Ticket #266 (closed defect: fixed)

Opened 6 months ago

Last modified 5 months ago

In the 2.1 version of PHP, found a BUG, the use of incorrect function hash_hmac

Reported by: http://151101.majipass.com/ Assigned to:
Priority: critical Milestone:
Keywords: Cc:
Project: php-openid OpenID Protocol: OpenID 2.x
Series: 2.x.x Web Browser:

Description

File:HMACSHA1.php row:91 code:return hash_hmac('sha256', $key, $text, true); Should be:return hash_hmac('sha256', $text, $key, true);

Otherwise, when the use of SHA256, a signature failure

Change History

06/20/08 16:14:22 changed by http://j3h.us/

  • status changed from new to closed.
  • project set to php-openid.
  • protocol set to OpenID 2.x.
  • series set to 2.x.x.
  • priority changed from major to critical.
  • resolution set to fixed.

Fixed in revision control. There are now tests for the HMAC-SHA256 function as well.