Overview

Packages

  • Auth
    • Ads
    • Ldap
    • Xoops
  • Autotasks
  • Config
    • Category
    • Item
    • Option
  • Core
    • Filesystem
    • Filters
    • Logger
    • Mail
    • Message
    • Password
    • Security
    • StopSpammer
    • Template
    • Textsanitizer
    • VersionChecker
  • Data
    • Avatar
    • Comment
  • Database
    • Connection
    • Criteria
    • Legacy
    • MySQL
    • PDO
    • Updater
  • Feeds
    • RSS
  • File
  • Form
    • Base
    • Elements
  • ICMS
    • IPF
      • View
  • Image
    • Category
  • Ipf
    • Category
    • Controller
    • Export
    • form
    • Keyhighlighter
    • Member
    • Object
    • Permission
    • richfile
    • Tree
    • urllink
    • View
  • kernel
    • Set
  • Member
    • Group
    • GroupMembership
    • GroupPermission
    • User
  • Messaging
  • Module
  • None
  • Notification
  • Page
  • Plugins
    • Editor
  • Preload
    • Libraries
  • Privmessage
  • Session
  • SmartObject
  • View
    • Block
    • Breadcrumb
    • PageNav
    • PrinterFriendly
    • Template
    • Templates
    • Theme
    • Tree

Classes

  • icms_auth_Ads
  • icms_auth_Factory
  • icms_auth_Ldap
  • icms_auth_Object
  • icms_auth_Provisionning
  • icms_auth_Xoops
  • icms_Autoloader
  • icms_config_category_Handler
  • icms_config_category_Object
  • icms_config_Handler
  • icms_config_Item_Handler
  • icms_config_Item_Object
  • icms_config_option_Handler
  • icms_config_option_Object
  • icms_core_DataFilter
  • icms_core_Debug
  • icms_core_Filesystem
  • icms_core_HTMLFilter
  • icms_core_Logger
  • icms_core_Message
  • icms_core_Object
  • icms_core_ObjectHandler
  • icms_core_OnlineHandler
  • icms_core_Password
  • icms_core_Security
  • icms_core_Session
  • icms_core_StopSpammer
  • icms_core_Textsanitizer
  • icms_core_Versionchecker
  • icms_data_avatar_Handler
  • icms_data_avatar_Object
  • icms_data_comment_Handler
  • icms_data_comment_Object
  • icms_data_comment_Renderer
  • icms_data_file_Handler
  • icms_data_file_Object
  • icms_data_notification_Handler
  • icms_data_notification_Object
  • icms_data_page_Handler
  • icms_data_page_Object
  • icms_data_privmessage_Handler
  • icms_data_privmessage_Object
  • icms_data_urllink_Handler
  • icms_data_urllink_Object
  • icms_db_Connection
  • icms_db_criteria_Compo
  • icms_db_criteria_Element
  • icms_db_criteria_Item
  • icms_db_Factory
  • icms_db_legacy_Database
  • icms_db_legacy_Factory
  • icms_db_legacy_mysql_Database
  • icms_db_legacy_mysql_Proxy
  • icms_db_legacy_mysql_Safe
  • icms_db_legacy_mysql_Utility
  • icms_db_legacy_PdoDatabase
  • icms_db_legacy_updater_Handler
  • icms_db_legacy_updater_Table
  • icms_db_mysql_Connection
  • icms_db_mysql_Utility
  • icms_Event
  • icms_feeds_Rss
  • icms_feeds_Simplerss
  • icms_file_DownloadHandler
  • icms_file_MediaUploadHandler
  • icms_file_TarDownloader
  • icms_file_TarFileHandler
  • icms_file_ZipDownloader
  • icms_file_ZipFileHandler
  • icms_form_Base
  • icms_form_Element
  • icms_form_elements_Button
  • icms_form_elements_Captcha
  • icms_form_elements_captcha_Image
  • icms_form_elements_captcha_ImageHandler
  • icms_form_elements_captcha_Object
  • icms_form_elements_captcha_Text
  • icms_form_elements_Checkbox
  • icms_form_elements_Colorpicker
  • icms_form_elements_Date
  • icms_form_elements_Datetime
  • icms_form_elements_Dhtmltextarea
  • icms_form_elements_Editor
  • icms_form_elements_File
  • icms_form_elements_Groupperm
  • icms_form_elements_Hidden
  • icms_form_elements_Hiddentoken
  • icms_form_elements_Label
  • icms_form_elements_Password
  • icms_form_elements_Radio
  • icms_form_elements_Radioyn
  • icms_form_elements_Select
  • icms_form_elements_select_Country
  • icms_form_elements_select_Editor
  • icms_form_elements_select_Group
  • icms_form_elements_select_Image
  • icms_form_elements_select_Lang
  • icms_form_elements_select_Matchoption
  • icms_form_elements_select_Theme
  • icms_form_elements_select_Timezone
  • icms_form_elements_select_User
  • icms_form_elements_Text
  • icms_form_elements_Textarea
  • icms_form_elements_Tray
  • icms_form_Groupperm
  • icms_form_Simple
  • icms_form_Table
  • icms_form_Theme
  • icms_image_category_Handler
  • icms_image_category_Object
  • icms_image_Handler
  • icms_image_Object
  • icms_image_set_Handler
  • icms_image_set_Object
  • icms_ipf_About
  • icms_ipf_category_Handler
  • icms_ipf_category_Object
  • icms_ipf_Controller
  • icms_ipf_export_Handler
  • icms_ipf_export_Renderer
  • icms_ipf_form_Base
  • icms_ipf_form_elements_Autocomplete
  • icms_ipf_form_elements_Blockoptions
  • icms_ipf_form_elements_Checkbox
  • icms_ipf_form_elements_Date
  • icms_ipf_form_elements_Datetime
  • icms_ipf_form_elements_File
  • icms_ipf_form_elements_Fileupload
  • icms_ipf_form_elements_Image
  • icms_ipf_form_elements_Imageupload
  • icms_ipf_form_elements_Language
  • icms_ipf_form_elements_Page
  • icms_ipf_form_elements_Parentcategory
  • icms_ipf_form_elements_Passwordtray
  • icms_ipf_form_elements_Radio
  • icms_ipf_form_elements_Richfile
  • icms_ipf_form_elements_Section
  • icms_ipf_form_elements_Select
  • icms_ipf_form_elements_Selectmulti
  • icms_ipf_form_elements_Signature
  • icms_ipf_form_elements_Source
  • icms_ipf_form_elements_Text
  • icms_ipf_form_elements_Time
  • icms_ipf_form_elements_Upload
  • icms_ipf_form_elements_Urllink
  • icms_ipf_form_elements_User
  • icms_ipf_form_elements_Yesno
  • icms_ipf_form_Secure
  • icms_ipf_Handler
  • icms_ipf_Highlighter
  • icms_ipf_member_Handler
  • icms_ipf_Metagen
  • icms_ipf_Object
  • icms_ipf_permission_Handler
  • icms_ipf_registry_Handler
  • icms_ipf_seo_Object
  • icms_ipf_Tree
  • icms_ipf_view_Column
  • icms_ipf_view_Row
  • icms_ipf_view_Single
  • icms_ipf_view_Table
  • icms_ipf_view_Tree
  • icms_member_group_Handler
  • icms_member_group_membership_Handler
  • icms_member_group_membership_Object
  • icms_member_group_Object
  • icms_member_groupperm_Handler
  • icms_member_groupperm_Object
  • icms_member_Handler
  • icms_member_user_Handler
  • icms_member_user_Object
  • icms_messaging_EmailHandler
  • icms_messaging_Handler
  • icms_module_Handler
  • icms_module_Object
  • icms_plugins_EditorHandler
  • icms_plugins_Handler
  • icms_plugins_Object
  • icms_preload_Handler
  • icms_preload_Item
  • icms_preload_LibrariesHandler
  • icms_sys_autotasks_System
  • icms_Utils
  • icms_view_block_Handler
  • icms_view_block_Object
  • icms_view_block_position_Handler
  • icms_view_block_position_Object
  • icms_view_Breadcrumb
  • icms_view_PageBuilder
  • icms_view_PageNav
  • icms_view_Printerfriendly
  • icms_view_template_file_Handler
  • icms_view_template_file_Object
  • icms_view_template_set_Handler
  • icms_view_template_set_Object
  • icms_view_theme_Factory
  • icms_view_theme_Object
  • icms_view_Tpl
  • icms_view_Tree

Interfaces

  • icms_db_IConnection
  • icms_db_IUtility
  • icms_db_legacy_IDatabase
  • icms_sys_autotasks_ISystem
  • Overview
  • Package
  • Class 
  1:   2:   3:   4:   5:   6:   7:   8:   9:  10:  11:  12:  13:  14:  15:  16:  17:  18:  19:  20:  21:  22:  23:  24:  25:  26:  27:  28:  29:  30:  31:  32:  33:  34:  35:  36:  37:  38:  39:  40:  41:  42:  43:  44:  45:  46:  47:  48:  49:  50:  51:  52:  53:  54:  55:  56:  57:  58:  59:  60:  61:  62:  63:  64:  65:  66:  67:  68:  69:  70:  71:  72:  73:  74:  75:  76:  77:  78:  79:  80:  81:  82:  83:  84:  85:  86:  87:  88:  89:  90:  91:  92:  93:  94:  95:  96:  97:  98:  99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 
<?php
/**
 * Class to encrypt User Passwords.
 *
 * @category    ICMS
 * @package     Core
 * @since       1.2
 * @author      vaughan montgomery (vaughan@impresscms.org)
 * @author      ImpressCMS Project
 * @license     http://www.gnu.org/licenses/old-licenses/gpl-2.0.html GNU General Public License (GPL)
 * @copyright   (c) 2007-2010 The ImpressCMS Project - www.impresscms.org
 * @version SVN: $Id: Password.php 12310 2013-09-13 21:33:58Z skenow $
 */
/**
 * Password generation and validation
 *
 * @category    ICMS
 * @package     Core
 * @subpackage  Password
 *
 */
final class icms_core_Password {
    
    private $pass, $salt, $mainSalt = XOOPS_DB_SALT, $uname;

    /**
     * Constructor for the Password class
     */
    public function __construct() {
    }

    /**
     * Access the only instance of this class
     * @return       object
     * @static       $instance
     * @staticvar    object
     */
    static public function getInstance() {
        static $instance;

        if (!isset($instance)) {
            $instance = new icms_core_Password();
        }

        return $instance;
    }

    // ***** Public Functions *****

    /**
     * This Function creates a unique random Salt Key for use with password encryptions
     * It can also be used to generate a random AlphaNumeric key sequence of any given length.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $slength    The length of the key to produce
     * @return   string  returns the generated random key.
     */
    static public function createSalt($slength=64) {
        $salt = '';
        $base = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
        $microtime = function_exists('microtime') ? microtime() : time();
        mt_srand((double)$microtime * 1000000);
        for ($i=0; $i<=$slength; $i++)
        $salt.= substr($base, mt_rand(0, strlen($base)), 1);

        return $salt;
    }

    /**
     * This Function creates a unique Crypto Generated Key for use with password encryptions
     * This functions falls back to standard function createSalt() if PHP < 5.3
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string  $slength    The length of the key to produce
     * @return   string  returns the generated random key.
     */
    public function createCryptoKey($slength = 64) {
        if (function_exists('openssl_random_pseudo_bytes')) {
            $key = openssl_random_pseudo_bytes($slength, $strong);
            if ($strong === TRUE) {
                return $key;
            } else {
                return self::createCryptoKey($slength);
            }
        } else {
            return self::createSalt($slength);
        }
    }

    /**
     * This Public Function checks whether a users password has been expired
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $uname      The username of the account to be checked
     * @return   bool     returns true if password is expired, false if password is not expired.
     */
    public function passExpired($uname = '') {
        if (empty($uname)) {
            redirect_header('user.php', 2, _US_SORRYNOTFOUND);
        }

        return self::_passExpired($uname);
    }

    /**
     * This Public Function returns the User Salt key belonging to username.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $uname      Username to find User Salt key for.
     * @return   string  returns the Salt key of the user.
     *
     * To be removed in future versions
     */
    public function getUserSalt($uname = '') {
        if (empty($uname)) {
            redirect_header('user.php', 2, _US_SORRYNOTFOUND);
        }

        return self::_getUserSalt($uname);
    }

    /**
     * This Public Function returns the User Encryption Type belonging to username.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $uname      Username to find Encryption Type for.
     * @return   string  returns the Encryption Type of the user.
     *
     * to be removed in future versions
     */
    public function getUserEncType($uname = '') {
        if (empty($uname)) {
            redirect_header('user.php', 2, _US_SORRYNOTFOUND);
        }

        return self::_getUserEncType($uname);
    }

    /**
     * This Public Function is used to Encrypt User Passwords
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $pass       plaintext password to be encrypted
     * @return   Hash of users password.
     */
    public function encryptPass($pass) {
        global $icmsConfigUser;

        $salt = self::createSalt();
        $iterations = 5000;
        $enc_type = (isset($icmsConfigUser['enc_type']) ? (int) $icmsConfigUser['enc_type'] : 23);

        return self::_encryptPassword($pass, $salt, $enc_type, $iterations);
    }

    /**
     * This Public Function verifies if the users password is correct.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string  $uname      Username to verify.
     * @param    string  $pass       Password to verify.
     * @return   mixed      returns Hash if correct, returns false if incorrect.
     */
    public function verifyPass($pass = '', $uname = '') {
        if (!isset($pass) || !isset($uname)) {
            return false;
        }

        return self::_verifyPassword($pass, $uname);
    }

    // ***** Private Functions *****

    /**
     * This Private Function checks whether a users password has been expired
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $uname      The username of the account to be checked
     * @return   bool     returns true if password is expired, false if password is not expired.
     */
    private function _passExpired($uname) {
        $uname = @htmlspecialchars($uname, ENT_QUOTES, _CHARSET);
        $table = new icms_db_legacy_updater_Table('users');

        if ($table->fieldExists('loginname')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass_expired FROM %s WHERE loginname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass_expired) = icms::$xoopsDB->fetchRow($sql);
        } elseif ($table->fieldExists('login_name')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass_expired FROM %s WHERE login_name = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass_expired) = icms::$xoopsDB->fetchRow($sql);
        } else {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass_expired FROM %s WHERE uname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass_expired) = icms::$xoopsDB->fetchRow($sql);
        }

        if ($pass_expired == 1) {
            return true;
        } else {
            return false;
        }
    }

    /**
     * This Private Function returns the User Salt key belonging to username.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $uname      Username to find User Salt key for.
     * @return   string  returns the Salt key of the user.
     *
     * To be removed in future versions
     */
    private function _getUserSalt($uname) {
        $table = new icms_db_legacy_updater_Table('users');
        $uname = @htmlspecialchars($uname, ENT_QUOTES, _CHARSET);

        if ($table->fieldExists('loginname')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT salt FROM %s WHERE loginname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($salt) = icms::$xoopsDB->fetchRow($sql);
        } elseif ($table->fieldExists('login_name')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT salt FROM %s WHERE login_name = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($salt) = icms::$xoopsDB->fetchRow($sql);
        } else {
            $sql = icms::$xoopsDB->query(sprintf("SELECT salt FROM %s WHERE uname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($salt) = icms::$xoopsDB->fetchRow($sql);
        }

        return $salt;
    }

    /**
     * This Private Function returns the User Encryption Type belonging to username.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.2.3
     * @param    string  $uname      Username to find Enc_type for.
     * @return   string  returns the Encryption type of the user.
     *
     * To be removed in future versions
     */
    private function _getUserEncType($uname) {
        $table = new icms_db_legacy_updater_Table('users');
        $uname = @htmlspecialchars($uname, ENT_QUOTES, _CHARSET);

        if($table->fieldExists('loginname')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT enc_type FROM %s WHERE loginname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($enc_type) = icms::$xoopsDB->fetchRow($sql);
        } elseif($table->fieldExists('login_name')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT enc_type FROM %s WHERE login_name = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($enc_type) = icms::$xoopsDB->fetchRow($sql);
        } else {
            $sql = icms::$xoopsDB->query(sprintf("SELECT enc_type FROM %s WHERE uname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($enc_type) = icms::$xoopsDB->fetchRow($sql);
        }

        return (int) $enc_type;
    }

    /**
     * This Private Function returns the User Password Hash belonging to username.
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string  $uname      Username to find hash for.
     * @return   string  returns the Password hash of the user.
     */
    private function _getUserHash($uname) {
        if (empty($uname)) {
            redirect_header('user.php', 2, _US_SORRYNOTFOUND);
        }

        $table = new icms_db_legacy_updater_Table('users');
        $uname = @htmlspecialchars($uname, ENT_QUOTES, _CHARSET);

        if($table->fieldExists('loginname')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass FROM %s WHERE loginname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass) = icms::$xoopsDB->fetchRow($sql);
        } elseif($table->fieldExists('login_name')) {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass FROM %s WHERE login_name = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass) = icms::$xoopsDB->fetchRow($sql);
        } else {
            $sql = icms::$xoopsDB->query(sprintf("SELECT pass FROM %s WHERE uname = %s",
            icms::$xoopsDB->prefix('users'), icms::$xoopsDB->quoteString($uname)));
            list($pass) = icms::$xoopsDB->fetchRow($sql);
        }

        return $pass;
    }

    /**
     * This Private Function is used to Encrypt User Passwords
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.1
     * @param    string  $pass       plaintext password to be encrypted
     * @param    string  $salt       unique user salt key used in encryption process
     * @param    int     $enc_type   encryption type to use (this is required & only used when passwords are expired)
     * @return   Hash of users password.
     *
     * To be removed in future versions, use _encryptPassword() instead
     */
    private function _encryptPass($pass, $salt, $enc_type) {
        if ($enc_type === 0) {
            return md5($pass);
        } else {
            $pass = $salt . md5($pass) . $this->mainSalt;

            $type = array();
            $type['encType'] = array(
                1 => 'sha256',
                2 => 'sha384',
                3 => 'sha512',
                4 => 'ripemd128',
                5 => 'ripemd160',
                6 => 'whirlpool',
                7 => 'haval128,4',
                8 => 'haval160,4',
                9 => 'haval192,4',
                10 => 'haval224,4',
                11 => 'haval256,4',
                12 => 'haval128,5',
                13 => 'haval160,5',
                14 => 'haval192,5',
                15 => 'haval224,5',
                16 => 'haval256,5',
            );

            return hash($type['encType'][$enc_type], $pass);
        }
    }

    /**
     * This Private Function is used to Encrypt User Passwords
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string  $pass          plaintext password to be encrypted
     * @param    string  $salt          unique user salt key used in encryption process
     * @param    int     $enc_type      encryption type to use.
     * @param    int     $iterations    Number of times to rehash(stretch).
     * @return   Hash of users password.
     */
    private function _encryptPassword($pass, $salt, $enc_type, $iterations) {
        if ($enc_type == 20) {
            return '$' . $enc_type . '$20$' . md5($pass); // this should never be used. should be removed???
        } else {
            $hash = '$' . $enc_type . '$' . $iterations . '$' . $salt . '-' . self::_rehash(
                self::_rehash($salt, $iterations) .
                self::_rehash($pass, $iterations) .
                self::_rehash($this->mainSalt, $iterations),
                $iterations, $enc_type);

            return $hash;
        }
    }

    /**
     * This Private Function rehashes (stretches) the Password Hash
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string     $hash           hash to be re-hashed (stretched)
     * @param    int        $iterations     Number of times to re-hash
     * @param    int        $enc_type       encryption type to use
     * @return   Hash of users password.
     */
    private function _rehash($hash, $iterations, $enc_type = 21) {
        $type['encType'] = array(
            21 => 'sha256',
            22 => 'sha384',
            23 => 'sha512',
            24 => 'ripemd128',
            25 => 'ripemd160',
            26 => 'whirlpool',
            27 => 'haval128,4',
            28 => 'haval160,4',
            29 => 'haval192,4',
            30 => 'haval224,4',
            31 => 'haval256,4',
            32 => 'haval128,5',
            33 => 'haval160,5',
            34 => 'haval192,5',
            35 => 'haval224,5',
            36 => 'haval256,5',
            37 => 'ripemd256',
            38 => 'ripemd320',
            39 => 'snefru256',
            40 => 'gost'
        );

        for ($i = 0; $i < $iterations; ++$i) {
            $hashed = hash($type['encType'][$enc_type], $hash . $hash);
        }

        return $hashed;
    }

    /**
     * This Private Function verifies if the password is correct
     * @copyright (c) 2007-2008 The ImpressCMS Project - www.impresscms.org
     * @since    1.3.3
     * @param    string     $pass       Password to be verified
     * @param    string     $uname      Username of password to be verified
     * @return   mixed      returns password HASH if correct, returns false if incorrect
     */
    private function _verifyPassword($pass, $uname) {
        $userSalt = self::_getUserSalt($uname); // to be deprecated in future versions
        $userHash = self::_getUserHash($uname);

        if(preg_match_all("/(\\$)(\\d+)(\\$)(\\d+)(\\$)((?:[a-z0-9_]*))(-)((?:[a-z0-9_]*))/is", $userHash, $matches)) {
            $encType = (int) $matches[2][0];
            $iterations = (int) $matches[4][0];
            $userSalt = $matches[6][0];

            if (self::_encryptPassword($pass, $userSalt, $encType, $iterations) === $userHash) {
                return $userHash;
            }
        } else { // to be removed in future versions
            $encType = self::_getUserEncType($uname);

            if (self::_encryptPass($pass, $userSalt, $encType) === $userHash) {
                return $userHash;
            }
        }

        return false;
    }
}
API documentation generated by ApiGen