Better random number gen and fix for travis

2016-04-21 22:07:53 +02:00 · 2016-04-21 22:07:53 +02:00 · 8b5fb99b0b
commit 8b5fb99b0b
parent e3d634a8a3
2 changed files with 14 additions and 1 deletions
--- a/.travis.yml
+++ b/.travis.yml
@ -6,6 +6,10 @@ php:
  - '7.0'
  - hhvm
  - nightly
+matrix:
+  allow_failures:
+    - php: hhvm
+    - php: nightly
 services:
  - mysql
 before_install:
--- a/include/php/classes/Auth.php
+++ b/include/php/classes/Auth.php
@ -226,7 +226,16 @@ class Auth
 	 */
 	public static function generatePasswordHash($password)
 	{
-		$salt = base64_encode(rand(1, 1000000) + microtime());
+		if(function_exists('mt_rand')){
+			mt_srand(time());
+			$num = mt_rand(1, 100000);
+		}
+		else{
+			srand(time());
+			$num = rand(1, 100000);
+		}
+
+		$salt = base64_encode($num);
 		$schemaPrefix = static::getPasswordSchemaPrefix();

 		$hash = crypt($password, $schemaPrefix.$salt.'$');