled with HASH_HMAC set.
    108. 

  108.             return;
    109. 

  109.         }
    110. 

  110. 

  111.         $phpcsFile->addError(
    112. 

  112.             'Non-cryptographic hashes are no longer accepted by function %s() since PHP 7.2. Found: %s',
    113. 

  113.             $targetParam['start'],
    114. 

  114.             $this->stringToErrorCode($functionName),
    115. 

  115.             array(
    116. 

  116.                 $functionName,
    117. 

  117.                 $targetParam['raw'],
    118. 

  118.             )
    119. 

  119.         );
    120. 

  120.     }
    121. 

  121. }
    122.

Contact | Legal | Takedown | Status
Self-hosted public services - About
NibbleSpot by 0ct0pu5