ID: 45650 Updated by: [EMAIL PROTECTED] Reported By: tom at tdwright dot co dot uk -Status: Open +Status: Bogus Bug Type: Feature/Change Request Operating System: Linux + Windows PHP Version: 5.2.6 New Comment:
Thank you for taking the time to write to us, but this is not a bug. Please double-check the documentation available at http://www.php.net/manual/ and the instructions on how to report a bug at http://bugs.php.net/how-to-report.php md5 always takes the argument as a bit vector rather than a string of letters, i.e. no encoding matters. If your script is written in ISO- 8559-15 and you passed an embedded string literal to md5(), the result is the hash of a ISO-8859-15 string, even though the script accepts HTTP requests that are supposed to be in UTF-8. Previous Comments: ------------------------------------------------------------------------ [2008-07-29 02:39:47] tom at tdwright dot co dot uk Description: ------------ It seems that the MD5 function in php uses the UTF7 encoding of a string for the algorithm. Every other implementation seems to use UTF8. Finding out about this discrepancy was not easy as a) The programming community at large presumably takes it for granted that MD5 uses a UTF8 encoded string b) PHP programmers don't often need to compare their PHP generated hashes with those generated outside of PHP. It's a really annoying quirk and I'd love to see a change (even if it's an option). Reproduce code: --------------- <?php $hash_from_another_lang = $_POST['hash1']; $php_hash = md5("hashtext"); return ($hash_from_another_lang == $php_hash); ?> Expected result: ---------------- true MD5 hashes should match wherever they are generated. Actual result: -------------- false The PHP implementation of the MD5 algorithm produces hashes which are incongruent with the results of any other (AFAIK) MD5 implementation. ------------------------------------------------------------------------ -- Edit this bug report at http://bugs.php.net/?id=45650&edit=1
