tags:

views:

44

answers:

2
+1  Q: 

different sha1 checksum on different php versions?!

I run this script:

define('SECRET', "vJs;ly-W\XDkD_2'-M7S2/ZRRBobxt5");
echo sha1(SECRET . 'zcbkeyky' . '[email protected]') . "\n";

Locally with PHP 5.3.2 (cli) it gives me: 3baa47e50394cd2dce236dcbf2f409fdb9010f2a
On a remote machine with PHP 5.1.6 (cli) it gives: d1bcf4ea83e50593d3df19a8455a5f5cd32d63ef

Why does the same calculation differ?

+2  A: 

Only thing I can think of is the encoding of the files/strings on each server?

My result is 3baa47e50394cd2dce236dcbf2f409fdb9010f2a (Locally)

Lizard  2010-07-02 15:39:26
I think your theory about encoding is spot on - but it's nothing to do with files (OP is hashing a string, not a file). I'd check php.ini and/or phpinfo() for more information.
Chris  2010-07-02 15:42:08
@Chris: I assume he meant the encoding of the PHP source file.
R. Bemrose  2010-07-02 15:47:46
yes that what I meant
Lizard  2010-07-02 15:48:54
Ah, that would make sense.
Chris  2010-07-02 20:08:23
+9  A: 

I'd say the problem is here:

define('SECRET', "vJs;ly-W\XDkD_2'-M7S2/ZRRBobxt5");
//                        ^^-- escape character

PHP manual says:

\x[0-9A-Fa-f]{1,2} the sequence of characters matching the regular expression is a character in hexadecimal notation

Between PHP 5.2 and 5.3, apparently this was modified to also match \X[0-9A-Fa-f]{1,2} (note the capital X at the beginning). When running in PHP 5.3, you have (unknowingly?) a Carriage Return in your string.

Either a) replace the backslash with another character, or b) use single quotes when defining SECRET, and both versions will return the same hash (tried on 5.2.1 and 5.3.2).

Piskvor  2010-07-02 15:49:42
+1: Good catch. I missed that when looking at the code. However, this does illustrate why one should use single quotes on string literals.
R. Bemrose  2010-07-02 15:53:07
@R. Bemrose: We had some major un-fun with double quotes and a stubborn developer some time ago; taught me to treat `"` with utmost suspicion. This was the process: Why is SECRET defined in double quotes and the rest is single-quoted? "If the string is enclosed in double-quotes, PHP will interpret more escape sequences for special characters", do we have any of that? Wait a minute, what's that backslash?
Piskvor  2010-07-02 15:59:00
mr eagleeye! thanks
baloo  2010-07-02 16:38:03
@R. Bemrose: The reason was because it contained a singlequote, but I will escape that next time ;)
baloo  2010-07-02 16:38:36

related questions

IDE suggestions: Eclipse IDE vs. Zend Studio ( confused )
MySQL/Apache Error in PHP MySQL query
Lightweight IDE for Linux
What PHP framework would you choose for a new application and why?
Why is my ternary expression not working?
How can I get at the matches when using preg_replace in PHP?
Mechanisms for tracking DB schema changes
Wordpress theme development offline tools
Using object property as default for method property
How can I get the authenticated user name under Apache using plain HTTP authentication and PHP?
Make XAMPP/Apache serve file outside of htdocs
How do you debug PHP scripts?
PHP Variables passed by value or by reference?
Best way to implement unit testing in PHP
Connect PHP to an AS/400
Best way to access Exchange using PHP?
PHP Session Security
How do I access a remote form in php?
What's the best way to generate a tag cloud from an array? (using h1 through h6 for sizing)
Apache/PHP: error_log per Virtual Host?
How do I track file downloads with apache/PHP
How would you access Object properties from within an object method?
Flat File Databases in PHP
Best way to allow plugins for a PHP application
Latest information on PHP upcoming releases