[PHP-BUG] Bug #64268 [NEW]: crypt() outputting *0 for unknown reason
From: sarciszewski at knights dot ucf dot edu
Operating system: Ubuntu 12.04 kernel 3.2.0
PHP version: 5.4.11
Package: *Encryption and hash functions
Bug Type: Bug
Bug description:crypt() outputting *0 for unknown reason
Description:
crypt() seems to be breaking for some reason with this password and salt
combination
I've not read anything about limitations on the characters supplied to
crypt() in the PHP documentation
Test script:
---
?
$plain =
W9no`y_vr.!bW'.Wp44NU~\Vf}n{G077^UnqFyWwKyaz1YuyrO9H+1/T8J3Ha_C|X=gU^?EBrc2;
$salt = '$2a$10$CqenGirJlEl6sCA2/w2ay';
echo crypt($pre, $salt);
?
Expected result:
$2a$10$CqenGirJlEl6sCA2/w2a (followed by hashed data)
Actual result:
--
*0
--
Edit bug report at https://bugs.php.net/bug.php?id=64268edit=1
--
Try a snapshot (PHP 5.4):
https://bugs.php.net/fix.php?id=64268r=trysnapshot54
Try a snapshot (PHP 5.3):
https://bugs.php.net/fix.php?id=64268r=trysnapshot53
Try a snapshot (trunk):
https://bugs.php.net/fix.php?id=64268r=trysnapshottrunk
Fixed in SVN: https://bugs.php.net/fix.php?id=64268r=fixed
Fixed in release: https://bugs.php.net/fix.php?id=64268r=alreadyfixed
Need backtrace: https://bugs.php.net/fix.php?id=64268r=needtrace
Need Reproduce Script: https://bugs.php.net/fix.php?id=64268r=needscript
Try newer version: https://bugs.php.net/fix.php?id=64268r=oldversion
Not developer issue:https://bugs.php.net/fix.php?id=64268r=support
Expected behavior: https://bugs.php.net/fix.php?id=64268r=notwrong
Not enough info:
https://bugs.php.net/fix.php?id=64268r=notenoughinfo
Submitted twice:
https://bugs.php.net/fix.php?id=64268r=submittedtwice
register_globals: https://bugs.php.net/fix.php?id=64268r=globals
PHP 4 support discontinued: https://bugs.php.net/fix.php?id=64268r=php4
Daylight Savings: https://bugs.php.net/fix.php?id=64268r=dst
IIS Stability: https://bugs.php.net/fix.php?id=64268r=isapi
Install GNU Sed:https://bugs.php.net/fix.php?id=64268r=gnused
Floating point limitations: https://bugs.php.net/fix.php?id=64268r=float
No Zend Extensions: https://bugs.php.net/fix.php?id=64268r=nozend
MySQL Configuration Error: https://bugs.php.net/fix.php?id=64268r=mysqlcfg
Bug #64268 [Opn-Csd]: crypt() outputting *0 for unknown reason
Edit report at https://bugs.php.net/bug.php?id=64268edit=1
ID: 64268
User updated by:sarciszewski at knights dot ucf dot edu
Reported by:sarciszewski at knights dot ucf dot edu
Summary:crypt() outputting *0 for unknown reason
-Status: Open
+Status: Closed
Type: Bug
Package:*Encryption and hash functions
Operating System: Ubuntu 12.04 kernel 3.2.0
PHP Version:5.4.11
Block user comment: N
Private report: N
New Comment:
After all that concern of an unknown buffer overflow or disallowed character, I
forgot to end the salt with a $ character :(
Previous Comments:
[2013-02-21 18:19:13] sarciszewski at knights dot ucf dot edu
Description:
crypt() seems to be breaking for some reason with this password and salt
combination
I've not read anything about limitations on the characters supplied to crypt()
in the PHP documentation
Test script:
---
?
$plain =
W9no`y_vr.!bW'.Wp44NU~\Vf}n{G077^UnqFyWwKyaz1YuyrO9H+1/T8J3Ha_C|X=gU^?EBrc2;
$salt = '$2a$10$CqenGirJlEl6sCA2/w2ay';
echo crypt($pre, $salt);
?
Expected result:
$2a$10$CqenGirJlEl6sCA2/w2a (followed by hashed data)
Actual result:
--
*0
--
Edit this bug report at https://bugs.php.net/bug.php?id=64268edit=1
Bug #63637 [Com]: POST value duplicated when passed to PHP
Edit report at https://bugs.php.net/bug.php?id=63637edit=1
ID: 63637
Comment by: sarciszewski at knights dot ucf dot edu
Reported by:sarciszewski at knights dot ucf dot edu
Summary:POST value duplicated when passed to PHP
Status: Feedback
Type: Bug
Package:Apache2 related
Operating System: Debian
PHP Version:5.4.9
Block user comment: N
Private report: N
New Comment:
Whatever gets installed via:
apt-get install php5 php5-common php5-mysql php5-cli php5-curl
From the dotdeb repository (which offers 5.4)
Previous Comments:
[2012-12-03 09:32:16] m...@php.net
What PHP extensions are loaded?
[2012-11-28 18:03:39] sarciszewski at knights dot ucf dot edu
Downgrading to PHP 5.3.19 resolved the issue. Is there something in the code
that links Apache2 and PHP 5.4.9 that could be causing this problem? It wasn't
causing issues in 5.4.8
[2012-11-28 17:24:01] sarciszewski at knights dot ucf dot edu
Description:
Originally I thought this was an Apache bug since php://input held duplicate
POST data. https://issues.apache.org/bugzilla/show_bug.cgi?id=54218 - However,
Perl correctly reads single values.
admin@summit:$uname -a
Linux summit 2.6.26-2-686-bigmem #1 SMP Sun Mar 4 23:05:22 UTC 2012 i686
GNU/Linux
admin@summit:$/usr/sbin/apache2 -v
Server version: Apache/2.2.16 (Debian)
Server built: Sep 9 2012 21:17:33
admin@summit:$ /usr/bin/php5 -v
PHP 5.4.9-1~dotdeb.0 (cli) (built: Nov 26 2012 04:24:47)
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2012 Zend Technologies
Test script:
---
?
if(!empty($_POST)) {
header(Content-Type: text/plain);
echo file_get_contents('php://input');
echo \n=\n;
var_dump($_POST); exit;
}
?
This duplicates:
form method=post target=_blank
input type=text name=menu value=Blah /
input type=submit /
/form
pThis doesn't:/p
form method=post target=_blank
input type=text name=menu value=Blah /
input type=text name=second value=Second value /
input type=submit /
/form
Expected result:
Output (first button):
menu=Blah
=
array(1) {
[menu]=
string(4) Blah
}
Output (second button):
menu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
Actual result:
--
Output (first button):
menu=Blahmenu=Blah
=
array(1) {
[menu]=
string(13) Blahmenu=Blah
}
Output (second button):
menu=Blahsecond=Second+valuemenu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
--
Edit this bug report at https://bugs.php.net/bug.php?id=63637edit=1
[PHP-BUG] Bug #63637 [NEW]: POST value duplicated when passed to PHP
From: sarciszewski at knights dot ucf dot edu
Operating system: Debian
PHP version: 5.4.9
Package: Apache2 related
Bug Type: Bug
Bug description:POST value duplicated when passed to PHP
Description:
Originally I thought this was an Apache bug since php://input held
duplicate POST data.
https://issues.apache.org/bugzilla/show_bug.cgi?id=54218 - However, Perl
correctly reads single values.
admin@summit:$uname -a
Linux summit 2.6.26-2-686-bigmem #1 SMP Sun Mar 4 23:05:22 UTC 2012 i686
GNU/Linux
admin@summit:$/usr/sbin/apache2 -v
Server version: Apache/2.2.16 (Debian)
Server built: Sep 9 2012 21:17:33
admin@summit:$ /usr/bin/php5 -v
PHP 5.4.9-1~dotdeb.0 (cli) (built: Nov 26 2012 04:24:47)
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2012 Zend Technologies
Test script:
---
?
if(!empty($_POST)) {
header(Content-Type: text/plain);
echo file_get_contents('php://input');
echo \n=\n;
var_dump($_POST); exit;
}
?
This duplicates:
form method=post target=_blank
input type=text name=menu value=Blah /
input type=submit /
/form
pThis doesn't:/p
form method=post target=_blank
input type=text name=menu value=Blah /
input type=text name=second value=Second value /
input type=submit /
/form
Expected result:
Output (first button):
menu=Blah
=
array(1) {
[menu]=
string(4) Blah
}
Output (second button):
menu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
Actual result:
--
Output (first button):
menu=Blahmenu=Blah
=
array(1) {
[menu]=
string(13) Blahmenu=Blah
}
Output (second button):
menu=Blahsecond=Second+valuemenu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
--
Edit bug report at https://bugs.php.net/bug.php?id=63637edit=1
--
Try a snapshot (PHP 5.4):
https://bugs.php.net/fix.php?id=63637r=trysnapshot54
Try a snapshot (PHP 5.3):
https://bugs.php.net/fix.php?id=63637r=trysnapshot53
Try a snapshot (trunk):
https://bugs.php.net/fix.php?id=63637r=trysnapshottrunk
Fixed in SVN: https://bugs.php.net/fix.php?id=63637r=fixed
Fixed in release: https://bugs.php.net/fix.php?id=63637r=alreadyfixed
Need backtrace: https://bugs.php.net/fix.php?id=63637r=needtrace
Need Reproduce Script: https://bugs.php.net/fix.php?id=63637r=needscript
Try newer version: https://bugs.php.net/fix.php?id=63637r=oldversion
Not developer issue:https://bugs.php.net/fix.php?id=63637r=support
Expected behavior: https://bugs.php.net/fix.php?id=63637r=notwrong
Not enough info:
https://bugs.php.net/fix.php?id=63637r=notenoughinfo
Submitted twice:
https://bugs.php.net/fix.php?id=63637r=submittedtwice
register_globals: https://bugs.php.net/fix.php?id=63637r=globals
PHP 4 support discontinued: https://bugs.php.net/fix.php?id=63637r=php4
Daylight Savings: https://bugs.php.net/fix.php?id=63637r=dst
IIS Stability: https://bugs.php.net/fix.php?id=63637r=isapi
Install GNU Sed:https://bugs.php.net/fix.php?id=63637r=gnused
Floating point limitations: https://bugs.php.net/fix.php?id=63637r=float
No Zend Extensions: https://bugs.php.net/fix.php?id=63637r=nozend
MySQL Configuration Error: https://bugs.php.net/fix.php?id=63637r=mysqlcfg
Bug #63637 [Com]: POST value duplicated when passed to PHP
Edit report at https://bugs.php.net/bug.php?id=63637edit=1
ID: 63637
Comment by: sarciszewski at knights dot ucf dot edu
Reported by:sarciszewski at knights dot ucf dot edu
Summary:POST value duplicated when passed to PHP
Status: Open
Type: Bug
Package:Apache2 related
Operating System: Debian
PHP Version:5.4.9
Block user comment: N
Private report: N
New Comment:
Downgrading to PHP 5.3.19 resolved the issue. Is there something in the code
that links Apache2 and PHP 5.4.9 that could be causing this problem? It wasn't
causing issues in 5.4.8
Previous Comments:
[2012-11-28 17:24:01] sarciszewski at knights dot ucf dot edu
Description:
Originally I thought this was an Apache bug since php://input held duplicate
POST data. https://issues.apache.org/bugzilla/show_bug.cgi?id=54218 - However,
Perl correctly reads single values.
admin@summit:$uname -a
Linux summit 2.6.26-2-686-bigmem #1 SMP Sun Mar 4 23:05:22 UTC 2012 i686
GNU/Linux
admin@summit:$/usr/sbin/apache2 -v
Server version: Apache/2.2.16 (Debian)
Server built: Sep 9 2012 21:17:33
admin@summit:$ /usr/bin/php5 -v
PHP 5.4.9-1~dotdeb.0 (cli) (built: Nov 26 2012 04:24:47)
Copyright (c) 1997-2012 The PHP Group
Zend Engine v2.4.0, Copyright (c) 1998-2012 Zend Technologies
Test script:
---
?
if(!empty($_POST)) {
header(Content-Type: text/plain);
echo file_get_contents('php://input');
echo \n=\n;
var_dump($_POST); exit;
}
?
This duplicates:
form method=post target=_blank
input type=text name=menu value=Blah /
input type=submit /
/form
pThis doesn't:/p
form method=post target=_blank
input type=text name=menu value=Blah /
input type=text name=second value=Second value /
input type=submit /
/form
Expected result:
Output (first button):
menu=Blah
=
array(1) {
[menu]=
string(4) Blah
}
Output (second button):
menu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
Actual result:
--
Output (first button):
menu=Blahmenu=Blah
=
array(1) {
[menu]=
string(13) Blahmenu=Blah
}
Output (second button):
menu=Blahsecond=Second+valuemenu=Blahsecond=Second+value
=
array(2) {
[menu]=
string(4) Blah
[second]=
string(12) Second value
}
--
Edit this bug report at https://bugs.php.net/bug.php?id=63637edit=1
