Replace rand with random_int and remove fallback try-catch.

Updated all instances where `rand` was used with the more secure `random_int` function. Removed unnecessary try-catch blocks for `random_int` as it no longer requires fallbacks. Also improved string comparison by replacing equality checks with `hash_equals` for safer, timing-attack resistant comparisons.

Author: msyk

dist-docs/sample_schema_all_apply.sh

@@ -12,7 +12,7 @@ psql --quiet -f "${distDocDir}/sample_schema_pgsql.sql" -h localhost test_db
 rm /var/db/im/sample.sq3
 sqlite3 /var/db/im/sample.sq3 < "${distDocDir}/sample_schema_sqlite.sql"
 
-#mysql -uroot < "${distDocDir}/../spec/run/additionals_mysql.sql"
-#psql --quiet -f "${distDocDir}/../spec/run/additionals_postgresql.sql" -h localhost test_db
-#sqlite3 /var/db/im/sample.sq3 < "${distDocDir}/../spec/run/additionals_sqlite.sql"
+mysql -uroot < "${distDocDir}/../spec/run/additionals_mysql.sql"
+psql --quiet -f "${distDocDir}/../spec/run/additionals_postgresql.sql" -h localhost test_db
+sqlite3 /var/db/im/sample.sq3 < "${distDocDir}/../spec/run/additionals_sqlite.sql"
 

src/php/DB/Support/ActionHandlers/ActionHandler.php

@@ -127,7 +127,7 @@ protected function prepareCheckAuthentication(): bool
                     $proxy->code2FA = $this->storedCredential ? substr($this->storedCredential, 48, $proxy->digitsOf2FACode) : "";
                 case'email':  // Send mail containing 2FA code.
                     $proxy->code2FA = $this->storedCredential ? substr($this->storedCredential, 48, $proxy->digitsOf2FACode) : "";
-                     break;
+                    break;
                 case 'authenticator':
                 default:
                     $proxy->code2FA = $proxy->PostData['code2FA'] ?? "";
@@ -169,7 +169,7 @@ protected function checkAuthenticationCommon(): bool
                     $this->storedCredential, $proxy->clientId, $proxy->hashedPassword);
                 Logger::getInstance()->setDebugMessage("[checkAuthenticationCommon] credential={$proxy->credential} "
                     . "storedChallenge={$this->storedChallenge} clientId={$proxy->clientId} hashedPassword={$proxy->hashedPassword}", 2);
-                if ($proxy->credential === $referingCredential) {
+                if (hash_equals($proxy->credential, $referingCredential)) {
                     if ($proxy->required2FA) {
                         $userName = $proxy->dbSettings->getCurrentUser();
                         [, , $email, , $secret] = $proxy->dbClass->authHandler->getLoginUserInfo($userName);
@@ -256,7 +256,7 @@ protected function sessionStorageCheckAuth(): bool
         Logger::getInstance()->setDebugMessage(
             "[sessionStorageCheckAuth] hashedPassword={$proxy->hashedPassword}/hmac_value={$hmacValue}", 2);
         if (strlen($proxy->hashedPassword) > 0) {
-            if ($proxy->paramResponse === $hmacValue) {
+            if (hash_equals($proxy->paramResponse, $hmacValue)) {
                 Logger::getInstance()->setDebugMessage("[sessionStorageCheckAuth] sha1 hash used.", 2);
                 if ($proxy->migrateSHA1to2) {
                     $salt = hex2bin(substr($proxy->hashedPassword, -8));

src/php/DB/Support/Proxy_Auth.php

@@ -316,7 +316,7 @@ public function checkMediaToken(string $user, string $token): bool
         $uid = $this->dbClass->authHandler->authSupportGetUserIdFromUsername($user);
         if ($uid) {
             $storedChallenge = $this->authDbClass->authHandler->authSupportCheckMediaToken($uid);
-            if (strlen($storedChallenge) === 48 && $storedChallenge === $token) { // ex.fc0d54312ce33c2fac19d758
+            if (strlen($storedChallenge) === 48 && hash_equals($storedChallenge, $token)) { // ex.fc0d54312ce33c2fac19d758
                 $returnValue = true;
             }
         }

src/php/GenerateJSCode.php

@@ -297,8 +297,8 @@ public function generateInitialJSCode(?array $dataSource, ?array $options, ?arra
         if (is_null($remoteAddr) || $remoteAddr === FALSE) {
             $remoteAddr = '0.0.0.0';
         }
-        $clientIdSeed = time() . $remoteAddr . mt_rand();
-        $randomSecret = mt_rand();
+        $clientIdSeed = time() . $remoteAddr . random_int();
+        $randomSecret = random_int();
         $clientId = hash_hmac('sha256', $clientIdSeed, $randomSecret);
 
         $this->generateAssignJS(

src/php/IMUtil.php

@@ -582,11 +582,7 @@ public static function randomDigit(int $digit): string
     {
         $resultStr = '';
         for ($i = 0; $i < $digit; $i++) {
-            try {
-                $code = random_int(0, 9);
-            } catch (Exception $ex) {
-                $code = rand(0, 10);
-            }
+            $code = random_int(0, 9);
             $resultStr .= $code;
         }
         return $resultStr;
@@ -600,11 +596,7 @@ public static function randomString(int $digit): string
     {
         $resultStr = '';
         for ($i = 0; $i < $digit; $i++) {
-            try {
-                $code = random_int(33, 126);
-            } catch (Exception $ex) {
-                $code = rand(33, 126);
-            }
+            $code = random_int(33, 126);
             $resultStr .= chr($code);
         }
         return $resultStr;
@@ -620,11 +612,7 @@ public static function challengeString(int $digit): string
         $len = strlen($chars);
         $resultStr = '';
         for ($i = 0; $i < $digit; $i++) {
-            try {
-                $code = random_int(0, $len - 1);
-            } catch (Exception $ex) {
-                $code = rand(0, $len - 1);
-            }
+            $code = random_int(0, $len - 1);
             $resultStr .= $chars[$code];
         }
         return $resultStr;
@@ -650,7 +638,7 @@ public static function generateChallenge(): string
     {
         $str = '';
         for ($i = 0; $i < 24; $i++) {
-            $n = rand(1, 255);
+            $n = random_int(1, 255);
             $str .= ($n < 16 ? '0' : '') . dechex($n);
         }
         return $str;
@@ -663,7 +651,7 @@ public static function generateSalt(): string
     {
         $str = '';
         for ($i = 0; $i < 4; $i++) {
-            $n = rand(33, 126); // They should be an ASCII character for JS SHA1 lib.
+            $n = random_int(33, 126); // They should be an ASCII character for JS SHA1 lib.
             $str .= chr($n);
         }
         return $str;
@@ -680,10 +668,10 @@ public static function generatePassword(int $digit): string
         $seedPunctuation = "#$%&";
         $str = '';
         for ($i = 0; $i < $digit - 1; $i++) {
-            $n = rand(0, strlen($seed) - 1);
+            $n = random_int(0, strlen($seed) - 1);
             $str .= substr($seed, $n, 1);
         }
-        $n = rand(0, strlen($seedPunctuation) - 1);
+        $n = random_int(0, strlen($seedPunctuation) - 1);
         $str .= substr($seedPunctuation, $n, 1);
         return $str;
     }
@@ -720,7 +708,7 @@ public static function generateCredentialWithRandomPW(int $digit, string $passwo
     {
         $password = '';
         for ($i = 0; $i < $digit; $i++) {
-            $password .= chr(rand(32, 127));
+            $password .= chr(random_int(32, 127));
         }
         return IMUtil::convertHashedPassword($password, $passwordHash, $alwaysGenSHA2);
     }
@@ -731,17 +719,9 @@ public static function generateCredentialWithRandomPW(int $digit, string $passwo
     public static function generateRandomPW(): string
     {
         $str = '';
-        try {
-            $limit = random_int(15, 20);
-        } catch (Exception $ex) {
-            $limit = rand(15, 20);
-        }
+        $limit = random_int(15, 20);
         for ($i = 0; $i < $limit; $i++) {
-            try {
-                $n = random_int(33, 126); // They should be an ASCII character for JS SHA1 lib.
-            } catch (Exception $ex) {
-                $n = rand(33, 126); // They should be an ASCII character for JS SHA1 lib.
-            }
+            $n = random_int(33, 126); // They should be an ASCII character for JS SHA1 lib.
             $str .= chr($n);
         }
         return $str;

src/php/Media/AWSS3.php

@@ -157,11 +157,7 @@ public function processing(Proxy  $db, ?string $url, ?array $options, array $fil
             $targetFieldName = $field[$counter];
             $dirPath = $contextName . DIRECTORY_SEPARATOR
                 . $keyField . "=" . $keyValue . DIRECTORY_SEPARATOR . $targetFieldName;
-            try {
-                $rand4Digits = random_int(1000, 9999);
-            } catch (Exception $ex) {
-                $rand4Digits = rand(1000, 9999);
-            }
+            $rand4Digits = random_int(1000, 9999);
             $objectKey = $dirPath . '/'
                 . (!is_null($this->customFileName)
                     ? ($this->customFileName . ($counter > 1 ? "_" . $counter : ""))

src/php/Media/Dropbox.php

@@ -133,11 +133,7 @@ public function processing(Proxy  $db, ?string $url, ?array $options, array $fil
             $targetFieldName = $field[$counter];
             $dirPath = $contextName . DIRECTORY_SEPARATOR
                 . $keyField . "=" . $keyValue . DIRECTORY_SEPARATOR . $targetFieldName;
-            try {
-                $rand4Digits = random_int(1000, 9999);
-            } catch (Exception $ex) {
-                $rand4Digits = rand(1000, 9999);
-            }
+            $rand4Digits = random_int(1000, 9999);
 
             $objectPath = $this->rootInDropbox . '/' . $dirPath . '/'
                 . (!is_null($this->customFileName)

src/php/Media/FileSystem.php

@@ -173,11 +173,7 @@ private function decideFilePath(Proxy  $db, bool $noOutput, ?array $options, str
             . $this->justifyPathComponent($keyField, $uploadFilePathMode) . "="
             . $this->justifyPathComponent($keyValue, $uploadFilePathMode) . DIRECTORY_SEPARATOR
             . $this->justifyPathComponent($targetFieldName, $uploadFilePathMode);
-        try {
-            $rand4Digits = random_int(1000, 9999);
-        } catch (Exception $ex) {
-            $rand4Digits = rand(1000, 9999);
-        }
+        $rand4Digits = random_int(1000, 9999);
         $filePartialPath = $dirPath . '/'
             . (!is_null($this->customFileName)
                 ? ($this->customFileName . ($counter > 1 ? "_" . $counter : ""))

src/php/Media/FileURL.php

@@ -31,6 +31,7 @@
 class FileURL extends UploadingSupport implements DownloadingSupport
 {
     private ?string $customFileName = null;
+
     /** Handles file upload processing, including CSV import if specified.
      * @param Proxy $db The database proxy instance.
      * @param string|null $url The redirect URL on error.
@@ -44,8 +45,8 @@ class FileURL extends UploadingSupport implements DownloadingSupport
      * @param array|null $dataSource Data source definition.
      * @param array|null $dbSpec Database specification.
      * @param int $debug Debug level.
-     * @throws Exception If an error occurs during processing.
      * @return void
+     * @throws Exception If an error occurs during processing.
      */
     public function processing(Proxy  $db, ?string $url, ?array $options, array $files, bool $noOutput, array $field,
                                string $contextName, ?string $keyField, ?string $keyValue,
@@ -171,11 +172,7 @@ private function decideFilePath(Proxy  $db, bool $noOutput, ?array $options,
             . $this->justifyPathComponent($keyField, $uploadFilePathMode) . "="
             . $this->justifyPathComponent($keyValue, $uploadFilePathMode) . DIRECTORY_SEPARATOR
             . $this->justifyPathComponent($targetFieldName, $uploadFilePathMode);
-        try {
-            $rand4Digits = random_int(1000, 9999);
-        } catch (Exception $ex) {
-            $rand4Digits = rand(1000, 9999);
-        }
+        $rand4Digits = random_int(1000, 9999);
         $filePartialPath = $dirPath . '/'
             . (!is_null($this->customFileName)
                 ? ($this->customFileName . ($counter > 1 ? "_" . $counter : ""))