Use `\hash('md5', …)` instead of `\md5()` in TPhpass

author Tim Düsterhus <duesterhus@woltlab.com>

Thu, 28 Apr 2022 11:52:48 +0000 (13:52 +0200)

committer Tim Düsterhus <duesterhus@woltlab.com>

Thu, 28 Apr 2022 11:56:08 +0000 (13:56 +0200)
author Tim Düsterhus <duesterhus@woltlab.com>
Thu, 28 Apr 2022 11:52:48 +0000 (13:52 +0200)
committer Tim Düsterhus <duesterhus@woltlab.com>
Thu, 28 Apr 2022 11:56:08 +0000 (13:56 +0200)
diff --git a/wcfsetup/install/files/lib/system/user/authentication/password/algorithm/TPhpass.class.php b/wcfsetup/install/files/lib/system/user/authentication/password/algorithm/TPhpass.class.php

index a816c16bf5aed4e63f65973fd0b5d235594741d9..d7c71682357d0fa511f42dce25fb54c69dbf2d49 100644 (file)
--- a/wcfsetup/install/files/lib/system/user/authentication/password/algorithm/TPhpass.class.php
+++ b/wcfsetup/install/files/lib/system/user/authentication/password/algorithm/TPhpass.class.php
@@ -42,9 +42,9 @@ trait TPhpass
              return $output;
          }
  
-        $hash = \md5($salt . $password, true);
+        $hash = \hash('md5', $salt . $password, true);
          do {
-            $hash = \md5($hash . $password, true);
+            $hash = \hash('md5', $hash . $password, true);
          } while (--$count);
  
          $output = \mb_substr($settings, 0, 12, '8bit');
author	Tim Düsterhus <duesterhus@woltlab.com>
	Thu, 28 Apr 2022 11:52:48 +0000 (13:52 +0200)
committer	Tim Düsterhus <duesterhus@woltlab.com>
	Thu, 28 Apr 2022 11:56:08 +0000 (13:56 +0200)