Random String Generator using OpenSSL in PHP

Question 1

function GenerateRandomString($Length) {
 $Length /= 2;
 $cstrong = false;
 while ($cstrong != TRUE){
 $bytes = openssl_random_pseudo_bytes($Length, $cstrong);
 }
 $hex = bin2hex($bytes);
 return $hex;
}

Is this a good function for generating a cryptographically secure random string? Is there a chance, that it'll get into an infinite loop, because $cstrong stays 'False'?

Question 2

According to the documentation $cstrong is rare to be FALSE, but some systems may be broken or old.

Question 3

The documentation says that crypto_strong is set depending on the algorithm used. So it will never go from false to true, so yes, this might result in an infinite loop.

Use it instead to see if you should trust the result. If it is true, the string should be secure.

(you should also never design your own crypto algorithms for anything other than academic interest)

because this is codereview, I also have a couple of notes regarding your code:

Why do you divide the length by 2? Seems unnecessary. If it does have a purpose, comment on it.
false TRUE: use case uniformly. either false and true or FALSE TRUE
$hex = bin2hex($bytes); return $hex; just make this one line: return bin2hex($bytes)
it is convention to use camelCase for variables, so Length should be length and the function name generateRandomString

Question 4

The purpose of $Length /= 2; is that I want the Parameter $Length to be the strlength of the output string and not the length of the bytes

Question 5

Additional suggestion: do..while instead of while.

Question 6

GenerateRandomString is a poor name. I don't know what the contents of my string will be. In your case, you've restricted the character set to [0-9A-F], but that's not reflected in the name. Consider renaming this to generateRandomHexadecimalString or something that more clearly states the intention.
You noted why $length is divided by two in a comment on @tim's answer. Since he couldn't determine the reasoning at first glance, this would probably be a good thing to put in a comment in the actual code.
This function does not actually generate strings of odd length. To do so, you'll need to rewrite to something functionally equivalent to the following:
```
function generateRandomHexString($length) {
 return substr(bin2hex(openssl_random_pseudo_bytes(ceil($length / 2))), 0, $length);
}
```

Question 7

You should just use https://github.com/paragonie/random_compat. It's a polyfill for the random_bytes() function in PHP7, and will use the best source of randomness available on your host.

Note that openssl_random_pseudo_bytes() is not a good source of randomness unless you're running a very new release of PHP. Quoting from ERRATA.md in the random_compat repository:

Finally, we use openssl_random_pseudo_bytes() as a last resort, due to PHP bug #70014. Internally, this function calls RAND_pseudo_bytes(), which has been deprecated by the OpenSSL team. Furthermore, it might silently return weak random data if it is called before OpenSSL's userspace CSPRNG is seeded.

tim tim 25.3k3 gold badges31 silver badges76 bronze badges · Answer 1 · 2014-08-05 10:39:11Z

The documentation says that crypto_strong is set depending on the algorithm used. So it will never go from false to true, so yes, this might result in an infinite loop.

Use it instead to see if you should trust the result. If it is true, the string should be secure.

(you should also never design your own crypto algorithms for anything other than academic interest)

because this is codereview, I also have a couple of notes regarding your code:

Why do you divide the length by 2? Seems unnecessary. If it does have a purpose, comment on it.
false TRUE: use case uniformly. either false and true or FALSE TRUE
$hex = bin2hex($bytes); return $hex; just make this one line: return bin2hex($bytes)
it is convention to use camelCase for variables, so Length should be length and the function name generateRandomString

The purpose of $Length /= 2; is that I want the Parameter $Length to be the strlength of the output string and not the length of the bytes

Schism Schism 3,64517 silver badges31 bronze badges · Answer 2 · 2014-08-05 17:47:16Z

GenerateRandomString is a poor name. I don't know what the contents of my string will be. In your case, you've restricted the character set to [0-9A-F], but that's not reflected in the name. Consider renaming this to generateRandomHexadecimalString or something that more clearly states the intention.
You noted why $length is divided by two in a comment on @tim's answer. Since he couldn't determine the reasoning at first glance, this would probably be a good thing to put in a comment in the actual code.
This function does not actually generate strings of odd length. To do so, you'll need to rewrite to something functionally equivalent to the following:
```
function generateRandomHexString($length) {
 return substr(bin2hex(openssl_random_pseudo_bytes(ceil($length / 2))), 0, $length);
}
```

cweagans cweagans 1111 bronze badge · Answer 3 · 2015-10-16 18:07:51Z

You should just use https://github.com/paragonie/random_compat. It's a polyfill for the random_bytes() function in PHP7, and will use the best source of randomness available on your host.

Note that openssl_random_pseudo_bytes() is not a good source of randomness unless you're running a very new release of PHP. Quoting from ERRATA.md in the random_compat repository:

Finally, we use openssl_random_pseudo_bytes() as a last resort, due to PHP bug #70014. Internally, this function calls RAND_pseudo_bytes(), which has been deprecated by the OpenSSL team. Furthermore, it might silently return weak random data if it is called before OpenSSL's userspace CSPRNG is seeded.

Stack Exchange Network

Random String Generator using OpenSSL in PHP

3 Answers 3

Your Answer

Sign up or log in

Post as a guest

Post as a guest

Hot Network Questions

Random String Generator using OpenSSL in PHP

3 Answers 3

Your Answer

Sign up or log in

Post as a guest

Post as a guest

Related

Hot Network Questions