Changeset 3810 for trunk/wp-includes/cache.php

Timestamp:

05/31/2006 12:24:03 AM (20 years ago)

Author:

ryan

Message:

wp_hash() and server secret.

File:

• trunk/wp-includes/cache.php (modified) (4 diffs)

trunk/wp-includes/cache.php

@@ -143 +143 @@
         }
 
-        $cache_file = $this->cache_dir.$this->get_group_dir($group)."/".md5($id.DB_PASSWORD).'.php';
+        $cache_file = $this->cache_dir.$this->get_group_dir($group)."/".$this->hash($id).'.php';
         if (!file_exists($cache_file)) {
             $this->non_existant_objects[$group][$id] = true;
@@ -172 +172 @@
 
         return "{$this->blog_id}/$group";
+    }
+
+    function hash($data) {
+        global $wp_server_secret;
+        if ( empty($wp_server_secret) )
+            $wp_server_secret = DB_PASSWORD;
+
+        if ( function_exists('hash_hmac') ) {
+            return hash_hmac('md5', $data, $wp_server_secret);
+        } else {
+            return md5($data . $wp_server_secret);
+        }
     }
 
@@ -323 +335 @@
             $ids = array_unique($ids);
             foreach ($ids as $id) {
-                $cache_file = $group_dir.md5($id.DB_PASSWORD).'.php';
+                $cache_file = $group_dir.$this->hash($id).'.php';
 
                 // Remove the cache file if the key is not set.
@@ -415 +427 @@
             $this->expiration_time = CACHE_EXPIRATION_TIME;
 
-        $this->blog_id = md5($blog_id);
+        $this->blog_id = $this->hash($blog_id);
     }
 }