The minimum allowed log2 number of iterations for password stretching. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 17 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespace Drupal\Core\Password Code const MIN_HASH_COUNT = 7;

The maximum allowed log2 number of iterations for password stretching. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 22 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespace Drupal\Core\Password Code const MAX_HASH_COUNT = 30;

The expected (and maximum) number of characters in a hashed password. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 27 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespace Drupal\Core\Password Code const HASH_LENGTH = 55;

public PhpassHashedPassword::hash($password) Hash a password using a secure hash. Parameters string $password: A plain-text password. Return value string A string containing the hashed password, or FALSE on failure. Overrides PasswordInterface::hash File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 214 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespace Drupal\Core\Password Code public function h

public PhpassHashedPassword::getCountLog2($setting) Parses the log2 iteration count from a stored hash or setting string. Parameters string $setting: An existing hash or the output of $this->generateSalt(). Must be at least 12 characters (the settings and salt). Return value int The log2 iteration count. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 207 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework

protected PhpassHashedPassword::generateSalt() Generates a random base 64-encoded salt prefixed with hash settings. Proper use of salts may defeat a number of attacks, including: The ability to try candidate passwords against multiple hashes at once. The ability to use pre-hashed lists of candidate passwords. The ability to determine whether two users have the same (or different) password without actually having to guess one of the passwords. Return value string A 12 character string contain

protected PhpassHashedPassword::enforceLog2Boundaries($count_log2) Ensures that $count_log2 is within set bounds. Parameters int $count_log2: Integer that determines the number of iterations used in the hashing process. A larger value is more secure, but takes more time to complete. Return value int Integer within set bounds that is closest to $count_log2. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 123 Class PhpassHashedPassword Secure password hashing functions ba

protected PhpassHashedPassword::crypt($algo, $password, $setting) Hash a password using a secure stretched hash. By using a salt and repeated hashing the password is "stretched". Its security is increased because it becomes much more computationally costly for an attacker to try to break the hash by brute-force computation of the hashes of a large number of plain-text words or strings to find a match. Parameters string $algo: The string name of a hashing algorithm usable by hash(), like 'sha25

public PhpassHashedPassword::check($password, $hash) Check whether a plain text password matches a hashed password. Parameters string $password: A plain-text password string $hash: A hashed password. Return value bool TRUE if the password is valid, FALSE if not. Overrides PasswordInterface::check File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 221 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespa

protected PhpassHashedPassword::base64Encode($input, $count) Encodes bytes into printable base 64 using the *nix standard from crypt(). Parameters string $input: The string containing bytes to encode. int $count: The number of characters (bytes) to encode. Return value string Encoded string. File core/lib/Drupal/Core/Password/PhpassHashedPassword.php, line 66 Class PhpassHashedPassword Secure password hashing functions based on the Portable PHP password hashing framework. Namespace Dr