Gecko [ www.bigdataconsulting.fr ]

Linux vps-61133.fhnet.fr 4.9.0-19-amd64 #1 SMP Debian 4.9.320-2 (2022-06-30) x86_64
Apache/2.4.25 (Debian)
Server IP : 93.113.207.21 & Your IP : 216.73.216.152
Domains : Cant Read [ /etc/named.conf ]
User : www-data

Name	Size	Permission	Date
bug78114.phpt	355 B	-rw-rw-r--	2022-10-31 11:36
bug78516.phpt	725 B	-rw-rw-r--	2022-10-31 11:36
crypto_aead.phpt	4.23 KB	-rw-rw-r--	2022-10-31 11:36
crypto_auth.phpt	1.09 KB	-rw-rw-r--	2022-10-31 11:36
crypto_box.phpt	5.09 KB	-rw-rw-r--	2022-10-31 11:36
crypto_generichash.phpt	2.7 KB	-rw-rw-r--	2022-10-31 11:36
crypto_hex.phpt	426 B	-rw-rw-r--	2022-10-31 11:36
crypto_kdf.phpt	1.48 KB	-rw-rw-r--	2022-10-31 11:36
crypto_kx.phpt	1.58 KB	-rw-rw-r--	2022-10-31 11:36
crypto_scalarmult.phpt	582 B	-rw-rw-r--	2022-10-31 11:36
crypto_secretbox.phpt	606 B	-rw-rw-r--	2022-10-31 11:36
crypto_secretstream.phpt	1.98 KB	-rw-rw-r--	2022-10-31 11:36
crypto_shorthash.phpt	586 B	-rw-rw-r--	2022-10-31 11:36
crypto_sign.phpt	2.88 KB	-rw-rw-r--	2022-10-31 11:36
crypto_stream.phpt	1.16 KB	-rw-rw-r--	2022-10-31 11:36
exception_trace_without_args.phpt	421 B	-rw-rw-r--	2022-10-31 11:36
inc_add.phpt	909 B	-rw-rw-r--	2022-10-31 11:36
installed.phpt	467 B	-rw-rw-r--	2022-10-31 11:36
php_password_hash_argon2i.phpt	2.08 KB	-rw-rw-r--	2022-10-31 11:36
php_password_hash_argon2id.phpt	2.09 KB	-rw-rw-r--	2022-10-31 11:36
php_password_verify.phpt	2.36 KB	-rw-rw-r--	2022-10-31 11:36
pwhash_argon2i.phpt	1.52 KB	-rw-rw-r--	2022-10-31 11:36
pwhash_scrypt.phpt	1.09 KB	-rw-rw-r--	2022-10-31 11:36
sodium_error_001.phpt	639 B	-rw-rw-r--	2022-10-31 11:36
utils.phpt	3.45 KB	-rw-rw-r--	2022-10-31 11:36
version.phpt	283 B	-rw-rw-r--	2022-10-31 11:36

Rename

--TEST--
Check for libsodium auth
--SKIPIF--
<?php if (!extension_loaded("sodium")) print "skip"; ?>
--FILE--
<?php
$msg = random_bytes(1000);
$key = sodium_crypto_auth_keygen();
$mac = sodium_crypto_auth($msg, $key);

// This should validate
var_dump(sodium_crypto_auth_verify($mac, $msg, $key));

$bad_key = random_bytes(SODIUM_CRYPTO_AUTH_KEYBYTES - 1);
try {
    $mac = sodium_crypto_auth($msg, $bad_key);
    echo 'Fail!', PHP_EOL;
} catch (SodiumException $ex) {
  echo $ex->getMessage(), PHP_EOL;
}

// Flip the first bit
$badmsg = $msg;
$badmsg[0] = \chr(\ord($badmsg[0]) ^ 0x80);
var_dump(sodium_crypto_auth_verify($mac, $badmsg, $key));

// Let's flip a bit pseudo-randomly
$badmsg = $msg;
$badmsg[$i=mt_rand(0, 999)] = \chr(
    \ord($msg[$i]) ^ (
        1 << mt_rand(0, 7)
    )
);

var_dump(sodium_crypto_auth_verify($mac, $badmsg, $key));

// Now let's change a bit in the MAC
$badmac = $mac;
$badmac[0] = \chr(\ord($badmac[0]) ^ 0x80);
var_dump(sodium_crypto_auth_verify($badmac, $msg, $key));
?>
--EXPECT--
bool(true)
key must be SODIUM_CRYPTO_AUTH_KEYBYTES bytes
bool(false)
bool(false)
bool(false)