Fix upcoming deprecation of mt_rand on newer php versions

mckaygerhard · mckaygerhard · commit 67f7eb993bc3 · 2024-03-25T14:36:36.000-04:00
* provide a workaround function in code/Common like is_php does * closes bcit-ci/CodeIgniter#6275 * related to pocketarc/codeigniter#3 (comment)
diff --git a/appsys/core/Common.php b/appsys/core/Common.php
@@ -57,6 +57,38 @@ function is_php($version = '5.0.0')
 
 // ------------------------------------------------------------------------
 
+/**
+ * implements internally the rand specific function based on PHP version, used internally
+ *
+ * @access	public
+ * @param	int or 0
+ * @param	int or mt_getrandmax()
+ * @return	int
+ */
+if ( ! function_exists('php_rand'))
+{
+	/**
+	 * implements internally the rand specific function based on PHP version, used internally
+	 *
+	 * @param	int or 0
+	 * @param	int or mt_getrandmax()
+	 * @return	int
+	 */
+	function php_rand($min = NULL, $max = NULL)
+	{
+		if(!is_int($min) $min = 0;
+		if(!is_int($max) $max = mt_getrandmax();
+
+		if( is_php('7.1.99') ) return random_int($min, $max);
+
+		if (!function_exists('mcrypt_create_iv')) trigger_error( 'mcrypt must be loaded for random_int to work', E_USER_WARNING );
+
+		return mt_rand($min, $max);
+	}
+}
+
+// ------------------------------------------------------------------------
+
 /**
  * Tests for file writability
  *
diff --git a/appsys/core/Security.php b/appsys/core/Security.php
@@ -488,7 +488,7 @@ public function xss_hash()
 		if ($this->_xss_hash == '')
 		{
 			mt_srand();
-			$this->_xss_hash = md5(time() + mt_rand(0, 1999999999));
+			$this->_xss_hash = md5(time() + php_rand(0, 1999999999));
 		}
 
 		return $this->_xss_hash;
diff --git a/appsys/helpers/captcha_helper.php b/appsys/helpers/captcha_helper.php
@@ -187,7 +187,7 @@ function create_captcha($data = '', $img_path = '', $img_url = '', $font_path =
 		{
 			for ($i = 0; $i < $word_length; $i++)
 			{
-				$word .= $pool[mt_rand(0, $rand_max)];
+				$word .= $pool[php_rand(0, $rand_max)];
 			}
 		}
 		elseif ( ! is_string($word))
diff --git a/appsys/helpers/string_helper.php b/appsys/helpers/string_helper.php
@@ -197,7 +197,7 @@ function random_string($type = 'alnum', $len = 8)
 	{
 		switch($type)
 		{
-			case 'basic'	: return mt_rand();
+			case 'basic'	: return php_rand();
 				break;
 			case 'alnum'	:
 			case 'numeric'	:
@@ -219,22 +219,22 @@ function random_string($type = 'alnum', $len = 8)
 					$str = '';
 					for ($i=0; $i < $len; $i++)
 					{
-						$str .= substr($pool, mt_rand(0, strlen($pool) -1), 1);
+						$str .= substr($pool, php_rand(0, strlen($pool) -1), 1);
 					}
 					return $str;
 				break;
 			case 'unique'	:
 			case 'md5'		:
 
-						return md5(uniqid(mt_rand()));
+						return md5(uniqid(php_rand()));
 				break;
 			case 'encrypt'	:
 			case 'sha1'	:
 
 						$CI =& get_instance();
 						$CI->load->helper('security');
 
-						return do_hash(uniqid(mt_rand(), TRUE), 'sha1');
+						return do_hash(uniqid(php_rand(), TRUE), 'sha1');
 				break;
 		}
 	}
diff --git a/appsys/libraries/Encrypt.php b/appsys/libraries/Encrypt.php
@@ -247,7 +247,7 @@ function _xor_encode($string, $key)
 		$rand = '';
 		while (strlen($rand) < 32)
 		{
-			$rand .= mt_rand(0, mt_getrandmax());
+			$rand .= php_rand(0, mt_getrandmax());
 		}
 
 		$rand = $this->hash($rand);
diff --git a/appsys/libraries/Session.php b/appsys/libraries/Session.php
@@ -328,7 +328,7 @@ function sess_create()
 		$sessid = '';
 		while (strlen($sessid) < 32)
 		{
-			$sessid .= mt_rand(0, mt_getrandmax());
+			$sessid .= php_rand(0, mt_getrandmax());
 		}
 
 		// To make the session ID even more secure we'll combine it with the user's IP
@@ -375,7 +375,7 @@ function sess_update()
 		$new_sessid = '';
 		while (strlen($new_sessid) < 32)
 		{
-			$new_sessid .= mt_rand(0, mt_getrandmax());
+			$new_sessid .= php_rand(0, mt_getrandmax());
 		}
 
 		// To make the session ID even more secure we'll combine it with the user's IP
diff --git a/appsys/libraries/Upload.php b/appsys/libraries/Upload.php
@@ -397,7 +397,7 @@ public function set_filename($path, $filename)
 		if ($this->encrypt_name == TRUE)
 		{
 			mt_srand();
-			$filename = md5(uniqid(mt_rand())).$this->file_ext;
+			$filename = md5(uniqid(php_rand())).$this->file_ext;
 		}
 
 		if ( ! file_exists($path.$filename)) // if ($this->overwrite === TRUE OR ! file_exists($path.$filename)) // permite que asigne nombre nuevo no importa si esta permitido

Original file line number	Diff line number	Diff line change
`@@ -488,7 +488,7 @@ public function xss_hash()`
`488`	`488`	`if ($this->_xss_hash == '')`
`489`	`489`	`{`
`490`	`490`	`mt_srand();`
`491`		`- $this->_xss_hash = md5(time() + mt_rand(0, 1999999999));`
	`491`	`+ $this->_xss_hash = md5(time() + php_rand(0, 1999999999));`
`492`	`492`	`}`
`493`	`493`
`494`	`494`	`return $this->_xss_hash;`
Original file line number	Diff line number	Diff line change
`@@ -187,7 +187,7 @@ function create_captcha($data = '', $img_path = '', $img_url = '', $font_path =`
`187`	`187`	`{`
`188`	`188`	`for ($i = 0; $i < $word_length; $i++)`
`189`	`189`	`{`
`190`		`- $word .= $pool[mt_rand(0, $rand_max)];`
	`190`	`+ $word .= $pool[php_rand(0, $rand_max)];`
`191`	`191`	`}`
`192`	`192`	`}`
`193`	`193`	`elseif ( ! is_string($word))`
Original file line number	Diff line number	Diff line change
`@@ -197,7 +197,7 @@ function random_string($type = 'alnum', $len = 8)`
`197`	`197`	`{`
`198`	`198`	`switch($type)`
`199`	`199`	`{`
`200`		`- case 'basic' : return mt_rand();`
	`200`	`+ case 'basic' : return php_rand();`
`201`	`201`	`break;`
`202`	`202`	`case 'alnum' :`
`203`	`203`	`case 'numeric' :`
`@@ -219,22 +219,22 @@ function random_string($type = 'alnum', $len = 8)`
`219`	`219`	`$str = '';`
`220`	`220`	`for ($i=0; $i < $len; $i++)`
`221`	`221`	`{`
`222`		`- $str .= substr($pool, mt_rand(0, strlen($pool) -1), 1);`
	`222`	`+ $str .= substr($pool, php_rand(0, strlen($pool) -1), 1);`
`223`	`223`	`}`
`224`	`224`	`return $str;`
`225`	`225`	`break;`
`226`	`226`	`case 'unique' :`
`227`	`227`	`case 'md5' :`
`228`	`228`
`229`		`- return md5(uniqid(mt_rand()));`
	`229`	`+ return md5(uniqid(php_rand()));`
`230`	`230`	`break;`
`231`	`231`	`case 'encrypt' :`
`232`	`232`	`case 'sha1' :`
`233`	`233`
`234`	`234`	`$CI =& get_instance();`
`235`	`235`	`$CI->load->helper('security');`
`236`	`236`
`237`		`- return do_hash(uniqid(mt_rand(), TRUE), 'sha1');`
	`237`	`+ return do_hash(uniqid(php_rand(), TRUE), 'sha1');`
`238`	`238`	`break;`
`239`	`239`	`}`
`240`	`240`	`}`
Original file line number	Diff line number	Diff line change
`@@ -247,7 +247,7 @@ function _xor_encode($string, $key)`
`247`	`247`	`$rand = '';`
`248`	`248`	`while (strlen($rand) < 32)`
`249`	`249`	`{`
`250`		`- $rand .= mt_rand(0, mt_getrandmax());`
	`250`	`+ $rand .= php_rand(0, mt_getrandmax());`
`251`	`251`	`}`
`252`	`252`
`253`	`253`	`$rand = $this->hash($rand);`
Original file line number	Diff line number	Diff line change
`@@ -328,7 +328,7 @@ function sess_create()`
`328`	`328`	`$sessid = '';`
`329`	`329`	`while (strlen($sessid) < 32)`
`330`	`330`	`{`
`331`		`- $sessid .= mt_rand(0, mt_getrandmax());`
	`331`	`+ $sessid .= php_rand(0, mt_getrandmax());`
`332`	`332`	`}`
`333`	`333`
`334`	`334`	`// To make the session ID even more secure we'll combine it with the user's IP`
`@@ -375,7 +375,7 @@ function sess_update()`
`375`	`375`	`$new_sessid = '';`
`376`	`376`	`while (strlen($new_sessid) < 32)`
`377`	`377`	`{`
`378`		`- $new_sessid .= mt_rand(0, mt_getrandmax());`
	`378`	`+ $new_sessid .= php_rand(0, mt_getrandmax());`
`379`	`379`	`}`
`380`	`380`
`381`	`381`	`// To make the session ID even more secure we'll combine it with the user's IP`
Original file line number	Diff line number	Diff line change
`@@ -397,7 +397,7 @@ public function set_filename($path, $filename)`
`397`	`397`	`if ($this->encrypt_name == TRUE)`
`398`	`398`	`{`
`399`	`399`	`mt_srand();`
`400`		`- $filename = md5(uniqid(mt_rand())).$this->file_ext;`
	`400`	`+ $filename = md5(uniqid(php_rand())).$this->file_ext;`
`401`	`401`	`}`
`402`	`402`
`403`	`403`	`if ( ! file_exists($path.$filename)) // if ($this->overwrite === TRUE OR ! file_exists($path.$filename)) // permite que asigne nombre nuevo no importa si esta permitido`